$ rpki-client -vvf repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa File: 3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa (raw, json) Hash identifier: N89QBdgbynlTPf9e92O0WSzi8E87JnEMSvR4tVBmXXE= Subject key identifier: 79:70:8D:C4:E1:6A:DC:EF:93:BD:A9:8F:FD:C4:ED:E2:94:CE:F6:35 Certificate issuer: /CN=4A243A1EC4991C40D3A6148515E3C51981B425F7 Certificate serial: 0DDF9197B061F095D8FCE8D1328D2379D87924FD Authority key identifier: 4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa Signing time: Tue 10 Feb 2026 10:00:04 +0000 ROA not before: Tue 10 Feb 2026 09:55:04 +0000 ROA not after: Tue 09 Feb 2027 10:00:04 +0000 asID: 150935 IP address blocks: 103.109.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:df:91:97:b0:61:f0:95:d8:fc:e8:d1:32:8d:23:79:d8:79:24:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A243A1EC4991C40D3A6148515E3C51981B425F7 Validity Not Before: Feb 10 09:55:04 2026 GMT Not After : Feb 9 10:00:04 2027 GMT Subject: CN=79708DC4E16ADCEF93BDA98FFDC4EDE294CEF635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e8:a5:39:f3:0d:0e:37:3c:22:1d:49:63:05: ba:77:69:01:f0:13:33:63:0e:35:56:5f:88:36:66: 01:47:ad:85:71:7b:82:8e:4f:a6:86:a9:f4:12:4b: 1c:77:79:56:08:c0:cf:1b:9d:3f:ee:4c:a1:ca:f2: dc:f2:2f:a2:d4:12:85:63:5a:fa:0f:30:12:b5:90: 69:cb:09:d3:d5:b9:49:f2:bf:04:45:75:c2:ee:1e: 3e:8a:de:82:77:ab:e1:57:36:e8:1d:e2:38:54:c8: 45:88:eb:b9:2e:a0:3c:a7:44:83:df:d8:83:92:18: 7c:f5:8e:67:2c:4b:69:d7:84:c8:75:ed:fc:8a:0a: d1:1b:1d:29:48:86:bb:b5:fc:6b:60:9b:c1:1f:95: 74:66:fc:6d:e4:3c:55:e3:79:9b:ff:98:62:6a:ac: 8a:25:0c:e2:45:b5:92:f3:d1:1a:c9:af:35:40:51: 6e:b5:6b:b0:a7:3a:3d:18:3e:a9:26:0e:bf:62:83: b7:01:92:fa:90:2d:a6:ec:62:b1:fc:7e:93:94:02: 1b:30:d0:c5:36:ed:f8:99:5b:0e:6a:b7:cd:e9:78: 2f:1f:a3:ea:bb:53:16:5d:dc:ae:b3:61:b5:0d:95: b1:90:a2:27:13:1a:6b:49:1e:5c:7d:0b:52:cc:fb: 7a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:70:8D:C4:E1:6A:DC:EF:93:BD:A9:8F:FD:C4:ED:E2:94:CE:F6:35 X509v3 Authority Key Identifier: keyid:4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.206.0/24 Signature Algorithm: sha256WithRSAEncryption 80:d4:7b:38:40:4f:78:dd:a1:7e:20:89:da:15:64:5a:8d:e4: ab:a9:d9:40:74:4b:31:0c:a4:0b:ee:34:17:1f:2a:6e:e9:d8: 6f:f0:89:1b:fe:b6:bf:3d:f3:d9:75:0e:ad:db:9d:a8:96:c7: 87:35:62:85:da:6a:78:de:7a:45:5f:d7:fb:df:70:2d:31:7b: f0:33:c7:2a:25:3b:c4:c5:e8:df:79:57:24:6d:45:85:23:c4: df:ee:84:fa:79:34:8b:e3:a1:b8:6e:38:bd:46:01:ba:78:fd: ed:98:21:90:18:fb:ea:b1:47:c2:66:8f:18:1e:08:5f:ac:53: 99:f0:01:09:4d:80:49:bb:58:d8:26:0c:7a:2f:a2:5e:66:80: f9:5a:2f:86:51:bd:f5:c2:c0:b2:09:8b:38:75:9d:22:04:90: b9:1a:6b:2a:a5:fc:3a:68:4a:e3:5a:14:e4:47:32:78:60:f1: f1:8a:ac:af:db:91:2f:51:68:6c:a4:20:7e:e2:4c:8e:fe:32: 9a:fc:f2:6a:eb:10:74:8c:5b:62:d7:ba:c9:7d:72:1e:09:53: 30:83:ea:b7:df:4a:f9:94:38:eb:2f:14:65:5b:91:0a:8f:3d: 77:de:f5:07:81:ff:9f:64:ac:62:4d:db:1f:0f:7a:76:a5:fd: 89:28:89:80 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDd+Rl7Bh8JXY/OjRMo0jedh5JP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4 MUI0MjVGNzAeFw0yNjAyMTAwOTU1MDRaFw0yNzAyMDkxMDAwMDRaMDMxMTAvBgNV BAMTKDc5NzA4REM0RTE2QURDRUY5M0JEQTk4RkZEQzRFREUyOTRDRUY2MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC76KU58w0ONzwiHUljBbp3aQHw EzNjDjVWX4g2ZgFHrYVxe4KOT6aGqfQSSxx3eVYIwM8bnT/uTKHK8tzyL6LUEoVj WvoPMBK1kGnLCdPVuUnyvwRFdcLuHj6K3oJ3q+FXNugd4jhUyEWI67kuoDynRIPf 2IOSGHz1jmcsS2nXhMh17fyKCtEbHSlIhru1/Gtgm8EflXRm/G3kPFXjeZv/mGJq rIolDOJFtZLz0RrJrzVAUW61a7CnOj0YPqkmDr9ig7cBkvqQLabsYrH8fpOUAhsw 0MU27fiZWw5qt83peC8fo+q7UxZd3K6zYbUNlbGQoicTGmtJHlx9C1LM+3ohAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUeXCNxOFq3O+TvamP/cTt4pTO9jUwHwYDVR0j BBgwFoAUSiQ6HsSZHEDTphSFFePFGYG0JfcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Yzg4OTJlYi1kZGMwLTRjYjYtOTU3Yy1iNjUzZjI4YmJmMzkvMC80QTI0M0ExRUM0 OTkxQzQwRDNBNjE0ODUxNUUzQzUxOTgxQjQyNUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4MUI0 MjVGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjODg5MmViLWRkYzAtNGNiNi05 NTdjLWI2NTNmMjhiYmYzOS8wLzMxMzAzMzJlMzEzMDM5MmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTMzMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbc4wDQYJ KoZIhvcNAQELBQADggEBAIDUezhAT3jdoX4gidoVZFqN5Kup2UB0SzEMpAvuNBcf Km7p2G/wiRv+tr8989l1Dq3bnaiWx4c1YoXaanjeekVf1/vfcC0xe/AzxyolO8TF 6N95VyRtRYUjxN/uhPp5NIvjobhuOL1GAbp4/e2YIZAY++qxR8JmjxgeCF+sU5nw AQlNgEm7WNgmDHovol5mgPlaL4ZRvfXCwLIJizh1nSIEkLkaayql/DpoSuNaFORH Mnhg8fGKrK/bkS9RaGykIH7iTI7+Mpr88mrrEHSMW2LXusl9ch4JUzCD6rffSvmU OOsvFGVbkQqPPXfe9QeB/59krGJN2x8Penal/YkoiYA= -----END CERTIFICATE-----Generated at Mon Mar 2 20:06:32 2026 by rpki-client