$ rpki-client -vvf repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3233203d3e20313534343130.roa File: 3130332e32302e3136362e302f32332d3233203d3e20313534343130.roa (raw, json) Hash identifier: kVYwlcJZR8W55NmkmDJoTC0oljnilr0TMye4DCdLuLs= Subject key identifier: 23:85:F0:B4:F8:69:73:7A:E0:3F:1D:D9:3B:00:47:1A:25:85:CC:FE Certificate issuer: /CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Certificate serial: 6B7ABC5E6F73AF0E156F8AD518AE04A1DDB61E78 Authority key identifier: CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3233203d3e20313534343130.roa Signing time: Wed 11 Feb 2026 15:33:08 +0000 ROA not before: Wed 11 Feb 2026 15:28:08 +0000 ROA not after: Wed 10 Feb 2027 15:33:08 +0000 asID: 154410 IP address blocks: 103.20.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 23:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:7a:bc:5e:6f:73:af:0e:15:6f:8a:d5:18:ae:04:a1:dd:b6:1e:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Validity Not Before: Feb 11 15:28:08 2026 GMT Not After : Feb 10 15:33:08 2027 GMT Subject: CN=2385F0B4F869737AE03F1DD93B00471A2585CCFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4e:af:65:e5:46:69:aa:32:8c:e1:e3:5b:0c: 72:23:e0:24:dc:58:c6:89:99:7f:de:45:ce:39:1a: 35:bb:15:17:d1:d9:fb:4b:86:d1:7e:a5:0d:86:e8: 55:f1:c1:34:3d:24:3d:a4:23:8a:7b:e5:3b:e3:c1: 26:3e:2d:af:f8:ef:d9:88:6b:97:90:bf:fe:23:2e: d1:86:6a:b6:94:5f:91:82:44:08:00:94:3e:91:58: 55:ff:38:33:d3:b7:7d:40:af:66:93:f8:a6:2a:32: 6e:9c:21:28:8d:59:e1:e0:17:22:12:78:0e:c4:5b: c7:3f:b3:59:8b:91:bc:ea:c6:d2:38:dc:9d:a8:5b: 01:33:2a:20:e8:d9:fa:55:bc:61:3c:8b:47:08:3c: 91:ef:f9:84:5c:36:3b:07:82:dd:bb:d9:6b:52:18: b7:0e:f1:d9:9d:c0:fc:60:78:c5:ad:f9:31:78:b7: e5:0c:df:cc:79:17:94:43:b9:c0:88:7f:5b:a8:e0: e7:bd:1e:f7:3d:ee:61:bb:f4:1d:48:66:78:69:af: 2d:90:f5:52:54:06:47:a7:4d:24:4b:7b:6b:26:59: a0:4d:0e:80:94:e4:9f:02:56:20:75:92:cb:9b:b9: a6:94:ed:23:21:f7:0c:18:b5:de:1f:3d:e0:14:e7: ba:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:85:F0:B4:F8:69:73:7A:E0:3F:1D:D9:3B:00:47:1A:25:85:CC:FE X509v3 Authority Key Identifier: keyid:CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3233203d3e20313534343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.166.0/23 Signature Algorithm: sha256WithRSAEncryption 64:45:63:aa:1f:95:9b:f8:d1:2a:7a:88:c5:0d:cc:e2:ca:4b: 86:24:80:4b:43:b3:f6:8b:1f:8f:e5:2e:46:61:79:46:4d:98: 