$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa File: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (raw, json) Hash identifier: mkYIFZYx4d0/cIAZy1+c0yjUX/D1gvzA3zbfyHKddvs= Subject key identifier: 9C:C6:63:A8:A0:D2:F6:39:63:E3:C8:66:6F:33:E5:ED:38:04:E4:A8 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 742980B146EE42AE9B36C0D26473B7BCD1BFD893 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa Signing time: Wed 11 Feb 2026 05:02:37 +0000 ROA not before: Wed 11 Feb 2026 04:57:37 +0000 ROA not after: Wed 10 Feb 2027 05:02:37 +0000 asID: 140023 IP address blocks: 103.149.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 21:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:29:80:b1:46:ee:42:ae:9b:36:c0:d2:64:73:b7:bc:d1:bf:d8:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Feb 11 04:57:37 2026 GMT Not After : Feb 10 05:02:37 2027 GMT Subject: CN=9CC663A8A0D2F63963E3C8666F33E5ED3804E4A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:63:7a:26:ec:97:f5:69:16:27:7f:41:61:cb: a6:76:5e:1b:4b:7b:5d:d9:bd:6a:95:96:ca:20:02: 3e:41:de:cf:5b:4c:a7:e0:79:71:57:94:f6:b2:a7: 74:0e:f5:2d:c4:36:5d:a5:43:95:7d:8a:73:21:59: 66:46:6e:8f:ea:26:1f:38:95:74:6b:04:8a:88:9f: be:58:73:75:f9:01:c2:98:89:ee:2a:cd:5f:8d:fc: 94:ad:08:fe:6f:e2:49:19:46:63:14:82:9b:00:4f: 51:44:14:c1:ee:a0:6d:f2:55:ca:43:f4:83:cb:46: 26:0b:06:66:2f:0f:3f:a2:4c:dc:ea:f5:ec:74:32: f4:12:90:14:e5:0f:dc:b9:aa:fb:c8:5d:cc:fb:ba: 06:27:be:b2:cd:69:94:51:4f:a6:b6:56:47:b0:63: 36:12:e2:2b:d2:7c:45:b0:1c:b3:18:93:92:b5:9f: 55:fa:c6:5b:4f:4a:40:37:ff:2f:22:2b:24:33:e8: 7d:3e:20:65:94:45:8f:e4:c4:f5:38:81:8c:6a:28: 31:9c:88:a9:7d:58:fc:24:8f:a1:55:ed:e2:aa:18: e7:aa:4d:1c:e2:91:f5:b2:91:18:78:5f:a1:82:0a: 4c:7d:11:95:ee:c2:fb:55:ad:77:88:17:05:b8:f6: 6b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C6:63:A8:A0:D2:F6:39:63:E3:C8:66:6F:33:E5:ED:38:04:E4:A8 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:f0:51:7b:60:49:cb:cd:49:db:32:af:e9:5c:81:a7:01:e9: 0f:e1:e4:cd:dd:98:4a:5d:5c:3b:54:eb:fc:31:1b:fa:94:1a: 39:d5:61:bd:4d:b5:5e:d2:ea:03:bb:82:58:79:e0:51:02:74: c9:f6:01:5b:2e:79:e2:97:21:e6:61:f8:99:be:60:dc:d0:ab: 2e:bb:56:c1:a6:45:6b:d2:33:41:6f:48:5d:a0:c9:6f:6e:c0: c5:9e:60:c4:c8:27:0f:9d:66:3b:e8:1d:91:51:da:22:9c:4a: 9a:9c:3c:f2:4f:f5:e0:14:76:ab:3d:23:8e:5b:c1:3a:60:09: 0a:b9:d8:cc:97:92:cf:cc:05:59:d6:3e:1e:43:82:55:71:b4: 47:fe:fe:1c:28:91:f0:f0:8a:1e:8d:51:9b:ec:54:26:01:20: e9:88:0b:38:65:bc:78:d4:5b:cc:52:98:2c:1e:2b:89:f0:ec: 70:3a:b9:a4:2e:c3:46:e3:ac:65:3f:0b:1b:ce:b6:85:ca:41: 68:f8:21:ee:de:38:89:12:8c:ca:2d:79:0c:73:48:00:ae:98: 8a:36:f3:b1:7b:b0:f4:6b:6c:e5:eb:a7:c8:56:43:67:51:7f: b6:e1:1a:96:6f:20:31:25:ec:91:95:07:a0:a2:db:26:4a:63: 85:0a:b8:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdCmAsUbuQq6bNsDSZHO3vNG/2JMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNjAyMTEwNDU3MzdaFw0yNzAyMTAwNTAyMzdaMDMxMTAvBgNV BAMTKDlDQzY2M0E4QTBEMkY2Mzk2M0UzQzg2NjZGMzNFNUVEMzgwNEU0QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvY3om7Jf1aRYnf0Fhy6Z2XhtL e13ZvWqVlsogAj5B3s9bTKfgeXFXlPayp3QO9S3ENl2lQ5V9inMhWWZGbo/qJh84 lXRrBIqIn75Yc3X5AcKYie4qzV+N/JStCP5v4kkZRmMUgpsAT1FEFMHuoG3yVcpD 9IPLRiYLBmYvDz+iTNzq9ex0MvQSkBTlD9y5qvvIXcz7ugYnvrLNaZRRT6a2Vkew YzYS4ivSfEWwHLMYk5K1n1X6xltPSkA3/y8iKyQz6H0+IGWURY/kxPU4gYxqKDGc iKl9WPwkj6FV7eKqGOeqTRzikfWykRh4X6GCCkx9EZXuwvtVrXeIFwW49munAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnMZjqKDS9jlj48hmbzPl7TgE5KgwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlXgwDQYJ KoZIhvcNAQELBQADggEBAH7wUXtgScvNSdsyr+lcgacB6Q/h5M3dmEpdXDtU6/wx G/qUGjnVYb1NtV7S6gO7glh54FECdMn2AVsueeKXIeZh+Jm+YNzQqy67VsGmRWvS M0FvSF2gyW9uwMWeYMTIJw+dZjvoHZFR2iKcSpqcPPJP9eAUdqs9I45bwTpgCQq5 2MyXks/MBVnWPh5DglVxtEf+/hwokfDwih6NUZvsVCYBIOmICzhlvHjUW8xSmCwe K4nw7HA6uaQuw0bjrGU/CxvOtoXKQWj4Ie7eOIkSjMoteQxzSACumIo287F7sPRr bOXrp8hWQ2dRf7bhGpZvIDEl7JGVB6Ci2yZKY4UKuO8= -----END CERTIFICATE-----Generated at Mon Mar 2 19:30:32 2026 by rpki-client