$ rpki-client -vvf repo-rpki.idnic.net/repo/c2b0bdd5-6e30-4a10-b993-77d48251f3a1/0/3130332e3139302e3131342e302f32342d3234203d3e203435333035.roa File: 3130332e3139302e3131342e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: vunLmdHHO6g+ZbAPo77lgTR1FOxa+TjAkWZuqlVfVlM= Subject key identifier: B8:71:60:B6:10:A6:0E:8A:93:6F:CC:74:A6:A5:7D:56:57:CA:15:07 Certificate issuer: /CN=8B237B2BC0581B556DD5B4B0847F9C83408BA93D Certificate serial: 4A9ECFF060ABA36C8E5F74479335B6CE4C9550E6 Authority key identifier: 8B:23:7B:2B:C0:58:1B:55:6D:D5:B4:B0:84:7F:9C:83:40:8B:A9:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B237B2BC0581B556DD5B4B0847F9C83408BA93D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2b0bdd5-6e30-4a10-b993-77d48251f3a1/0/3130332e3139302e3131342e302f32342d3234203d3e203435333035.roa Signing time: Fri 03 Apr 2026 01:00:02 +0000 ROA not before: Fri 03 Apr 2026 00:55:02 +0000 ROA not after: Fri 02 Apr 2027 01:00:02 +0000 asID: 45305 IP address blocks: 103.190.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2b0bdd5-6e30-4a10-b993-77d48251f3a1/0/8B237B2BC0581B556DD5B4B0847F9C83408BA93D.crl rsync://repo-rpki.idnic.net/repo/c2b0bdd5-6e30-4a10-b993-77d48251f3a1/0/8B237B2BC0581B556DD5B4B0847F9C83408BA93D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B237B2BC0581B556DD5B4B0847F9C83408BA93D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 06:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:9e:cf:f0:60:ab:a3:6c:8e:5f:74:47:93:35:b6:ce:4c:95:50:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B237B2BC0581B556DD5B4B0847F9C83408BA93D Validity Not Before: Apr 3 00:55:02 2026 GMT Not After : Apr 2 01:00:02 2027 GMT Subject: CN=B87160B610A60E8A936FCC74A6A57D5657CA1507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e2:11:4b:d1:83:3c:32:2b:dd:88:53:f1:e5: 6c:6e:ba:46:a1:49:34:18:2d:fe:0a:d1:2a:09:be: 71:f7:3e:26:b0:9f:9e:ec:88:53:08:3e:9b:76:03: 6f:6f:58:e4:76:df:3b:88:1e:37:3d:c7:a8:a6:4f: 63:bd:b6:19:4e:90:90:9f:bc:ba:6c:1a:63:c1:48: 1d:8e:c6:d1:7a:87:7a:72:02:45:fc:3d:3f:ce:9a: d0:88:5e:7c:e9:41:1f:b8:4a:0d:02:37:c0:2c:bd: 56:b2:6a:24:cc:a3:a7:87:bd:68:bc:fb:2e:e2:80: db:96:2d:2d:ae:28:4f:3c:d6:38:6a:28:b5:29:5a: c9:70:a2:36:f1:e7:7e:11:a8:da:79:73:55:3e:5e: af:67:74:89:b2:d0:4a:08:76:cb:00:d1:51:54:4b: 63:7e:f2:fa:8b:b3:ac:70:50:87:bf:41:71:84:24: ec:53:41:ed:b5:96:66:2b:ff:86:20:5f:79:2e:ac: cb:ca:2f:a2:50:13:c3:1c:03:45:58:4a:79:b9:7a: e6:90:87:7a:d5:fa:f7:25:c9:22:ca:b5:b4:a0:17: ba:f0:47:8c:41:62:a0:fb:be:5f:fd:46:48:50:c4: 29:41:43:02:64:e2:c5:b7:7f:a6:25:a4:bd:65:37: 39:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:71:60:B6:10:A6:0E:8A:93:6F:CC:74:A6:A5:7D:56:57:CA:15:07 X509v3 Authority Key Identifier: