$ rpki-client -vvf repo-rpki.idnic.net/repo/d774b18c-f263-4fe1-8df8-1e7c68bfbefc/0/3130332e39302e3235352e302f32342d3234203d3e20313338303836.roa File: 3130332e39302e3235352e302f32342d3234203d3e20313338303836.roa (raw, json) Hash identifier: 24/NhCGBGOt7WZwcmBT+s4GINfQM7GC17qrWB072MSU= Subject key identifier: E5:05:8D:7B:13:2E:56:DC:44:24:B9:C9:C8:A1:05:8A:2B:72:F8:8F Certificate issuer: /CN=57D075B2873A1E1F844485DAAC774C656EB9A611 Certificate serial: 2B0820A581F40B416A651E42FF467D6EB1712745 Authority key identifier: 57:D0:75:B2:87:3A:1E:1F:84:44:85:DA:AC:77:4C:65:6E:B9:A6:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D075B2873A1E1F844485DAAC774C656EB9A611.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d774b18c-f263-4fe1-8df8-1e7c68bfbefc/0/3130332e39302e3235352e302f32342d3234203d3e20313338303836.roa Signing time: Tue 03 Feb 2026 07:00:00 +0000 ROA not before: Tue 03 Feb 2026 06:55:00 +0000 ROA not after: Tue 02 Feb 2027 07:00:00 +0000 asID: 138086 IP address blocks: 103.90.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d774b18c-f263-4fe1-8df8-1e7c68bfbefc/0/57D075B2873A1E1F844485DAAC774C656EB9A611.crl rsync://repo-rpki.idnic.net/repo/d774b18c-f263-4fe1-8df8-1e7c68bfbefc/0/57D075B2873A1E1F844485DAAC774C656EB9A611.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D075B2873A1E1F844485DAAC774C656EB9A611.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 17:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:08:20:a5:81:f4:0b:41:6a:65:1e:42:ff:46:7d:6e:b1:71:27:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57D075B2873A1E1F844485DAAC774C656EB9A611 Validity Not Before: Feb 3 06:55:00 2026 GMT Not After : Feb 2 07:00:00 2027 GMT Subject: CN=E5058D7B132E56DC4424B9C9C8A1058A2B72F88F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:54:a8:b4:42:b7:e5:98:95:18:09:ca:ec:ce: d9:dc:04:c6:c0:1a:cc:b2:b0:84:b2:c4:6d:1e:b5: e5:aa:8e:25:d1:56:1d:59:ee:38:e3:9b:3f:39:0a: 9d:d6:3e:89:49:1e:1b:5b:e9:5c:92:77:21:82:87: 11:19:6c:e1:ba:b0:03:85:e0:e6:16:be:5c:ed:2d: d3:8a:c2:9c:a2:4a:ec:7a:71:68:29:33:5c:d3:72: f0:ae:d4:37:cf:82:1f:d9:75:bd:94:7b:6f:81:7f: c4:68:59:03:04:92:84:25:65:32:6e:ba:37:8b:7f: 62:bf:1f:fc:34:f3:66:63:b0:9a:04:c6:1d:c0:42: a5:f1:00:e0:78:1f:27:37:0f:e0:d8:9b:42:90:d5: 5d:84:67:82:21:c8:70:e1:70:7c:3b:e3:3a:a8:6d: da:8f:4b:d0:d2:42:86:f5:90:01:23:b6:04:63:9a: 3e:b7:63:44:5f:4b:ae:15:a5:b3:64:0f:44:10:6c: 3f:6f:1b:2a:c4:76:7a:9a:ed:0c:8a:2a:49:55:fb: af:03:7d:73:29:23:aa:22:9b:9a:07:b5:33:2d:e5: 6e:eb:12:63:b5:a8:80:0a:ae:ec:17:eb:f4:f9:39: ef:5f:ff:fc:e0:f3:d8:15:40:ae:d1:67:f1:6c:80: 83:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:05:8D:7B:13:2E:56:DC:44:24:B9:C9:C8:A1:05:8A:2B:72:F8:8F X509v3 Authority Key Identifier: keyid:57:D0:75:B2:87:3A:1E:1F:84:44:85:DA:AC:77:4C:65:6E:B9:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d774b18c-f263-4fe1-8df8-1e7c68bfbefc/0/57D075B2873A1E1F844485DAAC774C656EB9A611.