$ rpki-client -vvf repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa File: 3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa (raw, json) Hash identifier: mr9oJkqJu33cE+sO1xTJ5/yRhuztRXByZdlSuqYyA6I= Subject key identifier: 81:5F:3F:CE:5A:37:93:2D:C0:09:FA:C9:28:00:CC:B2:DF:AA:21:C9 Certificate issuer: /CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Certificate serial: 0F8EBBDE1398A7A6023E87730591423B01C124EF Authority key identifier: FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa Signing time: Sun 19 Apr 2026 01:00:01 +0000 ROA not before: Sun 19 Apr 2026 00:55:01 +0000 ROA not after: Sun 18 Apr 2027 01:00:01 +0000 asID: 140417 IP address blocks: 103.151.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 09:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8e:bb:de:13:98:a7:a6:02:3e:87:73:05:91:42:3b:01:c1:24:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Validity Not Before: Apr 19 00:55:01 2026 GMT Not After : Apr 18 01:00:01 2027 GMT Subject: CN=815F3FCE5A37932DC009FAC92800CCB2DFAA21C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f1:bb:f3:d6:9f:5d:0a:58:22:66:66:63:7c: 21:c6:5a:4a:a8:a1:af:35:cb:31:ef:8f:f1:4c:fc: ef:8e:51:dc:77:45:dc:d7:b2:d7:b0:85:64:cc:2b: 64:82:13:9c:1e:fd:1d:0f:a3:c2:bb:c7:b4:4f:05: 30:fa:3e:9f:1e:c7:cd:13:9e:78:be:23:e9:f5:a1: 58:ca:63:3d:9f:c6:d4:f0:76:88:c0:3a:65:77:a1: 1d:3a:90:20:f3:be:3d:6d:65:a2:37:bc:3c:0b:92: 6e:d0:a9:75:54:1f:34:60:01:02:c5:04:9c:4f:9c: b1:de:99:21:24:0f:65:65:12:70:63:e3:8c:23:97: e6:c6:93:d6:bf:f0:18:eb:18:d4:75:3a:30:ca:a5: af:d7:6d:38:34:ec:07:63:f7:08:fe:79:df:d8:8e: 46:9c:77:d6:8c:6f:05:76:11:f5:00:e9:04:61:83: c7:0a:cf:d4:05:e6:5d:b9:43:7c:76:89:13:84:c0: c7:49:7e:8b:25:50:d2:bd:d1:36:28:b2:01:1a:c3: f0:b8:b1:34:bf:d4:4f:b5:8b:3b:a8:eb:d5:94:05: 60:4c:04:34:18:78:24:97:94:80:25:f6:3d:8d:62: b0:d7:84:fa:a1:44:6e:a0:b0:1b:44:5c:60:a1:24: ea:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:5F:3F:CE:5A:37:93:2D:C0:09:FA:C9:28:00:CC:B2:DF:AA:21:C9 X509v3 Authority Key Identifier: keyid:FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.140.0/23 Signature Algorithm: sha256WithRSAEncryption 80:c3:98:d5:f2:77:fc:47:52:f0:48:d4:56:67:13:fc:3f:72: 71:e6:2f:08:aa:f2:53:69:5b:e4:c4:e7:07:e1:66:b7:74:21: ad:c7:34:49:43:8e:3f:a6:f6:23:de:30:52:64:32:6c:62:c2: 1f:52:80:06:30:01:76:e2:20:8d:4a:19:bb:0e:c2:1e:bf:db: 8e:77:e4:d6:8a:c5:ab:14:7e:11:cd:8d:7a:8e:0c:ed:d7:31: 25:dd:03:28:88:c0:af:c3:b1:5d:b3:70:ca:8b:3d:dd:60:4d: e0:22:8a:02:0b:06:b1:61:76:84:22:10:f4:27:e2:aa:2a:c9: dd:51:b1:e3:78:56:dd:37:a0:98:68:4f:1e:46:1f:11:d1:7f: 92:dd:21:ea:6a:57:46:87:6a:b5:db:7d:15:ca:fd:a2:3c:cd: 54:de:92:c8:2d:05:ec:58:44:ca:a2:e6:2d:90:86:4b:14:ac: 50:20:32:52:33:31:23:ec:e1:1f:45:1f:c2:56:d2:72:60:50: f8:13:5b:7b:44:84:01:be:84:0c:78:49:3f:b5:f5:0b:e7:97: 64:87:ff:42:8e:97:b6:22:a5:0d:dc:e2:2a:26:1b:3b:9f:e7: 0f:bd:7e:60:08:29:35:d3:65:2c:7a:7a:e4:20:e2:76:0f:c3: 65:e9:04:40 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD4673hOYp6YCPodzBZFCOwHBJO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZE QjAwNTdCMzAeFw0yNjA0MTkwMDU1MDFaFw0yNzA0MTgwMTAwMDFaMDMxMTAvBgNV BAMTKDgxNUYzRkNFNUEzNzkzMkRDMDA5RkFDOTI4MDBDQ0IyREZBQTIxQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp8bvz1p9dClgiZmZjfCHGWkqo oa81yzHvj/FM/O+OUdx3RdzXstewhWTMK2SCE5we/R0Po8K7x7RPBTD6Pp8ex80T nni+I+n1oVjKYz2fxtTwdojAOmV3oR06kCDzvj1tZaI3vDwLkm7QqXVUHzRgAQLF BJxPnLHemSEkD2VlEnBj44wjl+bGk9a/8BjrGNR1OjDKpa/XbTg07Adj9wj+ed/Y jkacd9aMbwV2EfUA6QRhg8cKz9QF5l25Q3x2iROEwMdJfoslUNK90TYosgEaw/C4 sTS/1E+1izuo69WUBWBMBDQYeCSXlIAl9j2NYrDXhPqhRG6gsBtEXGChJOpNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgV8/zlo3ky3ACfrJKADMst+qIckwHwYDVR0j BBgwFoAU/NW1Yvrtm51n+d5dtwV4v9sAV7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDcwMjZhOS0wYzlhLTRkNzktYWQ2Ny0yYzlkYmQzNjZkMGIvMC9GQ0Q1QjU2MkZB RUQ5QjlENjdGOURFNURCNzA1NzhCRkRCMDA1N0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZEQjAw NTdCMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0NzAyNmE5LTBjOWEtNGQ3OS1h ZDY3LTJjOWRiZDM2NmQwYi8wLzMxMzAzMzJlMzEzNTMxMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnl4wwDQYJ KoZIhvcNAQELBQADggEBAIDDmNXyd/xHUvBI1FZnE/w/cnHmLwiq8lNpW+TE5wfh Zrd0Ia3HNElDjj+m9iPeMFJkMmxiwh9SgAYwAXbiII1KGbsOwh6/24535NaKxasU fhHNjXqODO3XMSXdAyiIwK/DsV2zcMqLPd1gTeAiigILBrFhdoQiEPQn4qoqyd1R seN4Vt03oJhoTx5GHxHRf5LdIepqV0aHarXbfRXK/aI8zVTeksgtBexYRMqi5i2Q hksUrFAgMlIzMSPs4R9FH8JW0nJgUPgTW3tEhAG+hAx4ST+19Qvnl2SH/0KOl7Yi pQ3c4iomGzuf5w+9fmAIKTXTZSx6euQg4nYPw2XpBEA= -----END CERTIFICATE-----Generated at Sun Apr 19 15:09:35 2026 by rpki-client