$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa File: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (raw, json) Hash identifier: tVZdHcBElXLQTu/bvNSQqGBwoSROAPYyZST8W8JiBLY= Subject key identifier: 6E:C6:07:54:AB:73:94:BA:BA:49:61:7E:4F:AA:95:B8:E8:C6:39:45 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 4CD09C7115967FBA08392D841C2574A499F201B6 Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa Signing time: Mon 06 Apr 2026 15:00:01 +0000 ROA not before: Mon 06 Apr 2026 14:55:01 +0000 ROA not after: Mon 05 Apr 2027 15:00:01 +0000 asID: 142365 IP address blocks: 103.170.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 12:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d0:9c:71:15:96:7f:ba:08:39:2d:84:1c:25:74:a4:99:f2:01:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Apr 6 14:55:01 2026 GMT Not After : Apr 5 15:00:01 2027 GMT Subject: CN=6EC60754AB7394BABA49617E4FAA95B8E8C63945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:81:cb:b5:20:6f:be:be:94:e6:aa:d2:3e: 64:60:2b:e7:a4:f4:40:0d:db:44:d6:d8:64:f4:81: f9:c2:04:19:10:b9:0f:19:c5:99:5f:11:51:90:ba: e7:1c:74:e0:73:a7:9a:3f:81:dd:42:d9:93:a9:70: 91:13:c9:46:48:8c:9f:d6:34:fe:54:1a:46:39:b6: 4a:ce:38:60:ee:63:19:30:ae:7b:75:9a:85:2f:cd: dc:a9:b0:15:aa:34:18:c4:41:fc:c9:14:83:30:f8: f4:57:bd:61:6b:dd:af:6f:1c:01:32:3f:a8:13:39: 2c:aa:fc:31:77:9e:d2:fd:b4:7b:6f:c8:57:68:ed: f4:e6:85:d6:d1:a9:b2:b1:df:aa:75:f1:5b:f2:c9: 55:73:03:d5:41:88:b6:48:10:57:e4:21:8a:dc:cb: 96:24:8f:b7:cd:da:16:08:e4:71:a2:48:2d:a4:32: 21:fa:da:41:12:9c:f0:6f:76:36:4f:3e:09:bd:d4: c0:99:9c:3b:bd:b7:ce:8f:1a:d5:de:83:8a:48:f1: b2:c0:9c:cd:11:22:7f:11:54:c3:eb:1b:16:dc:d7: bb:49:5e:82:60:93:f7:f8:b4:60:a8:87:d0:1a:59: e3:aa:65:cc:35:c4:41:4c:c7:64:94:dd:3d:c3:81: 01:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C6:07:54:AB:73:94:BA:BA:49:61:7E:4F:AA:95:B8:E8:C6:39:45 X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.187.0/24 Signature Algorithm: sha256WithRSAEncryption c6:ee:b1:db:f0:10:fb:de:09:61:41:68:54:fb:df:dc:33:11: a5:2e:c5:e8:eb:e1:48:2c:f5:7d:7f:8b:75:aa:e6:8d:b2:e8: b6:c5:5e:6d:f7:c1:44:dd:1e:f9:ba:76:35:f3:08:52:45:9d: 4c:41:07:d7:d6:02:86:63:7c:e7:09:e7:4a:aa:7a:77:f0:38: 4a:6e:3b:2d:c0:a4:8e:6d:8a:44:16:f0:d6:9c:1d:79:3d:60: 4e:a2:46:c3:30:0a:7f:c6:1f:5a:d0:30:8f:a9:67:7c:46:0f: 0a:d0:95:1a:68:b2:d2:cb:cd:b1:b3:dd:03:74:3f:08:28:ec: dd:1f:b7:61:97:54:de:c0:c9:0e:d2:20:68:07:f3:25:25:2c: 1f:a3:26:21:9d:85:67:d6:61:83:b3:da:de:d6:bf:61:f2:63: 5b:28:b7:7c:7b:a0:c2:49:7f:9f:69:a8:64:b0:43:91:9e:45: d8:89:aa:53:26:3f:3e:e4:11:55:1f:7f:a3:20:ef:f2:16:99: da:c7:f4:ac:a5:cb:85:16:46:ab:f6:0d:d2:e1:d3:b2:f7:1f: 18:5b:68:56:2a:39:cf:20:29:09:ee:6d:4d:4c:04:1e:e2:da: eb:48:07:2e:f0:e2:fb:b1:9a:e2:8c:a6:a1:a4:b0:8e:0f:ff: 19:76:10:eb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTNCccRWWf7oIOS2EHCV0pJnyAbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNjA0MDYxNDU1MDFaFw0yNzA0MDUxNTAwMDFaMDMxMTAvBgNV BAMTKDZFQzYwNzU0QUI3Mzk0QkFCQTQ5NjE3RTRGQUE5NUI4RThDNjM5NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzfoHLtSBvvr6U5qrSPmRgK+ek 9EAN20TW2GT0gfnCBBkQuQ8ZxZlfEVGQuuccdOBzp5o/gd1C2ZOpcJETyUZIjJ/W NP5UGkY5tkrOOGDuYxkwrnt1moUvzdypsBWqNBjEQfzJFIMw+PRXvWFr3a9vHAEy P6gTOSyq/DF3ntL9tHtvyFdo7fTmhdbRqbKx36p18VvyyVVzA9VBiLZIEFfkIYrc y5Ykj7fN2hYI5HGiSC2kMiH62kESnPBvdjZPPgm91MCZnDu9t86PGtXeg4pI8bLA nM0RIn8RVMPrGxbc17tJXoJgk/f4tGCoh9AaWeOqZcw1xEFMx2SU3T3DgQHzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbsYHVKtzlLq6SWF+T6qVuOjGOUUwHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZjBmNDIzLTNiZWQtNDkzOC05 Zjg5LTE1ZTYyNjliZGRjYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqrswDQYJ KoZIhvcNAQELBQADggEBAMbusdvwEPveCWFBaFT739wzEaUuxejr4Ugs9X1/i3Wq 5o2y6LbFXm33wUTdHvm6djXzCFJFnUxBB9fWAoZjfOcJ50qqenfwOEpuOy3ApI5t ikQW8NacHXk9YE6iRsMwCn/GH1rQMI+pZ3xGDwrQlRpostLLzbGz3QN0Pwgo7N0f t2GXVN7AyQ7SIGgH8yUlLB+jJiGdhWfWYYOz2t7Wv2HyY1sot3x7oMJJf59pqGSw Q5GeRdiJqlMmPz7kEVUff6Mg7/IWmdrH9Kyly4UWRqv2DdLh07L3HxhbaFYqOc8g KQnubU1MBB7i2utIBy7w4vuxmuKMpqGksI4P/xl2EOs= -----END CERTIFICATE-----Generated at Sun Apr 19 11:45:13 2026 by rpki-client