$ rpki-client -vvf repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36352e302f32342d3234203d3e20313530393832.roa File: 3130332e32312e36352e302f32342d3234203d3e20313530393832.roa (raw, json) Hash identifier: 9oxT5RDcr9Ek1xIr6QpdXnO6XUo20PqnOOCrdJPUbMk= Subject key identifier: C8:CD:98:8F:7F:14:FE:7D:16:63:54:C7:48:5E:47:E1:0D:AE:A3:A2 Certificate issuer: /CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Certificate serial: 0233A792C06F2F226E68E52E0AE537B06BA60BBD Authority key identifier: D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36352e302f32342d3234203d3e20313530393832.roa Signing time: Sat 21 Feb 2026 15:00:00 +0000 ROA not before: Sat 21 Feb 2026 14:55:00 +0000 ROA not after: Sat 20 Feb 2027 15:00:00 +0000 asID: 150982 IP address blocks: 103.21.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:33:a7:92:c0:6f:2f:22:6e:68:e5:2e:0a:e5:37:b0:6b:a6:0b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Validity Not Before: Feb 21 14:55:00 2026 GMT Not After : Feb 20 15:00:00 2027 GMT Subject: CN=C8CD988F7F14FE7D166354C7485E47E10DAEA3A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:51:9d:76:99:6d:d3:d8:09:25:45:a3:c6:a6: 83:2b:7e:7b:f3:b3:4a:9b:d8:74:f3:84:2c:cb:cb: 55:a7:de:43:61:1f:eb:b7:ae:91:87:44:b4:7d:a8: 4f:3c:1e:b5:3d:8e:8c:3d:0b:8c:3d:ee:26:6c:ce: f5:b9:64:a6:5f:cc:e0:88:45:9c:ec:26:46:f0:d6: 92:5b:35:61:80:ba:5a:5d:dc:e8:b7:b8:a2:39:55: bb:c4:5d:f1:17:c5:b5:bb:12:49:a5:99:8e:1c:b7: 94:5b:fe:1e:28:c6:68:7d:92:52:9e:b8:9f:e4:a4: a4:95:87:d9:1e:ae:42:67:60:fa:4f:47:9b:3e:77: 98:b4:0a:af:b0:a4:48:ed:91:10:aa:17:cc:5e:60: da:20:0b:73:9b:42:fc:01:e2:26:cd:2f:c9:8a:a2: 23:21:44:74:21:4e:23:64:71:cb:50:eb:da:40:b2: 93:64:75:6e:0d:0b:cc:0a:0b:73:c9:fa:2e:f3:9b: ff:09:75:56:af:b1:9d:af:8b:53:1a:e7:7e:83:77: f3:bc:45:11:68:02:a8:83:2a:25:36:a0:2e:79:58: 01:fc:b5:3c:3b:92:55:17:cb:73:60:17:e3:95:77: f4:98:3c:13:08:68:ad:aa:3d:0f:5b:4e:14:99:2a: 3a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CD:98:8F:7F:14:FE:7D:16:63:54:C7:48:5E:47:E1:0D:AE:A3:A2 X509v3 Authority Key Identifier: keyid:D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36352e302f32342d3234203d3e20313530393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.65.