$ rpki-client -vvf repo-rpki.idnic.net/repo/f7a110e8-b8c2-4277-beb3-92aa5b3690f0/0/3130332e3138312e3133382e302f32342d3234203d3e20313439333833.roa File: 3130332e3138312e3133382e302f32342d3234203d3e20313439333833.roa (raw, json) Hash identifier: sheURZ1JlOCQlhALUs8LQPX0wKHQXpBd6sjNcfxqeow= Subject key identifier: 24:03:27:9A:8D:C3:A1:B1:A2:5E:5E:60:22:50:D9:63:15:86:DB:44 Certificate issuer: /CN=3B276288FD701E3EC497C2BCC17831BA188BAF79 Certificate serial: 3D1E156350AA63F95BB22D530B1A26AB0509CB12 Authority key identifier: 3B:27:62:88:FD:70:1E:3E:C4:97:C2:BC:C1:78:31:BA:18:8B:AF:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B276288FD701E3EC497C2BCC17831BA188BAF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7a110e8-b8c2-4277-beb3-92aa5b3690f0/0/3130332e3138312e3133382e302f32342d3234203d3e20313439333833.roa Signing time: Mon 16 Feb 2026 10:00:01 +0000 ROA not before: Mon 16 Feb 2026 09:55:01 +0000 ROA not after: Mon 15 Feb 2027 10:00:01 +0000 asID: 149383 IP address blocks: 103.181.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7a110e8-b8c2-4277-beb3-92aa5b3690f0/0/3B276288FD701E3EC497C2BCC17831BA188BAF79.crl rsync://repo-rpki.idnic.net/repo/f7a110e8-b8c2-4277-beb3-92aa5b3690f0/0/3B276288FD701E3EC497C2BCC17831BA188BAF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B276288FD701E3EC497C2BCC17831BA188BAF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 22:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1e:15:63:50:aa:63:f9:5b:b2:2d:53:0b:1a:26:ab:05:09:cb:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B276288FD701E3EC497C2BCC17831BA188BAF79 Validity Not Before: Feb 16 09:55:01 2026 GMT Not After : Feb 15 10:00:01 2027 GMT Subject: CN=2403279A8DC3A1B1A25E5E602250D9631586DB44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a5:71:74:a7:b3:52:f1:ff:ff:76:20:a6:b3: 4a:80:4f:74:de:27:d1:d6:8d:93:e9:13:c5:71:3b: f8:d1:1d:20:66:ec:01:b6:02:4a:75:ba:2b:6f:7b: 89:39:71:6e:25:70:3a:d9:54:ef:13:b9:2a:bc:7d: 5b:79:90:49:56:80:c9:d3:f8:7f:05:2a:56:ff:98: 01:3e:20:88:66:14:79:03:4b:0d:68:22:94:ca:62: e7:66:ba:a9:2a:ac:e2:7b:c7:3d:ad:25:8b:f1:a3: b7:a8:38:6d:e2:8c:00:13:ef:c7:27:53:86:fc:af: 31:5a:f9:4c:24:1f:56:2c:ab:02:76:dc:ac:4e:63: 93:3d:7b:a6:2a:9a:9b:7d:0d:ae:76:e9:91:d7:56: f7:4f:06:8d:33:d7:03:7a:41:f3:7a:5a:9f:87:35: 1d:20:3d:fb:41:e4:ab:e4:88:22:f0:00:1d:be:1f: 2d:a7:f2:f1:87:95:95:24:47:26:ea:4f:35:45:e5: fa:a9:b4:03:d3:09:e7:e4:36:ad:ab:d9:36:d7:7b: 72:99:65:87:2e:93:c6:0a:97:76:ac:aa:eb:6b:4c: 2d:7d:d5:0c:df:e5:4d:95:28:f4:e5:4f:8b:24:e1: a1:3b:b0:4e:71:58:ba:19:38:0a:69:bd:29:f9:65: d8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:03:27:9A:8D:C3:A1:B1:A2:5E:5E:60:22:50:D9:63:15:86:DB:44 X509v3 Authority Key Identifier: