$ rpki-client -vvf repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/3130332e39312e302e302f32322d3234203d3e203338343936.roa File: 3130332e39312e302e302f32322d3234203d3e203338343936.roa (raw, json) Hash identifier: Nc/rGbjilKhDUINae4y6wIX+B0v7DnEiiCYl62dNR3U= Subject key identifier: 17:FA:B1:A6:56:EF:50:E6:C1:FD:11:F8:E5:1B:54:99:EB:69:6F:D6 Certificate issuer: /CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Certificate serial: E07AEA2EE3B579873CDF97B6B0BBA88F0271F3 Authority key identifier: 12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/3130332e39312e302e302f32322d3234203d3e203338343936.roa Signing time: Tue 03 Feb 2026 06:02:34 +0000 ROA not before: Tue 03 Feb 2026 05:57:34 +0000 ROA not after: Tue 02 Feb 2027 06:02:34 +0000 asID: 38496 IP address blocks: 103.91.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 01:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: e0:7a:ea:2e:e3:b5:79:87:3c:df:97:b6:b0:bb:a8:8f:02:71:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Validity Not Before: Feb 3 05:57:34 2026 GMT Not After : Feb 2 06:02:34 2027 GMT Subject: CN=17FAB1A656EF50E6C1FD11F8E51B5499EB696FD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:34:c7:e5:e1:a9:40:50:4f:21:6f:ad:8f: 9e:82:8d:eb:50:66:cf:04:9d:cc:84:c3:c3:f3:e0: fd:0c:6d:98:b2:86:41:8b:af:45:39:5e:8d:64:bc: b4:f0:1f:aa:f6:6a:3b:11:ce:e2:82:47:a6:a7:11: 47:77:da:7d:59:67:04:2b:df:28:df:74:ad:ea:cb: 4d:17:dd:c9:da:f3:83:ad:56:fa:d4:b1:19:5b:40: d6:52:39:dd:69:35:22:ba:41:b9:f2:24:c8:55:33: 52:8c:16:0d:10:8a:ca:1a:82:ae:dd:b9:3e:f5:f1: 86:16:1d:5d:cb:f1:75:2d:1f:f9:28:80:3c:76:1c: 73:95:b7:48:a3:47:e4:05:1b:39:d0:52:10:eb:66: d1:e8:93:77:46:76:a6:aa:06:c1:e6:b5:69:ab:74: b2:75:81:fc:7e:3e:b8:db:4f:43:e4:05:87:ff:0e: dd:d5:b2:35:14:05:9b:f3:b8:82:35:88:f0:fc:c9: 19:12:60:a8:a9:10:d5:36:61:46:db:3c:2e:3f:b0: 6c:e8:b1:88:28:1e:8a:e4:96:37:f9:2a:80:d4:c0: 3c:91:af:5e:2b:8a:a4:a0:a9:cb:04:c4:96:3b:91: 34:e0:52:31:e9:14:46:17:84:3b:4b:eb:b4:f4:25: e8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FA:B1:A6:56:EF:50:E6:C1:FD:11:F8:E5:1B:54:99:EB:69:6F:D6 X509v3 Authority Key Identifier: keyid:12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/3130332e39312e302e302f32322d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.0.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:e5:19:f7:48:69:ff:0f:f6:be:9b:16:d1:1c:cf:78:ff:d9: ef:f3:1c:ce:da:be:c9:71:22:e0:7d:7a:38:38:5a:94:c5:fc: 22:a7:e5:16:be:aa:e6:40:ea:bb:df:31:c7:39:44:7a:ed:87: 41:b6:ed:5a:de:35:66:81:fd:59:86:17:51:09:c4:7b:33:f6: af:af:65:d2:e5:fa:13:6f:26:84:e1:b7:82:ac:3d:2f:cc:35: 74:8f:bd:94:7d:24:16:52:d9:a3:78:12:5b:cc:29:c6:15:4d: 60:ab:07:83:5e:52:95:eb:3a:d2:cb:97:75:fe:69:64:af:80: cc:94:21:a1:4a:04:a2:c6:5e:de:7c:fb:19:14:d3:4e:17:0a: 6b:11:13:8f:ba:65:4b:e5:02:31:b8:35:47:b4:86:d5:ef:40: 2e:bd:18:ba:20:d0:5e:18:03:f2:c9:6e:c4:34:36:a1:b7:39: ff:68:63:8f:0f:90:f2:2e:59:d0:79:07:be:b0:1c:de:97:04: 9b:5c:af:3a:97:1d:78:e4:c1:91:49:8e:1c:1f:10:ba:14:bf: 35:79:a2:36:4f:5b:a1:7b:74:27:99:c5:23:e8:ab:75:2f:7f: 26:97:05:04:92:43:bf:50:2f:8d:27:cf:77:2a:18:d3:2b:a1: 41:3a:09:3c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUAOB66i7jtXmHPN+XtrC7qI8CcfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERD M0NFNTdGOTAeFw0yNjAyMDMwNTU3MzRaFw0yNzAyMDIwNjAyMzRaMDMxMTAvBgNV BAMTKDE3RkFCMUE2NTZFRjUwRTZDMUZEMTFGOEU1MUI1NDk5RUI2OTZGRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9mTTH5eGpQFBPIW+tj56CjetQ Zs8EncyEw8Pz4P0MbZiyhkGLr0U5Xo1kvLTwH6r2ajsRzuKCR6anEUd32n1ZZwQr 3yjfdK3qy00X3cna84OtVvrUsRlbQNZSOd1pNSK6QbnyJMhVM1KMFg0Qisoagq7d uT718YYWHV3L8XUtH/kogDx2HHOVt0ijR+QFGznQUhDrZtHok3dGdqaqBsHmtWmr dLJ1gfx+PrjbT0PkBYf/Dt3VsjUUBZvzuII1iPD8yRkSYKipENU2YUbbPC4/sGzo sYgoHorkljf5KoDUwDyRr14riqSgqcsExJY7kTTgUjHpFEYXhDtL67T0JeixAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUF/qxplbvUObB/RH45RtUmetpb9YwHwYDVR0j BBgwFoAUEpqu/AjSBOm+VDnIB/+EDcPOV/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM2NTVmMS0zOGI2LTQ0MTUtOGZhZi0yYjViOTE1M2U1MmQvMC8xMjlBQUVGQzA4 RDIwNEU5QkU1NDM5QzgwN0ZGODQwREMzQ0U1N0Y5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERDM0NF NTdGOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTYzNjU1ZjEtMzhiNi00NDE1LThm YWYtMmI1YjkxNTNlNTJkLzAvMzEzMDMzMmUzOTMxMmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDMzMzgzNDM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnWwAwDQYJKoZIhvcNAQEL BQADggEBAHzlGfdIaf8P9r6bFtEcz3j/2e/zHM7avslxIuB9ejg4WpTF/CKn5Ra+ quZA6rvfMcc5RHrth0G27VreNWaB/VmGF1EJxHsz9q+vZdLl+hNvJoTht4KsPS/M NXSPvZR9JBZS2aN4ElvMKcYVTWCrB4NeUpXrOtLLl3X+aWSvgMyUIaFKBKLGXt58 +xkU004XCmsRE4+6ZUvlAjG4NUe0htXvQC69GLog0F4YA/LJbsQ0NqG3Of9oY48P kPIuWdB5B76wHN6XBJtcrzqXHXjkwZFJjhwfELoUvzV5ojZPW6F7dCeZxSPoq3Uv fyaXBQSSQ79QL40nz3cqGNMroUE6CTw= -----END CERTIFICATE-----Generated at Mon Mar 2 17:10:26 2026 by rpki-client