$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134372e302f32342d3234203d3e20313338383130.roa File: 3130332e3135362e3134372e302f32342d3234203d3e20313338383130.roa (raw, json) Hash identifier: OxuN/KCMHtMTDCyaI0bgtvQy256j5b/74mmzW3WQvFc= Subject key identifier: 2B:70:34:B0:C1:2F:BD:61:38:84:95:2D:BB:D0:A0:FF:55:B3:E1:B2 Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 291941B8547EA7DF0C8C31DF69D28C7F507AFBAD Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134372e302f32342d3234203d3e20313338383130.roa Signing time: Wed 25 Feb 2026 11:44:06 +0000 ROA not before: Wed 25 Feb 2026 11:39:06 +0000 ROA not after: Wed 24 Feb 2027 11:44:06 +0000 asID: 138810 IP address blocks: 103.156.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 19:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:19:41:b8:54:7e:a7:df:0c:8c:31:df:69:d2:8c:7f:50:7a:fb:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Feb 25 11:39:06 2026 GMT Not After : Feb 24 11:44:06 2027 GMT Subject: CN=2B7034B0C12FBD613884952DBBD0A0FF55B3E1B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a5:1d:b1:e9:2d:8a:6d:0c:95:1b:53:cd:ae: d1:a2:a2:5e:3a:7c:a9:1e:9e:a1:89:3f:c6:e4:1f: 76:a3:4c:d7:d4:50:fc:13:b8:1c:10:6d:c2:54:39: e2:4f:c5:24:b3:9a:57:89:45:cd:0d:19:af:2d:6e: 0a:65:9b:c6:87:64:b9:c5:2a:a8:da:06:70:b8:a8: 5a:40:fd:1e:27:37:b4:68:8a:61:7f:13:62:a8:50: 76:65:76:ff:a4:bc:32:cb:e4:c8:75:26:9e:bd:7d: 13:2c:9a:cd:a9:46:a2:c5:99:b8:9c:18:44:4c:5a: df:d7:16:bc:74:6b:ae:9a:ef:97:d4:27:39:54:3f: f7:88:56:92:96:bd:fc:cb:f6:f2:83:97:87:aa:1a: e5:4f:7e:d3:3e:ea:f6:18:fd:f2:23:af:d2:80:10: 3a:f9:15:ef:6f:50:fb:a7:98:86:55:bb:b7:6d:03: 01:97:28:16:88:2a:45:4b:39:5a:d2:54:ad:a7:d5: 5b:bf:c7:f9:2f:36:c8:cc:28:16:0f:65:83:1e:e2: 5b:88:ff:55:34:1b:fe:2d:b8:78:cc:96:61:5b:e3: 1d:c6:40:de:d4:53:99:da:fa:4a:73:a1:fd:0a:4b: 51:ed:12:f8:12:34:30:9d:c4:4d:77:e6:b2:c0:e2: 72:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:70:34:B0:C1:2F:BD:61:38:84:95:2D:BB:D0:A0:FF:55:B3:E1:B2 X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134372e302f32342d3234203d3e20313338383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.147.0/24 Signature Algorithm: sha256WithRSAEncryption 21:8f:89:8c:a1:19:eb:86:bd:b2:6d:9b:28:36:04:62:5a:8b: a1:ca:44:74:4d:07:ee:27:e2:36:27:7b:d4:70:2b:50:7b:c8: ad:48:27:4c:9b:28:71:5c:20:6f:0b:af:85:48:b4:c5:1d:36: dd:d9:34:a2:58:5d:71:c4:74:89:35:8c:40:1d:b8:5f:2f:e7: 9f:b2:ce:50:c5:e4:17:b5:11:c2:a1:6a:18:42:4d:d3:53:22: 30:f7:05:6b:1e:ea:5d:cb:7d:26:0a:5c:15:84:d7:1d:48:33: 57:13:47:40:61:21:5c:67:fa:c4:cb:0d:25:c1:5c:95:a6:88: 30:49:5b:5d:ac:6b:c0:46:f5:ae:58:bb:16:84:8e:2c:28:b1: 51:52:28:88:1b:48:21:f0:31:27:c5:ca:f9:95:05:5e:7e:40: 20:7d:5b:c7:d1:1d:5f:9f:10:ad:27:70:17:93:3a:9f:bc:fb: ee:04:7a:db:ea:21:05:fb:9a:49:03:1f:c4:de:13:32:e3:1e: 02:51:8d:b1:58:51:cb:dc:dc:13:34:91:f0:9a:77:9c:9c:d5: a1:0f:4d:11:dd:29:0c:a4:52:72:ff:ab:b1:9c:78:59:40:f1: cb:8d:91:a1:b6:20:91:a4:2e:33:9d:06:5a:bb:59:36:6d:08: 50:c9:0b:c2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKRlBuFR+p98MjDHfadKMf1B6+60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNjAyMjUxMTM5MDZaFw0yNzAyMjQxMTQ0MDZaMDMxMTAvBgNV BAMTKDJCNzAzNEIwQzEyRkJENjEzODg0OTUyREJCRDBBMEZGNTVCM0UxQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCpR2x6S2KbQyVG1PNrtGiol46 fKkenqGJP8bkH3ajTNfUUPwTuBwQbcJUOeJPxSSzmleJRc0NGa8tbgplm8aHZLnF KqjaBnC4qFpA/R4nN7RoimF/E2KoUHZldv+kvDLL5Mh1Jp69fRMsms2pRqLFmbic GERMWt/XFrx0a66a75fUJzlUP/eIVpKWvfzL9vKDl4eqGuVPftM+6vYY/fIjr9KA EDr5Fe9vUPunmIZVu7dtAwGXKBaIKkVLOVrSVK2n1Vu/x/kvNsjMKBYPZYMe4luI /1U0G/4tuHjMlmFb4x3GQN7UU5na+kpzof0KS1HtEvgSNDCdxE135rLA4nIfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUK3A0sMEvvWE4hJUtu9Cg/1Wz4bIwHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTlhMTViLWQ1YWUtNDVlYy04 MDEyLWE2Y2FhYjNkZDg4Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnJMwDQYJ KoZIhvcNAQELBQADggEBACGPiYyhGeuGvbJtmyg2BGJai6HKRHRNB+4n4jYne9Rw K1B7yK1IJ0ybKHFcIG8Lr4VItMUdNt3ZNKJYXXHEdIk1jEAduF8v55+yzlDF5Be1 EcKhahhCTdNTIjD3BWse6l3LfSYKXBWE1x1IM1cTR0BhIVxn+sTLDSXBXJWmiDBJ W12sa8BG9a5YuxaEjiwosVFSKIgbSCHwMSfFyvmVBV5+QCB9W8fRHV+fEK0ncBeT Op+8++4EetvqIQX7mkkDH8TeEzLjHgJRjbFYUcvc3BM0kfCad5yc1aEPTRHdKQyk UnL/q7GceFlA8cuNkaG2IJGkLjOdBlq7WTZtCFDJC8I= -----END CERTIFICATE-----Generated at Mon Mar 2 13:50:28 2026 by rpki-client