$ rpki-client -vvf repo-rpki.idnic.net/repo/d9afd315-f47f-4f6a-b8b5-45a2280bbc85/0/3130332e3139312e35322e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e35322e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: ocW0arB4ppBKqQq8wWUZFlq20RoyvQnisb1mkxrdk08= Subject key identifier: 89:59:54:3C:79:3F:DE:AD:A5:96:F9:A1:02:14:DA:9A:EA:80:64:1C Certificate issuer: /CN=8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1 Certificate serial: 102DA0B1E2FDDAC3FCC9BADBEB15B2494B400094 Authority key identifier: 8C:C3:A6:7D:BA:16:2B:44:30:DF:0F:08:F8:10:A7:B9:53:CB:A4:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9afd315-f47f-4f6a-b8b5-45a2280bbc85/0/3130332e3139312e35322e302f32332d3234203d3e2034383030.roa Signing time: Tue 31 Mar 2026 08:00:01 +0000 ROA not before: Tue 31 Mar 2026 07:55:01 +0000 ROA not after: Tue 30 Mar 2027 08:00:01 +0000 asID: 4800 IP address blocks: 103.191.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9afd315-f47f-4f6a-b8b5-45a2280bbc85/0/8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1.crl rsync://repo-rpki.idnic.net/repo/d9afd315-f47f-4f6a-b8b5-45a2280bbc85/0/8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 07:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:2d:a0:b1:e2:fd:da:c3:fc:c9:ba:db:eb:15:b2:49:4b:40:00:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1 Validity Not Before: Mar 31 07:55:01 2026 GMT Not After : Mar 30 08:00:01 2027 GMT Subject: CN=8959543C793FDEADA596F9A10214DA9AEA80641C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ff:be:21:f7:df:a7:5b:d6:2c:ef:6d:3e:84: 3c:bb:af:3d:11:d4:2a:51:a1:71:59:a4:ca:e0:67: 90:be:35:a8:2f:28:10:86:4b:2f:57:88:35:34:f4: 59:a9:9c:cc:39:14:52:87:4f:77:26:e6:e2:58:3d: 67:c5:19:98:23:48:f8:7d:e3:ac:10:bc:a4:ec:ed: f5:cf:f0:e3:d5:3c:f4:fd:47:37:1b:f9:93:90:33: 6d:60:57:89:26:b4:f0:3e:8e:b3:c6:89:d9:f3:c1: a7:7b:ba:27:4c:99:a6:74:19:d5:96:d7:0d:5e:69: 09:50:2d:7e:15:b7:4d:6e:d4:87:85:6f:e5:0a:ba: 5f:2a:06:80:38:89:1e:d2:26:9c:07:29:6d:13:26: 0e:e3:25:5c:31:d5:fd:e1:94:3f:54:bc:ca:35:e7: da:79:0b:80:e1:1c:ce:c1:2d:ba:f2:f2:25:92:5e: 4b:9c:b3:3a:a5:c6:77:5d:48:8c:68:2e:4e:8c:db: be:90:03:d9:fd:1a:0f:6b:a6:d0:f0:22:e6:a3:96: 47:5d:0c:0f:68:30:85:2c:28:7d:bd:a9:0b:36:ac: 95:18:f7:85:dd:d4:a7:4c:23:e4:00:fd:54:dc:86: 8e:af:1d:db:9f:7e:e1:06:5b:dc:62:ee:76:d5:f3: 1c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:59:54:3C:79:3F:DE:AD:A5:96:F9:A1:02:14:DA:9A:EA:80:64:1C X509v3 Authority Key Identifier: keyid:8C:C3:A6:7D:BA:16:2B:44:30:DF:0F:08:F8:10:A7:B9:53:CB:A4:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9afd315-f47f-4f6a-b8b5-45a2280bbc85/0/8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CC3A67DBA162B4430DF0F08F810A7B953CBA4A1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9afd315-f47f-4f6a-b8b5-45a2280bbc85/0/3130332e3139312e35322e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.52.0/23 