$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa File: 3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa (raw, json) Hash identifier: FKvQcIFjQ4jSFjJqopycW3C8xU5WMAd9DxBpUx0ooOo= Subject key identifier: C6:65:0F:DB:02:72:1B:E5:3A:83:C5:A7:80:F6:21:D2:3C:01:82:E5 Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Certificate serial: 3F8844A7FF1FEE8B5D244571241F0F59F9DF4EBF Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa Signing time: Sat 18 Apr 2026 12:00:01 +0000 ROA not before: Sat 18 Apr 2026 11:55:01 +0000 ROA not after: Sat 17 Apr 2027 12:00:01 +0000 asID: 136820 IP address blocks: 103.98.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:88:44:a7:ff:1f:ee:8b:5d:24:45:71:24:1f:0f:59:f9:df:4e:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Validity Not Before: Apr 18 11:55:01 2026 GMT Not After : Apr 17 12:00:01 2027 GMT Subject: CN=C6650FDB02721BE53A83C5A780F621D23C0182E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:86:5f:97:34:2f:2d:43:57:ca:28:e5:b4:9b: 8f:80:93:bb:27:ee:2e:ec:69:3f:af:6b:a2:56:df: 98:55:3c:94:6d:23:74:e3:99:98:5c:56:54:a6:b7: 45:b1:e9:9e:62:9e:17:e2:d0:2a:7c:4b:99:d0:05: 4e:99:23:1f:5b:95:03:fc:31:dd:61:80:5e:56:b0: d4:05:fa:98:d2:01:86:69:82:fb:a7:2c:6a:34:24: b9:63:e4:8c:1e:ea:ec:13:59:d6:81:39:2a:21:81: 46:b6:01:3e:81:4e:2f:d5:bd:73:86:1e:b7:48:63: 1e:ac:ec:e0:45:12:b2:5d:ed:9b:5b:11:fd:53:29: 17:03:02:83:e1:fa:da:29:3e:84:ee:48:35:1b:5e: 4d:13:82:f5:eb:25:c3:5f:55:f8:a2:7a:48:34:88: 6f:5c:75:b7:36:49:13:08:fc:23:db:fb:b0:50:ce: 1e:a6:4a:e5:85:2e:ac:45:27:d0:bc:cf:c0:60:90: 31:e5:4f:f3:cf:96:7e:68:54:fe:d5:14:90:21:b6: d2:d3:03:06:53:c4:fb:8b:92:ac:fe:aa:cd:86:4f: 4c:a4:4e:74:40:6b:4b:1d:30:7f:fe:a0:b6:a9:40: 61:12:9b:17:89:84:95:a1:41:dd:62:cf:57:a5:63: 32:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:65:0F:DB:02:72:1B:E5:3A:83:C5:A7:80:F6:21:D2:3C:01:82:E5 X509v3 Authority Key Identifier: keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.119.0/24 Signature Algorithm: sha256WithRSAEncryption 77:0d:7d:9a:b6:ea:2c:20:a4:1c:3e:d3:0f:76:f8:3e:9e:e9: fc:b3:bc:ad:d7:c0:90:0a:4a:d1:94:0d:32:1d:d3:2e:0d:ec: 9f:3d:f2:55:df:0e:b1:2c:e1:2a:31:c8:21:e5:b5:d6:41:ca: ad:c8:09:ed:75:a4:1a:82:bf:ad:ae:6a:d7:88:71:e0:f0:40: fe:d2:79:5b:53:23:98:7c:f3:58:43:1c:5e:8f:c2:8e:b5:1d: 39:48:a4:cd:8a:d6:c2:71:3b:8c:4d:e3:fa:cb:d7:06:59:fa: f2:2c:ea:e8:6a:f3:76:32:3f:08:dc:6a:8c:01:d3:73:89:45: 73:ab:98:58:7c:fb:0e:75:30:ce:07:27:ff:60:a6:6e:bf:59: 73:2f:12:1b:ab:cf:d4:73:bb:6d:60:c2:d3:c8:f4:60:61:e2: 6e:d4:5c:cb:e5:a2:11:55:3d:c6:16:7f:c8:ef:c7:e2:43:e4: f3:10:0d:af:d7:4c:a0:b0:1c:5e:be:c4:48:f1:97:0a:03:85: f3:89:bd:3b:38:7d:fb:8b:07:3a:cb:64:cb:14:23:b4:92:80: 3c:8b:2e:a1:5d:70:d4:64:f5:c8:68:5e:da:c5:95:1e:ab:03: 62:8b:fe:ff:c9:86:16:dd:c4:d4:01:12:17:ee:e4:c6:12:e1: 09:8d:e1:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP4hEp/8f7otdJEVxJB8PWfnfTr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcy N0Q2RTA4ODAeFw0yNjA0MTgxMTU1MDFaFw0yNzA0MTcxMjAwMDFaMDMxMTAvBgNV BAMTKEM2NjUwRkRCMDI3MjFCRTUzQTgzQzVBNzgwRjYyMUQyM0MwMTgyRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEhl+XNC8tQ1fKKOW0m4+Ak7sn 7i7saT+va6JW35hVPJRtI3TjmZhcVlSmt0Wx6Z5inhfi0Cp8S5nQBU6ZIx9blQP8 Md1hgF5WsNQF+pjSAYZpgvunLGo0JLlj5Iwe6uwTWdaBOSohgUa2AT6BTi/VvXOG HrdIYx6s7OBFErJd7ZtbEf1TKRcDAoPh+topPoTuSDUbXk0TgvXrJcNfVfiiekg0 iG9cdbc2SRMI/CPb+7BQzh6mSuWFLqxFJ9C8z8BgkDHlT/PPln5oVP7VFJAhttLT AwZTxPuLkqz+qs2GT0ykTnRAa0sdMH/+oLapQGESmxeJhJWhQd1iz1elYzKhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxmUP2wJyG+U6g8WngPYh0jwBguUwHwYDVR0j BBgwFoAUPiFzzOZ/ddKfHKqnOebMZyfW4IgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Q1Mzk0OC1kZGYzLTQ0OWEtYmYyYi1jZjNmN2FlMTc2ZDMvMC8zRTIxNzNDQ0U2 N0Y3NUQyOUYxQ0FBQTczOUU2Q0M2NzI3RDZFMDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcyN0Q2 RTA4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZDUzOTQ4LWRkZjMtNDQ5YS1i ZjJiLWNmM2Y3YWUxNzZkMy8wLzMxMzAzMzJlMzkzODJlMzEzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J3MA0GCSqG SIb3DQEBCwUAA4IBAQB3DX2atuosIKQcPtMPdvg+nun8s7yt18CQCkrRlA0yHdMu DeyfPfJV3w6xLOEqMcgh5bXWQcqtyAntdaQagr+trmrXiHHg8ED+0nlbUyOYfPNY Qxxej8KOtR05SKTNitbCcTuMTeP6y9cGWfryLOroavN2Mj8I3GqMAdNziUVzq5hY fPsOdTDOByf/YKZuv1lzLxIbq8/Uc7ttYMLTyPRgYeJu1FzL5aIRVT3GFn/I78fi Q+TzEA2v10ygsBxevsRI8ZcKA4Xzib07OH37iwc6y2TLFCO0koA8iy6hXXDUZPXI aF7axZUeqwNii/7/yYYW3cTUARIX7uTGEuEJjeG2 -----END CERTIFICATE-----Generated at Sun Apr 19 15:32:29 2026 by rpki-client