$ rpki-client -vvf repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa File: 3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa (raw, json) Hash identifier: Dv3CC6LC1x9Axaif3Bi8p8l4SFnXvikd0MYujpDfdu8= Subject key identifier: 91:BD:C4:01:A6:C6:86:43:FE:51:23:31:EA:0A:5B:D0:3C:07:DE:73 Certificate issuer: /CN=4F679A207D2588B709C82CDAB000736182F881E1 Certificate serial: 3DC46BCDA457FF08D166B9875B7D5C33ACFB8B1E Authority key identifier: 4F:67:9A:20:7D:25:88:B7:09:C8:2C:DA:B0:00:73:61:82:F8:81:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa Signing time: Thu 02 Apr 2026 02:59:29 +0000 ROA not before: Thu 02 Apr 2026 02:54:29 +0000 ROA not after: Thu 01 Apr 2027 02:59:29 +0000 asID: 149971 IP address blocks: 103.194.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/4F679A207D2588B709C82CDAB000736182F881E1.crl rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/4F679A207D2588B709C82CDAB000736182F881E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 19:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c4:6b:cd:a4:57:ff:08:d1:66:b9:87:5b:7d:5c:33:ac:fb:8b:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F679A207D2588B709C82CDAB000736182F881E1 Validity Not Before: Apr 2 02:54:29 2026 GMT Not After : Apr 1 02:59:29 2027 GMT Subject: CN=91BDC401A6C68643FE512331EA0A5BD03C07DE73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3a:a3:4e:36:62:f0:9d:c4:0b:53:08:33:c1: e9:73:8f:4d:da:16:58:ce:87:f2:77:e2:f5:c8:34: 62:af:e9:63:cf:52:f3:00:4c:c1:7f:7a:c0:16:0b: 21:c2:e0:72:d5:18:14:0e:5a:50:6b:83:cf:8d:d1: b7:02:2e:96:a0:be:1a:48:cd:b5:80:bb:4c:db:71: b1:ef:6c:1e:fc:ca:dc:a5:5e:6a:a8:d1:72:41:38: c7:49:da:8a:75:96:41:0d:94:1b:e0:18:8b:96:e3: 3d:c8:19:10:eb:7d:9e:e9:95:ad:4c:61:dc:f0:d1: 5e:7e:e0:10:8d:0d:ff:7a:85:3f:33:c1:ce:95:d0: 81:84:dd:2f:c6:23:e4:1c:69:6b:03:89:3f:0b:4a: a2:e4:cf:ee:24:ae:38:82:1b:64:ca:a0:30:cb:b6: cd:4b:0e:a3:4e:14:a3:40:4e:65:7b:e0:73:5b:db: 60:58:68:c9:5a:9f:71:27:d8:40:bc:34:17:00:d8: 2e:26:1b:c1:02:35:64:d8:89:60:3b:d5:52:54:c7: 52:fb:cf:41:ca:ec:3e:da:ad:59:80:70:c1:8c:4c: d5:d4:bc:28:da:aa:ef:b7:ac:f2:92:53:eb:5e:ed: 4c:05:dd:5b:b5:79:89:59:14:6a:df:9c:74:64:a3: 3d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:BD:C4:01:A6:C6:86:43:FE:51:23:31:EA:0A:5B:D0:3C:07:DE:73 X509v3 Authority Key Identifier: keyid:4F:67:9A:20:7D:25:88:B7:09:C8:2C:DA:B0:00:73:61:82:F8:81:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/4F679A207D2588B709C82CDAB000736182F881E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.194.46.0/23 Signature