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D075B2873A1E1F844485DAAC774C656EB9A611.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d774b18c-f263-4fe1-8df8-1e7c68bfbefc/0/3130332e39302e3235352e302f32342d3234203d3e20313338303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.255.0/24 Signature Algorithm: sha256WithRSAEncryption b4:a9:46:7c:a9:ac:c1:08:6b:27:97:33:57:54:48:4d:a8:62: 9a:6c:25:04:9d:eb:ef:d1:27:9b:fd:98:7f:4a:bb:2b:cc:cf: 52:74:eb:b5:84:5c:03:19:ac:d9:1c:bf:59:a2:f3:ff:85:99: 03:30:b9:90:3f:bd:16:8e:d1:91:83:0f:0f:78:3d:31:f8:e8: 62:33:3e:b3:3a:36:ee:53:f7:c1:a1:3c:b7:39:75:a8:d5:c2: 2d:56:99:a4:88:87:cc:ff:50:e6:bb:b0:a9:97:34:e9:e8:51: bb:6e:f5:d0:e1:e8:63:f5:fa:fe:20:5f:53:0c:b4:99:43:a1: 3f:47:32:84:7b:0e:89:1e:41:a6:7f:69:98:ea:90:92:0b:51: ba:21:e0:15:27:cb:07:40:dc:a7:b5:a2:04:70:e6:2d:52:a8: a7:d5:24:d0:af:7f:b6:54:a4:e2:95:d2:82:1e:0e:95:17:e8: 65:f6:e6:02:00:31:f0:c0:fa:6a:27:cd:9a:61:cf:a0:34:ee: d3:55:48:01:71:ef:31:17:16:de:b1:06:9a:b4:2f:8e:c4:43: 94:d1:e4:ad:18:84:7c:73:45:a8:ec:e1:52:2a:f8:ef:35:f4: 51:a5:7e:37:73:e6:ab:a0:e4:e9:2c:6e:90:52:15:36:67:5c: c3:99:b2:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKwggpYH0C0FqZR5C/0Z9brFxJ0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdEMDc1QjI4NzNBMUUxRjg0NDQ4NURBQUM3NzRDNjU2 RUI5QTYxMTAeFw0yNjAyMDMwNjU1MDBaFw0yNzAyMDIwNzAwMDBaMDMxMTAvBgNV BAMTKEU1MDU4RDdCMTMyRTU2REM0NDI0QjlDOUM4QTEwNThBMkI3MkY4OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOVKi0QrflmJUYCcrsztncBMbA GsyysISyxG0eteWqjiXRVh1Z7jjjmz85Cp3WPolJHhtb6VySdyGChxEZbOG6sAOF 4OYWvlztLdOKwpyiSux6cWgpM1zTcvCu1DfPgh/Zdb2Ue2+Bf8RoWQMEkoQlZTJu ujeLf2K/H/w082ZjsJoExh3AQqXxAOB4Hyc3D+DYm0KQ1V2EZ4IhyHDhcHw74zqo bdqPS9DSQob1kAEjtgRjmj63Y0RfS64VpbNkD0QQbD9vGyrEdnqa7QyKKklV+68D fXMpI6oim5oHtTMt5W7rEmO1qIAKruwX6/T5Oe9f//zg89gVQK7RZ/FsgINxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5QWNexMuVtxEJLnJyKEFiity+I8wHwYDVR0j BBgwFoAUV9B1soc6Hh+ERIXarHdMZW65phEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Nzc0YjE4Yy1mMjYzLTRmZTEtOGRmOC0xZTdjNjhiZmJlZmMvMC81N0QwNzVCMjg3 M0ExRTFGODQ0NDg1REFBQzc3NEM2NTZFQjlBNjExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTdEMDc1QjI4NzNBMUUxRjg0NDQ4NURBQUM3NzRDNjU2RUI5 QTYxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3NzRiMThjLWYyNjMtNGZlMS04 ZGY4LTFlN2M2OGJmYmVmYy8wLzMxMzAzMzJlMzkzMDJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1r/MA0GCSqG SIb3DQEBCwUAA4IBAQC0qUZ8qazBCGsnlzNXVEhNqGKabCUEnevv0Seb/Zh/Srsr zM9SdOu1hFwDGazZHL9ZovP/hZkDMLmQP70WjtGRgw8PeD0x+OhiMz6zOjbuU/fB oTy3OXWo1cItVpmkiIfM/1Dmu7CplzTp6FG7bvXQ4ehj9fr+IF9TDLSZQ6E/RzKE ew6JHkGmf2mY6pCSC1G6IeAVJ8sHQNyntaIEcOYtUqin1STQr3+2VKTildKCHg6V F+hl9uYCADHwwPpqJ82aYc+gNO7TVUgBce8xFxbesQaatC+OxEOU0eStGIR8c0Wo 7OFSKvjvNfRRpX43c+aroOTpLG6QUhU2Z1zDmbIC -----END CERTIFICATE-----Generated at Mon Mar 2 16:11:00 2026 by rpki-client