$ rpki-client -vvf repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: 4qcYxQTY9VuRejt5Jb7vZf7bI3pnQeFmZvBsUNqccdo= Subject key identifier: 3A:C4:91:13:F4:FA:38:D3:31:A0:9E:F7:7C:8B:26:0B:67:2A:2C:6A Certificate issuer: /CN=6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8 Certificate serial: 7F7CED4AD4DFAC780E3FA70F8939EB339879DDB7 Authority key identifier: 6C:F6:DF:7E:65:16:A6:AB:F5:39:F0:39:6C:B6:C0:D4:DB:50:F4:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa Signing time: Mon 30 Mar 2026 13:00:01 +0000 ROA not before: Mon 30 Mar 2026 12:55:01 +0000 ROA not after: Mon 29 Mar 2027 13:00:01 +0000 asID: 4800 IP address blocks: 103.191.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.crl rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 09:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:7c:ed:4a:d4:df:ac:78:0e:3f:a7:0f:89:39:eb:33:98:79:dd:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8 Validity Not Before: Mar 30 12:55:01 2026 GMT Not After : Mar 29 13:00:01 2027 GMT Subject: CN=3AC49113F4FA38D331A09EF77C8B260B672A2C6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:57:99:8b:d2:1a:5f:13:30:70:d6:f7:f0: 08:b9:15:96:f7:b3:86:d2:1d:16:c6:0d:c3:f5:18: 6b:53:6a:55:e0:5b:d2:83:d9:b7:a6:db:9e:8b:e6: 57:00:87:be:88:13:db:62:e4:c6:cb:17:83:89:d8: bc:d1:2d:e3:17:9e:73:17:10:5b:be:9a:cd:16:d7: 1d:69:72:6d:03:7f:05:fd:04:2b:fb:02:2d:4f:f5: 3d:dc:90:a1:18:dd:f5:cb:4f:b5:61:c6:a2:de:c2: 13:b0:07:fc:19:59:49:9f:ec:67:44:25:c5:4b:8b: ab:ca:a3:c9:eb:45:7d:01:a3:cc:99:b5:80:ab:c8: e2:7c:7b:df:02:ec:69:73:27:e4:86:b1:c5:c2:a4: 67:55:0e:db:b7:1b:59:5b:4c:c8:8b:93:eb:66:57: e7:6c:c7:3e:34:19:03:78:20:12:08:b6:28:7a:0e: ac:5c:5c:56:28:55:a0:ed:1e:ae:85:41:67:f7:5e: 8e:11:18:71:47:04:7a:c6:a8:b3:e0:a2:2e:ab:88: 35:13:33:40:8f:a4:aa:93:d1:e7:fd:ff:2b:1b:78: 7a:fb:5e:12:86:bd:51:fa:78:c9:61:0e:80:61:33: b2:dc:d1:57:bf:a2:51:0c:bb:e7:9e:d2:6a:6c:ce: f8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C4:91:13:F4:FA:38:D3:31:A0:9E:F7:7C:8B:26:0B:67:2A:2C:6A X509v3 Authority Key Identifier: keyid:6C:F6:DF:7E:65:16:A6:AB:F5:39:F0:39:6C:B6:C0:D4:DB:50:F4:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.148.0/23 Signature Algorithm: sha256WithRSAEncryption 42:52:b3:d7:7b:a5:57:04:49:59:0c:63:1b:dd:18:7e:54:60: c3:04:23:76:60:81:d5:3d:c7:ba:dd:72:a5:49:6d:41:c4:06: