$ rpki-client -vvf repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/3130332e37352e36362e302f32332d3234203d3e20313530353231.roa File: 3130332e37352e36362e302f32332d3234203d3e20313530353231.roa (raw, json) Hash identifier: s5PXIuDuB/ISwN97+f4+HO7CLZ5A9vnC7yHPQ/KhwTw= Subject key identifier: EE:8F:84:4C:B6:D4:B8:1B:89:75:42:A6:5C:1D:1B:42:23:EA:FF:99 Certificate issuer: /CN=F71A5EA4A463A015DB17D32923D3F431A6F20F62 Certificate serial: 7F1D3F6218B12C885B174AA142FE803551E57DEB Authority key identifier: F7:1A:5E:A4:A4:63:A0:15:DB:17:D3:29:23:D3:F4:31:A6:F2:0F:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F71A5EA4A463A015DB17D32923D3F431A6F20F62.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/3130332e37352e36362e302f32332d3234203d3e20313530353231.roa Signing time: Mon 13 Apr 2026 06:00:00 +0000 ROA not before: Mon 13 Apr 2026 05:55:00 +0000 ROA not after: Mon 12 Apr 2027 06:00:00 +0000 asID: 150521 IP address blocks: 103.75.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/F71A5EA4A463A015DB17D32923D3F431A6F20F62.crl rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/F71A5EA4A463A015DB17D32923D3F431A6F20F62.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F71A5EA4A463A015DB17D32923D3F431A6F20F62.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 16:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:1d:3f:62:18:b1:2c:88:5b:17:4a:a1:42:fe:80:35:51:e5:7d:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F71A5EA4A463A015DB17D32923D3F431A6F20F62 Validity Not Before: Apr 13 05:55:00 2026 GMT Not After : Apr 12 06:00:00 2027 GMT Subject: CN=EE8F844CB6D4B81B897542A65C1D1B4223EAFF99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:40:3e:dd:65:6f:7a:3b:98:c2:6d:a8:03:27: d9:97:eb:ad:41:15:09:0f:1c:81:21:a5:9b:40:3b: 58:42:f7:16:b3:28:2b:02:1c:bc:21:0e:97:54:05: 03:1d:d1:19:35:fa:70:5d:9e:76:be:a8:9e:72:e2: bd:29:de:c0:e2:ac:f5:12:84:49:24:1d:48:25:c3: 7b:f9:b9:83:ad:58:7a:8d:5d:54:61:d4:cd:34:35: 94:57:37:50:6d:9e:c3:1c:f8:ac:59:28:c9:d6:4b: f7:29:7a:dc:e9:1e:bd:6e:1a:52:e9:63:13:1c:cd: 74:dd:45:ff:a4:78:62:3c:f7:12:ac:00:65:87:43: 9c:7f:4b:18:c3:fc:63:3f:9c:9e:9f:2e:00:ac:0b: 3c:93:0c:cb:0e:32:05:88:80:70:2f:25:7a:c9:ca: 68:f0:07:3e:2f:33:05:8f:c3:d8:b0:f7:20:3e:d5: db:3f:26:d4:b5:c5:05:bc:11:96:9f:37:b5:56:c3: 9e:ad:64:91:84:de:72:0c:39:30:7e:a0:9d:2b:a9: 5a:f7:4f:60:7c:0f:76:ec:09:19:39:f1:3e:97:cc: 95:0f:df:89:eb:75:a0:43:31:ee:73:66:c6:a7:1e: b5:28:c4:fc:df:f0:75:05:3d:dc:8f:e8:76:06:3b: f2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:8F:84:4C:B6:D4:B8:1B:89:75:42:A6:5C:1D:1B:42:23:EA:FF:99 X509v3 Authority Key Identifier: keyid:F7:1A:5E:A4:A4:63:A0:15:DB:17:D3:29:23:D3:F4:31:A6:F2:0F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/F71A5EA4A463A015DB17D32923D3F431A6F20F62.