$ rpki-client -vvf repo-rpki.idnic.net/repo/c1bc3f29-6f9d-47d3-9e77-c289e5fee78e/0/3130332e3137302e3131352e302f32342d3234203d3e20313432333639.roa File: 3130332e3137302e3131352e302f32342d3234203d3e20313432333639.roa (raw, json) Hash identifier: a+wMArmXBN5Q5BwSH4uSiBpq8In9MmU3oywpm7TpyrM= Subject key identifier: 91:84:3F:A3:5E:E9:F4:C0:A4:E5:B4:FA:62:CB:4F:81:ED:FF:EF:ED Certificate issuer: /CN=C45A558750D6CF5BE02532DDE80326AEF5012912 Certificate serial: 3A1663623E90B7B952A8997F633E85B9DE855DA2 Authority key identifier: C4:5A:55:87:50:D6:CF:5B:E0:25:32:DD:E8:03:26:AE:F5:01:29:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C45A558750D6CF5BE02532DDE80326AEF5012912.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c1bc3f29-6f9d-47d3-9e77-c289e5fee78e/0/3130332e3137302e3131352e302f32342d3234203d3e20313432333639.roa Signing time: Mon 06 Apr 2026 16:00:00 +0000 ROA not before: Mon 06 Apr 2026 15:55:00 +0000 ROA not after: Mon 05 Apr 2027 16:00:00 +0000 asID: 142369 IP address blocks: 103.170.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c1bc3f29-6f9d-47d3-9e77-c289e5fee78e/0/C45A558750D6CF5BE02532DDE80326AEF5012912.crl rsync://repo-rpki.idnic.net/repo/c1bc3f29-6f9d-47d3-9e77-c289e5fee78e/0/C45A558750D6CF5BE02532DDE80326AEF5012912.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C45A558750D6CF5BE02532DDE80326AEF5012912.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 21:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:16:63:62:3e:90:b7:b9:52:a8:99:7f:63:3e:85:b9:de:85:5d:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C45A558750D6CF5BE02532DDE80326AEF5012912 Validity Not Before: Apr 6 15:55:00 2026 GMT Not After : Apr 5 16:00:00 2027 GMT Subject: CN=91843FA35EE9F4C0A4E5B4FA62CB4F81EDFFEFED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a6:b2:72:f6:9a:6f:43:c6:96:01:29:5e:3e: bb:41:28:8c:5e:67:d2:db:c7:74:97:af:30:fb:c6: 84:f6:22:57:a2:6e:00:e2:ce:ac:09:ed:7b:c6:ae: 84:05:60:de:47:00:41:0a:e0:a3:85:e4:d9:70:1e: 49:ab:d5:4f:84:54:87:0d:c8:c2:d5:c7:3f:09:23: b0:60:b3:af:7e:69:dc:4d:ed:84:c6:2e:0a:d3:4a: 22:5a:b5:da:f2:f3:b6:68:e9:68:89:91:24:0b:be: 1f:cd:e9:d1:34:a2:9a:aa:10:e2:5f:55:4c:46:f6: 56:f6:cd:f2:67:13:93:11:c9:37:be:89:44:3f:3f: a0:16:23:83:0f:32:eb:74:b2:2a:4d:26:61:ac:58: 78:c0:bf:50:d1:de:1b:5c:23:4e:ea:a2:e4:20:21: 6e:08:b2:08:d9:c6:e9:03:bc:d9:06:e4:4f:cb:8c: f2:fb:df:c3:3c:00:ae:dd:3d:70:eb:e7:a7:0a:38: 22:25:67:d9:58:5c:16:36:7d:28:4e:b9:fc:57:02: a5:98:96:c2:1d:5c:88:ae:20:8c:5f:97:a1:a4:dc: 5a:e7:5f:7e:f3:24:75:3f:ef:30:53:62:93:f1:98: 01:4b:ad:ed:24:85:b3:65:3d:48:3a:47:f8:44:94: 88:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:84:3F:A3:5E:E9:F4:C0:A4:E5:B4:FA:62:CB:4F:81:ED:FF:EF:ED X509v3 Authority Key Identifier: keyid:C4:5A:55:87:50:D6:CF:5B:E0:25:32:DD:E8:03:26:AE:F5:01:29:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c1bc3f29-6f9d-47d3-9e77-c289e5fee78e/0/C45A558750D6CF5BE02532DDE80326AEF5012912.