ee:3a:25:78:2c:b9:c6:02:6f:5d:d6:b2:eb:1a:bd:57:b6:ee: cb:7c:8d:a0:ef:9f:4d:ec:5b:9b:45:b1:12:36:7d:c5:59:13: 15:ae:28:33:08:55:47:f9:ca:0c:07:1c:51:dc:77:2e:6e:af: a5:08:b1:6e:92:6c:d7:69:cc:43:b5:98:bb:9b:22:50:a1:04: d4:44:a2:3b:d3:fb:67:3d:b3:55:d4:d0:14:c5:20:8c:f3:0f: a9:e7:f3:f9:02:fa:83:38:a0:c4:19:84:4d:7f:35:53:bc:f5: 39:98:a7:2b:23:fb:31:b9:fa:99:7f:d8:59:6a:bd:3a:02:43: 54:ea:2a:81:a8:98:77:bf:5c:bb:0f:bf:ce:c5:15:af:b0:07: be:a9:ba:23:e1:21:d3:0f:11:05:a9:3d:35:3b:06:42:ca:bc: 92:04:85:6b:c3:e0:22:6b:b3:ff:e2:89:de:f1:96:b1:04:34: 9f:1f:54:a8:8d:dd:3a:d9:7d:52:4f:5e:ef:15:f3:49:01:4e: fd:c5:22:38:88:1b:64:79:aa:78:17:21:92:8b:8a:03:e2:2f: 56:de:47:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf3ztStTfrHgOP6cPiTnrM5h53bcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkNGNkRGN0U2NTE2QTZBQkY1MzlGMDM5NkNCNkMwRDRE QjUwRjREODAeFw0yNjAzMzAxMjU1MDFaFw0yNzAzMjkxMzAwMDFaMDMxMTAvBgNV BAMTKDNBQzQ5MTEzRjRGQTM4RDMzMUEwOUVGNzdDOEIyNjBCNjcyQTJDNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOzFeZi9IaXxMwcNb38Ai5FZb3 s4bSHRbGDcP1GGtTalXgW9KD2bem256L5lcAh76IE9ti5MbLF4OJ2LzRLeMXnnMX EFu+ms0W1x1pcm0DfwX9BCv7Ai1P9T3ckKEY3fXLT7VhxqLewhOwB/wZWUmf7GdE JcVLi6vKo8nrRX0Bo8yZtYCryOJ8e98C7GlzJ+SGscXCpGdVDtu3G1lbTMiLk+tm V+dsxz40GQN4IBIItih6DqxcXFYoVaDtHq6FQWf3Xo4RGHFHBHrGqLPgoi6riDUT M0CPpKqT0ef9/ysbeHr7XhKGvVH6eMlhDoBhM7Lc0Ve/olEMu+ee0mpszvghAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOsSRE/T6ONMxoJ73fIsmC2cqLGowHwYDVR0j BBgwFoAUbPbffmUWpqv1OfA5bLbA1NtQ9NgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDkwNmZjMC00MzYzLTRmNDYtOWIxNC01YzFhYjgyNWEzMzUvMC82Q0Y2REY3RTY1 MTZBNkFCRjUzOUYwMzk2Q0I2QzBENERCNTBGNEQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkNGNkRGN0U2NTE2QTZBQkY1MzlGMDM5NkNCNkMwRDREQjUw RjREOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkOTA2ZmMwLTQzNjMtNGY0Ni05 YjE0LTVjMWFiODI1YTMzNS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe/lDANBgkqhkiG 9w0BAQsFAAOCAQEAQlKz13ulVwRJWQxjG90YflRgwwQjdmCB1T3Hut1ypUltQcQG 7joleCy5xgJvXday6xq9V7buy3yNoO+fTexbm0WxEjZ9xVkTFa4oMwhVR/nKDAcc Udx3Lm6vpQixbpJs12nMQ7WYu5siUKEE1ESiO9P7Zz2zVdTQFMUgjPMPqefz+QL6 gzigxBmETX81U7z1OZinKyP7Mbn6mX/YWWq9OgJDVOoqgaiYd79cuw+/zsUVr7AH vqm6I+Eh0w8RBak9NTsGQsq8kgSFa8PgImuz/+KJ3vGWsQQ0nx9UqI3dOtl9Uk9e 7xXzSQFO/cUiOIgbZHmqeBchkouKA+IvVt5H0Q== -----END CERTIFICATE-----Generated at Fri Apr 17 21:32:40 2026 by rpki-client