$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa File: 3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa (raw, json) Hash identifier: lPqYVTgcLQCHKvr5EjKBo1vqOUFedVpnKD0PBfrckZ4= Subject key identifier: A1:9C:AF:3F:85:4D:77:12:5C:54:7A:F9:5B:7E:91:09:08:FC:2B:0C Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 0CED9468B5FD5846FB046A62EA7C5E0D38055C04 Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa Signing time: Thu 02 Apr 2026 05:00:01 +0000 ROA not before: Thu 02 Apr 2026 04:55:01 +0000 ROA not after: Thu 01 Apr 2027 05:00:01 +0000 asID: 142375 IP address blocks: 103.171.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ed:94:68:b5:fd:58:46:fb:04:6a:62:ea:7c:5e:0d:38:05:5c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: Apr 2 04:55:01 2026 GMT Not After : Apr 1 05:00:01 2027 GMT Subject: CN=A19CAF3F854D77125C547AF95B7E910908FC2B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d1:1e:33:05:68:2c:27:94:e2:44:c9:39:17: a2:8b:9e:3a:d1:97:de:c2:c1:ee:6a:b4:00:2b:5a: e7:83:7e:9e:ab:bd:7d:53:f8:95:1e:4f:ff:c0:2c: 53:e5:b8:d4:52:37:ad:12:49:08:d6:59:fe:18:9c: 8d:ae:81:86:82:40:2c:ff:b1:2c:5c:36:39:14:38: 0c:c5:48:db:20:59:96:6b:6d:43:b2:ad:8e:4f:0d: 46:7f:d3:98:84:50:cd:90:95:86:38:8b:c7:c2:f3: 2b:d5:a9:ac:ec:09:4d:2f:1f:8d:1c:d3:b3:f3:b8: 7e:b6:91:27:7d:ae:d2:59:8e:46:2f:aa:3d:82:43: 89:5d:94:69:7b:5b:91:73:e8:55:fd:36:83:68:12: f3:10:ac:ab:38:69:30:dd:3e:36:ec:d5:55:b8:b6: 74:0e:72:cc:d5:1e:f1:e6:f8:9a:dc:99:44:8a:88: c2:6d:36:19:52:6e:a0:d1:93:77:87:c2:bb:c0:e6: 27:d3:e9:3d:70:f3:48:e4:3f:27:11:ec:8f:0b:e1: 4d:0c:6a:09:b8:a6:f4:a1:57:c4:0b:96:9d:44:b1: df:4c:5b:fa:29:4d:1b:d6:7e:3b:14:a8:50:ac:33: 08:02:c4:22:2b:cc:8a:7c:a1:be:a2:48:ea:7f:dc: 17:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9C:AF:3F:85:4D:77:12:5C:54:7A:F9:5B:7E:91:09:08:FC:2B:0C X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.182.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:17:9b:a6:db:93:89:f1:81:32:07:79:39:c0:69:c8:8b:c8: a6:c0:78:64:a7:68:36:4c:24:e6:79:5c:68:17:96:48:d4:77: a4:b6:31:7e:da:89:48:f3:5c:7f:a6:70:c3:cf:6d:17:7e:34: c7:4e:7a:84:58:01:eb:52:27:2a:e6:69:b4:34:30:d5:53:9b: ba:1f:af:d6:54:21:33:3f:9e:77:eb:d5:9b:df:10:de:38:b9: dc:ee:b4:5a:d0:0b:85:fe:cc:c9:7c:e7:31:e3:ac:74:1c:24: 29:04:74:c7:9d:3a:7a:1a:43:d1:3c:fc:36:bc:4e:59:86:6f: 2a:96:0e:d0:d3:96:5a:32:a2:96:be:75:14:9b:ed:3b:09:b1: 6a:d4:fa:bf:c9:b7:8f:5c:5a:42:e5:7b:b6:39:72:e1:f3:44: f6:8a:a0:4f:8a:f2:2d:99:22:50:ff:ed:55:d4:6c:57:5c:3e: bd:6d:03:76:ea:54:cf:0d:75:2b:34:88:a4:ac:27:a1:78:71: 06:b0:6c:8e:d6:aa:24:3b:38:1a:c1:c5:3e:f5:d7:be:b7:8c: 2d:48:f6:3d:37:39:3e:8d:b4:6f:3b:dd:d8:fc:51:b3:d4:fc: c1:67:04:4d:80:86:d4:44:64:fd:4c:2e:87:3c:a5:2f:43:45: 37:47:c1:1e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDO2UaLX9WEb7BGpi6nxeDTgFXAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNjA0MDIwNDU1MDFaFw0yNzA0MDEwNTAwMDFaMDMxMTAvBgNV BAMTKEExOUNBRjNGODU0RDc3MTI1QzU0N0FGOTVCN0U5MTA5MDhGQzJCMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd0R4zBWgsJ5TiRMk5F6KLnjrR l97Cwe5qtAArWueDfp6rvX1T+JUeT//ALFPluNRSN60SSQjWWf4YnI2ugYaCQCz/ sSxcNjkUOAzFSNsgWZZrbUOyrY5PDUZ/05iEUM2QlYY4i8fC8yvVqazsCU0vH40c 07PzuH62kSd9rtJZjkYvqj2CQ4ldlGl7W5Fz6FX9NoNoEvMQrKs4aTDdPjbs1VW4 tnQOcszVHvHm+JrcmUSKiMJtNhlSbqDRk3eHwrvA5ifT6T1w80jkPycR7I8L4U0M agm4pvShV8QLlp1Esd9MW/opTRvWfjsUqFCsMwgCxCIrzIp8ob6iSOp/3Bf5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoZyvP4VNdxJcVHr5W36RCQj8KwwwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzNTA1Y2IzLWI1NWUtNDBlNC1h Yzc5LTYzNjU2MDZmNGVmOS8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7YwDQYJ KoZIhvcNAQELBQADggEBABoXm6bbk4nxgTIHeTnAaciLyKbAeGSnaDZMJOZ5XGgX lkjUd6S2MX7aiUjzXH+mcMPPbRd+NMdOeoRYAetSJyrmabQ0MNVTm7ofr9ZUITM/ nnfr1ZvfEN44udzutFrQC4X+zMl85zHjrHQcJCkEdMedOnoaQ9E8/Da8TlmGbyqW DtDTlloyopa+dRSb7TsJsWrU+r/Jt49cWkLle7Y5cuHzRPaKoE+K8i2ZIlD/7VXU bFdcPr1tA3bqVM8NdSs0iKSsJ6F4cQawbI7WqiQ7OBrBxT711763jC1I9j03OT6N tG873dj8UbPU/MFnBE2AhtREZP1MLoc8pS9DRTdHwR4= -----END CERTIFICATE-----Generated at Sat Apr 18 06:14:15 2026 by rpki-client