$ rpki-client -vvf repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230372e302f32342d3234203d3e20313530393335.roa File: 3130332e3130392e3230372e302f32342d3234203d3e20313530393335.roa (raw, json) Hash identifier: BXD0wRHHvZ7tvUsCrEkeYNeQx/wQOvq3rapVAJZzAJs= Subject key identifier: B6:1D:A7:F1:C4:E0:AF:3D:70:B9:98:01:27:E8:38:20:1C:AC:C3:DA Certificate issuer: /CN=4A243A1EC4991C40D3A6148515E3C51981B425F7 Certificate serial: 404648AC15AB413984D5E5C62DDBE87993EC8603 Authority key identifier: 4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230372e302f32342d3234203d3e20313530393335.roa Signing time: Tue 10 Feb 2026 10:00:04 +0000 ROA not before: Tue 10 Feb 2026 09:55:04 +0000 ROA not after: Tue 09 Feb 2027 10:00:04 +0000 asID: 150935 IP address blocks: 103.109.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:46:48:ac:15:ab:41:39:84:d5:e5:c6:2d:db:e8:79:93:ec:86:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A243A1EC4991C40D3A6148515E3C51981B425F7 Validity Not Before: Feb 10 09:55:04 2026 GMT Not After : Feb 9 10:00:04 2027 GMT Subject: CN=B61DA7F1C4E0AF3D70B9980127E838201CACC3DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:de:5f:4c:8a:ff:5b:66:b7:98:66:e9:69:a4: 27:5d:16:ab:c3:66:55:5f:e8:7c:0b:b7:57:a2:83: 48:fd:0c:42:6d:f5:b6:87:40:f6:d8:51:6c:bc:78: 48:01:53:ed:54:2e:58:c2:21:b4:4d:b2:f8:23:71: 46:86:9c:aa:3e:db:39:8f:28:58:70:29:9f:ef:06: ba:0b:02:64:08:f3:dc:ec:d3:32:a6:97:1d:14:00: 5d:3b:fb:34:81:33:ff:5e:40:4b:ed:e0:f3:e7:20: 08:9d:86:b1:c9:34:7c:ab:ab:aa:0c:5f:8a:d9:f7: cc:31:c9:c4:0e:ca:f9:6a:5d:1a:fa:98:12:a6:25: 21:d4:20:03:a7:48:6c:96:50:42:f7:07:f2:11:4e: b8:a7:b8:3e:2f:bc:fc:d4:61:7c:a6:96:33:57:6a: 9c:db:1c:8b:16:07:08:26:26:8a:c3:6a:3a:68:4a: 36:dc:2a:4b:37:cb:7e:d3:01:2a:36:ce:76:a3:52: 5d:b3:98:5e:c2:9f:b7:8d:6d:dc:1d:6a:3f:b5:90: e5:9c:d6:1f:c8:37:29:9b:a0:30:8b:40:0c:9c:e1: dc:f8:98:83:92:57:02:a0:00:10:3e:4b:8c:20:8f: 1f:76:6f:27:87:dd:19:e2:98:cc:c1:22:47:f5:59: e2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:1D:A7:F1:C4:E0:AF:3D:70:B9:98:01:27:E8:38:20:1C:AC:C3:DA X509v3 Authority Key Identifier: keyid:4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230372e302f32342d3234203d3e20313530393335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.207.0/24 Signature Algorithm: sha256WithRSAEncryption a4:38:f8:ad:ca:a1:84:51:80:fa:78:08:d5:e7:5d:70:f2:92: 37:32:aa:01:62:cb:aa:23:55:32:35:66:b3:b8:43:47:a4:4e: