$ rpki-client -vvf repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa File: 3130332e3137322e33342e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: ScswL9bUHxklIocgroijXKfEDJTzVxzTBZjvmh8mZng= Subject key identifier: 8D:2C:B2:BA:FE:49:B7:3C:95:0D:3D:04:7D:B8:BE:81:D7:DB:83:FB Certificate issuer: /CN=5562ED3E2B75AA4CE36165EE02F7696CCB8045E1 Certificate serial: 1621DA6D6CCEBFD8D30DA11C652B310BF87E5DB8 Authority key identifier: 55:62:ED:3E:2B:75:AA:4C:E3:61:65:EE:02:F7:69:6C:CB:80:45:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa Signing time: Fri 03 Apr 2026 03:00:01 +0000 ROA not before: Fri 03 Apr 2026 02:55:01 +0000 ROA not after: Fri 02 Apr 2027 03:00:01 +0000 asID: 58821 IP address blocks: 103.172.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.crl rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 07:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:21:da:6d:6c:ce:bf:d8:d3:0d:a1:1c:65:2b:31:0b:f8:7e:5d:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5562ED3E2B75AA4CE36165EE02F7696CCB8045E1 Validity Not Before: Apr 3 02:55:01 2026 GMT Not After : Apr 2 03:00:01 2027 GMT Subject: CN=8D2CB2BAFE49B73C950D3D047DB8BE81D7DB83FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d8:61:50:79:84:b2:b5:ce:a6:1a:c7:9b:7d: e8:2c:08:84:d5:2b:14:5e:b6:5d:32:c9:16:6e:5f: 81:8c:0d:1a:94:5c:2c:88:df:47:c4:a7:a1:8e:36: 20:b0:f1:59:0c:36:f9:f5:99:bf:fb:95:f6:d2:b5: bd:92:9c:51:06:b1:10:58:1e:29:aa:9a:96:70:1f: b6:38:45:be:6f:64:b9:9a:69:fc:e4:20:49:82:f8: f0:f0:91:5c:72:8c:62:6b:53:1f:3d:71:55:77:d0: e6:d2:9a:5f:cd:20:ee:69:95:10:c7:29:fa:29:75: 88:91:70:89:72:e7:6a:de:3c:11:2e:f8:27:16:91: c9:6a:52:3b:0f:03:a1:f5:45:4d:1a:40:8c:98:96: cf:03:73:04:bd:10:13:65:f0:21:a8:43:b0:12:2b: 0c:eb:ff:1a:b2:fa:fd:cf:b3:26:fd:73:6a:5e:2b: 6b:36:c0:d2:89:98:d2:52:6b:6a:68:ee:97:c4:8c: b1:d9:d5:9c:6a:11:e5:ce:b0:32:31:3d:8f:07:a3: cd:56:66:41:b0:c8:5d:77:11:9d:46:97:4b:1d:fd: e6:12:52:40:4d:b7:e6:4b:b6:51:36:bc:22:3f:85: 51:e2:f3:13:f9:80:ee:5a:4d:36:91:09:3f:8a:e5: 4b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2C:B2:BA:FE:49:B7:3C:95:0D:3D:04:7D:B8:BE:81:D7:DB:83:FB X509v3 Authority Key Identifier: keyid:55:62:ED:3E:2B:75:AA:4C:E3:61:65:EE:02:F7:69:6C:CB:80:45:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.34.0/23 Signature Algorithm: sha256WithRSAEncryption 08:fd:f0:4b:c8:85:55:0f:dd:a2:53:15:28:5f:31:a3:3e:3c: f6:67:39:25:20:6e:ff:45:fe:ba:ec:07:cc:39:07:ec:d5:94: