$ rpki-client -vvf repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32332d3233203d3e20313439373036.roa File: 3130332e3138362e3230322e302f32332d3233203d3e20313439373036.roa (raw, json) Hash identifier: 6Ll+KVU1lsdr/MLq/XmtBZBAXBY3FlBiRA4zbHmqAz0= Subject key identifier: C2:85:0E:9A:C0:7D:91:4D:03:66:C3:F4:15:F4:30:17:27:B5:AF:F3 Certificate issuer: /CN=B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C Certificate serial: 416E478C959E5AD92C3200EC81933D9A461C8F85 Authority key identifier: B3:47:BB:A6:BD:11:BF:C5:E5:5F:7F:F3:34:C1:65:E9:FD:21:FA:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32332d3233203d3e20313439373036.roa Signing time: Thu 05 Feb 2026 05:00:53 +0000 ROA not before: Thu 05 Feb 2026 04:55:53 +0000 ROA not after: Thu 04 Feb 2027 05:00:53 +0000 asID: 149706 IP address blocks: 103.186.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.crl rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:6e:47:8c:95:9e:5a:d9:2c:32:00:ec:81:93:3d:9a:46:1c:8f:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C Validity Not Before: Feb 5 04:55:53 2026 GMT Not After : Feb 4 05:00:53 2027 GMT Subject: CN=C2850E9AC07D914D0366C3F415F4301727B5AFF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2f:29:ef:64:af:74:a8:ba:28:b2:fd:5f:b3: 40:b7:98:96:91:51:9b:bf:3e:9b:eb:dc:eb:2f:46: 03:d6:f3:2e:2e:fb:e6:b6:1a:79:c7:b1:73:bc:4f: 28:88:19:db:d1:9f:de:00:11:a2:95:b2:91:08:7e: a8:06:56:68:a8:ca:78:e9:94:30:da:b6:66:49:ab: 17:db:62:c2:dd:f1:6b:49:93:8a:34:ee:d3:db:6f: 82:65:75:ea:ed:59:2f:c5:b2:e9:a9:7f:c3:85:9c: db:c0:57:92:3f:5e:27:82:49:06:3f:f8:f4:f8:fa: 13:06:4f:21:b0:91:45:88:27:0d:5f:ab:79:59:0d: ae:8d:fd:bb:2d:2f:f1:a1:a1:a4:00:c4:9b:f6:92: 41:6d:b4:98:24:0f:c4:1f:4a:0e:8b:50:81:ac:86: a1:24:68:dc:0e:34:87:54:a0:a9:b3:5b:29:e2:6b: 5d:9f:83:b9:42:b4:95:0e:ae:e2:58:ca:fe:cb:d7: 8e:db:8d:4d:9a:63:b3:7e:9c:b5:1a:ba:0e:4d:b0: 58:20:41:b0:de:3d:e6:a7:c7:fb:54:e8:7d:54:02: 3a:a7:cd:0e:50:aa:55:fb:be:77:1e:5d:fc:63:89: a1:a0:84:bb:fe:bd:cd:fc:c1:fc:ba:bb:43:a8:46: 41:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:85:0E:9A:C0:7D:91:4D:03:66:C3:F4:15:F4:30:17:27:B5:AF:F3 X509v3 Authority Key Identifier: keyid:B3:47:BB:A6:BD:11:BF:C5:E5:5F:7F:F3:34:C1:65:E9:FD:21:FA:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32332d3233203d3e20313439373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.202.0/23 Signature Algorithm: sha256WithRSAEncryption 93:9c:5e:d8:9f:66:de:72:ef:91:31:01:ad:34:18:06:d1:ce: