$ rpki-client -vvf repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa File: 3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa (raw, json) Hash identifier: fgya3ZWEE+BgKyRHiw4xTXYArrAwmDpHrp6WQSm6t9k= Subject key identifier: D6:0E:C8:62:B9:41:80:01:12:C6:EE:9D:E9:0E:61:FC:45:14:D4:3C Certificate issuer: /CN=473225269441779F80E443B1EA516CC99E4ED4DA Certificate serial: 613A348D95EDD5014717EA72E2B8298344421A74 Authority key identifier: 47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa Signing time: Fri 27 Mar 2026 17:00:03 +0000 ROA not before: Fri 27 Mar 2026 16:55:03 +0000 ROA not after: Fri 26 Mar 2027 17:00:03 +0000 asID: 141909 IP address blocks: 103.121.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.crl rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 16:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:3a:34:8d:95:ed:d5:01:47:17:ea:72:e2:b8:29:83:44:42:1a:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473225269441779F80E443B1EA516CC99E4ED4DA Validity Not Before: Mar 27 16:55:03 2026 GMT Not After : Mar 26 17:00:03 2027 GMT Subject: CN=D60EC862B941800112C6EE9DE90E61FC4514D43C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2f:13:89:93:83:e8:59:9b:fb:20:ba:e2:43: 6f:d7:6c:35:8d:34:f0:d8:0e:c7:e4:ee:15:18:a6: bd:b3:c4:0f:59:3f:0c:a7:dd:f8:5b:12:37:65:ef: bc:fc:50:39:6c:93:42:ce:39:68:f5:9c:84:06:d9: 32:00:3b:0c:05:bc:ba:2c:97:1e:27:7f:cc:bd:35: 29:5f:9a:5a:96:f9:dd:94:a2:bc:a4:30:ed:02:39: 03:ac:f7:bf:9a:ea:ca:1c:46:bc:73:95:96:e9:5f: 32:0a:cf:a3:96:0e:2c:06:a0:d3:ca:aa:bf:8d:20: d0:5d:b5:1e:27:84:56:8f:86:69:fa:25:c6:e2:5d: 10:bb:f0:09:a1:04:3c:67:82:9e:f7:3d:42:6d:42: b2:34:88:76:b5:1b:28:23:79:52:b8:f9:a8:0a:f6: 5d:ff:3b:e5:e7:f1:c4:a5:4f:06:e3:e9:26:91:6b: 09:e7:7a:13:42:e8:09:dc:84:b9:2a:c5:e6:f0:97: 72:70:ea:45:79:26:2b:93:94:83:df:99:3e:01:76: ce:cc:45:ce:76:78:95:8c:4e:0e:fa:b3:07:a9:fa: b9:c4:03:70:cb:6c:af:0a:8f:da:9a:5f:8d:47:d7: e0:35:a1:7c:3d:c8:2e:a1:7c:32:1f:ef:f4:3b:36: ca:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0E:C8:62:B9:41:80:01:12:C6:EE:9D:E9:0E:61:FC:45:14:D4:3C X509v3 Authority Key Identifier: keyid:47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.186.0/23 Signature Algorithm: sha256WithRSAEncryption 84:70:7d:3b:84:cf:78:bd:9f:14:d0:e9:c4:d2:6c:d6:f0:22: 08:7d:44:0d:ef:4c:e4:19:ac:53:ac:d0:d7:2a:77:96:c1:eb: c4:30:2e:66:62:5a:5f:9e:06:98:a3:7d:5f:3a:72:54:d0:0d: 