Signature Algorithm: sha256WithRSAEncryption 71:87:5e:04:7a:92:30:0d:2c:47:ee:8f:a5:d6:02:6c:4c:d6: c0:6b:8f:96:13:83:4c:03:d1:9b:86:ea:c0:a5:e3:13:fd:ee: c7:4b:1e:83:43:e3:c4:e8:d8:93:9e:24:a6:a6:51:a7:70:2a: 2d:93:68:43:cb:7a:72:29:02:8a:ec:db:bc:65:71:58:6c:3c: fe:7c:26:94:f6:71:3f:41:8f:66:7e:c4:aa:6c:4e:b4:1b:5e: 42:3f:df:65:37:d9:1b:95:8d:55:80:b5:7f:93:a5:e7:48:ed: 9e:e6:d6:fa:5d:ab:3c:9e:c2:b1:6f:56:dd:f9:ea:9f:bc:92: 00:13:c3:a2:f9:ec:b1:46:de:71:5c:c6:c4:50:e2:f0:97:b5: bc:17:e2:eb:ed:81:09:87:99:44:22:8b:72:b0:b2:4c:b4:2b: 39:a0:33:12:5a:e2:c2:e6:cf:72:15:72:dd:66:93:6c:53:44: 3d:96:24:36:cf:82:13:85:c9:14:9e:25:ff:84:18:6b:18:e4: d8:73:72:14:72:9d:5b:df:11:00:19:6e:fa:da:ab:c9:42:01: e3:a5:cd:f2:68:b1:76:66:25:90:b5:55:86:3e:40:5a:f5:6a: 28:47:eb:fe:15:b3:2b:cc:bf:f3:b5:0b:e7:f8:69:9e:d6:a9: cc:0b:d2:57 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEC2gseL92sP8ybrb6xWySUtAAJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENDM0E2N0RCQTE2MkI0NDMwREYwRjA4RjgxMEE3Qjk1 M0NCQTRBMTAeFw0yNjAzMzEwNzU1MDFaFw0yNzAzMzAwODAwMDFaMDMxMTAvBgNV BAMTKDg5NTk1NDNDNzkzRkRFQURBNTk2RjlBMTAyMTREQTlBRUE4MDY0MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB/74h99+nW9Ys720+hDy7rz0R 1CpRoXFZpMrgZ5C+NagvKBCGSy9XiDU09FmpnMw5FFKHT3cm5uJYPWfFGZgjSPh9 46wQvKTs7fXP8OPVPPT9Rzcb+ZOQM21gV4kmtPA+jrPGidnzwad7uidMmaZ0GdWW 1w1eaQlQLX4Vt01u1IeFb+UKul8qBoA4iR7SJpwHKW0TJg7jJVwx1f3hlD9UvMo1 59p5C4DhHM7BLbry8iWSXkucszqlxnddSIxoLk6M276QA9n9Gg9rptDwIuajlkdd DA9oMIUsKH29qQs2rJUY94Xd1KdMI+QA/VTcho6vHduffuEGW9xi7nbV8xxBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiVlUPHk/3q2llvmhAhTamuqAZBwwHwYDVR0j BBgwFoAUjMOmfboWK0Qw3w8I+BCnuVPLpKEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OWFmZDMxNS1mNDdmLTRmNmEtYjhiNS00NWEyMjgwYmJjODUvMC84Q0MzQTY3REJB MTYyQjQ0MzBERjBGMDhGODEwQTdCOTUzQ0JBNEExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENDM0E2N0RCQTE2MkI0NDMwREYwRjA4RjgxMEE3Qjk1M0NC QTRBMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5YWZkMzE1LWY0N2YtNGY2YS1i OGI1LTQ1YTIyODBiYmM4NS8wLzMxMzAzMzJlMzEzOTMxMmUzNTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvzQwDQYJKoZIhvcN AQELBQADggEBAHGHXgR6kjANLEfuj6XWAmxM1sBrj5YTg0wD0ZuG6sCl4xP97sdL HoND48To2JOeJKamUadwKi2TaEPLenIpAors27xlcVhsPP58JpT2cT9Bj2Z+xKps TrQbXkI/32U32RuVjVWAtX+TpedI7Z7m1vpdqzyewrFvVt356p+8kgATw6L57LFG 3nFcxsRQ4vCXtbwX4uvtgQmHmUQii3Kwsky0KzmgMxJa4sLmz3IVct1mk2xTRD2W JDbPghOFyRSeJf+EGGsY5NhzchRynVvfEQAZbvraq8lCAeOlzfJosXZmJZC1VYY+ QFr1aihH6/4VsyvMv/O1C+f4aZ7WqcwL0lc= -----END CERTIFICATE-----Generated at Fri Apr 17 19:48:38 2026 by rpki-client