$ rpki-client -vvf repo-rpki.idnic.net/repo/e9ffb43b-f8b5-4f1f-9b8f-5b02ddbb6fcf/0/3130332e3137362e3235322e302f32332d3234203d3e20313437313433.roa File: 3130332e3137362e3235322e302f32332d3234203d3e20313437313433.roa (raw, json) Hash identifier: ZVqPyNW+ZbFn/dNNWlTznwBp05DQufRGwevosMfDcjo= Subject key identifier: 3C:5A:09:AC:E1:DC:84:4A:DB:5E:61:B1:8F:B3:16:12:8A:A9:3C:AE Certificate issuer: /CN=E82AE8B691C7C53E1CE0B396D8975747F15604D5 Certificate serial: 28FEAB512CFAEFEF4DFCCA82F4BDE88DF09F2FBB Authority key identifier: E8:2A:E8:B6:91:C7:C5:3E:1C:E0:B3:96:D8:97:57:47:F1:56:04:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E82AE8B691C7C53E1CE0B396D8975747F15604D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e9ffb43b-f8b5-4f1f-9b8f-5b02ddbb6fcf/0/3130332e3137362e3235322e302f32332d3234203d3e20313437313433.roa Signing time: Fri 27 Mar 2026 14:00:02 +0000 ROA not before: Fri 27 Mar 2026 13:55:02 +0000 ROA not after: Fri 26 Mar 2027 14:00:02 +0000 asID: 147143 IP address blocks: 103.176.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e9ffb43b-f8b5-4f1f-9b8f-5b02ddbb6fcf/0/E82AE8B691C7C53E1CE0B396D8975747F15604D5.crl rsync://repo-rpki.idnic.net/repo/e9ffb43b-f8b5-4f1f-9b8f-5b02ddbb6fcf/0/E82AE8B691C7C53E1CE0B396D8975747F15604D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E82AE8B691C7C53E1CE0B396D8975747F15604D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 00:56:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:fe:ab:51:2c:fa:ef:ef:4d:fc:ca:82:f4:bd:e8:8d:f0:9f:2f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E82AE8B691C7C53E1CE0B396D8975747F15604D5 Validity Not Before: Mar 27 13:55:02 2026 GMT Not After : Mar 26 14:00:02 2027 GMT Subject: CN=3C5A09ACE1DC844ADB5E61B18FB316128AA93CAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cf:ee:39:74:ed:5e:f6:d8:6b:8e:98:f0:96: 0c:11:75:8e:48:b5:1a:1e:72:9e:bb:1d:ee:d8:b8: 21:57:0b:98:f0:ae:e1:eb:f6:fe:6c:ec:b5:98:b2: 03:d2:00:79:9b:86:87:17:cb:53:8b:7f:6f:b1:f0: b8:b4:21:37:d2:10:b0:40:4c:6e:2b:6c:05:69:3f: ed:1d:af:b1:54:9f:d0:80:08:93:dd:dc:a8:cf:6a: cb:c3:99:55:17:15:26:42:12:df:51:f3:05:2c:69: d7:47:df:8a:b6:ec:97:78:ab:dc:18:08:21:3b:68: ec:b2:25:7c:3b:bf:a9:32:30:3c:4c:00:68:d0:d4: eb:38:5e:d1:1c:d0:93:d3:f3:98:b1:a9:85:5e:0f: ad:db:d7:9c:9e:78:b8:a5:85:8d:6a:e7:85:69:b2: b0:70:9a:ec:9d:4a:dd:ac:6a:e6:9b:39:3b:a5:db: 9b:83:58:7e:94:06:66:60:04:cf:95:a1:fb:88:e8: dc:55:2a:64:88:27:e5:1f:31:b1:8f:e7:65:59:2c: c8:f7:d7:6a:63:cb:3b:7c:d1:54:4b:a2:18:c1:8a: 9d:7d:1a:0e:bb:12:5f:6c:42:0c:f0:5a:2b:05:6d: af:ed:0c:e3:27:0a:73:68:94:8a:d5:a4:53:19:b9: 53:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5A:09:AC:E1:DC:84:4A:DB:5E:61:B1:8F:B3:16:12:8A:A9:3C:AE X509v3 Authority Key Identifier: