$ rpki-client -vvf repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/3130332e3135322e3233322e302f32332d3234203d3e20313430343436.roa File: 3130332e3135322e3233322e302f32332d3234203d3e20313430343436.roa (raw, json) Hash identifier: D9KGLgVvOF4OngGociwvSWI0QTuFGjkuuGad+CeaKtw= Subject key identifier: 55:B0:4F:57:4A:AA:D1:79:9D:23:46:69:D2:73:79:DF:D0:1D:C6:66 Certificate issuer: /CN=94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF Certificate serial: 7AF5AD9C31DC62048B8F42D414DFE2B5B57EE269 Authority key identifier: 94:15:9F:AF:0A:97:95:02:CA:B6:C5:AD:DC:AE:4C:FD:EC:DE:ED:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/3130332e3135322e3233322e302f32332d3234203d3e20313430343436.roa Signing time: Fri 06 Feb 2026 02:02:58 +0000 ROA not before: Fri 06 Feb 2026 01:57:58 +0000 ROA not after: Fri 05 Feb 2027 02:02:58 +0000 asID: 140446 IP address blocks: 103.152.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.crl rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 21:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f5:ad:9c:31:dc:62:04:8b:8f:42:d4:14:df:e2:b5:b5:7e:e2:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF Validity Not Before: Feb 6 01:57:58 2026 GMT Not After : Feb 5 02:02:58 2027 GMT Subject: CN=55B04F574AAAD1799D234669D27379DFD01DC666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8c:5b:da:61:08:34:b4:a3:bd:a3:53:db:05: 0e:8d:af:d2:aa:45:20:ea:ba:aa:8c:b2:4b:33:e8: fa:9b:50:ad:c1:e9:eb:61:04:8e:21:d5:79:bc:c2: 82:99:34:e0:ed:35:38:25:82:f7:76:7a:cb:c0:e2: 9a:ce:74:00:6d:d2:a0:8f:bc:c7:7a:e4:ee:1f:95: e6:5a:ec:1c:1c:24:76:80:f8:e4:b1:7b:3c:81:6e: 94:a0:c8:73:6b:6a:7c:ef:a7:91:e7:bd:3f:3f:f1: 5b:11:c4:27:51:a0:f9:f2:91:46:59:b8:b9:3f:19: 20:42:3f:40:d2:38:59:3b:b6:cc:b4:1b:99:ce:c2: 0c:bd:79:fc:df:3f:5a:e0:67:56:b1:43:26:18:b7: ca:73:3e:86:aa:4d:02:17:3c:02:24:4c:e9:88:44: ed:e3:15:0b:b7:dc:52:9e:3d:90:9f:51:6b:ec:82: 61:1e:33:cb:ed:39:dc:dc:a8:6a:a6:28:53:df:bd: 03:fa:5a:76:b2:25:8c:2f:15:be:e8:a8:7a:16:26: 69:0a:a1:d3:54:e4:f4:9e:3a:19:9b:a6:ad:16:fc: f4:1b:c6:05:29:af:24:34:10:48:38:5b:10:92:0e: 45:26:3b:5b:bb:8a:2a:ed:87:f1:47:83:7c:ff:56: 66:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B0:4F:57:4A:AA:D1:79:9D:23:46:69:D2:73:79:DF:D0:1D:C6:66 X509v3 Authority Key Identifier: keyid:94:15:9F:AF:0A:97:95:02:CA:B6:C5:AD:DC:AE:4C:FD:EC:DE:ED:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94159FAF0A979502CAB6C5ADDCAE4CFDECDEEDEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4f07987-b8ec-444a-9b44-291011ff46a6/0/3130332e3135322e3233322e302f32332d3234203d3e20313430343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.232.0/23 