$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa File: 3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa (raw, json) Hash identifier: sxjeekt3EB01ApyWNOyawOI9DLjFzp9c1ekOopzAZU0= Subject key identifier: D1:B9:F9:6F:0E:41:AC:D1:AE:0F:C3:1B:1E:51:0A:DA:41:D0:52:40 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 5D7A29BFBF4E608CD3479A75322AAE1C22E25422 Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa Signing time: Mon 06 Apr 2026 15:00:01 +0000 ROA not before: Mon 06 Apr 2026 14:55:01 +0000 ROA not after: Mon 05 Apr 2027 15:00:01 +0000 asID: 142365 IP address blocks: 103.170.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 12:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:7a:29:bf:bf:4e:60:8c:d3:47:9a:75:32:2a:ae:1c:22:e2:54:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Apr 6 14:55:01 2026 GMT Not After : Apr 5 15:00:01 2027 GMT Subject: CN=D1B9F96F0E41ACD1AE0FC31B1E510ADA41D05240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:59:e3:c1:38:ff:38:90:0a:57:07:64:d7:57: 28:bb:39:ad:c9:66:1a:99:6b:ec:65:cb:6f:7b:4e: 50:81:53:52:51:af:47:9e:fc:49:a1:c2:0b:ad:cb: a9:4d:bc:4c:6f:8a:2a:a5:c5:f1:01:5d:df:47:2a: 64:86:e7:d0:52:8d:06:e8:53:8b:a9:3e:e8:79:55: b3:46:3c:8f:19:8b:9f:75:6b:13:0a:43:f9:df:87: 0c:a1:d2:99:0e:d0:02:ba:13:4e:38:d8:08:62:b9: f5:ed:06:78:4c:94:1f:f7:be:4e:84:61:ef:c2:e2: 6d:b3:25:53:11:35:81:f2:3a:8b:0d:c3:e7:ae:e7: 81:07:60:6e:bd:d2:ab:ed:f8:02:29:7f:65:52:73: 36:d6:69:95:d6:5a:68:f9:66:a3:16:7a:12:4e:f1: fd:f1:30:c2:56:e0:90:fd:71:f4:f3:67:bb:3c:c0: 57:e8:f7:07:30:91:62:f8:d8:e8:6b:b3:a8:bc:61: 13:28:1c:eb:95:cf:6f:48:a2:ac:c9:fd:43:1c:d2: 65:dd:ed:4a:dc:aa:1f:03:ca:f5:d5:94:52:47:46: aa:6c:e9:d0:32:6d:7a:70:79:30:48:76:4c:26:c2: 54:e5:ef:e6:ee:92:af:37:bf:7d:15:da:bb:07:79: a3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B9:F9:6F:0E:41:AC:D1:AE:0F:C3:1B:1E:51:0A:DA:41:D0:52:40 X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.186.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:48:34:49:9e:c4:29:d8:5c:f5:d8:f1:f1:ab:cc:92:fd:1e: ad:ee:ba:ca:27:ca:66:18:de:60:bd:1f:b2:fc:e7:c8:45:90: 7f:c2:32:c3:7d:a7:bc:58:c8:c7:dc:63:9c:2f:d2:ce:52:56: 80:a8:13:eb:d6:93:06:9e:50:c4:cc:cd:95:c0:a1:66:19:84: 5b:7a:f7:f6:e4:3f:11:d2:40:d3:27:3c:ad:00:40:a3:5b:3f: d8:e2:1d:ce:7f:53:5e:af:0e:ec:08:f3:9d:2b:e1:ad:b2:d0: af:f1:a4:39:a8:9e:a3:96:af:0c:df:4a:ed:33:4e:3f:29:9a: 07:19:a5:7e:69:86:e4:15:09:51:99:bf:78:15:70:54:ff:e6: 7e:66:a8:81:81:11:34:c8:79:3d:ba:12:bd:ea:4f:bd:53:d9: d7:de:b4:f1:59:9b:0b:6f:83:2e:89:8a:cf:2c:43:22:b3:e1: 70:bd:c5:4f:b8:67:d9:6e:3a:2f:6c:aa:6a:6e:98:c4:dd:12: 59:6b:85:22:d7:b6:ba:6b:7f:a0:a7:92:0b:d3:55:e1:46:ee: 26:00:d7:01:4b:d8:83:a1:11:e6:0e:7e:56:5b:47:6a:f6:95: 16:74:26:75:1e:63:de:03:ba:4a:2e:13:47:77:d9:f0:36:ce: f1:28:67:65 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXXopv79OYIzTR5p1MiquHCLiVCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNjA0MDYxNDU1MDFaFw0yNzA0MDUxNTAwMDFaMDMxMTAvBgNV BAMTKEQxQjlGOTZGMEU0MUFDRDFBRTBGQzMxQjFFNTEwQURBNDFEMDUyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMWePBOP84kApXB2TXVyi7Oa3J ZhqZa+xly297TlCBU1JRr0ee/Emhwguty6lNvExviiqlxfEBXd9HKmSG59BSjQbo U4upPuh5VbNGPI8Zi591axMKQ/nfhwyh0pkO0AK6E0442AhiufXtBnhMlB/3vk6E Ye/C4m2zJVMRNYHyOosNw+eu54EHYG690qvt+AIpf2VSczbWaZXWWmj5ZqMWehJO 8f3xMMJW4JD9cfTzZ7s8wFfo9wcwkWL42Ohrs6i8YRMoHOuVz29IoqzJ/UMc0mXd 7Urcqh8DyvXVlFJHRqps6dAybXpweTBIdkwmwlTl7+bukq83v30V2rsHeaOFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0bn5bw5BrNGuD8MbHlEK2kHQUkAwHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZjBmNDIzLTNiZWQtNDkzOC05 Zjg5LTE1ZTYyNjliZGRjYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqrowDQYJ KoZIhvcNAQELBQADggEBAJxINEmexCnYXPXY8fGrzJL9Hq3uusonymYY3mC9H7L8 58hFkH/CMsN9p7xYyMfcY5wv0s5SVoCoE+vWkwaeUMTMzZXAoWYZhFt69/bkPxHS QNMnPK0AQKNbP9jiHc5/U16vDuwI850r4a2y0K/xpDmonqOWrwzfSu0zTj8pmgcZ pX5phuQVCVGZv3gVcFT/5n5mqIGBETTIeT26Er3qT71T2dfetPFZmwtvgy6Jis8s QyKz4XC9xU+4Z9luOi9sqmpumMTdEllrhSLXtrprf6CnkgvTVeFG7iYA1wFL2IOh EeYOflZbR2r2lRZ0JnUeY94DukouE0d32fA2zvEoZ2U= -----END CERTIFICATE-----Generated at Sun Apr 19 11:45:11 2026 by rpki-client