$ rpki-client -vvf repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa File: 3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa (raw, json) Hash identifier: 6JuDjem+v2RDSrt72WPISRVSPIrkM2UMhH/D+O2lhYE= Subject key identifier: 86:C0:5D:14:89:CF:A8:76:23:E5:C0:7E:70:1B:1E:D6:D3:51:85:FF Certificate issuer: /CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Certificate serial: 2EF950A012D0BE7612DC74A3BEFE5FAB85EE0BA4 Authority key identifier: 40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa Signing time: Fri 06 Feb 2026 05:04:18 +0000 ROA not before: Fri 06 Feb 2026 04:59:18 +0000 ROA not after: Fri 05 Feb 2027 05:04:18 +0000 asID: 138086 IP address blocks: 103.122.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f9:50:a0:12:d0:be:76:12:dc:74:a3:be:fe:5f:ab:85:ee:0b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Validity Not Before: Feb 6 04:59:18 2026 GMT Not After : Feb 5 05:04:18 2027 GMT Subject: CN=86C05D1489CFA87623E5C07E701B1ED6D35185FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:c2:ae:0d:ae:d6:b3:d3:b4:c3:b3:4e:1e: f9:99:6f:83:81:85:67:53:b3:b0:88:0d:8c:0f:84: 70:4f:bb:cd:de:d9:cc:e6:47:5d:bd:cf:10:e2:fd: d6:47:eb:8b:e4:ee:d8:eb:aa:02:de:d2:06:23:11: b9:39:e4:f9:f4:f9:59:52:4d:97:af:00:85:57:ba: 84:06:cd:d0:53:dc:44:48:40:b4:c0:7a:18:fa:ef: 0b:96:7b:c1:29:38:62:1f:6b:fe:eb:4c:15:30:76: ff:55:f7:95:28:08:63:c0:17:d3:0e:78:3a:12:33: dd:dc:98:ef:82:28:b6:ed:80:21:f9:49:04:37:17: 90:82:82:1c:90:0a:df:a4:65:55:5e:34:64:6f:d2: 54:4d:c1:49:49:1b:2c:b1:92:e4:30:37:dc:7a:ea: 2a:73:b0:23:f6:42:07:41:8f:68:18:7c:f2:0d:24: b1:f3:b5:6d:59:17:3f:7e:65:91:79:b3:31:3d:28: 2f:e0:50:23:1d:54:22:be:ff:4a:32:40:bf:25:f2: 63:a3:5e:c7:6d:25:82:75:89:f3:cf:c3:4f:55:95: 60:07:46:6f:8d:28:92:66:6e:37:bf:b8:1e:a0:ec: a7:8b:c3:c0:74:ba:d2:b5:15:0f:10:54:f0:d3:32: 19:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C0:5D:14:89:CF:A8:76:23:E5:C0:7E:70:1B:1E:D6:D3:51:85:FF X509v3 Authority Key Identifier: keyid:40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.121.0/24 Signature Algorithm: sha256WithRSAEncryption 56:6c:72:12:87:d5:69:67:20:93:7e:34:97:45:99:95:4b:be: 23:60:74:7b:b4:9d:fd:14:86:ce:a9:84:1c:72:02:f3:bb:ff: 01:e4:2d:c0:17:ff:7a:91:e8:6f:b9:3e:19:1e:e2:a4:f8:50: 23:aa:31:3c:cb:1f:f5:20:d8:3f:46:39:2d:a0:83:b0:8a:7b: c5:78:06:7d:8e:10:4b:89:3b:df:fe:70:d5:43:1d:32:ec:65: 6b:1d:cf:cc:5c:e2:89:43:04:88:a9:5b:68:f5:34:e6:46:c8: 31:f1:a7:43:8b:9b:ca:dd:91:39:43:90:c5:e4:f8:ab:64:c3: 38:55:e1:73:4c:75:41:14:72:df:60:61:3d:52:78:1f:2b:31: 86:72:d9:3c:9e:cb:1f:e5:91:74:67:85:87:df:be:42:a0:5b: 1e:88:36:10:45:83:e6:a6:59:64:b9:96:1f:5a:5e:ad:ce:c6: 25:37:5c:5d:1d:42:6f:1a:fe:af:dd:d0:ec:f2:3b:78:e6:f7: ab:70:05:9d:c8:d1:c1:5f:0c:22:35:44:46:f9:0e:0c:10:1a: c3:b0:38:5b:bf:ba:f5:6c:73:ba:fa:d9:07:df:af:be:83:07: a4:0f:5a:55:e9:c4:b0:b6:f9:ef:ab:f5:b9:60:4a:ab:3e:08: a5:7d:49:30 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULvlQoBLQvnYS3HSjvv5fq4XuC6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0 MTFDMjI3NjAeFw0yNjAyMDYwNDU5MThaFw0yNzAyMDUwNTA0MThaMDMxMTAvBgNV BAMTKDg2QzA1RDE0ODlDRkE4NzYyM0U1QzA3RTcwMUIxRUQ2RDM1MTg1RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHXcKuDa7Ws9O0w7NOHvmZb4OB hWdTs7CIDYwPhHBPu83e2czmR129zxDi/dZH64vk7tjrqgLe0gYjEbk55Pn0+VlS TZevAIVXuoQGzdBT3ERIQLTAehj67wuWe8EpOGIfa/7rTBUwdv9V95UoCGPAF9MO eDoSM93cmO+CKLbtgCH5SQQ3F5CCghyQCt+kZVVeNGRv0lRNwUlJGyyxkuQwN9x6 6ipzsCP2QgdBj2gYfPINJLHztW1ZFz9+ZZF5szE9KC/gUCMdVCK+/0oyQL8l8mOj XsdtJYJ1ifPPw09VlWAHRm+NKJJmbje/uB6g7KeLw8B0utK1FQ8QVPDTMhlTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhsBdFInPqHYj5cB+cBse1tNRhf8wHwYDVR0j BBgwFoAUQIWFwdYqT2GMBCTpvtw7kUEcInYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2UyNmM4My01ZWQyLTRjOGItOGEwMy02Y2IwMGQxZWQzMzgvMC80MDg1ODVDMUQ2 MkE0RjYxOEMwNDI0RTlCRURDM0I5MTQxMUMyMjc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0MTFD MjI3Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3ZTI2YzgzLTVlZDItNGM4Yi04 YTAzLTZjYjAwZDFlZDMzOC8wLzMxMzAzMzJlMzEzMjMyMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnenkwDQYJ KoZIhvcNAQELBQADggEBAFZschKH1WlnIJN+NJdFmZVLviNgdHu0nf0Uhs6phBxy AvO7/wHkLcAX/3qR6G+5Phke4qT4UCOqMTzLH/Ug2D9GOS2gg7CKe8V4Bn2OEEuJ O9/+cNVDHTLsZWsdz8xc4olDBIipW2j1NOZGyDHxp0OLm8rdkTlDkMXk+KtkwzhV 4XNMdUEUct9gYT1SeB8rMYZy2Tyeyx/lkXRnhYffvkKgWx6INhBFg+amWWS5lh9a Xq3OxiU3XF0dQm8a/q/d0OzyO3jm96twBZ3I0cFfDCI1REb5DgwQGsOwOFu/uvVs c7r62Qffr76DB6QPWlXpxLC2+e+r9blgSqs+CKV9STA= -----END CERTIFICATE-----Generated at Mon Mar 2 10:24:17 2026 by rpki-client