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C45A558750D6CF5BE02532DDE80326AEF5012912.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1bc3f29-6f9d-47d3-9e77-c289e5fee78e/0/3130332e3137302e3131352e302f32342d3234203d3e20313432333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.115.0/24 Signature Algorithm: sha256WithRSAEncryption 60:c5:ce:77:b2:92:4d:6f:6a:b1:71:e1:88:e4:70:e7:98:f8: 32:8f:64:fd:e6:7d:f3:b2:74:cb:49:56:86:c3:d3:c2:30:50: 82:de:d2:2d:ad:f2:f6:9e:b8:5d:ff:ff:4a:95:44:70:5c:ae: f8:ca:35:fc:92:a8:bb:f6:db:a0:f1:6a:12:ad:84:53:c5:2a: 30:05:10:1a:7b:37:92:13:a2:6b:4a:80:b5:d0:11:38:76:6b: 15:54:20:83:aa:13:3b:bc:cd:f1:52:10:1c:cf:d6:37:97:75: e3:8e:32:aa:f8:23:ad:6e:a3:b7:3e:ce:cc:25:e7:2a:27:85: 56:03:35:2d:ca:cc:02:0b:cc:6c:e3:6f:0b:61:53:03:1a:c7: f2:e0:fc:b8:d4:f0:80:55:9c:53:bf:30:59:a9:3e:1a:7b:d6: 9d:23:20:d3:29:3e:1c:97:96:2d:b9:4b:e7:ac:2b:93:dd:28: 66:78:64:9b:e6:43:35:8d:3b:6c:9a:0a:1d:c5:d2:25:bd:d0: ff:c5:7b:7d:da:bb:af:a1:08:45:1c:f3:11:9e:18:8d:7a:97: d1:9c:63:45:1c:2f:8a:24:b7:f3:07:45:38:bd:df:d3:90:25: f1:ad:76:57:59:b2:c8:84:f7:65:c2:b1:cd:61:6e:aa:6e:b8: 8b:3b:fb:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOhZjYj6Qt7lSqJl/Yz6Fud6FXaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1QTU1ODc1MEQ2Q0Y1QkUwMjUzMkRERTgwMzI2QUVG NTAxMjkxMjAeFw0yNjA0MDYxNTU1MDBaFw0yNzA0MDUxNjAwMDBaMDMxMTAvBgNV BAMTKDkxODQzRkEzNUVFOUY0QzBBNEU1QjRGQTYyQ0I0RjgxRURGRkVGRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcprJy9ppvQ8aWASlePrtBKIxe Z9Lbx3SXrzD7xoT2IleibgDizqwJ7XvGroQFYN5HAEEK4KOF5NlwHkmr1U+EVIcN yMLVxz8JI7Bgs69+adxN7YTGLgrTSiJatdry87Zo6WiJkSQLvh/N6dE0opqqEOJf VUxG9lb2zfJnE5MRyTe+iUQ/P6AWI4MPMut0sipNJmGsWHjAv1DR3htcI07qouQg IW4IsgjZxukDvNkG5E/LjPL738M8AK7dPXDr56cKOCIlZ9lYXBY2fShOufxXAqWY lsIdXIiuIIxfl6Gk3FrnX37zJHU/7zBTYpPxmAFLre0khbNlPUg6R/hElIilAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkYQ/o17p9MCk5bT6YstPge3/7+0wHwYDVR0j BBgwFoAUxFpVh1DWz1vgJTLd6AMmrvUBKRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MWJjM2YyOS02ZjlkLTQ3ZDMtOWU3Ny1jMjg5ZTVmZWU3OGUvMC9DNDVBNTU4NzUw RDZDRjVCRTAyNTMyRERFODAzMjZBRUY1MDEyOTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1QTU1ODc1MEQ2Q0Y1QkUwMjUzMkRERTgwMzI2QUVGNTAx MjkxMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYmMzZjI5LTZmOWQtNDdkMy05 ZTc3LWMyODllNWZlZTc4ZS8wLzMxMzAzMzJlMzEzNzMwMmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqnMwDQYJ KoZIhvcNAQELBQADggEBAGDFzneykk1varFx4YjkcOeY+DKPZP3mffOydMtJVobD 08IwUILe0i2t8vaeuF3//0qVRHBcrvjKNfySqLv226DxahKthFPFKjAFEBp7N5IT omtKgLXQETh2axVUIIOqEzu8zfFSEBzP1jeXdeOOMqr4I61uo7c+zswl5yonhVYD NS3KzAILzGzjbwthUwMax/Lg/LjU8IBVnFO/MFmpPhp71p0jINMpPhyXli25S+es K5PdKGZ4ZJvmQzWNO2yaCh3F0iW90P/Fe33au6+hCEUc8xGeGI16l9GcY0UcL4ok t/MHRTi939OQJfGtdldZssiE92XCsc1hbqpuuIs7++I= -----END CERTIFICATE-----Generated at Fri Apr 17 20:05:57 2026 by rpki-client