7c:66:7c:ac:ac:60:72:84:88:29:a6:e7:6c:cb:22:a8:05:2d: ef:bd:ac:52:c8:a7:d3:9a:f8:e3:c9:56:fc:03:fb:42:45:75: a6:c8:f2:76:bf:0c:e4:05:2d:34:d2:54:fd:d8:f8:d7:c3:18: 86:50:7b:0f:b4:49:80:89:d3:30:62:4e:85:d6:29:43:35:a4: 34:0f:95:02:ba:81:8d:e3:e6:be:92:ec:92:63:8e:c7:b7:db: 67:c0:8a:61:88:a5:0d:68:d6:9e:21:19:ee:c5:5d:87:e8:e8: 8a:27:e9:47:32:eb:d7:24:94:95:c1:7f:38:2c:b3:9b:90:a3: 8f:e6:aa:f0:da:28:45:e2:50:7e:31:18:f3:23:71:5a:b1:da: 60:c6:8a:3a:b6:8c:3d:44:c2:bb:f7:c5:85:c8:03:2b:20:8b: 01:55:ef:d5:2a:da:3f:71:f9:2d:6c:dc:c9:e5:50:44:79:b4: b2:2c:36:fe:c5:80:a6:81:e6:5e:e2:34:e1:34:a4:7d:b3:e0: 43:58:11:92:a8:e8:9b:47:5b:1f:bf:9a:d3:af:0f:69:fa:95: 8e:f0:e0:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa3q8Xm9zrw4Vb4rVGK4Eod22HngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgx QUFEMjQ1MDAeFw0yNjAyMTExNTI4MDhaFw0yNzAyMTAxNTMzMDhaMDMxMTAvBgNV BAMTKDIzODVGMEI0Rjg2OTczN0FFMDNGMUREOTNCMDA0NzFBMjU4NUNDRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWTq9l5UZpqjKM4eNbDHIj4CTc WMaJmX/eRc45GjW7FRfR2ftLhtF+pQ2G6FXxwTQ9JD2kI4p75TvjwSY+La/479mI a5eQv/4jLtGGaraUX5GCRAgAlD6RWFX/ODPTt31Ar2aT+KYqMm6cISiNWeHgFyIS eA7EW8c/s1mLkbzqxtI43J2oWwEzKiDo2fpVvGE8i0cIPJHv+YRcNjsHgt272WtS GLcO8dmdwPxgeMWt+TF4t+UM38x5F5RDucCIf1uo4Oe9Hvc97mG79B1IZnhpry2Q 9VJUBkenTSRLe2smWaBNDoCU5J8CViB1ksubuaaU7SMh9wwYtd4fPeAU57oNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI4XwtPhpc3rgPx3ZOwBHGiWFzP4wHwYDVR0j BBgwFoAUzcCF49TXVDmuG7bLaPGA6BqtJFAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDBlMGRlYS01ZjliLTQyNWMtODJjZS0zMGE4NjUwMDdjMzUvMC9DREMwODVFM0Q0 RDc1NDM5QUUxQkI2Q0I2OEYxODBFODFBQUQyNDUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgxQUFE MjQ1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkMGUwZGVhLTVmOWItNDI1Yy04 MmNlLTMwYTg2NTAwN2MzNS8wLzMxMzAzMzJlMzIzMDJlMzEzNjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTM0MzQzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxSmMA0GCSqG SIb3DQEBCwUAA4IBAQBkRWOqH5Wb+NEqeojFDcziykuGJIBLQ7P2ix+P5S5GYXlG TZh8ZnysrGByhIgppudsyyKoBS3vvaxSyKfTmvjjyVb8A/tCRXWmyPJ2vwzkBS00 0lT92PjXwxiGUHsPtEmAidMwYk6F1ilDNaQ0D5UCuoGN4+a+kuySY47Ht9tnwIph iKUNaNaeIRnuxV2H6OiKJ+lHMuvXJJSVwX84LLObkKOP5qrw2ihF4lB+MRjzI3Fa sdpgxoo6tow9RMK798WFyAMrIIsBVe/VKto/cfktbNzJ5VBEebSyLDb+xYCmgeZe 4jThNKR9s+BDWBGSqOibR1sfv5rTrw9p+pWO8OAp -----END CERTIFICATE-----Generated at Mon Mar 2 11:42:04 2026 by rpki-client