$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131362e302f32322d3232203d3e20313336383230.roa File: 3130332e39382e3131362e302f32322d3232203d3e20313336383230.roa (raw, json) Hash identifier: i54NYnK2GA2WJM2OLug4LshIBq/PRL0PgNo2Bs8E9pY= Subject key identifier: C5:D0:1E:1E:F5:DC:CE:74:0A:50:F8:59:A6:58:B3:79:08:B5:63:37 Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Certificate serial: 7F0E9F92E1E09260FB07C7EE275195C6F1C0F72E Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131362e302f32322d3232203d3e20313336383230.roa Signing time: Sat 18 Apr 2026 12:00:01 +0000 ROA not before: Sat 18 Apr 2026 11:55:01 +0000 ROA not after: Sat 17 Apr 2027 12:00:01 +0000 asID: 136820 IP address blocks: 103.98.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:0e:9f:92:e1:e0:92:60:fb:07:c7:ee:27:51:95:c6:f1:c0:f7:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Validity Not Before: Apr 18 11:55:01 2026 GMT Not After : Apr 17 12:00:01 2027 GMT Subject: CN=C5D01E1EF5DCCE740A50F859A658B37908B56337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2e:04:86:ce:b8:9c:f7:b3:37:ac:f9:7e:29: c0:86:8a:89:07:a5:eb:75:3d:91:56:1e:1f:4b:37: b0:0c:98:b5:29:0a:6d:a5:ba:b4:84:e1:04:d0:18: 48:d7:90:34:8d:a7:8b:f0:2b:ac:38:c2:b2:14:58: 59:9d:21:e4:06:d7:6f:52:b7:33:25:56:1f:b3:cf: a2:c2:19:85:77:e3:1b:a1:c3:97:e1:15:0f:97:c8: 22:f4:01:e2:87:8e:29:51:2e:51:f3:f0:d2:0f:ea: 00:b4:c9:42:68:9a:2f:55:2a:16:d7:46:d9:4a:8b: 07:d2:38:9f:1d:57:83:8d:12:01:02:e0:b7:34:7c: c1:67:8e:75:f8:78:e9:3e:ae:cd:07:20:88:e5:a5: 8e:93:bb:1a:c1:5c:1e:ca:14:73:a3:85:85:80:63: 2b:28:a3:61:3a:67:d2:7e:6b:d0:80:c0:ad:65:5c: 82:ba:13:d7:f2:db:7b:c9:c8:4e:e1:42:8c:c3:2d: 40:98:e4:ec:7e:f8:8f:4a:cf:a3:e7:dc:92:e3:95: b1:74:1b:66:ed:2f:ba:0a:2c:77:19:28:26:bb:22: ab:2d:9e:d0:24:d6:91:31:c0:3d:6f:35:df:59:06: 9b:69:c9:d0:ba:b8:3b:f5:2a:1a:3e:7c:eb:d7:5c: 5c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D0:1E:1E:F5:DC:CE:74:0A:50:F8:59:A6:58:B3:79:08:B5:63:37 X509v3 Authority Key Identifier: keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131362e302f32322d3232203d3e20313336383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.116.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:fb:a8:25:e3:30:b7:ef:45:fa:40:f8:98:8b:4c:b0:ca:59: d9:a9:9c:b5:0b:1e:a1:4c:0f:87:62:44:a9:ca:02:46:e1:3c: fe:d3:45:50:a4:7b:b8:7c:da:40:02:7b:b2:10:32:76:8c:31: 26:c9:12:6a:60:0a:f0:15:49:28:87:f5:7d:ca:c0:df:cb:e1: 7a:d8:b5:5d:1a:d0:62:1d:31:11:f3:48:cd:f4:5f:e8:05:f1: 1c:a1:78:3c:c9:6a:e5:72:70:fd:9f:bd:9c:8d:43:48:12:df: 50:f7:e0:85:36:5e:e3:7b:9a:8f:8e:78:05:2b:70:1a:65:4b: 1a:e5:e5:cd:ac:5b:82:de:44:ba:04:4d:c9:2d:fb:e6:d2:01: 8a:ef:9a:87:ba:b0:19:39:d6:39:d9:01:17:ec:47:ae:36:83: 07:cd:69:80:13:ce:47:53:4e:f5:80:1b:86:f5:e2:1d:60:57: 37:8f:28:6d:5f:b0:e9:9f:46:85:eb:c9:d3:e4:71:02:3c:66: 39:63:a5:f5:9b:c9:3a:96:70:da:83:6f:4a:39:c8:3c:c1:c6: 8f:5d:e6:f4:de:d1:41:55:00:c8:95:ed:22:a0:7d:6b:29:0b: 22:f0:76:7f:1f:69:f1:43:5a:45:55:5e:40:75:ae:b3:30:46: 84:dc:04:f9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfw6fkuHgkmD7B8fuJ1GVxvHA9y4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcy N0Q2RTA4ODAeFw0yNjA0MTgxMTU1MDFaFw0yNzA0MTcxMjAwMDFaMDMxMTAvBgNV BAMTKEM1RDAxRTFFRjVEQ0NFNzQwQTUwRjg1OUE2NThCMzc5MDhCNTYzMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2LgSGzric97M3rPl+KcCGiokH pet1PZFWHh9LN7AMmLUpCm2lurSE4QTQGEjXkDSNp4vwK6w4wrIUWFmdIeQG129S tzMlVh+zz6LCGYV34xuhw5fhFQ+XyCL0AeKHjilRLlHz8NIP6gC0yUJomi9VKhbX RtlKiwfSOJ8dV4ONEgEC4Lc0fMFnjnX4eOk+rs0HIIjlpY6TuxrBXB7KFHOjhYWA Yysoo2E6Z9J+a9CAwK1lXIK6E9fy23vJyE7hQozDLUCY5Ox++I9Kz6Pn3JLjlbF0 G2btL7oKLHcZKCa7IqstntAk1pExwD1vNd9ZBptpydC6uDv1Kho+fOvXXFw5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxdAeHvXcznQKUPhZplizeQi1YzcwHwYDVR0j BBgwFoAUPiFzzOZ/ddKfHKqnOebMZyfW4IgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Q1Mzk0OC1kZGYzLTQ0OWEtYmYyYi1jZjNmN2FlMTc2ZDMvMC8zRTIxNzNDQ0U2 N0Y3NUQyOUYxQ0FBQTczOUU2Q0M2NzI3RDZFMDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcyN0Q2 RTA4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZDUzOTQ4LWRkZjMtNDQ5YS1i ZjJiLWNmM2Y3YWUxNzZkMy8wLzMxMzAzMzJlMzkzODJlMzEzMTM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM2MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2J0MA0GCSqG SIb3DQEBCwUAA4IBAQA++6gl4zC370X6QPiYi0ywylnZqZy1Cx6hTA+HYkSpygJG 4Tz+00VQpHu4fNpAAnuyEDJ2jDEmyRJqYArwFUkoh/V9ysDfy+F62LVdGtBiHTER 80jN9F/oBfEcoXg8yWrlcnD9n72cjUNIEt9Q9+CFNl7je5qPjngFK3AaZUsa5eXN rFuC3kS6BE3JLfvm0gGK75qHurAZOdY52QEX7EeuNoMHzWmAE85HU071gBuG9eId YFc3jyhtX7Dpn0aF68nT5HECPGY5Y6X1m8k6lnDag29KOcg8wcaPXeb03tFBVQDI le0ioH1rKQsi8HZ/H2nxQ1pFVV5Ada6zMEaE3AT5 -----END CERTIFICATE-----Generated at Sun Apr 19 14:07:14 2026 by rpki-client