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F71A5EA4A463A015DB17D32923D3F431A6F20F62.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/3130332e37352e36362e302f32332d3234203d3e20313530353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.66.0/23 Signature Algorithm: sha256WithRSAEncryption 33:bf:a0:31:46:48:94:85:71:3f:74:e1:01:f8:ae:fe:c8:3e: 4d:63:8a:5f:05:7c:12:7d:70:64:30:5b:5b:ca:c1:bb:67:4a: c5:d5:96:ee:df:df:a2:75:31:64:29:9d:cd:87:a2:f8:67:41: 7f:a9:f9:c1:19:7a:65:d0:ad:32:ac:3d:99:3a:ca:e4:8d:07: 72:9b:99:f6:d0:70:4f:53:60:e4:81:ab:41:53:da:69:86:cf: 8f:19:0b:cf:ba:d9:73:14:aa:02:30:4c:41:63:63:aa:66:2f: a4:24:a1:2a:2b:43:81:fb:c0:3a:54:20:f4:85:fe:ef:8e:85: 8c:67:5c:c2:c7:f7:0a:ce:28:22:e9:f2:33:d1:24:e6:d3:23: dd:06:5d:6e:fb:5c:f4:71:a3:e0:1c:df:37:cc:28:79:cc:64: 55:fb:cd:d8:5e:72:4b:fb:33:88:1e:82:1f:ff:69:98:33:96: 71:ef:90:80:b4:11:f3:62:37:da:fd:a3:8e:e9:1e:5f:49:87: 03:16:f2:12:83:35:e0:21:9b:96:fb:5f:65:64:f1:70:ad:3e: c9:62:45:22:7e:06:24:f1:30:a8:c8:b0:53:19:a9:1f:03:61: 8f:62:d2:e7:5c:c8:e8:c5:3d:ad:42:50:c5:17:8d:20:d6:fa: 7a:b2:ed:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfx0/YhixLIhbF0qhQv6ANVHlfeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjcxQTVFQTRBNDYzQTAxNURCMTdEMzI5MjNEM0Y0MzFB NkYyMEY2MjAeFw0yNjA0MTMwNTU1MDBaFw0yNzA0MTIwNjAwMDBaMDMxMTAvBgNV BAMTKEVFOEY4NDRDQjZENEI4MUI4OTc1NDJBNjVDMUQxQjQyMjNFQUZGOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbQD7dZW96O5jCbagDJ9mX661B FQkPHIEhpZtAO1hC9xazKCsCHLwhDpdUBQMd0Rk1+nBdnna+qJ5y4r0p3sDirPUS hEkkHUglw3v5uYOtWHqNXVRh1M00NZRXN1BtnsMc+KxZKMnWS/cpetzpHr1uGlLp YxMczXTdRf+keGI89xKsAGWHQ5x/SxjD/GM/nJ6fLgCsCzyTDMsOMgWIgHAvJXrJ ymjwBz4vMwWPw9iw9yA+1ds/JtS1xQW8EZafN7VWw56tZJGE3nIMOTB+oJ0rqVr3 T2B8D3bsCRk58T6XzJUP34nrdaBDMe5zZsanHrUoxPzf8HUFPdyP6HYGO/J5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7o+ETLbUuBuJdUKmXB0bQiPq/5kwHwYDVR0j BBgwFoAU9xpepKRjoBXbF9MpI9P0MabyD2IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2Y3NmM2ZC1mODUwLTRjNDktODU0Yy01NWYzODI4NDRjOTcvMC9GNzFBNUVBNEE0 NjNBMDE1REIxN0QzMjkyM0QzRjQzMUE2RjIwRjYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjcxQTVFQTRBNDYzQTAxNURCMTdEMzI5MjNEM0Y0MzFBNkYy MEY2Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZjc2YzZkLWY4NTAtNGM0OS04 NTRjLTU1ZjM4Mjg0NGM5Ny8wLzMxMzAzMzJlMzczNTJlMzYzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdLQjANBgkqhkiG 9w0BAQsFAAOCAQEAM7+gMUZIlIVxP3ThAfiu/sg+TWOKXwV8En1wZDBbW8rBu2dK xdWW7t/fonUxZCmdzYei+GdBf6n5wRl6ZdCtMqw9mTrK5I0HcpuZ9tBwT1Ng5IGr QVPaaYbPjxkLz7rZcxSqAjBMQWNjqmYvpCShKitDgfvAOlQg9IX+746FjGdcwsf3 Cs4oIunyM9Ek5tMj3QZdbvtc9HGj4BzfN8woecxkVfvN2F5yS/sziB6CH/9pmDOW ce+QgLQR82I32v2jjukeX0mHAxbyEoM14CGblvtfZWTxcK0+yWJFIn4GJPEwqMiw UxmpHwNhj2LS51zI6MU9rUJQxReNINb6erLtjQ== -----END CERTIFICATE-----Generated at Sun Apr 19 12:19:55 2026 by rpki-client