$ rpki-client -vvf repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa File: 3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa (raw, json) Hash identifier: Kqdd8Wmr9jwjNlcY6AEQYUpNe2FDPNKZ6aXCyRLddjw= Subject key identifier: 25:BE:6C:60:A2:25:2E:2E:D2:97:51:28:13:E4:20:AE:5B:47:2F:5C Certificate issuer: /CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Certificate serial: 68CBB4B75F37C1FB9FCD6454E001BF0EDF25D840 Authority key identifier: 9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa Signing time: Fri 10 Apr 2026 03:02:58 +0000 ROA not before: Fri 10 Apr 2026 02:57:58 +0000 ROA not after: Fri 09 Apr 2027 03:02:58 +0000 asID: 141669 IP address blocks: 103.162.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 06:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:cb:b4:b7:5f:37:c1:fb:9f:cd:64:54:e0:01:bf:0e:df:25:d8:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Validity Not Before: Apr 10 02:57:58 2026 GMT Not After : Apr 9 03:02:58 2027 GMT Subject: CN=25BE6C60A2252E2ED297512813E420AE5B472F5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7d:8d:4b:ee:82:b3:76:88:cb:bd:fa:8f:bd: 1e:c8:c4:ba:2a:cf:0e:c6:51:0b:f5:29:59:9b:cf: 68:94:7f:50:59:25:cf:73:8c:02:85:56:c3:33:30: d9:6c:a5:b9:5c:d1:b9:60:13:07:b4:70:f8:b3:8d: a1:a0:65:6f:71:02:ea:ed:74:af:04:4e:7a:cd:4c: bd:49:d2:42:3c:84:ec:87:97:e2:a6:01:ee:d6:4c: ee:83:5f:12:a8:8c:60:cb:71:60:b3:36:05:99:c4: 63:fb:cf:0e:30:1c:e4:ff:e9:04:9b:af:02:45:94: d2:b6:cf:4a:a1:d1:74:b8:29:26:1b:7d:3d:c0:c5: 74:5f:4f:80:7f:92:0f:63:8b:fa:f2:ce:38:c9:4b: 7d:eb:a6:3c:57:0d:6f:4c:1c:a2:5d:52:97:aa:82: 84:b6:cc:2d:48:07:86:b4:8e:c0:a0:5b:d6:6f:4d: 01:d0:e7:6b:d4:81:3d:ae:d4:ae:fb:62:73:9c:1e: 27:ed:46:cb:c6:ae:1f:9d:ad:c7:a4:8c:72:ac:26: 0f:91:31:42:59:0e:7c:3b:79:5c:09:84:ba:f7:0f: 0a:8c:93:47:ac:16:af:73:76:bd:73:67:1b:e1:03: 1f:d5:9e:ce:25:ff:44:5c:ac:c0:81:e4:0e:c0:b1: 0a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BE:6C:60:A2:25:2E:2E:D2:97:51:28:13:E4:20:AE:5B:47:2F:5C X509v3 Authority Key Identifier: keyid:9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.238.0/23 Signature Algorithm: sha256WithRSAEncryption 56:53:55:0b:d3:12:7c:fa:ca:97:22:6d:d5:52:22:d0:bc:a7: 49:01:d5:e9:ac:05:9e:d6:1b:f3:de:cf:03:a6:d1:35:6c:34: ec:18:9e:45:9f:ab:15:11:25:e9:e1:31:eb:91:ef:97:ea:f3: 3d:ac:96:bf:d2:77:e5:11:7e:5d:e6:b3:59:ef:80:25:a1:de: 0c:a9:2c:8c:b2:92:23:fb:12:6a:e4:b2:72:63:0d:45:83:62: e3:65:37:c0:0e:9d:2e:2f:24:66:56:a8:8b:ba:96:e9:0e:ab: 43:39:1a:57:ff:93:41:73:ec:84:7c:1b:6b:88:c7:c3:e4:28: 67:70:0f:43:c6:e7:ed:89:79:3c:7c:11:45:68:c2:89:aa:b4: 63:12:09:81:9b:a6:f9:34:a4:73:77:8a:36:3b:6b:38:54:b9: d3:9a:e7:fe:bd:15:92:d2:41:75:fc:2e:d0:aa:47:d4:43:c2: 4d:9d:ec:8d:fb:2b:bb:61:ac:97:a9:f0:00:cc:61:c0:ac:23: 3a:c8:9a:5d:b0:79:36:74:ac:cd:6e:73:bb:a0:15:4f:8b:ba: 00:5f:69:13:d6:1c:e7:3a:70:f0:27:08:60:6d:04:83:1d:ab: 55:09:5a:43:ad:c1:de:22:0a:aa:1b:4a:03:05:fe:47:21:d0: e7:45:96:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaMu0t183wfufzWRU4AG/Dt8l2EAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFG NEY1MTM1QjAeFw0yNjA0MTAwMjU3NThaFw0yNzA0MDkwMzAyNThaMDMxMTAvBgNV BAMTKDI1QkU2QzYwQTIyNTJFMkVEMjk3NTEyODEzRTQyMEFFNUI0NzJGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhfY1L7oKzdojLvfqPvR7IxLoq zw7GUQv1KVmbz2iUf1BZJc9zjAKFVsMzMNlspblc0blgEwe0cPizjaGgZW9xAurt dK8ETnrNTL1J0kI8hOyHl+KmAe7WTO6DXxKojGDLcWCzNgWZxGP7zw4wHOT/6QSb rwJFlNK2z0qh0XS4KSYbfT3AxXRfT4B/kg9ji/ryzjjJS33rpjxXDW9MHKJdUpeq goS2zC1IB4a0jsCgW9ZvTQHQ52vUgT2u1K77YnOcHiftRsvGrh+drcekjHKsJg+R MUJZDnw7eVwJhLr3DwqMk0esFq9zdr1zZxvhAx/Vns4l/0RcrMCB5A7AsQobAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJb5sYKIlLi7Sl1EoE+QgrltHL1wwHwYDVR0j BBgwFoAUndsREKLen6AxYgozDZTuuvT1E1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWY2OTg0Zi1jY2Y5LTRjNDAtYjExNC0zODAzNTZhOGNkODgvMC85RERCMTExMEEy REU5RkEwMzE2MjBBMzMwRDk0RUVCQUY0RjUxMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFGNEY1 MTM1Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhZjY5ODRmLWNjZjktNGM0MC1i MTE0LTM4MDM1NmE4Y2Q4OC8wLzMxMzAzMzJlMzEzNjMyMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnou4wDQYJ KoZIhvcNAQELBQADggEBAFZTVQvTEnz6ypcibdVSItC8p0kB1emsBZ7WG/PezwOm 0TVsNOwYnkWfqxURJenhMeuR75fq8z2slr/Sd+URfl3ms1nvgCWh3gypLIyykiP7 EmrksnJjDUWDYuNlN8AOnS4vJGZWqIu6lukOq0M5Glf/k0Fz7IR8G2uIx8PkKGdw D0PG5+2JeTx8EUVowomqtGMSCYGbpvk0pHN3ijY7azhUudOa5/69FZLSQXX8LtCq R9RDwk2d7I37K7thrJep8ADMYcCsIzrIml2weTZ0rM1uc7ugFU+LugBfaRPWHOc6 cPAnCGBtBIMdq1UJWkOtwd4iCqobSgMF/kch0OdFlqk= -----END CERTIFICATE-----Generated at Fri Apr 17 22:04:08 2026 by rpki-client