$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa File: 3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa (raw, json) Hash identifier: x9MCZttTue+cYhxUjO5XSQ4IfqCo93/MquC3mZFzDsc= Subject key identifier: 12:68:F2:DF:50:8E:39:B0:A9:42:2D:AF:D2:1E:2E:26:1F:18:99:7C Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 798FC4CF88BC18C97FF14DC564B92C98EC1BF5E9 Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa Signing time: Thu 16 Apr 2026 16:00:01 +0000 ROA not before: Thu 16 Apr 2026 15:55:01 +0000 ROA not after: Thu 15 Apr 2027 16:00:01 +0000 asID: 131705 IP address blocks: 103.154.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 10:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8f:c4:cf:88:bc:18:c9:7f:f1:4d:c5:64:b9:2c:98:ec:1b:f5:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Apr 16 15:55:01 2026 GMT Not After : Apr 15 16:00:01 2027 GMT Subject: CN=1268F2DF508E39B0A9422DAFD21E2E261F18997C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:0e:86:19:77:d7:a9:0b:e0:41:da:c4:61: 36:2b:4c:42:de:e8:a6:7d:8a:88:fe:87:fa:06:60: b2:ab:20:98:6b:3c:88:07:22:60:95:ef:ce:f3:96: 0f:83:66:d0:a4:56:64:6c:c6:ff:a6:62:37:df:ac: cd:e3:90:6f:33:4f:cf:53:d8:e5:14:80:8e:81:d1: 63:a3:67:f8:7e:e7:ab:bc:1c:39:7d:02:00:62:8a: ce:db:51:ec:80:35:b9:70:2a:5f:8d:eb:ba:83:80: 93:c3:d4:c0:b2:09:a6:3d:74:5f:03:18:a4:7a:8a: 12:5b:7a:0a:9c:b7:de:9a:31:55:1d:69:3f:9c:f7: c3:0f:5a:c5:f7:47:d5:b5:9d:b6:47:e6:f5:48:c2: b2:c0:f7:f7:b0:fb:25:d2:5a:d8:c6:d7:d4:c4:f3: 13:af:1d:be:12:f0:3d:38:3d:1a:32:d0:47:18:92: 1e:43:ed:27:b8:1a:10:fe:40:72:6d:67:37:fa:7f: 83:83:b5:ef:54:3f:2e:b3:ae:f1:1b:c8:a6:b6:0a: 60:07:94:57:fb:8a:1a:34:7e:9b:39:aa:7b:0c:5d: a2:9a:9f:0b:d2:1e:f6:04:dc:7e:45:c3:ec:d0:d8: e0:f0:b7:46:e1:aa:fa:eb:71:e1:ae:d6:73:de:68: 57:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:68:F2:DF:50:8E:39:B0:A9:42:2D:AF:D2:1E:2E:26:1F:18:99:7C X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.178.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:4a:53:69:c5:8b:bd:1c:6c:0f:f5:1f:48:05:f9:05:a4:af: 62:6c:79:86:db:3e:a9:fc:4d:6a:2f:5c:06:df:a1:97:69:de: c1:04:05:a1:6c:f7:a2:4c:f7:13:38:0f:f9:fc:c5:b6:f3:60: 4b:30:ac:f5:95:6c:09:c2:24:ae:4a:cc:11:08:ed:ad:83:ba: b1:37:50:8a:a3:01:f9:54:79:35:39:45:19:6a:b1:ed:a6:99: 70:2a:9a:03:81:09:a9:63:8a:27:97:66:73:1f:15:f1:0c:bf: bc:17:1f:41:c6:1e:4b:64:0d:23:d2:e6:92:42:de:d4:8e:da: ba:00:a3:e2:61:69:79:2c:29:45:08:75:fa:46:f2:bb:41:a8: 71:a1:79:94:78:cc:cf:8f:53:3e:99:9a:0d:7f:12:dc:b1:4a: 25:d2:b0:52:fc:92:66:fb:27:b5:65:a4:45:c2:db:90:25:da: 00:28:b2:22:61:66:44:01:62:d3:23:56:49:27:0f:7b:e0:48: 3a:64:eb:56:d6:74:b1:6c:3f:28:06:3b:d5:ca:5c:25:08:64: e2:47:27:88:99:cb:ae:d4:25:76:9f:fb:c3:61:40:dd:21:1e: 8b:78:17:9b:a4:e0:26:ea:74:ac:56:f3:97:17:9c:d0:e1:c2: e2:61:f9:01 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeY/Ez4i8GMl/8U3FZLksmOwb9ekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNjA0MTYxNTU1MDFaFw0yNzA0MTUxNjAwMDFaMDMxMTAvBgNV BAMTKDEyNjhGMkRGNTA4RTM5QjBBOTQyMkRBRkQyMUUyRTI2MUYxODk5N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpDg6GGXfXqQvgQdrEYTYrTELe 6KZ9ioj+h/oGYLKrIJhrPIgHImCV787zlg+DZtCkVmRsxv+mYjffrM3jkG8zT89T 2OUUgI6B0WOjZ/h+56u8HDl9AgBiis7bUeyANblwKl+N67qDgJPD1MCyCaY9dF8D GKR6ihJbegqct96aMVUdaT+c98MPWsX3R9W1nbZH5vVIwrLA9/ew+yXSWtjG19TE 8xOvHb4S8D04PRoy0EcYkh5D7Se4GhD+QHJtZzf6f4ODte9UPy6zrvEbyKa2CmAH lFf7iho0fps5qnsMXaKanwvSHvYE3H5Fw+zQ2ODwt0bhqvrrceGu1nPeaFcVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEmjy31COObCpQi2v0h4uJh8YmXwwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMxMzAzMzJlMzEzNTM0MmUzMTM3MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmrIwDQYJ KoZIhvcNAQELBQADggEBAC1KU2nFi70cbA/1H0gF+QWkr2JseYbbPqn8TWovXAbf oZdp3sEEBaFs96JM9xM4D/n8xbbzYEswrPWVbAnCJK5KzBEI7a2DurE3UIqjAflU eTU5RRlqse2mmXAqmgOBCaljiieXZnMfFfEMv7wXH0HGHktkDSPS5pJC3tSO2roA o+JhaXksKUUIdfpG8rtBqHGheZR4zM+PUz6Zmg1/EtyxSiXSsFL8kmb7J7VlpEXC 25Al2gAosiJhZkQBYtMjVkknD3vgSDpk61bWdLFsPygGO9XKXCUIZOJHJ4iZy67U JXaf+8NhQN0hHot4F5uk4CbqdKxW85cXnNDhwuJh+QE= -----END CERTIFICATE-----Generated at Fri Apr 17 20:42:38 2026 by rpki-client