$ rpki-client -vvf repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39372e302f32342d3234203d3e203435333035.roa File: 3130332e3138392e39372e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: dPESLlDldiPlxlzMP4pyOofDIOVuijVKtCZRkw6hNwI= Subject key identifier: 03:9D:F2:7A:47:77:22:A1:67:E4:DC:E0:06:CB:10:6D:BA:B2:53:77 Certificate issuer: /CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Certificate serial: 7F2C4A2A3E3F16B8BB3269D6B50BDAB41EBB8B20 Authority key identifier: A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39372e302f32342d3234203d3e203435333035.roa Signing time: Wed 01 Apr 2026 10:00:00 +0000 ROA not before: Wed 01 Apr 2026 09:55:00 +0000 ROA not after: Wed 31 Mar 2027 10:00:00 +0000 asID: 45305 IP address blocks: 103.189.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 21:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:2c:4a:2a:3e:3f:16:b8:bb:32:69:d6:b5:0b:da:b4:1e:bb:8b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Validity Not Before: Apr 1 09:55:00 2026 GMT Not After : Mar 31 10:00:00 2027 GMT Subject: CN=039DF27A477722A167E4DCE006CB106DBAB25377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:08:a8:56:02:6e:df:08:6a:dc:df:98:1b: 01:af:23:c1:2f:38:ac:7f:f9:77:13:f7:5b:03:31: f6:08:70:f4:0d:60:29:f5:70:bc:28:ea:21:7f:36: ab:a7:e7:ec:28:bf:ee:76:48:57:fb:60:02:99:35: 49:69:d4:b2:0f:fa:ba:10:6a:cd:c4:e7:30:4d:86: da:2b:1a:c0:e9:05:ea:37:78:18:41:9d:fc:47:72: 88:40:ce:70:c5:26:2e:e0:fa:0a:e6:ac:28:4c:2c: 1c:54:1f:a1:a0:b3:36:66:a8:a7:06:ef:85:10:c2: d3:f1:a9:f6:2c:0d:45:e9:52:55:9a:25:ab:ad:2c: 72:8d:46:d3:3d:2b:a5:14:b3:8d:ff:0a:12:72:75: 6d:92:d5:9e:0a:c4:22:96:3a:b8:e8:cb:bf:2a:bf: ff:79:15:73:6e:68:3a:63:a2:23:88:8f:fe:e3:b1: 95:5e:74:a0:f6:8b:02:24:43:b8:66:ab:b7:0f:26: d0:8c:5b:7f:ee:40:c2:c6:61:bf:04:f9:5e:6b:0a: 38:57:0b:50:46:0c:c9:d1:2b:cb:3a:57:33:ac:3d: 2f:ba:6a:f2:25:c9:77:b7:e5:5c:24:f6:97:19:ab: a3:50:a9:fc:a1:4e:95:ba:e1:05:72:f1:7f:ab:f0: 81:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:9D:F2:7A:47:77:22:A1:67:E4:DC:E0:06:CB:10:6D:BA:B2:53:77 X509v3 Authority Key Identifier: keyid:A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39372e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.97.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:0c:01:83:d0:42:9b:74:48:8e:d8:c7:64:6a:b6:96:2b:17: a9:56:65:69:37:9c:d7:43:16:95:f7:a3:ac:f6:90:c9:c2:86: 3d:4b:c9:bd:8b:c0:ec:3b:b3:f5:1c:cf:fb:e0:5f:ad:fc:2f: f3:53:71:65:52:6a:b7:d4:92:4c:7d:79:75:7f:8d:30:05:a2: c6:21:13:68:79:47:12:34:2e:a5:f2:3d:24:e2:bb:5f:2b:ea: f6:67:2f:fe:a0:03:9d:b6:cb:3c:38:5b:cd:9e:86:2d:2b:f9: d2:ee:32:56:f7:5e:9a:3a:d8:38:82:1b:45:20:29:7b:76:60: 3a:93:99:69:1f:ad:3e:26:db:0e:93:41:41:53:1d:2e:29:90: 18:05:de:8f:f4:6b:36:03:17:40:23:f2:53:7e:44:9e:f7:28: bb:e4:20:df:51:1f:fc:11:08:f1:5c:45:94:a6:a4:0f:de:fe: 22:61:ae:0d:2e:c2:80:e9:f2:84:92:99:c9:2a:ed:ec:c6:2f: c0:f8:dd:a0:74:58:03:f8:ad:16:f5:82:ca:c5:7d:43:dd:c0: a3:ed:ba:a2:db:51:7c:79:e3:4d:c6:96:44:d2:18:2f:93:72: 80:29:17:df:3f:b4:dc:66:8f:e7:97:cc:37:29:16:25:64:f0: 6e:4f:cd:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfyxKKj4/Fri7MmnWtQvatB67iyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2 ODc3NDBFNDAeFw0yNjA0MDEwOTU1MDBaFw0yNzAzMzExMDAwMDBaMDMxMTAvBgNV BAMTKDAzOURGMjdBNDc3NzIyQTE2N0U0RENFMDA2Q0IxMDZEQkFCMjUzNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3EgioVgJu3whq3N+YGwGvI8Ev OKx/+XcT91sDMfYIcPQNYCn1cLwo6iF/Nqun5+wov+52SFf7YAKZNUlp1LIP+roQ as3E5zBNhtorGsDpBeo3eBhBnfxHcohAznDFJi7g+grmrChMLBxUH6GgszZmqKcG 74UQwtPxqfYsDUXpUlWaJautLHKNRtM9K6UUs43/ChJydW2S1Z4KxCKWOrjoy78q v/95FXNuaDpjoiOIj/7jsZVedKD2iwIkQ7hmq7cPJtCMW3/uQMLGYb8E+V5rCjhX C1BGDMnRK8s6VzOsPS+6avIlyXe35Vwk9pcZq6NQqfyhTpW64QVy8X+r8IG/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUA53yekd3IqFn5NzgBssQbbqyU3cwHwYDVR0j BBgwFoAUo5abJjiZM9fSHzqNdXy5xWh3QOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDMzMzZmOC1lNTQ2LTQ2MmMtODQxMC1iNzczMmI2YzgwMTUvMC9BMzk2OUIyNjM4 OTkzM0Q3RDIxRjNBOEQ3NTdDQjlDNTY4Nzc0MEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2ODc3 NDBFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MzMzNmY4LWU1NDYtNDYyYy04 NDEwLWI3NzMyYjZjODAxNS8wLzMxMzAzMzJlMzEzODM5MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe9YTANBgkqhkiG 9w0BAQsFAAOCAQEAHwwBg9BCm3RIjtjHZGq2lisXqVZlaTec10MWlfejrPaQycKG PUvJvYvA7Duz9RzP++Bfrfwv81NxZVJqt9SSTH15dX+NMAWixiETaHlHEjQupfI9 JOK7Xyvq9mcv/qADnbbLPDhbzZ6GLSv50u4yVvdemjrYOIIbRSApe3ZgOpOZaR+t PibbDpNBQVMdLimQGAXej/RrNgMXQCPyU35Envcou+Qg31Ef/BEI8VxFlKakD97+ ImGuDS7CgOnyhJKZySrt7MYvwPjdoHRYA/itFvWCysV9Q93Ao+26ottRfHnjTcaW RNIYL5NygCkX3z+03GaP55fMNykWJWTwbk/NpA== -----END CERTIFICATE-----Generated at Fri Apr 17 16:25:14 2026 by rpki-client