$ rpki-client -vvf repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa File: 3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa (raw, json) Hash identifier: J1+86ow4RcBATpPbf6gwR7k+/m8Ih7+QI9sWPd8Ycg0= Subject key identifier: E8:5F:A3:9A:44:8B:74:FA:94:AA:7C:45:BD:28:49:0C:B3:A8:80:F6 Certificate issuer: /CN=5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD Certificate serial: 6FCDB42BC18CB651D77AE9731B9F174154BDAE86 Authority key identifier: 5A:CB:0F:96:C2:B1:25:5E:AB:AA:EB:C1:42:6E:CD:9E:6D:F6:C4:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa Signing time: Tue 24 Feb 2026 11:00:00 +0000 ROA not before: Tue 24 Feb 2026 10:55:00 +0000 ROA not after: Tue 23 Feb 2027 11:00:00 +0000 asID: 150991 IP address blocks: 103.252.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.crl rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 23:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:cd:b4:2b:c1:8c:b6:51:d7:7a:e9:73:1b:9f:17:41:54:bd:ae:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD Validity Not Before: Feb 24 10:55:00 2026 GMT Not After : Feb 23 11:00:00 2027 GMT Subject: CN=E85FA39A448B74FA94AA7C45BD28490CB3A880F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:96:31:54:35:c3:4a:13:22:7f:a5:b8:ca:6d: c6:2a:5b:66:fe:8d:26:ad:54:99:0e:65:6c:0c:4d: 25:67:18:3d:13:b5:22:7d:8b:0f:e0:bc:34:56:b6: d8:f5:14:44:bb:16:7f:0e:07:d8:1e:f0:e2:fa:45: 41:bb:1e:ff:76:1e:1b:a9:91:e2:74:9f:f3:9e:f6: ab:13:f7:07:94:b2:42:14:3e:c4:69:99:d2:97:89: 9e:41:a8:dd:9a:a9:14:5f:23:80:6c:13:bd:e3:79: 88:2f:2a:ab:cb:38:50:d8:27:8c:c9:ec:e9:33:de: 70:ae:cc:db:84:30:2e:b4:b9:a4:55:eb:a9:68:ae: 28:04:4f:f8:01:ac:54:71:48:75:8e:f0:fc:fc:62: e8:93:89:58:7b:0b:89:00:fa:c6:71:d8:e3:f2:b2: 6f:d5:b8:0c:48:18:e3:00:99:50:51:0a:af:79:83: 2d:2a:1c:8c:7e:4c:e7:a1:77:83:04:75:de:41:80: b9:eb:76:49:3b:79:68:c3:92:8b:e4:50:25:98:f2: d2:2c:72:d1:51:fa:5b:05:be:33:c1:cf:e4:3f:95: d2:a4:12:9f:04:f3:25:60:ab:c4:c0:18:76:3b:d6: 53:cb:89:af:3b:08:85:09:c1:86:95:7f:78:83:66: 0b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5F:A3:9A:44:8B:74:FA:94:AA:7C:45:BD:28:49:0C:B3:A8:80:F6 X509v3 Authority Key Identifier: keyid:5A:CB:0F:96:C2:B1:25:5E:AB:AA:EB:C1:42:6E:CD:9E:6D:F6:C4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.48.