Algorithm: sha256WithRSAEncryption 31:7a:d4:13:1d:32:14:17:31:20:b1:86:1c:28:06:d5:0d:97: a8:8f:2d:ac:8f:d1:a3:9f:10:96:b4:4a:e5:3f:b8:6f:8b:4a: d0:1f:bd:3c:b6:81:eb:2a:67:5f:5d:c7:83:7a:bb:37:d6:54: c9:8b:48:36:9e:c8:07:25:74:14:e6:d3:e3:93:00:30:35:49: ef:b3:9a:e6:97:b5:d2:78:61:d3:b6:19:1f:cb:01:40:20:6a: e1:3b:6a:6c:d5:7d:2c:3c:80:3c:91:09:46:ac:a1:b6:80:bb: 87:9a:ac:e4:31:c8:bc:6e:4c:e2:0e:80:2d:28:92:3d:f8:ad: 42:af:2f:80:1e:3b:05:ab:e2:80:06:ed:63:8f:cb:c5:59:a6: 59:23:a1:a3:01:90:0a:59:de:cd:dc:d6:a6:45:29:b8:14:88: 52:94:a2:e3:e8:e7:8f:46:9c:a8:a0:d8:35:d8:a0:3f:b1:5e: 1f:3d:20:74:dc:6d:f8:f2:23:d9:96:25:40:84:40:55:f5:67: 8a:4c:42:8f:02:52:d4:a2:c3:8d:06:ed:38:54:a7:db:38:9f: 12:e6:13:05:63:bc:a7:7a:7e:f5:4a:0f:03:bf:6a:40:00:64: 6f:83:ca:7e:20:5f:bf:1f:1d:28:55:c0:20:98:32:68:69:3c: f9:33:b7:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPcRrzaRX/wjRZrmHW31cM6z7ix4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEY2NzlBMjA3RDI1ODhCNzA5QzgyQ0RBQjAwMDczNjE4 MkY4ODFFMTAeFw0yNjA0MDIwMjU0MjlaFw0yNzA0MDEwMjU5MjlaMDMxMTAvBgNV BAMTKDkxQkRDNDAxQTZDNjg2NDNGRTUxMjMzMUVBMEE1QkQwM0MwN0RFNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaOqNONmLwncQLUwgzwelzj03a FljOh/J34vXINGKv6WPPUvMATMF/esAWCyHC4HLVGBQOWlBrg8+N0bcCLpagvhpI zbWAu0zbcbHvbB78ytylXmqo0XJBOMdJ2op1lkENlBvgGIuW4z3IGRDrfZ7pla1M Ydzw0V5+4BCNDf96hT8zwc6V0IGE3S/GI+QcaWsDiT8LSqLkz+4krjiCG2TKoDDL ts1LDqNOFKNATmV74HNb22BYaMlan3En2EC8NBcA2C4mG8ECNWTYiWA71VJUx1L7 z0HK7D7arVmAcMGMTNXUvCjaqu+3rPKSU+te7UwF3Vu1eYlZFGrfnHRkoz33AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkb3EAabGhkP+USMx6gpb0DwH3nMwHwYDVR0j BBgwFoAUT2eaIH0liLcJyCzasABzYYL4geEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5M2E5My01ODg5LTRlMDItOWU5NS03NjljYjg5ZTAwMzUvMC80RjY3OUEyMDdE MjU4OEI3MDlDODJDREFCMDAwNzM2MTgyRjg4MUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEY2NzlBMjA3RDI1ODhCNzA5QzgyQ0RBQjAwMDczNjE4MkY4 ODFFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTkzYTkzLTU4ODktNGUwMi05 ZTk1LTc2OWNiODllMDAzNS8wLzMxMzAzMzJlMzEzOTM0MmUzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ8IuMA0GCSqG SIb3DQEBCwUAA4IBAQAxetQTHTIUFzEgsYYcKAbVDZeojy2sj9GjnxCWtErlP7hv i0rQH708toHrKmdfXceDers31lTJi0g2nsgHJXQU5tPjkwAwNUnvs5rml7XSeGHT thkfywFAIGrhO2ps1X0sPIA8kQlGrKG2gLuHmqzkMci8bkziDoAtKJI9+K1Cry+A HjsFq+KABu1jj8vFWaZZI6GjAZAKWd7N3NamRSm4FIhSlKLj6OePRpyooNg12KA/ sV4fPSB03G348iPZliVAhEBV9WeKTEKPAlLUosONBu04VKfbOJ8S5hMFY7ynen71 Sg8Dv2pAAGRvg8p+IF+/Hx0oVcAgmDJoaTz5M7fB -----END CERTIFICATE-----Generated at Fri Apr 17 19:31:24 2026 by rpki-client