$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa File: 3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa (raw, json) Hash identifier: 51ubP8FG8L1pQHWOPnC6YfDkz2sLZItUqJolrpJAneM= Subject key identifier: 64:60:7A:08:69:AB:64:A4:EF:53:7E:D6:CB:02:8D:99:02:3A:2A:A4 Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 34C9216D3281EB9F89F642CB05C16E20CF3EC0EC Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa Signing time: Wed 08 Apr 2026 04:00:56 +0000 ROA not before: Wed 08 Apr 2026 03:55:56 +0000 ROA not after: Wed 07 Apr 2027 04:00:56 +0000 asID: 140478 IP address blocks: 103.154.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c9:21:6d:32:81:eb:9f:89:f6:42:cb:05:c1:6e:20:cf:3e:c0:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: Apr 8 03:55:56 2026 GMT Not After : Apr 7 04:00:56 2027 GMT Subject: CN=64607A0869AB64A4EF537ED6CB028D99023A2AA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7b:78:31:2c:00:0e:2a:ee:07:5f:9e:e2:7d: 63:30:f8:62:d0:62:be:88:24:03:a9:a2:49:a6:ee: f6:36:31:a7:33:2e:00:07:b3:0a:1c:39:cf:b6:cb: c8:b9:2f:26:9a:d5:33:18:73:c0:83:4d:95:98:b4: 96:93:1b:1b:2a:ae:12:74:0f:49:eb:19:49:eb:0b: 89:59:56:bb:3e:ab:02:c2:ac:7f:71:e1:81:bb:ae: e2:62:4d:de:0d:7c:02:77:5e:c0:13:62:7c:ac:2b: a8:5e:a4:5f:3d:87:8d:69:81:55:0c:b3:83:2b:64: 55:39:e3:26:8d:1d:73:db:97:dd:90:12:b3:20:a8: f2:41:d6:6a:f2:71:6a:01:87:af:77:ac:b1:46:3d: 78:4a:e4:41:10:05:ef:e3:c6:e5:3b:cb:48:28:69: 42:5b:76:d9:51:68:19:45:3f:e2:67:79:72:f2:0f: 8d:14:4f:4f:f1:00:cf:8d:b6:ee:d1:c4:89:e0:da: 08:c9:2a:5c:ad:c8:69:24:ba:76:c0:c2:90:ee:cd: 21:50:11:ab:59:34:a0:63:fa:1e:6e:b6:35:ce:dc: 6a:d9:76:1b:98:bd:ec:d8:8c:83:f6:e9:74:3d:c7: 1c:22:e7:db:7d:d9:27:dc:53:1b:eb:2d:ab:6c:76: 13:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:60:7A:08:69:AB:64:A4:EF:53:7E:D6:CB:02:8D:99:02:3A:2A:A4 X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 12:7e:4e:fd:1e:f5:ff:89:f5:fc:f7:76:3d:78:ea:e2:56:38: 53:94:77:73:cd:9c:b6:ec:75:04:d5:72:9a:32:f4:cd:bc:d1: dd:9c:ab:0e:cd:e9:64:a1:46:f9:ed:f8:2e:52:c9:cd:22:24: 82:28:61:77:6c:50:06:7d:24:e9:b2:43:cf:6c:70:96:2a:8d: 2f:7d:96:8b:9f:38:48:6d:f5:99:32:15:02:9c:d9:33:53:b3: f0:37:54:c4:68:e7:0b:e1:26:5f:90:14:d0:83:8d:45:60:87: 40:d1:4e:70:68:2a:fb:3b:9a:2d:39:89:11:1a:46:7c:a8:fd: c2:03:84:58:9c:80:60:4c:f9:aa:0e:d5:3d:c9:4c:2d:78:10: 50:aa:47:e3:6f:8f:f5:86:c7:11:a6:3a:ea:bd:89:53:d7:98: d1:66:7a:ed:55:6c:d9:a5:9d:e3:1a:eb:e1:56:74:f7:6d:03: 5c:a3:a1:e4:46:65:60:5d:3b:3c:06:50:06:6f:2c:d7:81:44: ba:35:a5:b4:bc:0f:06:aa:b1:e5:a3:45:18:fb:83:92:60:ec: 7f:d5:a8:b3:65:4b:98:65:76:30:f6:30:57:53:a0:a5:24:f0: 4f:20:16:2b:47:42:c4:21:b1:f1:ac:9b:f2:19:3b:2a:17:0b: 1d:2b:d0:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNMkhbTKB65+J9kLLBcFuIM8+wOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNjA0MDgwMzU1NTZaFw0yNzA0MDcwNDAwNTZaMDMxMTAvBgNV BAMTKDY0NjA3QTA4NjlBQjY0QTRFRjUzN0VENkNCMDI4RDk5MDIzQTJBQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCye3gxLAAOKu4HX57ifWMw+GLQ Yr6IJAOpokmm7vY2MaczLgAHswocOc+2y8i5Lyaa1TMYc8CDTZWYtJaTGxsqrhJ0 D0nrGUnrC4lZVrs+qwLCrH9x4YG7ruJiTd4NfAJ3XsATYnysK6hepF89h41pgVUM s4MrZFU54yaNHXPbl92QErMgqPJB1mrycWoBh693rLFGPXhK5EEQBe/jxuU7y0go aUJbdtlRaBlFP+JneXLyD40UT0/xAM+Ntu7RxIng2gjJKlytyGkkunbAwpDuzSFQ EatZNKBj+h5utjXO3GrZdhuYvezYjIP26XQ9xxwi59t92SfcUxvrLatsdhPpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZGB6CGmrZKTvU37WywKNmQI6KqQwHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5oYMA0GCSqG SIb3DQEBCwUAA4IBAQASfk79HvX/ifX893Y9eOriVjhTlHdzzZy27HUE1XKaMvTN vNHdnKsOzelkoUb57fguUsnNIiSCKGF3bFAGfSTpskPPbHCWKo0vfZaLnzhIbfWZ MhUCnNkzU7PwN1TEaOcL4SZfkBTQg41FYIdA0U5waCr7O5otOYkRGkZ8qP3CA4RY nIBgTPmqDtU9yUwteBBQqkfjb4/1hscRpjrqvYlT15jRZnrtVWzZpZ3jGuvhVnT3 bQNco6HkRmVgXTs8BlAGbyzXgUS6NaW0vA8GqrHlo0UY+4OSYOx/1aizZUuYZXYw 9jBXU6ClJPBPIBYrR0LEIbHxrJvyGTsqFwsdK9CR -----END CERTIFICATE-----Generated at Sun Apr 19 13:00:33 2026 by rpki-client