eb:b2:96:dd:af:0d:ca:94:0e:34:b8:8d:dd:dc:15:ec:11:f1: 1f:7e:92:d4:26:5d:7a:09:03:e8:6f:0f:4b:6e:8a:3b:b0:1c: b3:71:80:9b:c5:de:99:56:ea:d4:1d:de:99:ec:fc:ea:bc:a3: 46:06:43:f2:74:eb:32:ea:48:ba:71:15:e2:94:78:bf:85:1a: 10:8b:76:4d:18:b5:27:d1:ae:a2:8c:8c:13:5e:10:08:9d:bf: 11:70:55:23:8d:31:e5:4e:d2:37:f5:3a:31:43:d6:dc:31:3b: 99:93:f2:83:85:c3:d5:ee:85:9f:ea:24:34:bb:14:28:1f:93: e9:f0:0f:18:19:2a:d6:50:50:4c:ce:5d:db:1f:cc:01:ad:2a: 7f:65:89:58:b7:b6:24:9b:68:f3:44:51:5e:a0:e8:80:b7:62: 3f:63:16:06:1a:11:22:7a:a2:31:01:1c:25:d1:2d:fc:de:12: 7a:6e:34:af:18:d6:9f:53:cf:48:d3:30:01:1d:28:d5:e7:00: 41:20:98:8f:89:92:aa:d0:e2:e2:71:3d:15:3d:00:ce:85:d4: 5a:1f:26:62:d3:b1:40:47:a3:41:85:75:6e:69:4f:42:48:7c: 7a:5c:61:77 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQW5HjJWeWtksMgDsgZM9mkYcj4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM0N0JCQTZCRDExQkZDNUU1NUY3RkYzMzRDMTY1RTlG RDIxRkE1QzAeFw0yNjAyMDUwNDU1NTNaFw0yNzAyMDQwNTAwNTNaMDMxMTAvBgNV BAMTKEMyODUwRTlBQzA3RDkxNEQwMzY2QzNGNDE1RjQzMDE3MjdCNUFGRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDELynvZK90qLoosv1fs0C3mJaR UZu/Ppvr3OsvRgPW8y4u++a2GnnHsXO8TyiIGdvRn94AEaKVspEIfqgGVmioynjp lDDatmZJqxfbYsLd8WtJk4o07tPbb4JldertWS/Fsumpf8OFnNvAV5I/XieCSQY/ +PT4+hMGTyGwkUWIJw1fq3lZDa6N/bstL/GhoaQAxJv2kkFttJgkD8QfSg6LUIGs hqEkaNwONIdUoKmzWynia12fg7lCtJUOruJYyv7L147bjU2aY7N+nLUaug5NsFgg QbDePeanx/tU6H1UAjqnzQ5QqlX7vnceXfxjiaGghLv+vc38wfy6u0OoRkGFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwoUOmsB9kU0DZsP0FfQwFye1r/MwHwYDVR0j BBgwFoAUs0e7pr0Rv8XlX3/zNMFl6f0h+lwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTEwNjgyNy04NjZlLTRhYzMtOGY3OS1hNmUzMjBiMjBkZTcvMC9CMzQ3QkJBNkJE MTFCRkM1RTU1RjdGRjMzNEMxNjVFOUZEMjFGQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjM0N0JCQTZCRDExQkZDNUU1NUY3RkYzMzRDMTY1RTlGRDIx RkE1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MTA2ODI3LTg2NmUtNGFjMy04 Zjc5LWE2ZTMyMGIyMGRlNy8wLzMxMzAzMzJlMzEzODM2MmUzMjMwMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnusowDQYJ KoZIhvcNAQELBQADggEBAJOcXtifZt5y75ExAa00GAbRzuuylt2vDcqUDjS4jd3c FewR8R9+ktQmXXoJA+hvD0tuijuwHLNxgJvF3plW6tQd3pns/Oq8o0YGQ/J06zLq SLpxFeKUeL+FGhCLdk0YtSfRrqKMjBNeEAidvxFwVSONMeVO0jf1OjFD1twxO5mT 8oOFw9XuhZ/qJDS7FCgfk+nwDxgZKtZQUEzOXdsfzAGtKn9liVi3tiSbaPNEUV6g 6IC3Yj9jFgYaESJ6ojEBHCXRLfzeEnpuNK8Y1p9Tz0jTMAEdKNXnAEEgmI+JkqrQ 4uJxPRU9AM6F1FofJmLTsUBHo0GFdW5pT0JIfHpcYXc= -----END CERTIFICATE-----Generated at Mon Mar 2 15:39:13 2026 by rpki-client