$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa File: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (raw, json) Hash identifier: VM1TTTBtFqXiHv5MQ1XeRw0drRLzWLiwHDKK5EhMyGk= Subject key identifier: 7E:79:5C:51:DB:A4:44:23:3C:38:5B:5F:40:66:72:D1:35:0C:11:85 Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 3DE9FA6C07CDEDBFE7FBF3BF2D3DDC17A533E0BD Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa Signing time: Thu 09 Apr 2026 04:04:00 +0000 ROA not before: Thu 09 Apr 2026 03:59:00 +0000 ROA not after: Thu 08 Apr 2027 04:04:00 +0000 asID: 141675 IP address blocks: 103.158.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e9:fa:6c:07:cd:ed:bf:e7:fb:f3:bf:2d:3d:dc:17:a5:33:e0:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: Apr 9 03:59:00 2026 GMT Not After : Apr 8 04:04:00 2027 GMT Subject: CN=7E795C51DBA444233C385B5F406672D1350C1185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:37:e9:95:8e:7f:c6:84:7e:4a:63:59:42:b3: bc:cb:ae:8c:a1:0f:0a:7f:b5:c5:63:3b:c6:b8:a5: 0d:38:29:70:ad:49:04:33:e0:cc:64:b7:b4:e2:21: f6:6c:bd:cc:cd:93:df:e0:fc:0b:c9:0e:c8:16:3c: 3e:ff:5d:61:06:28:0e:12:26:d4:f5:73:9c:58:c5: 85:88:21:91:70:3b:d1:ff:f8:e5:84:ca:f9:f2:1e: f2:c0:46:16:df:8b:f8:e9:ab:22:22:b4:fb:dd:0b: 45:d5:e2:a2:2f:ea:35:35:a6:95:e4:9b:f2:df:a7: ad:bd:dd:c1:b2:85:e9:c7:1e:be:c0:f6:d2:83:50: 32:d3:01:38:90:a7:f3:02:b5:a8:52:29:28:e1:87: c6:e7:eb:10:84:96:2a:fd:63:2e:0d:e0:5f:eb:ca: 65:99:be:2a:8b:ca:a4:2f:89:fa:83:a4:98:21:a4: 23:ca:37:87:c6:d7:04:c2:20:30:d3:c3:6c:6c:30: f0:75:00:32:9f:58:19:a3:20:cf:b3:48:cd:c4:80: 74:ce:7b:cb:09:aa:a0:da:7c:62:6c:fc:51:75:fc: 9c:b8:e8:8b:9c:b5:fc:45:f9:e5:96:79:91:92:fb: d5:41:a8:b2:0b:19:24:36:19:62:31:e9:27:ce:13: 3c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:79:5C:51:DB:A4:44:23:3C:38:5B:5F:40:66:72:D1:35:0C:11:85 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.27.0/24 Signature Algorithm: sha256WithRSAEncryption 24:5f:ee:4d:0e:dd:48:a7:38:0c:23:b5:47:7a:89:87:53:05: 11:7f:cf:2c:51:53:c8:f0:51:e4:82:91:99:4c:e4:b1:19:06: 2d:55:dd:48:36:e5:5a:53:88:27:c9:e1:61:98:ad:ec:07:33: bb:24:a9:13:ea:8d:bd:3d:5b:10:88:67:1f:60:da:10:35:9d: ac:a1:24:6f:95:71:0b:2a:f4:45:1c:80:41:0c:9d:3b:0a:86: 6e:b7:a5:97:72:fe:d5:4c:2b:11:46:74:a9:cc:c4:f0:23:b3: 2c:4c:e3:f6:c1:f3:bd:e3:90:0c:d9:85:ca:28:48:86:8f:1e: cd:c7:67:53:71:3f:f1:bb:c0:db:de:ce:ec:c1:cf:d8:a9:cb: 29:7a:6a:6e:89:b3:7f:ac:e1:57:05:07:65:5c:00:c0:01:11: 2f:ad:68:2a:c3:63:50:73:b4:fe:e1:45:47:9e:f1:81:ef:51: f0:84:15:13:45:e2:de:d3:10:66:38:b5:47:b8:3e:8f:4b:43: 6e:b1:13:2e:a2:e7:ba:8d:75:e1:2d:3e:c3:d0:f4:bb:8f:6b: 2a:55:f1:39:e7:70:31:ac:4b:da:1e:a2:47:57:b5:ca:c0:5e: 32:1c:f9:fd:bc:d8:49:f8:d6:69:74:12:6d:4f:45:0b:d2:77: 1b:11:11:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPen6bAfN7b/n+/O/LT3cF6Uz4L0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNjA0MDkwMzU5MDBaFw0yNzA0MDgwNDA0MDBaMDMxMTAvBgNV BAMTKDdFNzk1QzUxREJBNDQ0MjMzQzM4NUI1RjQwNjY3MkQxMzUwQzExODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhN+mVjn/GhH5KY1lCs7zLroyh Dwp/tcVjO8a4pQ04KXCtSQQz4Mxkt7TiIfZsvczNk9/g/AvJDsgWPD7/XWEGKA4S JtT1c5xYxYWIIZFwO9H/+OWEyvnyHvLARhbfi/jpqyIitPvdC0XV4qIv6jU1ppXk m/Lfp6293cGyhenHHr7A9tKDUDLTATiQp/MCtahSKSjhh8bn6xCElir9Yy4N4F/r ymWZviqLyqQvifqDpJghpCPKN4fG1wTCIDDTw2xsMPB1ADKfWBmjIM+zSM3EgHTO e8sJqqDafGJs/FF1/Jy46IuctfxF+eWWeZGS+9VBqLILGSQ2GWIx6SfOEzytAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfnlcUdukRCM8OFtfQGZy0TUMEYUwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMxMzAzMzJlMzEzNTM4MmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ54bMA0GCSqG SIb3DQEBCwUAA4IBAQAkX+5NDt1IpzgMI7VHeomHUwURf88sUVPI8FHkgpGZTOSx GQYtVd1INuVaU4gnyeFhmK3sBzO7JKkT6o29PVsQiGcfYNoQNZ2soSRvlXELKvRF HIBBDJ07CoZut6WXcv7VTCsRRnSpzMTwI7MsTOP2wfO945AM2YXKKEiGjx7Nx2dT cT/xu8Db3s7swc/YqcspempuibN/rOFXBQdlXADAAREvrWgqw2NQc7T+4UVHnvGB 71HwhBUTReLe0xBmOLVHuD6PS0NusRMuoue6jXXhLT7D0PS7j2sqVfE553AxrEva HqJHV7XKwF4yHPn9vNhJ+NZpdBJtT0UL0ncbERH4 -----END CERTIFICATE-----Generated at Sun Apr 19 11:55:21 2026 by rpki-client