$ rpki-client -vvf repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa File: 3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa (raw, json) Hash identifier: HjBdGNd6Sc51PWTKEOwMChS3N3Sgma2LZbJnM7rQl44= Subject key identifier: 29:E2:44:6F:B2:FE:A5:5F:7C:7C:EA:E3:5F:1C:69:74:A9:2F:7E:4B Certificate issuer: /CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Certificate serial: 31275DDB7A77EC63E911745B8D9F41E9D2F2CE67 Authority key identifier: DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa Signing time: Tue 10 Feb 2026 13:00:02 +0000 ROA not before: Tue 10 Feb 2026 12:55:02 +0000 ROA not after: Tue 09 Feb 2027 13:00:02 +0000 asID: 137323 IP address blocks: 103.111.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 01:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:27:5d:db:7a:77:ec:63:e9:11:74:5b:8d:9f:41:e9:d2:f2:ce:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Validity Not Before: Feb 10 12:55:02 2026 GMT Not After : Feb 9 13:00:02 2027 GMT Subject: CN=29E2446FB2FEA55F7C7CEAE35F1C6974A92F7E4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2f:f3:5a:be:52:f1:a5:88:f6:ff:c0:b3:33: 20:fc:5e:f0:f9:c7:49:f3:9f:a5:fa:d3:58:a7:87: 47:13:29:4d:37:50:f2:ec:75:37:c4:d8:b0:d4:0c: 14:18:c5:07:db:fa:3e:07:50:5c:d5:bf:06:a4:77: 96:25:77:9f:38:86:88:7f:b8:77:14:c1:3b:8a:7a: 93:4d:5d:ac:48:0e:d7:03:e2:b1:d2:1d:6c:b3:15: db:15:0e:49:4e:60:d5:27:8e:e2:19:4c:e8:5f:91: 56:26:a7:47:7d:ab:b5:db:f0:2b:b7:ba:d4:0a:bc: fe:5c:91:ef:8c:e5:d4:30:22:c6:ea:4e:d4:34:41: 04:8a:9c:fc:72:5a:44:e2:67:26:66:55:22:06:5e: ce:fb:cf:be:aa:c0:74:97:91:6a:14:e7:fe:b3:8b: 3e:6a:e8:16:95:c4:8c:0f:5f:df:48:ab:bb:72:4c: 78:9f:c2:01:1b:cd:7b:c5:b3:60:8f:c8:2b:f4:11: 44:4e:29:f5:35:08:bf:4e:5d:c5:b3:81:98:82:55: 9e:d5:cd:bd:29:fa:e4:50:47:f0:18:32:fe:e7:8e: 73:92:49:2b:b7:67:35:cc:4c:88:20:b4:c6:ad:79: a9:c9:bc:ec:e1:d8:36:9d:5f:51:23:06:de:07:86: cf:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E2:44:6F:B2:FE:A5:5F:7C:7C:EA:E3:5F:1C:69:74:A9:2F:7E:4B X509v3 Authority Key Identifier: keyid:DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.218.0/24 Signature Algorithm: sha256WithRSAEncryption a0:4d:0d:7a:b8:d5:da:74:0d:96:a9:86:7d:a8:cc:18:bd:cf: 79:fc:b7:5a:2d:a7:db:4b:39:ca:0e:0d:e5:42:3f:6e:c2:0a: 2d:f3:32:cb:68:cb:22:ec:59:a8:ab:5a:70:e4:d0:64:b0:83: 84:e4:d5:cf:a6:40:54:71:94:b4:fa:02:be:d9:61:73:65:d4: cf:10:e6:88:1b:df:30:fa:8e:06:79:ed:93:1b:ee:78:5e:6d: bd:ab:14:3b:93:7b:b5:54:27:07:ab:e5:57:75:74:47:d5:3e: 8e:08:81:33:e4:f2:a5:0e:71:44:ba:d5:fc:34:6e:e1:5d:46: 25:1b:24:e9:0f:92:a0:1e:68:94:df:4c:b8:a6:69:a7:2f:4e: 0d:cb:23:f6:db:a0:a4:ea:fd:16:38:08:b0:b0:7c:b8:6d:a2: da:65:60:94:43:3b:5d:2f:96:d3:42:e3:7b:48:b9:27:1d:86: 5b:ac:05:8b:2e:68:1e:4d:22:f8:4a:49:8a:43:4a:9a:3f:4b: e8:38:7b:df:ff:28:b2:14:4c:bc:99:12:5a:c0:82:fd:63:c4: 42:ee:f2:12:13:81:34:f9:6d:f6:21:d8:2f:c8:ca:68:97:35: 05:f8:96:fd:2a:31:4c:5d:fb:1d:da:0a:f0:44:52:92:58:5c: f8:cc:1e:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMSdd23p37GPpEXRbjZ9B6dLyzmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFB Q0YwRjMwRjAeFw0yNjAyMTAxMjU1MDJaFw0yNzAyMDkxMzAwMDJaMDMxMTAvBgNV BAMTKDI5RTI0NDZGQjJGRUE1NUY3QzdDRUFFMzVGMUM2OTc0QTkyRjdFNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzL/NavlLxpYj2/8CzMyD8XvD5 x0nzn6X601inh0cTKU03UPLsdTfE2LDUDBQYxQfb+j4HUFzVvwakd5Yld584hoh/ uHcUwTuKepNNXaxIDtcD4rHSHWyzFdsVDklOYNUnjuIZTOhfkVYmp0d9q7Xb8Cu3 utQKvP5cke+M5dQwIsbqTtQ0QQSKnPxyWkTiZyZmVSIGXs77z76qwHSXkWoU5/6z iz5q6BaVxIwPX99Iq7tyTHifwgEbzXvFs2CPyCv0EUROKfU1CL9OXcWzgZiCVZ7V zb0p+uRQR/AYMv7njnOSSSu3ZzXMTIggtMateanJvOzh2DadX1EjBt4Hhs+3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKeJEb7L+pV98fOrjXxxpdKkvfkswHwYDVR0j BBgwFoAU3Pz+ToGX/6+5pXkgvUDcwazw8w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWFmMTQ0Yi1iOTJlLTRmZmYtYjY0MS1lNDZmZGRlOGM2ZGYvMC9EQ0ZDRkU0RTgx OTdGRkFGQjlBNTc5MjBCRDQwRENDMUFDRjBGMzBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFBQ0Yw RjMwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxYWYxNDRiLWI5MmUtNGZmZi1i NjQxLWU0NmZkZGU4YzZkZi8wLzMxMzAzMzJlMzEzMTMxMmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb9owDQYJ KoZIhvcNAQELBQADggEBAKBNDXq41dp0DZaphn2ozBi9z3n8t1otp9tLOcoODeVC P27CCi3zMstoyyLsWairWnDk0GSwg4Tk1c+mQFRxlLT6Ar7ZYXNl1M8Q5ogb3zD6 jgZ57ZMb7nhebb2rFDuTe7VUJwer5Vd1dEfVPo4IgTPk8qUOcUS61fw0buFdRiUb JOkPkqAeaJTfTLimaacvTg3LI/bboKTq/RY4CLCwfLhtotplYJRDO10vltNC43tI uScdhlusBYsuaB5NIvhKSYpDSpo/S+g4e9//KLIUTLyZElrAgv1jxELu8hITgTT5 bfYh2C/IymiXNQX4lv0qMUxd+x3aCvBEUpJYXPjMHro= -----END CERTIFICATE-----Generated at Mon Mar 2 07:47:11 2026 by rpki-client