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:c7:c3:0d:72:77:7a:a9:d8:b5:66:53:eb:04:99:1b:58:b0: 7d:fc:51:bd:33:3e:88:fb:f7:b3:be:49:87:c7:ed:cc:90:b7: 65:bf:90:81:9e:e6:d6:68:4b:3b:c2:bc:42:d0:bb:23:09:2e: 69:e2:77:22:c1:37:a3:a1:b2:fa:40:88:4a:4a:09:32:72:0d: 0e:03:f6:82:03:21:a7:fe:c7:03:53:cd:f9:d9:d2:5f:d2:94: 25:47:e5:2b:16:b5:2f:74:11:7f:f0:c6:5c:96:fb:b8:55:ed: 9f:65:5d:4f:ca:0b:41:43:c5:8d:41:eb:fe:0f:50:ec:ca:a2: 50:40:9b:6f:b8:06:80:56:2e:cd:df:06:2f:83:ae:4d:ea:3b: d9:1a:20:12:9d:88:ac:d2:e0:d4:e5:d6:0b:0e:d4:55:d1:0e: 8e:c6:b5:3b:1f:08:2a:31:46:39:43:b2:09:54:a8:93:cf:e9: 56:ef:81:47:1e:40:aa:37:53:d6:eb:cf:d3:a4:ad:fa:3b:b4: 54:c1:0d:e1:70:75:43:4d:cc:0a:ce:42:a4:92:9e:c8:de:a5: 70:4b:70:be:af:62:23:c3:d2:0b:fa:5f:2a:04:02:ec:4c:aa: 75:4d:8c:d1:7c:2c:2a:94:c4:03:87:c7:8c:ba:ff:99:ac:14: ba:03:3d:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAjOnksBvLyJuaOUuCuU3sGumC70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlG RjRBMDc4RjAeFw0yNjAyMjExNDU1MDBaFw0yNzAyMjAxNTAwMDBaMDMxMTAvBgNV BAMTKEM4Q0Q5ODhGN0YxNEZFN0QxNjYzNTRDNzQ4NUU0N0UxMERBRUEzQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3UZ12mW3T2AklRaPGpoMrfnvz s0qb2HTzhCzLy1Wn3kNhH+u3rpGHRLR9qE88HrU9jow9C4w97iZszvW5ZKZfzOCI RZzsJkbw1pJbNWGAulpd3Oi3uKI5VbvEXfEXxbW7EkmlmY4ct5Rb/h4oxmh9klKe uJ/kpKSVh9kerkJnYPpPR5s+d5i0Cq+wpEjtkRCqF8xeYNogC3ObQvwB4ibNL8mK oiMhRHQhTiNkcctQ69pAspNkdW4NC8wKC3PJ+i7zm/8JdVavsZ2vi1Ma536Dd/O8 RRFoAqiDKiU2oC55WAH8tTw7klUXy3NgF+OVd/SYPBMIaK2qPQ9bThSZKjpbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyM2Yj38U/n0WY1THSF5H4Q2uo6IwHwYDVR0j BBgwFoAU1Fb16tjXNEVdrviWqQVUCf9KB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NmJlYzhlOS02NTY4LTQ3OGQtYmQyNi1mNmU3Nzc4NzU1MTEvMC9ENDU2RjVFQUQ4 RDczNDQ1NURBRUY4OTZBOTA1NTQwOUZGNEEwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlGRjRB MDc4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YmVjOGU5LTY1NjgtNDc4ZC1i ZDI2LWY2ZTc3Nzg3NTUxMS8wLzMxMzAzMzJlMzIzMTJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcVQTANBgkqhkiG 9w0BAQsFAAOCAQEAbcfDDXJ3eqnYtWZT6wSZG1iwffxRvTM+iPv3s75Jh8ftzJC3 Zb+QgZ7m1mhLO8K8QtC7IwkuaeJ3IsE3o6Gy+kCISkoJMnINDgP2ggMhp/7HA1PN +dnSX9KUJUflKxa1L3QRf/DGXJb7uFXtn2VdT8oLQUPFjUHr/g9Q7MqiUECbb7gG gFYuzd8GL4OuTeo72RogEp2IrNLg1OXWCw7UVdEOjsa1Ox8IKjFGOUOyCVSok8/p Vu+BRx5AqjdT1uvP06St+ju0VMEN4XB1Q03MCs5CpJKeyN6lcEtwvq9iI8PSC/pf KgQC7EyqdU2M0XwsKpTEA4fHjLr/mawUugM9Mg== -----END CERTIFICATE-----Generated at Mon Mar 2 23:42:54 2026 by rpki-client