de:99:b1:f7:24:e3:72:26:e7:af:e6:ef:2e:b1:6c:04:34:63: 69:c9:2f:a6:7c:e3:d2:ef:dd:f2:e8:bb:44:09:f9:50:ad:81: cb:fa:e5:ac:25:af:73:54:c1:d9:2b:22:ef:28:d4:ce:b3:5b: d4:5b:ab:4e:ac:2c:75:91:27:03:80:a7:a0:d7:ac:6e:76:3f: fd:2c:f0:d4:f0:ac:0e:82:fc:77:3d:2c:4f:65:4c:22:4c:94: 02:a4:59:b4:bb:92:be:54:7c:a2:3a:a5:0b:a8:e5:0f:f6:a6: d5:9c:c8:59:24:e3:69:03:ee:b5:2f:e3:f2:11:64:e3:cf:4c: f6:0c:54:8c:bb:86:3c:0a:ad:a4:07:e0:2e:71:60:fb:da:9a: 12:7d:cf:ee:46:b4:8f:5a:00:b6:ef:28:78:1c:9d:46:00:28: 15:ac:a6:61:93:a5:3a:31:cd:8c:3e:54:53:15:65:6c:72:84: 10:30:eb:75:ce:26:fa:a3:ab:7f:13:e6:b5:2e:31:f0:82:fb: d2:8d:04:dd:81:64:f7:68:4c:b3:04:7f:ab:12:b5:4c:ec:e3: cb:05:59:2e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFiHabWzOv9jTDaEcZSsxC/h+XbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2MkVEM0UyQjc1QUE0Q0UzNjE2NUVFMDJGNzY5NkND QjgwNDVFMTAeFw0yNjA0MDMwMjU1MDFaFw0yNzA0MDIwMzAwMDFaMDMxMTAvBgNV BAMTKDhEMkNCMkJBRkU0OUI3M0M5NTBEM0QwNDdEQjhCRTgxRDdEQjgzRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq2GFQeYSytc6mGsebfegsCITV KxRetl0yyRZuX4GMDRqUXCyI30fEp6GONiCw8VkMNvn1mb/7lfbStb2SnFEGsRBY HimqmpZwH7Y4Rb5vZLmaafzkIEmC+PDwkVxyjGJrUx89cVV30ObSml/NIO5plRDH KfopdYiRcIly52rePBEu+CcWkclqUjsPA6H1RU0aQIyYls8DcwS9EBNl8CGoQ7AS Kwzr/xqy+v3Psyb9c2peK2s2wNKJmNJSa2po7pfEjLHZ1ZxqEeXOsDIxPY8Ho81W ZkGwyF13EZ1Gl0sd/eYSUkBNt+ZLtlE2vCI/hVHi8xP5gO5aTTaRCT+K5UsjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjSyyuv5JtzyVDT0Efbi+gdfbg/swHwYDVR0j BBgwFoAUVWLtPit1qkzjYWXuAvdpbMuAReEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l N2EzZTkwYS0wMzNhLTRjOGQtOTA3Ny0wZGFmODA1MGZhOGIvMC81NTYyRUQzRTJC NzVBQTRDRTM2MTY1RUUwMkY3Njk2Q0NCODA0NUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2MkVEM0UyQjc1QUE0Q0UzNjE2NUVFMDJGNzY5NkNDQjgw NDVFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3YTNlOTBhLTAzM2EtNGM4ZC05 MDc3LTBkYWY4MDUwZmE4Yi8wLzMxMzAzMzJlMzEzNzMyMmUzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM4MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWesIjANBgkqhkiG 9w0BAQsFAAOCAQEACP3wS8iFVQ/dolMVKF8xoz489mc5JSBu/0X+uuwHzDkH7NWU 3pmx9yTjcibnr+bvLrFsBDRjackvpnzj0u/d8ui7RAn5UK2By/rlrCWvc1TB2Ssi 7yjUzrNb1FurTqwsdZEnA4CnoNesbnY//Szw1PCsDoL8dz0sT2VMIkyUAqRZtLuS vlR8ojqlC6jlD/am1ZzIWSTjaQPutS/j8hFk489M9gxUjLuGPAqtpAfgLnFg+9qa En3P7ka0j1oAtu8oeBydRgAoFaymYZOlOjHNjD5UUxVlbHKEEDDrdc4m+qOrfxPm tS4x8IL70o0E3YFk92hMswR/qxK1TOzjywVZLg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:47:12 2026 by rpki-client