$ rpki-client -vvf repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa File: 3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa (raw, json) Hash identifier: 86RSH82ovhKhsP6+isstgOwmm7AlHldLUkgwqqf5iMI= Subject key identifier: 96:D9:E0:C9:EA:79:6B:3A:DC:D6:94:3C:C0:AB:4B:D8:6A:5F:2B:ED Certificate issuer: /CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Certificate serial: 333990AD53E731610586BA30FCB0DCF072D240D9 Authority key identifier: FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa Signing time: Wed 01 Apr 2026 03:00:01 +0000 ROA not before: Wed 01 Apr 2026 02:55:01 +0000 ROA not after: Wed 31 Mar 2027 03:00:01 +0000 asID: 140417 IP address blocks: 103.151.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 09:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:39:90:ad:53:e7:31:61:05:86:ba:30:fc:b0:dc:f0:72:d2:40:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Validity Not Before: Apr 1 02:55:01 2026 GMT Not After : Mar 31 03:00:01 2027 GMT Subject: CN=96D9E0C9EA796B3ADCD6943CC0AB4BD86A5F2BED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:84:22:ac:b1:85:fe:c7:12:7e:9d:2c:13:27: 6f:ea:5e:4f:5f:96:f7:cf:13:7b:fe:57:d6:3c:21: 93:95:67:26:8a:78:65:60:ef:05:12:37:44:53:57: 2d:95:ed:79:77:31:29:c6:15:7d:69:78:1b:27:b3: a4:cb:93:6d:d6:ca:84:2d:66:3d:0d:03:cb:f8:e1: 2a:13:f8:e6:4f:f4:f6:fd:62:9e:d1:aa:29:bb:75: 3b:46:76:e0:96:ce:f4:a6:5e:04:29:5c:bf:12:c5: aa:4f:55:eb:11:6f:01:24:89:d5:2f:ee:92:6f:a5: 25:79:76:91:57:d9:be:de:4e:28:bf:97:02:ba:36: f3:3f:98:f7:0c:68:44:8c:46:05:44:67:ac:f5:ce: 03:3e:ab:51:60:02:a6:fc:7c:5b:2d:8d:15:d0:5b: 5d:82:1a:20:35:5a:1b:1a:25:86:1d:2d:54:69:c7: 98:34:43:f1:33:bd:cb:90:89:d8:9c:04:af:e8:fe: 49:64:78:27:47:51:3d:24:7a:a7:8e:5e:74:86:38: 9b:c1:e9:8a:d3:87:bc:ca:0f:09:d7:11:44:75:ae: 46:82:20:62:9b:38:3c:b8:55:6f:f6:09:f8:cc:4b: 1c:b8:eb:85:79:7b:eb:68:d6:97:e9:b3:76:3e:7e: d2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D9:E0:C9:EA:79:6B:3A:DC:D6:94:3C:C0:AB:4B:D8:6A:5F:2B:ED X509v3 Authority Key Identifier: keyid:FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.140.0/23 Signature Algorithm: sha256WithRSAEncryption 16:be:ca:23:48:26:8e:b3:24:63:8b:10:f0:0c:9a:d9:46:ad: cc:7a:14:fe:81:1b:f9:17:ff:b8:9b:f2:6b:32:2c:5b:5f:7c: f4:3e:01:f6:3a:0c:13:fb:2b:53:fe:2d:bd:20:c1:33:b8:b2: 15:29:21:7e:52:8e:02:0c:a8:53:0b:0f:d1:bb:9b:44:2d:f4: f3:53:78:6f:a2:75:56:9a:91:ea:ff:32:76:31:b2:a0:06:7f: 9e:11:a0:ff:ba:e2:8c:5f:27:92:14:3d:ed:96:98:7a:c7:93: 5c:7f:01:b0:36:4e:16:b3:16:5b:4f:ed:6a:f9:6b:16:a7:2c: 14:ea:ff:c2:d7:9d:dd:5a:8d:ae:4e:59:11:2f:85:fd:b9:a2: 00:48:7c:a4:aa:ac:39:8a:15:37:ac:1d:06:97:32:6b:56:84: 76:f6:c2:22:84:24:c3:83:85:16:c6:7c:61:12:a9:0c:0b:28: b3:d4:b7:de:ea:7b:a2:d8:2c:4d:c5:3c:95:4a:ce:0d:56:ff: 96:ca:6d:c6:47:65:66:dc:37:c4:9f:5e:8f:55:69:ea:95:4b: e8:8b:a7:1a:a1:85:a2:3e:0a:fc:e7:ca:14:c0:5e:0a:5c:d9: 29:38:15:79:a5:57:c3:12:5c:d6:7a:26:e1:8f:4d:9f:ed:93: 5b:dc:20:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMzmQrVPnMWEFhrow/LDc8HLSQNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZE QjAwNTdCMzAeFw0yNjA0MDEwMjU1MDFaFw0yNzAzMzEwMzAwMDFaMDMxMTAvBgNV BAMTKDk2RDlFMEM5RUE3OTZCM0FEQ0Q2OTQzQ0MwQUI0QkQ4NkE1RjJCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdhCKssYX+xxJ+nSwTJ2/qXk9f lvfPE3v+V9Y8IZOVZyaKeGVg7wUSN0RTVy2V7Xl3MSnGFX1peBsns6TLk23WyoQt Zj0NA8v44SoT+OZP9Pb9Yp7Rqim7dTtGduCWzvSmXgQpXL8SxapPVesRbwEkidUv 7pJvpSV5dpFX2b7eTii/lwK6NvM/mPcMaESMRgVEZ6z1zgM+q1FgAqb8fFstjRXQ W12CGiA1WhsaJYYdLVRpx5g0Q/EzvcuQidicBK/o/klkeCdHUT0keqeOXnSGOJvB 6YrTh7zKDwnXEUR1rkaCIGKbODy4VW/2CfjMSxy464V5e+to1pfps3Y+ftLjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUltngyep5azrc1pQ8wKtL2GpfK+0wHwYDVR0j BBgwFoAU/NW1Yvrtm51n+d5dtwV4v9sAV7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDcwMjZhOS0wYzlhLTRkNzktYWQ2Ny0yYzlkYmQzNjZkMGIvMC9GQ0Q1QjU2MkZB RUQ5QjlENjdGOURFNURCNzA1NzhCRkRCMDA1N0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZEQjAw NTdCMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0NzAyNmE5LTBjOWEtNGQ3OS1h ZDY3LTJjOWRiZDM2NmQwYi8wLzMxMzAzMzJlMzEzNTMxMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnl4wwDQYJ KoZIhvcNAQELBQADggEBABa+yiNIJo6zJGOLEPAMmtlGrcx6FP6BG/kX/7ib8msy LFtffPQ+AfY6DBP7K1P+Lb0gwTO4shUpIX5SjgIMqFMLD9G7m0Qt9PNTeG+idVaa ker/MnYxsqAGf54RoP+64oxfJ5IUPe2WmHrHk1x/AbA2ThazFltP7Wr5axanLBTq /8LXnd1aja5OWREvhf25ogBIfKSqrDmKFTesHQaXMmtWhHb2wiKEJMODhRbGfGES qQwLKLPUt97qe6LYLE3FPJVKzg1W/5bKbcZHZWbcN8SfXo9VaeqVS+iLpxqhhaI+ CvznyhTAXgpc2Sk4FXmlV8MSXNZ6JuGPTZ/tk1vcIKk= -----END CERTIFICATE-----Generated at Sun Apr 19 15:09:36 2026 by rpki-client