$ rpki-client -vvf repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa File: 3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa (raw, json) Hash identifier: W2y0MpKz7y/poFRuN+y1X4ylkUXCMQ8l5c1Zjw4i1Pc= Subject key identifier: 20:CE:23:72:74:D8:52:62:C7:D5:CD:C1:BC:BF:2D:DC:2B:13:D0:4E Certificate issuer: /CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Certificate serial: 76216505F89C26D3AFB13A6781BF10DEA37A51B1 Authority key identifier: DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa Signing time: Tue 31 Mar 2026 10:00:01 +0000 ROA not before: Tue 31 Mar 2026 09:55:01 +0000 ROA not after: Tue 30 Mar 2027 10:00:01 +0000 asID: 142374 IP address blocks: 103.171.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 12:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:21:65:05:f8:9c:26:d3:af:b1:3a:67:81:bf:10:de:a3:7a:51:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Validity Not Before: Mar 31 09:55:01 2026 GMT Not After : Mar 30 10:00:01 2027 GMT Subject: CN=20CE237274D85262C7D5CDC1BCBF2DDC2B13D04E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:76:0e:2b:cf:bb:85:7c:66:01:bc:6a:0f:91: 32:d3:74:f2:4c:00:aa:70:61:dc:94:38:8c:87:71: 22:a6:8d:31:69:0a:c6:92:38:0a:ee:39:82:96:5a: e6:4c:f9:b8:e4:d2:db:51:db:47:29:bb:98:d5:84: 34:0b:92:95:05:9f:92:81:11:44:73:e6:1b:b2:81: 52:7e:8e:00:48:ac:47:49:e7:b4:54:1e:4f:4a:a8: 05:02:04:c5:84:41:6b:92:bb:51:41:ed:24:00:d0: 15:a4:d3:7a:0f:82:34:0f:65:26:e9:87:20:fa:f7: d6:df:a0:d7:71:9e:06:bc:5c:15:e1:fd:a3:9c:a6: 41:44:a9:c0:9f:e7:51:9d:0a:89:29:35:87:9c:2c: 7e:8e:65:d2:2f:8a:e5:da:c6:63:d6:a3:81:63:1e: 62:44:b6:62:0f:39:75:11:b8:71:dc:01:5b:de:e0: cb:6e:42:90:30:ff:8d:6b:2f:9a:36:2a:7e:52:b7: 59:59:10:2c:d5:0e:7b:88:03:06:88:9b:3f:15:b1: 39:7e:eb:21:bf:37:8e:02:06:45:1c:b4:62:09:a6: d7:92:c1:fc:2e:80:3a:8c:bf:71:a8:fe:38:b7:37: 3c:f1:2f:39:d2:63:39:3d:91:c8:45:9d:2a:fe:e7: d6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CE:23:72:74:D8:52:62:C7:D5:CD:C1:BC:BF:2D:DC:2B:13:D0:4E X509v3 Authority Key Identifier: keyid:DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.185.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:29:40:de:ca:d0:4f:28:d2:b0:65:7e:46:87:4d:a6:db:1d: bb:80:6d:dc:de:f9:7a:4f:91:04:14:66:11:c4:b0:05:d3:59: 37:fa:ae:26:48:c7:66:84:93:8d:48:ad:81:5e:db:67:15:40: 7f:5b:2e:e7:48:40:e5:b5:5a:50:11:8a:8a:ef:df:a5:cb:06: 85:06:06:d0:3a:78:94:b7:bc:b7:95:de:a3:f4:8e:56:83:cb: 3c:60:19:8f:34:2e:f5:12:0c:95:c0:73:59:9d:c5:c1:ad:0f: 36:ab:42:e1:34:e6:03:84:eb:56:9e:8a:c6:75:de:15:6b:3d: 14:7d:76:18:8c:1d:f1:46:ad:b6:fe:ef:82:9f:8e:db:ec:db: 63:48:c5:60:54:d0:f9:f5:1d:ab:2f:b5:ec:a4:d0:21:8c:5c: bb:5c:46:0a:e7:3f:ba:6e:6a:fd:99:ce:f2:e5:73:13:96:e7: 62:98:5d:25:82:0f:67:92:af:e5:b5:bb:4a:a6:64:b1:1b:af: 95:11:94:52:a9:b4:1c:58:eb:14:e7:26:92:4e:57:a5:f3:78: e2:53:8a:da:38:84:cd:00:60:2b:97:2c:fd:70:c7:08:5d:d4: 2d:c7:a9:27:02:40:88:77:95:49:e3:f2:b0:16:33:ec:09:da: 2a:14:de:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdiFlBficJtOvsTpngb8Q3qN6UbEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0ND MUY1MzA2QzAeFw0yNjAzMzEwOTU1MDFaFw0yNzAzMzAxMDAwMDFaMDMxMTAvBgNV BAMTKDIwQ0UyMzcyNzREODUyNjJDN0Q1Q0RDMUJDQkYyRERDMkIxM0QwNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKdg4rz7uFfGYBvGoPkTLTdPJM AKpwYdyUOIyHcSKmjTFpCsaSOAruOYKWWuZM+bjk0ttR20cpu5jVhDQLkpUFn5KB EURz5huygVJ+jgBIrEdJ57RUHk9KqAUCBMWEQWuSu1FB7SQA0BWk03oPgjQPZSbp hyD699bfoNdxnga8XBXh/aOcpkFEqcCf51GdCokpNYecLH6OZdIviuXaxmPWo4Fj HmJEtmIPOXURuHHcAVve4MtuQpAw/41rL5o2Kn5St1lZECzVDnuIAwaImz8VsTl+ 6yG/N44CBkUctGIJpteSwfwugDqMv3Go/ji3NzzxLznSYzk9kchFnSr+59YPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIM4jcnTYUmLH1c3BvL8t3CsT0E4wHwYDVR0j BBgwFoAU364RQY8hdaV9Adj4CmFJfMH1MGwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODU1ZjQ1MC1lYjdmLTRhMjYtYTZjNC1mOTgyN2VlMGE1YjgvMC9ERkFFMTE0MThG MjE3NUE1N0QwMUQ4RjgwQTYxNDk3Q0MxRjUzMDZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0NDMUY1 MzA2Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4NTVmNDUwLWViN2YtNGEyNi1h NmM0LWY5ODI3ZWUwYTViOC8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7kwDQYJ KoZIhvcNAQELBQADggEBAGwpQN7K0E8o0rBlfkaHTabbHbuAbdze+XpPkQQUZhHE sAXTWTf6riZIx2aEk41IrYFe22cVQH9bLudIQOW1WlARiorv36XLBoUGBtA6eJS3 vLeV3qP0jlaDyzxgGY80LvUSDJXAc1mdxcGtDzarQuE05gOE61aeisZ13hVrPRR9 dhiMHfFGrbb+74Kfjtvs22NIxWBU0Pn1Hasvteyk0CGMXLtcRgrnP7puav2ZzvLl cxOW52KYXSWCD2eSr+W1u0qmZLEbr5URlFKptBxY6xTnJpJOV6XzeOJTito4hM0A YCuXLP1wxwhd1C3HqScCQIh3lUnj8rAWM+wJ2ioU3u8= -----END CERTIFICATE-----Generated at Fri Apr 17 20:45:11 2026 by rpki-client