$ rpki-client -vvf repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130372e302f32342d3234203d3e20313531353834.roa File: 3130332e3231362e3130372e302f32342d3234203d3e20313531353834.roa (raw, json) Hash identifier: RtMfLdiF1L4AbYNaTveOgEl8/CRYXZ0vqT8hwIYHkDE= Subject key identifier: 13:33:6C:53:B5:DD:95:05:90:98:C0:8F:D4:86:94:54:35:D6:9A:87 Certificate issuer: /CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5 Certificate serial: 47D7B21455C5465237D4A6D094A8B028FD2A5D40 Authority key identifier: 1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130372e302f32342d3234203d3e20313531353834.roa Signing time: Tue 10 Feb 2026 11:01:26 +0000 ROA not before: Tue 10 Feb 2026 10:56:26 +0000 ROA not after: Tue 09 Feb 2027 11:01:26 +0000 asID: 151584 IP address blocks: 103.216.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.crl rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 11:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d7:b2:14:55:c5:46:52:37:d4:a6:d0:94:a8:b0:28:fd:2a:5d:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5 Validity Not Before: Feb 10 10:56:26 2026 GMT Not After : Feb 9 11:01:26 2027 GMT Subject: CN=13336C53B5DD95059098C08FD486945435D69A87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:34:ed:57:7d:43:26:eb:99:37:3a:54:40:a4: c8:33:7a:bb:8b:d3:65:06:ea:b1:3b:47:ff:32:94: a2:87:ac:1b:43:45:a9:50:b2:e0:5e:07:11:e1:cc: a0:26:f2:1f:33:ea:98:92:13:63:5c:27:0e:58:ac: 6b:c4:42:e9:5b:eb:f7:a7:13:e5:5e:6f:7d:f4:41: 42:bf:ef:06:f6:1d:71:39:e3:f3:d6:15:8a:98:cf: cf:1d:23:5d:8c:44:3c:89:9d:74:c9:0e:ae:ea:6f: a8:f0:a6:34:ba:aa:c1:fb:e5:0a:7a:85:e0:da:32: 8e:b0:ba:fe:35:6b:1a:4a:2b:53:22:29:ac:f5:3c: ee:53:93:2e:81:2a:1e:50:7d:74:48:e7:a9:4e:71: a3:52:52:fd:13:fd:40:11:91:c6:0a:60:f1:b0:36: ad:30:14:78:2f:a8:f9:3c:a0:16:52:14:ec:c0:59: 14:36:9d:9c:5e:db:4e:80:1c:0a:ca:4e:ca:06:7b: 6e:65:94:bc:ae:75:2e:3b:08:1a:23:4f:9f:6e:98: da:cc:f3:d9:7f:38:36:97:1d:91:a3:58:32:1d:b1: fe:f5:e3:e5:9b:93:94:09:a7:4d:8b:2d:16:41:93: 04:ff:55:0a:d9:1b:4e:90:e8:9f:dc:95:8d:6a:e5: ac:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:33:6C:53:B5:DD:95:05:90:98:C0:8F:D4:86:94:54:35:D6:9A:87 X509v3 Authority Key Identifier: keyid:1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130372e302f32342d3234203d3e20313531353834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.107.0/24 Signature Algorithm: sha256WithRSAEncryption 49:57:43:3d:0b:3b:93:06:05:90:4d:e9:4b:bc:de:45:13:be: