$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa File: 3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa (raw, json) Hash identifier: /SzWYqZUMsg47vwYbafB1G0qt1wr0vCK02LHAWPClVk= Subject key identifier: 40:38:F6:DB:6C:B2:BA:25:93:94:53:FF:60:33:2A:22:6D:52:A5:B9 Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 1C4B5A28105B1510BE77E8411F8C23F4176D0BBD Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa Signing time: Thu 12 Feb 2026 12:00:00 +0000 ROA not before: Thu 12 Feb 2026 11:55:00 +0000 ROA not after: Thu 11 Feb 2027 12:00:00 +0000 asID: 149744 IP address blocks: 103.187.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 17:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4b:5a:28:10:5b:15:10:be:77:e8:41:1f:8c:23:f4:17:6d:0b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Feb 12 11:55:00 2026 GMT Not After : Feb 11 12:00:00 2027 GMT Subject: CN=4038F6DB6CB2BA25939453FF60332A226D52A5B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:b8:6a:87:6b:32:f4:b6:2c:bb:c7:6a:9e: 23:55:67:ba:45:88:99:29:8a:f1:f6:9b:f3:bb:e9: e8:09:43:a9:6a:16:f2:10:bc:49:53:07:c3:5b:4b: 59:07:21:c4:07:28:5d:60:ee:63:78:0d:df:f3:40: a9:d2:7f:95:0d:bf:ad:33:30:9a:30:5d:cc:f0:cc: 22:9b:6f:6f:14:82:93:dc:17:05:9b:a1:2e:83:4b: f6:0b:e7:d1:3d:71:6d:e5:52:09:42:9d:3a:e7:e9: 48:18:93:62:46:16:65:0c:a3:25:62:55:80:90:7e: 15:44:39:f7:18:c3:c4:2f:f4:c5:c3:17:56:b3:d0: bb:87:9c:4a:2a:82:27:d2:e0:0c:86:41:9a:c2:62: b6:fc:a7:30:55:a2:f7:e7:b1:b0:66:71:a9:44:43: 38:be:d0:bf:82:02:40:d0:9f:3e:6d:72:0f:f1:a5: 9e:47:91:57:ab:c4:5a:ab:e4:7c:b2:ad:54:ab:e4: 6f:0c:f1:dd:b9:61:b9:ee:ea:e3:ee:29:c2:36:a5: 46:72:72:5b:7e:8e:b8:ce:48:e0:83:ac:19:60:9d: 4f:34:3f:a0:1e:7e:a2:c1:2e:0f:12:c7:4a:30:7e: ce:63:0c:43:7e:74:72:59:05:e4:0a:63:aa:39:3d: 25:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:38:F6:DB:6C:B2:BA:25:93:94:53:FF:60:33:2A:22:6D:52:A5:B9 X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.163.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d5:6a:c8:93:08:fb:31:28:94:b3:f4:98:cf:e6:80:af:08: ce:e1:58:d0:e2:ca:d0:7a:01:ea:96:ac:c3:6a:64:bf:a6:6a: 46:ac:65:15:1c:ef:6b:13:67:67:cd:c8:b4:6e:aa:c6:a6:5f: 68:20:a0:13:a7:a4:6f:8a:d3:a4:c7:f2:9f:2d:73:0f:2b:39: 4d:9d:c4:f5:56:91:6e:42:38:12:80:bc:a4:89:cd:de:03:9d: 0a:13:75:e2:72:50:98:ca:c3:af:4f:c4:7a:32:6e:a2:f3:79: 38:76:a3:56:67:ff:1c:fa:58:c5:7a:3f:91:a6:ca:38:23:87: ef:b0:88:2c:4e:a2:10:66:c3:63:5e:0b:d1:ac:cc:3d:f8:b3: 9c:37:58:d6:a8:16:69:86:05:d4:58:af:c7:ed:ff:87:a7:dd: 3c:03:c2:24:3d:a7:ac:79:26:1e:12:49:34:da:20:6e:79:32: 33:50:8f:ef:b9:91:3b:8b:10:bb:87:54:43:5e:01:d1:03:ad: 8a:dd:da:43:97:da:65:1b:a3:84:cc:fb:8e:eb:eb:83:09:5c: a7:0c:7e:23:a6:f9:6e:a0:2e:c9:fa:5a:7b:85:f7:ad:8b:99: a7:82:7e:5d:9c:c7:e6:11:cc:3c:9c:63:48:ac:a0:9c:36:e8: bf:44:d4:9a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHEtaKBBbFRC+d+hBH4wj9BdtC70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNjAyMTIxMTU1MDBaFw0yNzAyMTExMjAwMDBaMDMxMTAvBgNV BAMTKDQwMzhGNkRCNkNCMkJBMjU5Mzk0NTNGRjYwMzMyQTIyNkQ1MkE1QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Q7hqh2sy9LYsu8dqniNVZ7pF iJkpivH2m/O76egJQ6lqFvIQvElTB8NbS1kHIcQHKF1g7mN4Dd/zQKnSf5UNv60z MJowXczwzCKbb28UgpPcFwWboS6DS/YL59E9cW3lUglCnTrn6UgYk2JGFmUMoyVi VYCQfhVEOfcYw8Qv9MXDF1az0LuHnEoqgifS4AyGQZrCYrb8pzBVovfnsbBmcalE Qzi+0L+CAkDQnz5tcg/xpZ5HkVerxFqr5HyyrVSr5G8M8d25Ybnu6uPuKcI2pUZy clt+jrjOSOCDrBlgnU80P6AefqLBLg8Sx0owfs5jDEN+dHJZBeQKY6o5PSXrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQDj222yyuiWTlFP/YDMqIm1SpbkwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNWM3ZTFkLTgyZTgtNDEwMC1i NDM1LTk5NTQyNzJmYjdhOC8wLzMxMzAzMzJlMzEzODM3MmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnu6MwDQYJ KoZIhvcNAQELBQADggEBABDVasiTCPsxKJSz9JjP5oCvCM7hWNDiytB6AeqWrMNq ZL+makasZRUc72sTZ2fNyLRuqsamX2ggoBOnpG+K06TH8p8tcw8rOU2dxPVWkW5C OBKAvKSJzd4DnQoTdeJyUJjKw69PxHoybqLzeTh2o1Zn/xz6WMV6P5Gmyjgjh++w iCxOohBmw2NeC9GszD34s5w3WNaoFmmGBdRYr8ft/4en3TwDwiQ9p6x5Jh4SSTTa IG55MjNQj++5kTuLELuHVENeAdEDrYrd2kOX2mUbo4TM+47r64MJXKcMfiOm+W6g Lsn6WnuF962LmaeCfl2cx+YRzDycY0isoJw26L9E1Jo= -----END CERTIFICATE-----Generated at Mon Mar 2 18:36:31 2026 by rpki-client