$ rpki-client -vvf repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137302e302f32342d3234203d3e203536323631.roa File: 3130332e32392e3137302e302f32342d3234203d3e203536323631.roa (raw, json) Hash identifier: IcD5zOms5GXpfiNt7hRP9upxKDfwB6QU1a39hf9fK00= Subject key identifier: 28:8D:8E:9F:D6:A9:80:BA:0D:BB:3E:D6:99:C9:34:6A:DC:5D:C3:D9 Certificate issuer: /CN=8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11 Certificate serial: 34B7BEB4C4E70F3CBBEFBA8CA967D68502072835 Authority key identifier: 89:32:E2:5F:54:C4:B1:0E:2A:E5:B7:1E:38:D2:AD:4D:1E:E3:BB:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137302e302f32342d3234203d3e203536323631.roa Signing time: Fri 10 Apr 2026 05:00:00 +0000 ROA not before: Fri 10 Apr 2026 04:55:00 +0000 ROA not after: Fri 09 Apr 2027 05:00:00 +0000 asID: 56261 IP address blocks: 103.29.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.crl rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 10:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b7:be:b4:c4:e7:0f:3c:bb:ef:ba:8c:a9:67:d6:85:02:07:28:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11 Validity Not Before: Apr 10 04:55:00 2026 GMT Not After : Apr 9 05:00:00 2027 GMT Subject: CN=288D8E9FD6A980BA0DBB3ED699C9346ADC5DC3D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f7:11:fe:17:de:c4:f9:01:18:02:b6:47:00: ac:c9:44:29:32:ef:aa:d2:c7:bb:b8:a6:2e:cf:d7: 8a:82:14:f2:6b:99:89:f0:94:23:78:22:b2:2e:2d: 9b:a5:77:29:50:17:23:3d:35:34:08:0e:bb:f7:3a: eb:d4:94:54:78:13:6c:59:20:2a:26:d3:71:f8:bc: 9d:6c:97:5b:14:ee:44:cc:8c:05:b5:66:d3:ab:48: 53:c7:ab:6c:a3:f3:63:79:98:06:6a:88:05:d7:cf: b4:60:3f:1c:6f:c7:15:0d:85:a9:b4:3d:5b:1f:dc: 42:04:45:d0:74:78:1c:39:22:b5:b4:70:ef:57:a0: d0:eb:2c:75:30:5a:a1:b4:62:36:f9:72:8b:62:0f: 82:3a:a4:60:3a:ce:e9:c2:2e:8f:ac:dd:b9:7e:97: 11:d1:a7:c7:3a:6f:0f:96:bf:e3:90:18:72:ad:fa: ba:b3:ba:3e:35:c3:e0:c3:24:87:bc:72:e1:71:3b: cb:ed:f8:16:01:4e:38:37:31:e7:8b:d3:f3:51:73: cb:a6:9a:c9:27:33:5f:d5:07:e6:d3:20:b6:87:5d: 75:fe:2d:20:f2:52:4b:35:75:11:10:98:54:e6:13: d6:ec:c6:9d:51:f1:7d:6a:50:56:eb:a1:ba:12:b4: 0d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:8D:8E:9F:D6:A9:80:BA:0D:BB:3E:D6:99:C9:34:6A:DC:5D:C3:D9 X509v3 Authority Key Identifier: keyid:89:32:E2:5F:54:C4:B1:0E:2A:E5:B7:1E:38:D2:AD:4D:1E:E3:BB:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137302e302f32342d3234203d3e203536323631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.170.0/24 Signature Algorithm: sha256WithRSAEncryption