c5:4b:c9:53:e7:ec:53:a7:47:de:5b:db:0c:34:e5:f0:88:5d: a2:0e:48:1b:23:d1:32:70:88:fe:71:23:9b:f2:0f:a1:07:bc: 73:c8:c5:92:4e:bb:77:e3:df:ee:4a:13:79:ab:39:6e:6d:9d: 96:7b:ef:5b:43:b7:84:3b:87:47:6e:32:ea:d2:29:8a:d1:6b: d7:41:06:a0:7c:27:85:7f:f4:17:0b:4f:42:4b:03:20:08:d3: e4:e5:c5:3c:4c:48:52:da:8f:6e:54:32:54:47:a2:1b:43:49: 55:6d:49:96:20:87:bb:f4:76:c3:28:c6:d1:ed:82:2b:01:97: 97:16:ec:25:ee:04:b1:5e:40:30:80:05:46:83:4c:67:59:14: 44:b4:c9:e1:41:aa:04:e2:51:7d:12:ed:83:c6:36:91:28:c1: 79:14:fc:23:4e:24:44:0f:1f:44:6b:f2:fc:f6:02:79:bb:fb: 1b:3b:0e:98:a6:01:e5:83:c9:ef:2d:3d:27:b3:13:57:de:e8: 36:83:75:74:d0:0f:d9:97:bc:55:38:9c:99:5b:29:04:13:ce: 89:bd:b6:e0:fe:09:11:4a:f6:67:f5:d0:44:62:9d:ac:2f:4d: b0:fa:59:13 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR9eyFFXFRlI31KbQlKiwKP0qXUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNFRTJFMkVGQ0UzMDdBNjhFNEJGMzU5QzZFQUZGOUU5 MTkzMDNBNTAeFw0yNjAyMTAxMDU2MjZaFw0yNzAyMDkxMTAxMjZaMDMxMTAvBgNV BAMTKDEzMzM2QzUzQjVERDk1MDU5MDk4QzA4RkQ0ODY5NDU0MzVENjlBODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9NO1XfUMm65k3OlRApMgzeruL 02UG6rE7R/8ylKKHrBtDRalQsuBeBxHhzKAm8h8z6piSE2NcJw5YrGvEQulb6/en E+Veb330QUK/7wb2HXE54/PWFYqYz88dI12MRDyJnXTJDq7qb6jwpjS6qsH75Qp6 heDaMo6wuv41axpKK1MiKaz1PO5Tky6BKh5QfXRI56lOcaNSUv0T/UARkcYKYPGw Nq0wFHgvqPk8oBZSFOzAWRQ2nZxe206AHArKTsoGe25llLyudS47CBojT59umNrM 89l/ODaXHZGjWDIdsf714+Wbk5QJp02LLRZBkwT/VQrZG06Q6J/clY1q5awxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEzNsU7XdlQWQmMCP1IaUVDXWmocwHwYDVR0j BBgwFoAUHO4uLvzjB6aOS/NZxur/npGTA6UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmVmMzg5MC00NDVkLTRiMjMtOGZiMy1iMzAxOGE3OTllY2UvMC8xQ0VFMkUyRUZD RTMwN0E2OEU0QkYzNTlDNkVBRkY5RTkxOTMwM0E1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNFRTJFMkVGQ0UzMDdBNjhFNEJGMzU5QzZFQUZGOUU5MTkz MDNBNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZWYzODkwLTQ0NWQtNGIyMy04 ZmIzLWIzMDE4YTc5OWVjZS8wLzMxMzAzMzJlMzIzMTM2MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2GswDQYJ KoZIhvcNAQELBQADggEBAElXQz0LO5MGBZBN6Uu83kUTvsVLyVPn7FOnR95b2ww0 5fCIXaIOSBsj0TJwiP5xI5vyD6EHvHPIxZJOu3fj3+5KE3mrOW5tnZZ771tDt4Q7 h0duMurSKYrRa9dBBqB8J4V/9BcLT0JLAyAI0+TlxTxMSFLaj25UMlRHohtDSVVt SZYgh7v0dsMoxtHtgisBl5cW7CXuBLFeQDCABUaDTGdZFES0yeFBqgTiUX0S7YPG NpEowXkU/CNOJEQPH0Rr8vz2Anm7+xs7DpimAeWDye8tPSezE1fe6DaDdXTQD9mX vFU4nJlbKQQTzom9tuD+CRFK9mf10ERinawvTbD6WRM= -----END CERTIFICATE-----Generated at Mon Mar 2 15:34:47 2026 by rpki-client