keyid:E8:2A:E8:B6:91:C7:C5:3E:1C:E0:B3:96:D8:97:57:47:F1:56:04:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e9ffb43b-f8b5-4f1f-9b8f-5b02ddbb6fcf/0/E82AE8B691C7C53E1CE0B396D8975747F15604D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E82AE8B691C7C53E1CE0B396D8975747F15604D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e9ffb43b-f8b5-4f1f-9b8f-5b02ddbb6fcf/0/3130332e3137362e3235322e302f32332d3234203d3e20313437313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.252.0/23 Signature Algorithm: sha256WithRSAEncryption 20:ac:e5:f3:16:e3:b3:7b:a3:7b:54:fe:7d:1b:45:f4:18:ea: 70:ad:c8:60:03:5d:0b:45:2f:27:84:5a:75:79:8e:17:c2:7b: 1e:6b:b9:17:ed:3a:a6:5e:1f:f4:ec:a4:f3:e7:de:1f:24:98: 61:1f:91:df:5b:59:d0:dc:24:b7:a2:29:a8:08:86:18:0b:d5: f5:22:c9:ee:24:2f:7a:9f:70:aa:49:e9:38:7c:31:4e:a8:02: 70:1b:42:5c:cc:d2:d5:6a:74:0a:8d:44:a0:cf:98:af:80:9f: a6:8a:61:fa:4a:b9:20:48:d9:36:ce:17:d3:8d:e1:79:96:d3: 98:a1:55:2c:7a:e2:fe:dc:9b:f3:16:0f:f5:c5:74:e7:f0:6d: 09:f4:9c:c2:cb:6a:1a:55:a1:d6:fc:06:d1:13:26:fd:1a:19: 42:82:57:e0:1d:a7:86:73:39:1d:9b:50:b2:3d:e1:ff:67:f7: e2:f3:b7:01:f7:92:1a:7a:56:af:92:b8:6b:2b:86:fd:4a:15: 4f:da:bd:67:f0:55:72:a5:79:ba:c7:06:f0:3b:1d:f2:df:5f: 41:39:98:04:60:ba:c7:65:57:2f:e3:9a:fc:e2:70:79:7e:4f: 4f:ab:04:6b:b2:f6:cb:8b:3b:5e:91:18:d9:6f:91:e7:28:e9: a0:09:9f:56 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKP6rUSz67+9N/MqC9L3ojfCfL7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTgyQUU4QjY5MUM3QzUzRTFDRTBCMzk2RDg5NzU3NDdG MTU2MDRENTAeFw0yNjAzMjcxMzU1MDJaFw0yNzAzMjYxNDAwMDJaMDMxMTAvBgNV BAMTKDNDNUEwOUFDRTFEQzg0NEFEQjVFNjFCMThGQjMxNjEyOEFBOTNDQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtz+45dO1e9thrjpjwlgwRdY5I tRoecp67He7YuCFXC5jwruHr9v5s7LWYsgPSAHmbhocXy1OLf2+x8Li0ITfSELBA TG4rbAVpP+0dr7FUn9CACJPd3KjPasvDmVUXFSZCEt9R8wUsaddH34q27Jd4q9wY CCE7aOyyJXw7v6kyMDxMAGjQ1Os4XtEc0JPT85ixqYVeD63b15yeeLilhY1q54Vp srBwmuydSt2sauabOTul25uDWH6UBmZgBM+VofuI6NxVKmSIJ+UfMbGP52VZLMj3 12pjyzt80VRLohjBip19Gg67El9sQgzwWisFba/tDOMnCnNolIrVpFMZuVOxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPFoJrOHchErbXmGxj7MWEoqpPK4wHwYDVR0j BBgwFoAU6CrotpHHxT4c4LOW2JdXR/FWBNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OWZmYjQzYi1mOGI1LTRmMWYtOWI4Zi01YjAyZGRiYjZmY2YvMC9FODJBRThCNjkx QzdDNTNFMUNFMEIzOTZEODk3NTc0N0YxNTYwNEQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTgyQUU4QjY5MUM3QzUzRTFDRTBCMzk2RDg5NzU3NDdGMTU2 MDRENS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5ZmZiNDNiLWY4YjUtNGYxZi05 YjhmLTViMDJkZGJiNmZjZi8wLzMxMzAzMzJlMzEzNzM2MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzczMTM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsPwwDQYJ KoZIhvcNAQELBQADggEBACCs5fMW47N7o3tU/n0bRfQY6nCtyGADXQtFLyeEWnV5 jhfCex5ruRftOqZeH/TspPPn3h8kmGEfkd9bWdDcJLeiKagIhhgL1fUiye4kL3qf cKpJ6Th8MU6oAnAbQlzM0tVqdAqNRKDPmK+An6aKYfpKuSBI2TbOF9ON4XmW05ih VSx64v7cm/MWD/XFdOfwbQn0nMLLahpVodb8BtETJv0aGUKCV+Adp4ZzOR2bULI9 4f9n9+LztwH3khp6Vq+SuGsrhv1KFU/avWfwVXKlebrHBvA7HfLfX0E5mARgusdl Vy/jmvzicHl+T0+rBGuy9suLO16RGNlvkeco6aAJn1Y= -----END CERTIFICATE-----Generated at Fri Apr 17 16:46:20 2026 by rpki-client