b2:a2:bd:9d:50:ae:06:16:4c:32:9b:95:bf:58:39:b3:f4:4c: 2c:73:d1:ac:9d:bf:28:52:64:82:5f:d3:82:f2:5a:0a:c4:ed: 49:d0:8f:45:4a:ba:4a:4f:a4:1b:15:68:e8:e1:33:4d:17:34: 2c:ee:86:91:6e:4b:a9:b0:4c:0a:bc:01:7e:69:ee:a0:58:06: dc:22:e2:ac:f0:53:89:07:fc:37:bf:ea:5a:27:37:a9:9b:ca: e2:19:ef:1f:f9:80:1c:d4:9a:a2:ba:a1:0a:b7:85:d7:2e:ec: 05:c6:5b:98:f7:6b:33:16:e4:ba:81:2d:b6:bb:9b:a2:22:77: 02:8d:db:b2:b0:95:39:89:32:b1:36:e3:4c:46:53:df:f8:35: ea:ab:83:d9:ca:fe:12:9f:9f:40:48:b4:62:45:2b:b6:c6:46: 12:33:e0:dd:da:40:ad:8b:bc:4d:f9:c6:2c:fe:e0:62:33:be: f9:c2:d8:f3:9d:db:1f:20:e9:1c:d8:16:c2:52:da:9c:18:2c: 6d:a1:cf:21:ca:71:b9:3e:eb:12:49:b4:e2:b9:a1:a4:a2:35: 6f:d8:81:b0:42:5e:1f:99:69:46:48:3f:bc:4c:99:29:f4:0d: ae:03:ef:b1:d7:9f:77:5b:0b:89:42:b3:74:ef:79:89:b8:50: 8f:bd:06:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNLe+tMTnDzy777qMqWfWhQIHKDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzMkUyNUY1NEM0QjEwRTJBRTVCNzFFMzhEMkFENEQx RUUzQkIxMTAeFw0yNjA0MTAwNDU1MDBaFw0yNzA0MDkwNTAwMDBaMDMxMTAvBgNV BAMTKDI4OEQ4RTlGRDZBOTgwQkEwREJCM0VENjk5QzkzNDZBREM1REMzRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf9xH+F97E+QEYArZHAKzJRCky 76rSx7u4pi7P14qCFPJrmYnwlCN4IrIuLZuldylQFyM9NTQIDrv3OuvUlFR4E2xZ ICom03H4vJ1sl1sU7kTMjAW1ZtOrSFPHq2yj82N5mAZqiAXXz7RgPxxvxxUNham0 PVsf3EIERdB0eBw5IrW0cO9XoNDrLHUwWqG0Yjb5cotiD4I6pGA6zunCLo+s3bl+ lxHRp8c6bw+Wv+OQGHKt+rqzuj41w+DDJIe8cuFxO8vt+BYBTjg3MeeL0/NRc8um msknM1/VB+bTILaHXXX+LSDyUks1dREQmFTmE9bsxp1R8X1qUFbroboStA11AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKI2On9apgLoNuz7Wmck0atxdw9kwHwYDVR0j BBgwFoAUiTLiX1TEsQ4q5bceONKtTR7juxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzgwOTM4NC05YjFjLTRmNWEtYWE2Yi05ZGUzYjUyYTljMDUvMC84OTMyRTI1RjU0 QzRCMTBFMkFFNUI3MUUzOEQyQUQ0RDFFRTNCQjExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODkzMkUyNUY1NEM0QjEwRTJBRTVCNzFFMzhEMkFENEQxRUUz QkIxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzODA5Mzg0LTliMWMtNGY1YS1h YTZiLTlkZTNiNTJhOWMwNS8wLzMxMzAzMzJlMzIzOTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcdqjANBgkqhkiG 9w0BAQsFAAOCAQEAsqK9nVCuBhZMMpuVv1g5s/RMLHPRrJ2/KFJkgl/TgvJaCsTt SdCPRUq6Sk+kGxVo6OEzTRc0LO6GkW5LqbBMCrwBfmnuoFgG3CLirPBTiQf8N7/q Wic3qZvK4hnvH/mAHNSaorqhCreF1y7sBcZbmPdrMxbkuoEttruboiJ3Ao3bsrCV OYkysTbjTEZT3/g16quD2cr+Ep+fQEi0YkUrtsZGEjPg3dpArYu8TfnGLP7gYjO+ +cLY853bHyDpHNgWwlLanBgsbaHPIcpxuT7rEkm04rmhpKI1b9iBsEJeH5lpRkg/ vEyZKfQNrgPvsdefd1sLiUKzdO95ibhQj70GYw== -----END CERTIFICATE-----Generated at Sat Apr 18 04:00:57 2026 by rpki-client