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:2f:02:f0:00:90:e4:ce:6b:0e:5a:86:b2:45:61:09:bf:b2: 03:57:32:e4:1c:d3:e2:e0:c2:46:99:d1:4d:c7:64:b5:68:c0: 39:90:5e:e5:35:be:69:db:4c:1e:c3:d1:6d:5c:9f:e5:61:3d: 2a:09:c6:70:71:4b:27:50:3a:a7:a7:85:c9:ae:29:89:0d:0b: 63:13:4d:b8:e6:05:e3:72:1e:fd:68:54:35:da:c2:7a:d0:24: e3:58:16:7b:e9:af:db:e5:34:39:9e:f2:91:c2:99:09:49:f7: 3f:c7:14:93:b2:42:45:3b:24:c8:4f:87:f5:58:c8:e0:77:f2: ec:51:fd:8e:33:7e:cb:1b:6d:57:38:be:18:54:ad:4a:15:3d: fa:8a:7e:ab:8b:6a:86:57:6c:c4:ef:d7:01:de:62:02:4c:cd: 7e:2d:e1:f3:84:c0:04:ed:86:74:35:eb:af:98:b9:a4:9f:f7: 6c:7e:cf:99:38:50:a9:4d:bd:2d:d3:f9:32:2b:7d:94:81:7d: 16:bd:e2:a1:37:c1:7b:ad:bb:13:c0:f7:67:75:39:d9:0e:86: 20:d2:d1:d1:97:01:03:34:3c:15:19:9b:18:d2:fc:ca:1a:dc: ad:14:83:a2:79:1f:97:17:4a:fa:6f:d1:61:54:8e:01:73:98: 3f:c0:a9:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb820K8GMtlHXeulzG58XQVS9roYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDQjBGOTZDMkIxMjU1RUFCQUFFQkMxNDI2RUNEOUU2 REY2QzRBRDAeFw0yNjAyMjQxMDU1MDBaFw0yNzAyMjMxMTAwMDBaMDMxMTAvBgNV BAMTKEU4NUZBMzlBNDQ4Qjc0RkE5NEFBN0M0NUJEMjg0OTBDQjNBODgwRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxljFUNcNKEyJ/pbjKbcYqW2b+ jSatVJkOZWwMTSVnGD0TtSJ9iw/gvDRWttj1FES7Fn8OB9ge8OL6RUG7Hv92Hhup keJ0n/Oe9qsT9weUskIUPsRpmdKXiZ5BqN2aqRRfI4BsE73jeYgvKqvLOFDYJ4zJ 7Okz3nCuzNuEMC60uaRV66lorigET/gBrFRxSHWO8Pz8YuiTiVh7C4kA+sZx2OPy sm/VuAxIGOMAmVBRCq95gy0qHIx+TOehd4MEdd5BgLnrdkk7eWjDkovkUCWY8tIs ctFR+lsFvjPBz+Q/ldKkEp8E8yVgq8TAGHY71lPLia87CIUJwYaVf3iDZgspAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6F+jmkSLdPqUqnxFvShJDLOogPYwHwYDVR0j BBgwFoAUWssPlsKxJV6rquvBQm7Nnm32xK0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTNlZWQyYi05NTVlLTQwOTMtODhhNC1mNGRlM2NjOWI5Y2QvMC81QUNCMEY5NkMy QjEyNTVFQUJBQUVCQzE0MjZFQ0Q5RTZERjZDNEFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFDQjBGOTZDMkIxMjU1RUFCQUFFQkMxNDI2RUNEOUU2REY2 QzRBRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxM2VlZDJiLTk1NWUtNDA5My04 OGE0LWY0ZGUzY2M5YjljZC8wLzMxMzAzMzJlMzIzNTMyMmUzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/wwMA0GCSqG SIb3DQEBCwUAA4IBAQAsLwLwAJDkzmsOWoayRWEJv7IDVzLkHNPi4MJGmdFNx2S1 aMA5kF7lNb5p20wew9FtXJ/lYT0qCcZwcUsnUDqnp4XJrimJDQtjE0245gXjch79 aFQ12sJ60CTjWBZ76a/b5TQ5nvKRwpkJSfc/xxSTskJFOyTIT4f1WMjgd/LsUf2O M37LG21XOL4YVK1KFT36in6ri2qGV2zE79cB3mICTM1+LeHzhMAE7YZ0NeuvmLmk n/dsfs+ZOFCpTb0t0/kyK32UgX0WveKhN8F7rbsTwPdndTnZDoYg0tHRlwEDNDwV GZsY0vzKGtytFIOieR+XF0r6b9FhVI4Bc5g/wKl6 -----END CERTIFICATE-----Generated at Mon Mar 2 16:34:08 2026 by rpki-client