Signature Algorithm: sha256WithRSAEncryption c4:a8:4f:a4:a5:b0:0d:96:87:ed:1d:f4:8b:f3:88:a1:61:38: 51:06:d9:8c:38:4c:93:15:8a:50:0a:2d:39:6a:15:ff:d7:11: 86:35:cb:b3:e2:f3:b6:e3:45:f3:94:bf:63:d3:50:82:ae:fc: 72:89:8c:d7:17:38:1a:ff:9b:8e:27:60:f8:67:30:39:11:21: 24:5c:3a:85:f5:56:9d:52:5d:68:6e:55:06:b2:94:dc:99:e8: f0:11:46:4a:f3:6c:4f:29:a4:c1:fa:e4:55:d5:93:cb:0b:46: 50:b6:bd:6f:25:9f:1e:92:5a:e0:16:5b:34:95:c1:a9:6d:70: 82:6b:29:5c:4e:46:5b:3b:32:a0:4e:42:fe:8f:cd:46:d9:06: 44:ec:8d:0d:2f:d2:d1:ad:b0:ec:8d:56:61:18:50:2c:6e:da: 36:b0:75:c3:28:68:39:f4:f0:bc:21:df:c1:11:de:84:48:8c: 40:8e:b3:92:49:3f:f2:a4:5f:e5:1b:83:46:69:d7:1b:b2:e0: 75:8a:7f:59:73:4c:0d:7d:9b:dd:18:c9:b3:f9:2c:29:47:b4: 68:9e:1e:01:bd:e8:1d:88:f7:84:7c:97:d6:e1:d9:6d:dd:af: 94:17:03:8b:3e:db:74:7b:b8:0f:68:ea:6c:eb:bb:79:25:fa: 7a:22:07:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUevWtnDHcYgSLj0LUFN/itbV+4mkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQxNTlGQUYwQTk3OTUwMkNBQjZDNUFERENBRTRDRkRF Q0RFRURFRjAeFw0yNjAyMDYwMTU3NThaFw0yNzAyMDUwMjAyNThaMDMxMTAvBgNV BAMTKDU1QjA0RjU3NEFBQUQxNzk5RDIzNDY2OUQyNzM3OURGRDAxREM2NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtjFvaYQg0tKO9o1PbBQ6Nr9Kq RSDquqqMsksz6PqbUK3B6ethBI4h1Xm8woKZNODtNTglgvd2esvA4prOdABt0qCP vMd65O4fleZa7BwcJHaA+OSxezyBbpSgyHNranzvp5HnvT8/8VsRxCdRoPnykUZZ uLk/GSBCP0DSOFk7tsy0G5nOwgy9efzfP1rgZ1axQyYYt8pzPoaqTQIXPAIkTOmI RO3jFQu33FKePZCfUWvsgmEeM8vtOdzcqGqmKFPfvQP6WnayJYwvFb7oqHoWJmkK odNU5PSeOhmbpq0W/PQbxgUpryQ0EEg4WxCSDkUmO1u7iirth/FHg3z/Vmb/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVbBPV0qq0XmdI0Zp0nN539AdxmYwHwYDVR0j BBgwFoAUlBWfrwqXlQLKtsWt3K5M/eze7e8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NGYwNzk4Ny1iOGVjLTQ0NGEtOWI0NC0yOTEwMTFmZjQ2YTYvMC85NDE1OUZBRjBB OTc5NTAyQ0FCNkM1QUREQ0FFNENGREVDREVFREVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQxNTlGQUYwQTk3OTUwMkNBQjZDNUFERENBRTRDRkRFQ0RF RURFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0ZjA3OTg3LWI4ZWMtNDQ0YS05 YjQ0LTI5MTAxMWZmNDZhNi8wLzMxMzAzMzJlMzEzNTMyMmUzMjMzMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmOgwDQYJ KoZIhvcNAQELBQADggEBAMSoT6SlsA2Wh+0d9IvziKFhOFEG2Yw4TJMVilAKLTlq Ff/XEYY1y7Pi87bjRfOUv2PTUIKu/HKJjNcXOBr/m44nYPhnMDkRISRcOoX1Vp1S XWhuVQaylNyZ6PARRkrzbE8ppMH65FXVk8sLRlC2vW8lnx6SWuAWWzSVwaltcIJr KVxORls7MqBOQv6PzUbZBkTsjQ0v0tGtsOyNVmEYUCxu2jawdcMoaDn08Lwh38ER 3oRIjECOs5JJP/KkX+Ubg0Zp1xuy4HWKf1lzTA19m90YybP5LClHtGieHgG96B2I 94R8l9bh2W3dr5QXA4s+23R7uA9o6mzru3kl+noiByc= -----END CERTIFICATE-----Generated at Mon Mar 2 15:42:19 2026 by rpki-client