$ rpki-client -vvf repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa File: 3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa (raw, json) Hash identifier: O0e6uyJJB62An/try8/ESTX4CBvcv+ilvwBzA390Iqg= Subject key identifier: 3A:9F:4F:42:D8:BD:FC:9D:89:7F:F6:DF:BA:60:5B:A1:45:5B:D7:43 Certificate issuer: /CN=B7260D30835B9D812F7044ECE96F4FB8F698379C Certificate serial: 258DF92627E18A3EE1D91C7239F3B68FDB89834E Authority key identifier: B7:26:0D:30:83:5B:9D:81:2F:70:44:EC:E9:6F:4F:B8:F6:98:37:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa Signing time: Wed 15 Apr 2026 08:00:00 +0000 ROA not before: Wed 15 Apr 2026 07:55:00 +0000 ROA not after: Wed 14 Apr 2027 08:00:00 +0000 asID: 38760 IP address blocks: 103.217.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/B7260D30835B9D812F7044ECE96F4FB8F698379C.crl rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/B7260D30835B9D812F7044ECE96F4FB8F698379C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 15:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:8d:f9:26:27:e1:8a:3e:e1:d9:1c:72:39:f3:b6:8f:db:89:83:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7260D30835B9D812F7044ECE96F4FB8F698379C Validity Not Before: Apr 15 07:55:00 2026 GMT Not After : Apr 14 08:00:00 2027 GMT Subject: CN=3A9F4F42D8BDFC9D897FF6DFBA605BA1455BD743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f9:30:7e:aa:f1:64:97:4c:1a:fe:9b:7b:4b: 77:a3:99:23:2b:91:9e:d3:23:04:8f:cc:36:f8:10: 7d:92:4a:86:fa:ef:b3:51:f6:9e:fb:f4:dc:7e:56: 2a:83:08:97:5a:cc:ee:fd:1c:78:f7:b4:f1:25:30: a0:c4:17:94:ea:12:51:4d:cd:db:5d:dd:4d:dd:9b: 1d:5e:a7:26:1b:6d:41:61:15:b3:91:3a:99:7d:43: 9e:a0:4b:9f:a1:69:2d:a7:ee:15:3d:53:88:66:2c: 7f:fd:4d:7e:b2:80:ff:fc:00:b5:8c:2a:b3:6e:fc: c4:6e:95:ec:17:79:ac:98:aa:e6:81:df:07:80:0e: a1:28:30:05:cd:7a:3c:24:17:11:fa:7f:d5:f4:44: 97:c4:5c:50:f8:e7:a8:ec:dc:aa:d1:4a:d8:73:5d: ef:38:a8:6d:3c:25:cc:bc:2f:87:51:68:f8:bc:22: 73:9b:d5:46:d2:fe:b2:7e:be:90:fa:a1:7c:4a:f2: cd:80:e9:60:25:e4:06:c5:63:3a:9d:ac:e5:4e:e9: fb:ec:99:fc:09:d4:2c:43:c0:18:80:48:36:d5:68: 92:96:f3:c4:ef:62:d9:8e:54:29:5c:0a:89:d8:94: bd:b7:7b:37:8e:70:7a:35:91:4f:7f:67:1a:82:10: 6d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9F:4F:42:D8:BD:FC:9D:89:7F:F6:DF:BA:60:5B:A1:45:5B:D7:43 X509v3 Authority Key Identifier: keyid:B7:26:0D:30:83:5B:9D:81:2F:70:44:EC:E9:6F:4F:B8:F6:98:37:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/B7260D30835B9D812F7044ECE96F4FB8F698379C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.208.0/22 Signature Algorithm: sha256WithRSAEncryption 