2e:21:dd:34:57:9d:b2:40:f4:55:2e:76:04:b5:19:a8:b2:0a: 9d:01:e8:7f:da:e6:5f:36:33:e2:b3:e5:76:ac:3f:7a:1b:0a: a1:48:08:11:a3:c8:4d:f0:06:e3:a0:9d:3f:25:c5:17:77:eb: 5d:b8:68:3a:78:f0:18:c2:02:96:90:f9:30:6a:1a:10:8f:34: 50:14:d9:86:b0:87:e2:ca:c3:be:59:83:56:1b:43:a5:b2:ab: 54:b2:0d:c6:a1:8a:20:26:b7:c3:b3:9a:ef:9d:26:90:3b:10: 43:e1:f1:56:21:0f:b0:3f:d6:f8:31:db:28:89:1a:25:70:64: 96:b5:97:7a:a3:89:c8:10:28:bb:e2:3f:fb:e5:35:b5:85:59: 75:84:89:2d:b4:05:9c:09:37:4f:a3:67:19:00:16:7a:8e:a7: 19:ba:e3:9f:d2:a0:32:ff:c0:4c:c2:33:7e:8a:f4:ba:ee:a2: b6:b0:b9:97:5c:b0:bd:a4:6a:6f:ee:87:e9:80:9e:3d:28:65: 0e:1b:40:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYTo0jZXt1QFHF+py4rgpg0RCGnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczMjI1MjY5NDQxNzc5RjgwRTQ0M0IxRUE1MTZDQzk5 RTRFRDREQTAeFw0yNjAzMjcxNjU1MDNaFw0yNzAzMjYxNzAwMDNaMDMxMTAvBgNV BAMTKEQ2MEVDODYyQjk0MTgwMDExMkM2RUU5REU5MEU2MUZDNDUxNEQ0M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWLxOJk4PoWZv7ILriQ2/XbDWN NPDYDsfk7hUYpr2zxA9ZPwyn3fhbEjdl77z8UDlsk0LOOWj1nIQG2TIAOwwFvLos lx4nf8y9NSlfmlqW+d2UorykMO0COQOs97+a6socRrxzlZbpXzIKz6OWDiwGoNPK qr+NINBdtR4nhFaPhmn6JcbiXRC78AmhBDxngp73PUJtQrI0iHa1GygjeVK4+agK 9l3/O+Xn8cSlTwbj6SaRawnnehNC6AnchLkqxebwl3Jw6kV5JiuTlIPfmT4Bds7M Rc52eJWMTg76swep+rnEA3DLbK8Kj9qaX41H1+A1oXw9yC6hfDIf7/Q7Nsp7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1g7IYrlBgAESxu6d6Q5h/EUU1DwwHwYDVR0j BBgwFoAURzIlJpRBd5+A5EOx6lFsyZ5O1NowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDYyMGNmYy1iNDZjLTQ1N2MtOWZkZS0yOTc3MTBjNTQ2YTkvMC80NzMyMjUyNjk0 NDE3NzlGODBFNDQzQjFFQTUxNkNDOTlFNEVENERBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczMjI1MjY5NDQxNzc5RjgwRTQ0M0IxRUE1MTZDQzk5RTRF RDREQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwNjIwY2ZjLWI0NmMtNDU3Yy05 ZmRlLTI5NzcxMGM1NDZhOS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM4MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnebowDQYJ KoZIhvcNAQELBQADggEBAIRwfTuEz3i9nxTQ6cTSbNbwIgh9RA3vTOQZrFOs0Ncq d5bB68QwLmZiWl+eBpijfV86clTQDS4h3TRXnbJA9FUudgS1GaiyCp0B6H/a5l82 M+Kz5XasP3obCqFICBGjyE3wBuOgnT8lxRd36124aDp48BjCApaQ+TBqGhCPNFAU 2Yawh+LKw75Zg1YbQ6Wyq1SyDcahiiAmt8Ozmu+dJpA7EEPh8VYhD7A/1vgx2yiJ GiVwZJa1l3qjicgQKLviP/vlNbWFWXWEiS20BZwJN0+jZxkAFnqOpxm645/SoDL/ wEzCM36K9LruorawuZdcsL2kam/uh+mAnj0oZQ4bQIg= -----END CERTIFICATE-----Generated at Fri Apr 17 23:48:35 2026 by rpki-client