bc:b0:be:1a:b8:8a:74:b2:3e:71:66:d8:9e:b6:17:f1:65:c6: d5:35:01:30:e0:f3:0d:9a:51:66:64:a6:d1:36:93:e7:20:37: 92:57:f2:a7:db:f5:e1:26:cc:e3:c7:8a:3c:8a:1b:da:80:d2: 8d:d9:9b:81:ca:20:d1:dd:c1:32:21:c6:4b:64:9e:7a:6c:ff: 4c:0d:3e:2b:11:02:11:10:be:fa:c0:83:7b:64:4c:49:97:d6: b8:55:ea:39:3e:5b:8a:d6:73:fd:37:ef:4c:f4:b4:2e:68:ba: 8a:33:11:0e:2b:e3:c6:37:96:1d:9e:3b:58:86:5b:9a:d8:a7: b4:2f:99:4c:2c:c8:39:94:80:1e:73:46:0c:7c:6a:b8:66:cd: a1:ee:8c:6b:e9:a2:6f:43:d9:15:02:fd:03:06:e5:d1:de:3b: 12:e4:83:4a:2b:98:b3:1b:cf:be:bd:8b:9f:41:4f:4d:29:fa: 98:16:e8:09:d7:f9:46:4e:a3:c5:b9:d1:e6:89:9b:41:60:78: 30:88:31:84:92:4c:04:06:85:65:0f:a1:13:a0:7f:65:6a:a7: a6:6a:46:d5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQEZIrBWrQTmE1eXGLdvoeZPshgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4 MUI0MjVGNzAeFw0yNjAyMTAwOTU1MDRaFw0yNzAyMDkxMDAwMDRaMDMxMTAvBgNV BAMTKEI2MURBN0YxQzRFMEFGM0Q3MEI5OTgwMTI3RTgzODIwMUNBQ0MzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC63l9Miv9bZreYZulppCddFqvD ZlVf6HwLt1eig0j9DEJt9baHQPbYUWy8eEgBU+1ULljCIbRNsvgjcUaGnKo+2zmP KFhwKZ/vBroLAmQI89zs0zKmlx0UAF07+zSBM/9eQEvt4PPnIAidhrHJNHyrq6oM X4rZ98wxycQOyvlqXRr6mBKmJSHUIAOnSGyWUEL3B/IRTrinuD4vvPzUYXymljNX apzbHIsWBwgmJorDajpoSjbcKks3y37TASo2znajUl2zmF7Cn7eNbdwdaj+1kOWc 1h/INymboDCLQAyc4dz4mIOSVwKgABA+S4wgjx92byeH3RnimMzBIkf1WeJFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUth2n8cTgrz1wuZgBJ+g4IBysw9owHwYDVR0j BBgwFoAUSiQ6HsSZHEDTphSFFePFGYG0JfcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Yzg4OTJlYi1kZGMwLTRjYjYtOTU3Yy1iNjUzZjI4YmJmMzkvMC80QTI0M0ExRUM0 OTkxQzQwRDNBNjE0ODUxNUUzQzUxOTgxQjQyNUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4MUI0 MjVGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjODg5MmViLWRkYzAtNGNiNi05 NTdjLWI2NTNmMjhiYmYzOS8wLzMxMzAzMzJlMzEzMDM5MmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTMzMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbc8wDQYJ KoZIhvcNAQELBQADggEBAKQ4+K3KoYRRgPp4CNXnXXDykjcyqgFiy6ojVTI1ZrO4 Q0ekTrywvhq4inSyPnFm2J62F/FlxtU1ATDg8w2aUWZkptE2k+cgN5JX8qfb9eEm zOPHijyKG9qA0o3Zm4HKINHdwTIhxktknnps/0wNPisRAhEQvvrAg3tkTEmX1rhV 6jk+W4rWc/0370z0tC5ouoozEQ4r48Y3lh2eO1iGW5rYp7QvmUwsyDmUgB5zRgx8 arhmzaHujGvpom9D2RUC/QMG5dHeOxLkg0ormLMbz769i59BT00p+pgW6AnX+UZO o8W50eaJm0FgeDCIMYSSTAQGhWUPoROgf2Vqp6ZqRtU= -----END CERTIFICATE-----Generated at Mon Mar 2 20:06:08 2026 by rpki-client