17:88:16:ed:7c:4b:bf:10:af:73:80:93:23:e3:3e:57:cd:ed: 24:3a:be:48:3e:ac:b8:fa:4b:5d:d1:6f:2b:dc:f9:86:c1:e2: 11:b5:13:9d:5a:f7:c9:4e:49:0e:2b:40:85:53:3f:0a:f9:68: 2f:47:b0:bc:f8:2b:1c:17:37:4e:b8:fc:39:de:88:c6:d7:ce: a7:78:a6:da:09:1a:77:bd:7b:92:0c:96:96:29:07:c6:60:3f: 1a:e0:c2:b3:1a:2b:7c:1d:7a:25:45:14:20:3d:05:eb:ed:59: 10:8c:e5:f1:6c:76:68:02:bf:a8:38:75:4b:f0:6d:ef:f5:1c: 3e:f1:09:01:2d:c2:6e:1a:bc:16:b5:b7:bb:a2:72:25:4d:e3: 3d:ae:1f:a9:e6:c6:de:eb:df:6e:59:97:05:03:46:39:b9:1a: 95:c6:b7:5d:c9:21:4c:b6:66:d7:0f:bd:f7:35:73:fb:ee:b7: 38:cb:67:0f:8d:6d:6f:3f:00:9f:5e:3c:21:60:5a:34:68:b4: 8e:a7:03:44:82:f7:88:9a:00:cd:33:35:b2:4f:04:6d:56:b5: 6d:0c:40:c3:09:6e:73:9c:47:48:8e:61:2a:96:7c:2f:c2:75: 24:e1:b2:6c:7a:30:35:5f:06:6f:0d:bd:49:26:1f:78:77:0b: 43:e0:0c:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJY35Jifhij7h2RxyOfO2j9uJg04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcyNjBEMzA4MzVCOUQ4MTJGNzA0NEVDRTk2RjRGQjhG Njk4Mzc5QzAeFw0yNjA0MTUwNzU1MDBaFw0yNzA0MTQwODAwMDBaMDMxMTAvBgNV BAMTKDNBOUY0RjQyRDhCREZDOUQ4OTdGRjZERkJBNjA1QkExNDU1QkQ3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN+TB+qvFkl0wa/pt7S3ejmSMr kZ7TIwSPzDb4EH2SSob677NR9p779Nx+ViqDCJdazO79HHj3tPElMKDEF5TqElFN zdtd3U3dmx1epyYbbUFhFbOROpl9Q56gS5+haS2n7hU9U4hmLH/9TX6ygP/8ALWM KrNu/MRulewXeayYquaB3weADqEoMAXNejwkFxH6f9X0RJfEXFD456js3KrRSthz Xe84qG08Jcy8L4dRaPi8InOb1UbS/rJ+vpD6oXxK8s2A6WAl5AbFYzqdrOVO6fvs mfwJ1CxDwBiASDbVaJKW88TvYtmOVClcConYlL23ezeOcHo1kU9/ZxqCEG2RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOp9PQti9/J2Jf/bfumBboUVb10MwHwYDVR0j BBgwFoAUtyYNMINbnYEvcETs6W9PuPaYN5wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2E1ZmZkYy0xNTFhLTRhYWQtYTJiNy00MzI2NDlkZTZkYmUvMC9CNzI2MEQzMDgz NUI5RDgxMkY3MDQ0RUNFOTZGNEZCOEY2OTgzNzlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcyNjBEMzA4MzVCOUQ4MTJGNzA0NEVDRTk2RjRGQjhGNjk4 Mzc5Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzYTVmZmRjLTE1MWEtNGFhZC1h MmI3LTQzMjY0OWRlNmRiZS8wLzMxMzAzMzJlMzIzMTM3MmUzMjMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMzM4MzczNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ9nQMA0GCSqG SIb3DQEBCwUAA4IBAQAXiBbtfEu/EK9zgJMj4z5Xze0kOr5IPqy4+ktd0W8r3PmG weIRtROdWvfJTkkOK0CFUz8K+WgvR7C8+CscFzdOuPw53ojG186neKbaCRp3vXuS DJaWKQfGYD8a4MKzGit8HXolRRQgPQXr7VkQjOXxbHZoAr+oOHVL8G3v9Rw+8QkB LcJuGrwWtbe7onIlTeM9rh+p5sbe699uWZcFA0Y5uRqVxrddySFMtmbXD733NXP7 7rc4y2cPjW1vPwCfXjwhYFo0aLSOpwNEgveImgDNMzWyTwRtVrVtDEDDCW5znEdI jmEqlnwvwnUk4bJsejA1XwZvDb1JJh94dwtD4Ayy -----END CERTIFICATE-----Generated at Fri Apr 17 19:01:42 2026 by rpki-client