$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa File: 3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa (raw, json) Hash identifier: //zquDXouiLBNlJyTbiIiX2XMyjS3OOuOm+C49S1bEQ= Subject key identifier: FF:CF:81:C9:42:12:5B:0A:A0:62:A0:C4:9C:19:27:F6:33:86:A9:A0 Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 1A6991F95BF9ED833808EEC4239A47D6E232942A Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa Signing time: Thu 02 Apr 2026 05:00:01 +0000 ROA not before: Thu 02 Apr 2026 04:55:01 +0000 ROA not after: Thu 01 Apr 2027 05:00:01 +0000 asID: 142375 IP address blocks: 103.171.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:69:91:f9:5b:f9:ed:83:38:08:ee:c4:23:9a:47:d6:e2:32:94:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: Apr 2 04:55:01 2026 GMT Not After : Apr 1 05:00:01 2027 GMT Subject: CN=FFCF81C942125B0AA062A0C49C1927F63386A9A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:59:ac:f5:27:bc:a8:fe:47:9b:f8:ad:6a:6b: 91:c8:24:50:b9:2c:52:c5:31:21:bb:86:67:f3:b1: 32:9b:f9:b6:b8:02:a8:80:80:77:d4:96:51:05:74: 90:05:f0:0c:f2:71:be:59:c0:6e:24:61:23:d1:d7: e5:ff:07:91:00:46:9a:3e:f7:f5:14:1e:81:10:5b: 6d:9b:df:b2:44:9a:3a:f0:bc:1e:89:48:69:38:07: 26:b8:33:47:6b:9b:ec:85:cf:03:ab:a0:ce:92:62: 27:34:d9:ac:b3:c1:fc:09:f2:55:d6:a2:a9:88:ff: d7:a7:70:3f:a0:a7:6b:8b:5e:8a:16:22:cd:25:e4: 46:ca:f1:5e:16:e8:cc:5b:83:4d:e1:a6:94:b1:0e: a6:77:61:16:0d:b4:8d:51:56:61:67:5f:bc:17:c8: e0:6b:c9:51:ad:b4:86:ee:87:c2:ef:10:00:c6:63: a2:1e:fe:e6:6f:3e:cb:1d:52:af:db:80:e0:fe:27: 13:00:ff:d4:47:d6:88:a1:b6:1d:84:ad:43:12:58: a6:f6:f5:e6:22:13:1b:ae:11:01:c6:90:3f:29:3a: 3b:ca:9e:66:4a:e9:dd:70:68:f7:9c:c7:aa:3b:e2: 25:ba:03:e8:45:0c:1c:30:23:a7:1d:48:4d:3a:b3: 1a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CF:81:C9:42:12:5B:0A:A0:62:A0:C4:9C:19:27:F6:33:86:A9:A0 X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.183.0/24 Signature Algorithm: sha256WithRSAEncryption 87:b7:2e:41:28:e2:62:a9:aa:14:90:40:be:92:c5:ef:cc:e4: de:c1:77:79:ab:5e:87:f0:6d:80:6e:13:88:f7:56:5d:15:75: ea:d2:7a:0f:eb:63:e7:a5:b6:30:d4:26:87:8b:81:28:ef:53: f7:b8:77:73:23:52:8c:1b:d4:7b:c2:24:7d:f6:4a:25:c1:98: 6e:e2:f3:90:42:f7:07:c8:6d:b3:93:e6:bd:9e:1e:98:62:a3: 31:95:31:b5:66:41:d4:93:7a:8d:27:34:e6:41:a2:35:bc:03: 03:c7:19:7e:7b:8f:16:29:bf:61:43:4e:a3:1f:ae:0c:d9:95: 8d:f9:65:8a:ee:49:6b:4d:ec:0c:95:6f:76:df:da:9c:97:5d: cc:64:9d:90:2b:2b:d1:cb:21:76:dc:0a:44:9e:d4:87:f3:7e: 74:87:87:74:9d:ce:1e:0f:8b:c4:e5:a8:fc:aa:28:7c:2a:21: aa:fd:f7:52:38:2c:72:d0:4c:8e:8e:92:16:3b:a9:d0:1e:09: 63:df:25:8c:d9:fd:4b:2b:b4:3b:0f:25:70:d9:33:32:7a:93: 6a:8d:e2:79:a0:37:af:4e:f0:5e:ec:5c:da:9b:e3:fc:1b:b7: c2:61:8c:94:66:04:7f:a4:d4:2f:09:35:7c:b2:48:61:48:f6: 6d:6c:7d:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGmmR+Vv57YM4CO7EI5pH1uIylCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNjA0MDIwNDU1MDFaFw0yNzA0MDEwNTAwMDFaMDMxMTAvBgNV BAMTKEZGQ0Y4MUM5NDIxMjVCMEFBMDYyQTBDNDlDMTkyN0Y2MzM4NkE5QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Waz1J7yo/keb+K1qa5HIJFC5 LFLFMSG7hmfzsTKb+ba4AqiAgHfUllEFdJAF8Azycb5ZwG4kYSPR1+X/B5EARpo+ 9/UUHoEQW22b37JEmjrwvB6JSGk4Bya4M0drm+yFzwOroM6SYic02ayzwfwJ8lXW oqmI/9encD+gp2uLXooWIs0l5EbK8V4W6Mxbg03hppSxDqZ3YRYNtI1RVmFnX7wX yOBryVGttIbuh8LvEADGY6Ie/uZvPssdUq/bgOD+JxMA/9RH1oihth2ErUMSWKb2 9eYiExuuEQHGkD8pOjvKnmZK6d1waPecx6o74iW6A+hFDBwwI6cdSE06sxqzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/8+ByUISWwqgYqDEnBkn9jOGqaAwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzNTA1Y2IzLWI1NWUtNDBlNC1h Yzc5LTYzNjU2MDZmNGVmOS8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7cwDQYJ KoZIhvcNAQELBQADggEBAIe3LkEo4mKpqhSQQL6Sxe/M5N7Bd3mrXofwbYBuE4j3 Vl0VderSeg/rY+eltjDUJoeLgSjvU/e4d3MjUowb1HvCJH32SiXBmG7i85BC9wfI bbOT5r2eHphiozGVMbVmQdSTeo0nNOZBojW8AwPHGX57jxYpv2FDTqMfrgzZlY35 ZYruSWtN7AyVb3bf2pyXXcxknZArK9HLIXbcCkSe1IfzfnSHh3Sdzh4Pi8TlqPyq KHwqIar991I4LHLQTI6OkhY7qdAeCWPfJYzZ/UsrtDsPJXDZMzJ6k2qN4nmgN69O 8F7sXNqb4/wbt8JhjJRmBH+k1C8JNXyySGFI9m1sfVw= -----END CERTIFICATE-----Generated at Sat Apr 18 06:14:15 2026 by rpki-client