$ rpki-client -vvf repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa File: 3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa (raw, json) Hash identifier: 6SaEeMonWSBg0E+spPcTF3aXfyKkNJKRagJbLpqNVk8= Subject key identifier: 25:85:CE:86:B1:96:8E:D5:60:C4:2F:F0:97:7F:FD:DC:EB:F6:6C:60 Certificate issuer: /CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Certificate serial: 1E637031BC48770FA0858A9CE19E3A03B5A452BD Authority key identifier: F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa Signing time: Wed 08 Apr 2026 12:02:50 +0000 ROA not before: Wed 08 Apr 2026 11:57:50 +0000 ROA not after: Wed 07 Apr 2027 12:02:50 +0000 asID: 141071 IP address blocks: 103.97.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 22:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:63:70:31:bc:48:77:0f:a0:85:8a:9c:e1:9e:3a:03:b5:a4:52:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Validity Not Before: Apr 8 11:57:50 2026 GMT Not After : Apr 7 12:02:50 2027 GMT Subject: CN=2585CE86B1968ED560C42FF0977FFDDCEBF66C60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d0:28:64:0b:7f:d7:54:cd:a2:e8:87:98:cf: 80:e9:f4:a8:12:5d:22:a3:59:41:98:b0:b5:ff:ae: 58:96:5b:c9:ff:84:f1:c8:16:53:2b:75:35:73:28: e5:3e:66:fc:be:7d:ef:07:fa:0d:9e:ef:9d:df:ca: 0b:3b:8d:fc:a7:16:9d:b3:e2:cb:b2:88:03:27:ea: 3a:7f:71:06:b9:47:42:c8:81:5d:68:91:5c:79:7b: 1b:ac:d3:3c:23:7e:0b:38:c5:f0:18:62:94:24:09: e9:74:e3:8a:7c:e3:96:f0:b4:02:22:e5:33:ef:f2: 1b:b8:4a:7b:b9:61:1c:80:0f:29:82:31:6d:73:13: 91:5c:c3:6b:9e:c2:e8:13:ee:9e:73:fc:a5:63:3a: ee:a4:a8:f0:12:8d:44:77:bd:5d:b4:5c:a6:5b:b4: a8:9c:cb:5a:e2:5d:2d:a8:30:86:e7:0c:62:62:f8: a5:48:06:43:1d:30:6a:53:ba:60:25:1d:d8:73:ea: bc:36:d1:b6:28:59:ce:ab:d3:3c:4e:bb:4e:75:e2: e6:a5:9f:5b:88:97:36:6f:6b:66:a9:b7:0b:b1:6f: 5a:48:94:83:28:1b:c1:32:af:d8:e9:af:0b:21:46: 2e:d2:db:1d:ea:20:fc:04:25:d7:40:61:16:3b:da: cf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:85:CE:86:B1:96:8E:D5:60:C4:2F:F0:97:7F:FD:DC:EB:F6:6C:60 X509v3 Authority Key Identifier: keyid:F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.140.0/24 Signature Algorithm: sha256WithRSAEncryption 85:b6:68:bd:2e:81:94:a5:c0:d2:45:2e:d3:94:24:81:a7:46: 5f:a1:08:a2:28:62:b8:e1:fb:54:c3:fa:e5:22:56:9a:da:6a: c0:64:90:0f:fc:2b:41:24:08:32:52:0f:ea:91:38:d9:1e:41: 6d:f9:67:e7:a1:ac:2e:7e:ca:cd:af:c6:66:b0:e0:33:89:ef: 88:25:a2:30:95:44:2e:71:72:42:5d:45:a7:dd:cc:4b:77:1e: 4b:30:c1:f9:ac:27:a6:7a:52:7b:f7:85:69:7d:e0:bb:d6:09: 19:35:85:64:13:a2:05:94:bf:90:3b:8e:ee:ad:49:15:32:0f: c2:f6:2d:42:bf:30:3f:5f:39:56:3b:0b:e9:4a:e4:9e:ce:ad: dc:37:fe:76:32:48:e0:91:2a:76:a0:4d:76:81:40:49:2f:2d: 6d:c9:09:50:ee:e0:d8:ac:42:47:66:f3:2a:d7:66:f3:b4:bb: 2a:d6:93:64:54:50:c0:5b:95:b4:7f:28:5e:bf:1a:5f:e8:4a: a5:16:d2:7f:b4:20:9a:4d:61:16:d9:3d:c0:e9:3d:2c:ee:4d: d4:99:7a:fb:28:ac:cd:59:f4:b1:c6:07:87:e0:a5:e0:c8:e2: 6b:e1:52:d1:3c:9a:0e:21:f2:fa:20:a9:8f:ef:ee:02:26:ec: e5:f8:2f:cd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHmNwMbxIdw+ghYqc4Z46A7WkUr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3 N0JFMTNDMTAeFw0yNjA0MDgxMTU3NTBaFw0yNzA0MDcxMjAyNTBaMDMxMTAvBgNV BAMTKDI1ODVDRTg2QjE5NjhFRDU2MEM0MkZGMDk3N0ZGRERDRUJGNjZDNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA0ChkC3/XVM2i6IeYz4Dp9KgS XSKjWUGYsLX/rliWW8n/hPHIFlMrdTVzKOU+Zvy+fe8H+g2e753fygs7jfynFp2z 4suyiAMn6jp/cQa5R0LIgV1okVx5exus0zwjfgs4xfAYYpQkCel044p845bwtAIi 5TPv8hu4Snu5YRyADymCMW1zE5Fcw2uewugT7p5z/KVjOu6kqPASjUR3vV20XKZb tKicy1riXS2oMIbnDGJi+KVIBkMdMGpTumAlHdhz6rw20bYoWc6r0zxOu0514ual n1uIlzZva2aptwuxb1pIlIMoG8Eyr9jprwshRi7S2x3qIPwEJddAYRY72s91AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJYXOhrGWjtVgxC/wl3/93Ov2bGAwHwYDVR0j BBgwFoAU8xjRXWjmPOvkv6AmpSafOHe+E8EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDAxNDM2Yi0wMjY3LTQ2NmItYTM0MC1lMjg4ZDJlOTM0YTgvMC9GMzE4RDE1RDY4 RTYzQ0VCRTRCRkEwMjZBNTI2OUYzODc3QkUxM0MxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3N0JF MTNDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MDE0MzZiLTAyNjctNDY2Yi1h MzQwLWUyODhkMmU5MzRhOC8wLzMxMzAzMzJlMzkzNzJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2GMMA0GCSqG SIb3DQEBCwUAA4IBAQCFtmi9LoGUpcDSRS7TlCSBp0ZfoQiiKGK44ftUw/rlIlaa 2mrAZJAP/CtBJAgyUg/qkTjZHkFt+WfnoawufsrNr8ZmsOAzie+IJaIwlUQucXJC XUWn3cxLdx5LMMH5rCemelJ794VpfeC71gkZNYVkE6IFlL+QO47urUkVMg/C9i1C vzA/XzlWOwvpSuSezq3cN/52MkjgkSp2oE12gUBJLy1tyQlQ7uDYrEJHZvMq12bz tLsq1pNkVFDAW5W0fyhevxpf6EqlFtJ/tCCaTWEW2T3A6T0s7k3UmXr7KKzNWfSx xgeH4KXgyOJr4VLRPJoOIfL6IKmP7+4CJuzl+C/N -----END CERTIFICATE-----Generated at Fri Apr 17 19:48:54 2026 by rpki-client