$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32342d3234203d3e20313431303933.roa File: 3130332e3135362e3134362e302f32342d3234203d3e20313431303933.roa (raw, json) Hash identifier: Cy07xYSyUWFjvR0x0kDQ3HZDqKe9RyYBEeT67hsabqg= Subject key identifier: 67:AA:3B:00:B6:90:18:8E:E7:3F:C4:2C:8A:4E:FA:67:E3:9C:45:58 Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 7003CEB615401CA2B8639A356664456C5AFF6E82 Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32342d3234203d3e20313431303933.roa Signing time: Fri 27 Feb 2026 10:22:35 +0000 ROA not before: Fri 27 Feb 2026 10:17:35 +0000 ROA not after: Fri 26 Feb 2027 10:22:35 +0000 asID: 141093 IP address blocks: 103.156.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 19:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:03:ce:b6:15:40:1c:a2:b8:63:9a:35:66:64:45:6c:5a:ff:6e:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Feb 27 10:17:35 2026 GMT Not After : Feb 26 10:22:35 2027 GMT Subject: CN=67AA3B00B690188EE73FC42C8A4EFA67E39C4558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:db:f8:93:25:39:b8:55:d8:df:25:c6:cd:73: 80:57:73:10:6a:d2:ae:88:eb:71:d1:d4:60:aa:4e: 34:c9:89:e3:96:69:7d:62:0b:82:0e:14:98:65:17: 39:87:3b:bf:27:e9:84:cf:db:72:84:71:d0:d7:20: b9:18:6d:c7:ab:c0:a9:e9:ff:61:e9:d0:46:97:fc: 90:8e:48:8c:07:a4:d2:f6:89:2d:90:35:ce:d3:04: d1:ee:2d:6c:cd:7d:2c:79:aa:a2:5c:0f:c3:cd:3b: 48:9e:03:34:b0:1b:06:65:a1:b3:b8:2a:68:8e:d5: b5:bd:6e:ca:31:a1:db:12:db:89:b7:df:dc:82:8d: d8:bb:67:71:15:a7:72:77:3a:44:9f:00:a2:d4:5a: 5c:e0:99:3c:19:7a:c7:3e:70:e2:e0:65:6a:fe:e6: f0:05:ef:b4:bd:2c:ad:df:08:a3:d2:f7:bd:50:56: af:11:04:8f:01:5e:40:cc:0f:95:5e:04:0b:b0:10: e8:5f:2c:e2:3e:34:e5:59:dc:aa:62:8a:71:22:c8: ef:d0:c9:82:1d:32:3c:b0:40:b0:0c:de:9b:0a:e9: 46:ed:9b:b5:52:34:11:bf:57:61:27:bb:a3:77:1b: fc:c2:5f:7b:92:4d:1d:e7:88:d0:93:8c:63:5f:0b: 1f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AA:3B:00:B6:90:18:8E:E7:3F:C4:2C:8A:4E:FA:67:E3:9C:45:58 X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32342d3234203d3e20313431303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.146.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:7d:35:4a:db:5a:4b:3c:f1:e9:2c:9f:8f:1b:aa:c3:15:ed: 61:15:21:a8:b9:59:4d:7e:f9:af:1b:9b:a0:3b:ba:f4:e3:10: 28:b1:f1:7c:82:25:56:fe:21:0a:9d:0a:39:a2:04:36:18:e8: ab:94:54:50:83:84:e2:90:19:7d:5f:0c:d1:15:42:64:65:3c: a8:46:34:f4:56:30:61:38:5e:d4:6e:aa:28:80:99:e1:38:24: 55:fd:a9:a2:f5:70:a7:0c:78:68:03:29:4e:3c:26:fa:08:c5: d0:7c:5c:a6:8a:d7:1d:50:e7:de:d0:f2:8f:7c:ab:e7:13:44: db:e4:2c:eb:32:b8:58:a0:9c:91:9b:d7:3b:69:76:a9:4a:9b: b7:83:22:e3:fd:85:41:9b:20:d8:16:38:ed:fd:02:49:6c:c8: 6a:3a:4d:b0:6a:5b:14:5f:87:ef:ec:f2:d1:cd:fe:65:d4:fa: a2:48:d6:ef:8e:52:67:81:ac:05:ba:00:e7:e3:a8:58:04:4c: be:e9:28:e8:3b:5d:1d:f4:3d:c3:e5:e7:61:a3:50:fe:14:b4: ab:09:8c:0c:4a:0a:27:e2:6a:0f:0c:6a:07:58:af:b6:6e:bf: 50:18:87:c1:16:5e:03:c4:96:0d:f0:d1:21:c0:e5:07:b1:7a: fd:a4:71:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcAPOthVAHKK4Y5o1ZmRFbFr/boIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNjAyMjcxMDE3MzVaFw0yNzAyMjYxMDIyMzVaMDMxMTAvBgNV BAMTKDY3QUEzQjAwQjY5MDE4OEVFNzNGQzQyQzhBNEVGQTY3RTM5QzQ1NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi2/iTJTm4VdjfJcbNc4BXcxBq 0q6I63HR1GCqTjTJieOWaX1iC4IOFJhlFzmHO78n6YTP23KEcdDXILkYbcerwKnp /2Hp0EaX/JCOSIwHpNL2iS2QNc7TBNHuLWzNfSx5qqJcD8PNO0ieAzSwGwZlobO4 KmiO1bW9bsoxodsS24m339yCjdi7Z3EVp3J3OkSfAKLUWlzgmTwZesc+cOLgZWr+ 5vAF77S9LK3fCKPS971QVq8RBI8BXkDMD5VeBAuwEOhfLOI+NOVZ3KpiinEiyO/Q yYIdMjywQLAM3psK6Ubtm7VSNBG/V2Enu6N3G/zCX3uSTR3niNCTjGNfCx/lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZ6o7ALaQGI7nP8Qsik76Z+OcRVgwHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTlhMTViLWQ1YWUtNDVlYy04 MDEyLWE2Y2FhYjNkZDg4Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnJIwDQYJ KoZIhvcNAQELBQADggEBAH19NUrbWks88eksn48bqsMV7WEVIai5WU1++a8bm6A7 uvTjECix8XyCJVb+IQqdCjmiBDYY6KuUVFCDhOKQGX1fDNEVQmRlPKhGNPRWMGE4 XtRuqiiAmeE4JFX9qaL1cKcMeGgDKU48JvoIxdB8XKaK1x1Q597Q8o98q+cTRNvk LOsyuFignJGb1ztpdqlKm7eDIuP9hUGbINgWOO39AklsyGo6TbBqWxRfh+/s8tHN /mXU+qJI1u+OUmeBrAW6AOfjqFgETL7pKOg7XR30PcPl52GjUP4UtKsJjAxKCifi ag8MagdYr7Zuv1AYh8EWXgPElg3w0SHA5Qexev2kcck= -----END CERTIFICATE-----Generated at Mon Mar 2 14:05:40 2026 by rpki-client