keyid:3B:27:62:88:FD:70:1E:3E:C4:97:C2:BC:C1:78:31:BA:18:8B:AF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7a110e8-b8c2-4277-beb3-92aa5b3690f0/0/3B276288FD701E3EC497C2BCC17831BA188BAF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B276288FD701E3EC497C2BCC17831BA188BAF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7a110e8-b8c2-4277-beb3-92aa5b3690f0/0/3130332e3138312e3133382e302f32342d3234203d3e20313439333833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.138.0/24 Signature Algorithm: sha256WithRSAEncryption 88:51:1d:65:e8:ca:51:5d:17:dc:0c:d3:2b:4b:ee:59:de:96: ac:12:d2:18:dc:83:f5:06:5a:80:1c:d5:bd:38:2f:33:de:6b: 33:0a:38:93:d6:4a:00:b6:36:ff:77:b3:e9:d2:a8:8b:55:10: d3:6a:55:62:9d:52:ad:6f:f2:6b:c7:2c:b6:da:a2:3e:2c:87: 60:ed:49:d2:a4:35:87:a0:e5:04:01:d6:40:36:41:f4:ed:b7: 48:2f:12:69:47:b0:f7:e3:4f:8d:1a:3f:01:cf:9e:eb:38:76: 85:4d:5e:a1:6d:6d:c4:d4:c3:6e:6a:bf:79:c5:db:e0:db:42: a5:dc:0b:6c:76:40:db:ab:47:7b:ec:37:9d:d4:0b:79:be:21: 8c:5e:ec:58:40:16:b4:cb:62:d8:af:99:dd:96:41:2e:b2:b8: da:e0:01:f5:2a:3e:8e:52:ce:49:2a:87:32:ce:58:1e:20:1c: 46:ec:1c:aa:5c:03:2e:c5:a9:d1:9d:67:72:d1:24:7b:a2:79: a4:08:38:b6:c8:5d:55:82:9a:c9:51:8a:82:83:e1:96:df:59: b1:c3:47:cd:97:4b:a0:a0:43:3a:5e:d5:1a:c7:8d:7a:a7:6e: 96:98:59:3b:00:3c:3a:fe:98:be:aa:a1:d1:5a:68:5c:1d:2f: d0:96:61:d7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPR4VY1CqY/lbsi1TCxomqwUJyxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyNzYyODhGRDcwMUUzRUM0OTdDMkJDQzE3ODMxQkEx ODhCQUY3OTAeFw0yNjAyMTYwOTU1MDFaFw0yNzAyMTUxMDAwMDFaMDMxMTAvBgNV BAMTKDI0MDMyNzlBOERDM0ExQjFBMjVFNUU2MDIyNTBEOTYzMTU4NkRCNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4pXF0p7NS8f//diCms0qAT3Te J9HWjZPpE8VxO/jRHSBm7AG2Akp1uitve4k5cW4lcDrZVO8TuSq8fVt5kElWgMnT +H8FKlb/mAE+IIhmFHkDSw1oIpTKYudmuqkqrOJ7xz2tJYvxo7eoOG3ijAAT78cn U4b8rzFa+UwkH1YsqwJ23KxOY5M9e6Yqmpt9Da526ZHXVvdPBo0z1wN6QfN6Wp+H NR0gPftB5KvkiCLwAB2+Hy2n8vGHlZUkRybqTzVF5fqptAPTCefkNq2r2TbXe3KZ ZYcuk8YKl3asqutrTC191Qzf5U2VKPTlT4sk4aE7sE5xWLoZOAppvSn5ZdilAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJAMnmo3DobGiXl5gIlDZYxWG20QwHwYDVR0j BBgwFoAUOydiiP1wHj7El8K8wXgxuhiLr3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2ExMTBlOC1iOGMyLTQyNzctYmViMy05MmFhNWIzNjkwZjAvMC8zQjI3NjI4OEZE NzAxRTNFQzQ5N0MyQkNDMTc4MzFCQTE4OEJBRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyNzYyODhGRDcwMUUzRUM0OTdDMkJDQzE3ODMxQkExODhC QUY3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3YTExMGU4LWI4YzItNDI3Ny1i ZWIzLTkyYWE1YjM2OTBmMC8wLzMxMzAzMzJlMzEzODMxMmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABntYowDQYJ KoZIhvcNAQELBQADggEBAIhRHWXoylFdF9wM0ytL7lnelqwS0hjcg/UGWoAc1b04 LzPeazMKOJPWSgC2Nv93s+nSqItVENNqVWKdUq1v8mvHLLbaoj4sh2DtSdKkNYeg 5QQB1kA2QfTtt0gvEmlHsPfjT40aPwHPnus4doVNXqFtbcTUw25qv3nF2+DbQqXc C2x2QNurR3vsN53UC3m+IYxe7FhAFrTLYtivmd2WQS6yuNrgAfUqPo5SzkkqhzLO WB4gHEbsHKpcAy7FqdGdZ3LRJHuieaQIOLbIXVWCmslRioKD4ZbfWbHDR82XS6Cg Qzpe1RrHjXqnbpaYWTsAPDr+mL6qodFaaFwdL9CWYdc= -----END CERTIFICATE-----Generated at Mon Mar 2 18:27:01 2026 by rpki-client