keyid:8B:23:7B:2B:C0:58:1B:55:6D:D5:B4:B0:84:7F:9C:83:40:8B:A9:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2b0bdd5-6e30-4a10-b993-77d48251f3a1/0/8B237B2BC0581B556DD5B4B0847F9C83408BA93D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B237B2BC0581B556DD5B4B0847F9C83408BA93D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2b0bdd5-6e30-4a10-b993-77d48251f3a1/0/3130332e3139302e3131342e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.114.0/24 Signature Algorithm: sha256WithRSAEncryption 31:84:9c:21:1b:2e:36:69:ea:84:ab:e8:ac:88:93:91:54:b3: 5c:6d:fc:63:da:90:a5:92:ab:d7:a9:d0:93:66:88:18:22:2d: ea:59:3d:d9:90:d6:67:43:65:f1:66:e8:af:1f:3d:37:33:f3: ee:64:cd:c7:b8:6b:7d:da:49:39:42:db:28:54:e1:d4:0a:f0: eb:c1:96:5e:92:15:10:52:f6:eb:79:ce:ea:7f:59:26:22:9b: 48:fd:fe:b1:1c:7e:1b:7e:bc:0d:d7:bd:59:87:48:25:7e:94: b1:e3:bb:df:b6:94:59:a7:00:a8:0f:86:56:ea:f8:45:a5:3c: 54:7a:5d:96:6c:20:84:dc:a4:e6:e9:6f:39:d3:58:dd:05:a8: cb:05:c1:18:1a:9e:47:33:45:6c:f1:8d:4f:ee:f0:45:af:09: b7:86:d8:83:40:52:11:1d:a8:0c:4a:47:a6:47:0d:24:69:8b: 71:de:0a:0f:58:5d:2b:1f:50:52:60:e4:57:b4:dd:83:9d:9c: b3:02:34:23:d3:8f:93:13:b1:44:a6:23:ac:6f:2d:28:75:77: bd:0f:c2:02:6f:30:f1:08:81:e9:61:c6:c8:f9:bb:df:43:45: 3d:b1:e9:e2:31:b7:ba:21:be:63:01:87:0c:dc:e7:f8:84:69: f5:03:4e:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSp7P8GCro2yOX3RHkzW2zkyVUOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIyMzdCMkJDMDU4MUI1NTZERDVCNEIwODQ3RjlDODM0 MDhCQTkzRDAeFw0yNjA0MDMwMDU1MDJaFw0yNzA0MDIwMTAwMDJaMDMxMTAvBgNV BAMTKEI4NzE2MEI2MTBBNjBFOEE5MzZGQ0M3NEE2QTU3RDU2NTdDQTE1MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl4hFL0YM8MivdiFPx5Wxuukah STQYLf4K0SoJvnH3Piawn57siFMIPpt2A29vWOR23zuIHjc9x6imT2O9thlOkJCf vLpsGmPBSB2OxtF6h3pyAkX8PT/OmtCIXnzpQR+4Sg0CN8AsvVayaiTMo6eHvWi8 +y7igNuWLS2uKE881jhqKLUpWslwojbx534RqNp5c1U+Xq9ndImy0EoIdssA0VFU S2N+8vqLs6xwUIe/QXGEJOxTQe21lmYr/4YgX3kurMvKL6JQE8McA0VYSnm5euaQ h3rV+vclySLKtbSgF7rwR4xBYqD7vl/9RkhQxClBQwJk4sW3f6YlpL1lNzkpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuHFgthCmDoqTb8x0pqV9VlfKFQcwHwYDVR0j BBgwFoAUiyN7K8BYG1Vt1bSwhH+cg0CLqT0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmIwYmRkNS02ZTMwLTRhMTAtYjk5My03N2Q0ODI1MWYzYTEvMC84QjIzN0IyQkMw NTgxQjU1NkRENUI0QjA4NDdGOUM4MzQwOEJBOTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEIyMzdCMkJDMDU4MUI1NTZERDVCNEIwODQ3RjlDODM0MDhC QTkzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyYjBiZGQ1LTZlMzAtNGExMC1i OTkzLTc3ZDQ4MjUxZjNhMS8wLzMxMzAzMzJlMzEzOTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ75yMA0GCSqG SIb3DQEBCwUAA4IBAQAxhJwhGy42aeqEq+isiJORVLNcbfxj2pClkqvXqdCTZogY Ii3qWT3ZkNZnQ2XxZuivHz03M/PuZM3HuGt92kk5QtsoVOHUCvDrwZZekhUQUvbr ec7qf1kmIptI/f6xHH4bfrwN171Zh0glfpSx47vftpRZpwCoD4ZW6vhFpTxUel2W bCCE3KTm6W8501jdBajLBcEYGp5HM0Vs8Y1P7vBFrwm3htiDQFIRHagMSkemRw0k aYtx3goPWF0rH1BSYORXtN2DnZyzAjQj04+TE7FEpiOsby0odXe9D8ICbzDxCIHp YcbI+bvfQ0U9seniMbe6Ib5jAYcM3Of4hGn1A05o -----END CERTIFICATE-----Generated at Fri Apr 17 15:20:52 2026 by rpki-client