$ rpki-client -vvf repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39362e302f32332d3234203d3e203435333035.roa File: 3130332e3138392e39362e302f32332d3234203d3e203435333035.roa (raw, json) Hash identifier: apN+h9rMVlve5QQ11UHOBtDmWt+4qBPMklHSwzuoZf0= Subject key identifier: 6F:01:F3:E0:D3:86:3F:21:01:17:0E:10:3B:14:92:C1:F0:90:F4:4C Certificate issuer: /CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Certificate serial: 3405480E4FB6AE6EA6D15EB1DF695835724812B0 Authority key identifier: A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39362e302f32332d3234203d3e203435333035.roa Signing time: Sat 28 Feb 2026 04:00:00 +0000 ROA not before: Sat 28 Feb 2026 03:55:00 +0000 ROA not after: Sat 27 Feb 2027 04:00:00 +0000 asID: 45305 IP address blocks: 103.189.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 10:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:05:48:0e:4f:b6:ae:6e:a6:d1:5e:b1:df:69:58:35:72:48:12:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Validity Not Before: Feb 28 03:55:00 2026 GMT Not After : Feb 27 04:00:00 2027 GMT Subject: CN=6F01F3E0D3863F2101170E103B1492C1F090F44C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fc:4c:63:7b:54:5c:9e:fa:25:1b:c7:07:c9: 41:ec:40:8a:67:58:2d:f9:93:37:ad:88:16:18:0f: bd:08:02:a3:a4:97:ae:86:8d:1f:95:02:95:f8:1d: f2:48:64:ae:a2:d1:fd:7e:76:86:87:f9:70:28:62: c5:79:db:54:aa:83:08:47:fe:2a:2e:0d:34:b0:e5: e6:36:ea:37:c7:6b:9e:c3:6d:bc:8f:c5:8e:be:a0: 5d:01:0c:fb:f1:a0:70:ae:ae:d2:1f:0f:b1:74:a9: 52:b9:5b:78:e7:8b:aa:25:4d:c5:25:63:1a:d1:84: b4:37:9a:f2:17:3b:25:02:4f:a6:1e:34:df:a2:78: 80:0d:49:a2:13:44:b7:a5:06:9a:27:32:0e:be:ee: dc:32:c7:0f:79:33:43:f1:0a:19:30:a1:e7:67:4a: ea:e7:f0:bf:f4:dc:b9:2a:37:d4:54:66:9a:1c:31: 95:68:12:2c:54:f7:66:03:83:2a:e4:8a:b6:53:c9: 5b:7f:6b:ca:85:64:d8:00:ec:66:bb:47:4a:ac:5c: 0f:69:42:70:ee:a5:cf:47:0e:0c:53:17:bc:bc:7e: 7b:7d:be:f7:bc:7e:93:43:51:d8:d3:d7:d2:0b:18: fb:75:bf:13:e7:3c:69:6e:7b:dc:f1:fd:47:a1:3f: 9d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:01:F3:E0:D3:86:3F:21:01:17:0E:10:3B:14:92:C1:F0:90:F4:4C X509v3 Authority Key Identifier: keyid:A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39362e302f32332d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.96.0/23 Signature Algorithm: sha256WithRSAEncryption 25:7b:5e:2c:b5:61:3e:f1:a0:b2:09:e9:dc:3e:27:36:82:ae: d7:c2:7d:47:33:60:94:7d:b7:df:ec:57:59:26:ad:d8:a7:b1: 5b:ca:c0:a8:b5:f3:7d:3c:70:ce:7b:c6:c7:28:3a:73:13:a6: da:e2:3b:c7:1a:8a:b1:e1:c8:e8:b3:9e:dc:29:35:e3:87:35: 61:49:e9:95:ea:5b:e0:12:b1:92:ed:de:c1:54:d4:75:61:91: 2c:99:be:24:ba:41:d8:21:17:82:66:3e:4e:68:a2:f2:48:df: 71:1c:d3:3e:3d:3a:a2:74:43:ce:2b:9e:d2:6b:85:ae:4f:99: c5:d7:c0:0d:cb:4c:03:1a:04:4f:fb:88:b6:08:a5:c2:b1:23: 68:1d:79:f1:f4:1d:90:0b:ae:b8:62:ee:0e:23:d5:47:fc:4b: 70:37:f8:17:cc:a0:ba:b5:f0:a3:a1:c7:d7:9f:10:61:86:e3: 79:04:e6:50:06:f7:67:97:34:95:03:0f:27:e4:00:28:12:d5: 97:ca:6b:38:d0:c9:c1:ac:3c:6a:f9:5d:30:ab:4b:bb:83:a2: 2a:2b:4c:54:4b:34:24:bb:84:29:81:97:3f:ec:e7:e0:51:88: 36:2a:8d:b3:6f:3d:73:30:f2:a5:77:0b:d0:74:02:ee:ca:ef: ae:d5:2f:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNAVIDk+2rm6m0V6x32lYNXJIErAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2 ODc3NDBFNDAeFw0yNjAyMjgwMzU1MDBaFw0yNzAyMjcwNDAwMDBaMDMxMTAvBgNV BAMTKDZGMDFGM0UwRDM4NjNGMjEwMTE3MEUxMDNCMTQ5MkMxRjA5MEY0NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg/Exje1RcnvolG8cHyUHsQIpn WC35kzetiBYYD70IAqOkl66GjR+VApX4HfJIZK6i0f1+doaH+XAoYsV521SqgwhH /iouDTSw5eY26jfHa57DbbyPxY6+oF0BDPvxoHCurtIfD7F0qVK5W3jni6olTcUl YxrRhLQ3mvIXOyUCT6YeNN+ieIANSaITRLelBponMg6+7twyxw95M0PxChkwoedn Surn8L/03LkqN9RUZpocMZVoEixU92YDgyrkirZTyVt/a8qFZNgA7Ga7R0qsXA9p QnDupc9HDgxTF7y8fnt9vve8fpNDUdjT19ILGPt1vxPnPGlue9zx/UehP53nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbwHz4NOGPyEBFw4QOxSSwfCQ9EwwHwYDVR0j BBgwFoAUo5abJjiZM9fSHzqNdXy5xWh3QOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDMzMzZmOC1lNTQ2LTQ2MmMtODQxMC1iNzczMmI2YzgwMTUvMC9BMzk2OUIyNjM4 OTkzM0Q3RDIxRjNBOEQ3NTdDQjlDNTY4Nzc0MEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2ODc3 NDBFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MzMzNmY4LWU1NDYtNDYyYy04 NDEwLWI3NzMyYjZjODAxNS8wLzMxMzAzMzJlMzEzODM5MmUzOTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9YDANBgkqhkiG 9w0BAQsFAAOCAQEAJXteLLVhPvGgsgnp3D4nNoKu18J9RzNglH233+xXWSat2Kex W8rAqLXzfTxwznvGxyg6cxOm2uI7xxqKseHI6LOe3Ck144c1YUnplepb4BKxku3e wVTUdWGRLJm+JLpB2CEXgmY+Tmii8kjfcRzTPj06onRDziue0muFrk+ZxdfADctM AxoET/uItgilwrEjaB158fQdkAuuuGLuDiPVR/xLcDf4F8ygurXwo6HH158QYYbj eQTmUAb3Z5c0lQMPJ+QAKBLVl8prONDJwaw8avldMKtLu4OiKitMVEs0JLuEKYGX P+zn4FGINiqNs289czDypXcL0HQC7srvrtUv3g== -----END CERTIFICATE-----Generated at Mon Mar 2 09:33:50 2026 by rpki-client