$ rpki-client -vvf repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3234203d3e203538353531.roa File: 3130332e32302e3136362e302f32332d3234203d3e203538353531.roa (raw, json) Hash identifier: p2Xq5/VYbOTwjzQywO418W+YLBKjJs6gWl03kGOWuS4= Subject key identifier: 5E:3C:80:E7:03:E1:2D:BB:3B:9C:E8:3B:15:48:E2:12:BD:53:25:12 Certificate issuer: /CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Certificate serial: 241802644D54633F673F282BB046BDBF36567A8D Authority key identifier: CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3234203d3e203538353531.roa Signing time: Wed 18 Feb 2026 08:02:17 +0000 ROA not before: Wed 18 Feb 2026 07:57:17 +0000 ROA not after: Wed 17 Feb 2027 08:02:17 +0000 asID: 58551 IP address blocks: 103.20.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 23:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:18:02:64:4d:54:63:3f:67:3f:28:2b:b0:46:bd:bf:36:56:7a:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Validity Not Before: Feb 18 07:57:17 2026 GMT Not After : Feb 17 08:02:17 2027 GMT Subject: CN=5E3C80E703E12DBB3B9CE83B1548E212BD532512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:1b:2a:7f:e6:4d:0d:45:4d:89:af:67:29:79: 3a:ae:01:e6:0f:77:d6:dc:7c:89:65:85:08:6d:17: 4a:fb:17:47:b6:62:c7:17:e2:09:3e:21:07:c7:9f: 52:91:21:90:be:b8:7e:d4:74:b2:83:4f:c3:6e:76: d7:6c:0d:9f:64:a1:0f:22:9b:25:c3:65:1a:44:8d: 85:50:1c:76:2e:91:e7:77:42:24:77:22:aa:d6:ca: d8:a0:ac:d5:2c:c6:07:f3:de:41:6a:2e:21:12:08: 8c:fe:1a:9d:f6:e9:65:f9:14:91:b0:40:a6:57:d5: 6e:fd:bb:3d:af:10:05:e9:52:38:b1:ce:9f:fe:e2: 90:59:ff:33:b1:3e:cc:10:12:67:05:09:42:b2:67: 8c:ab:39:98:7c:11:77:93:48:89:2f:cc:4d:c9:9e: ae:f7:48:e7:3a:7d:57:1e:e5:15:1a:45:d0:7a:7e: 16:82:b4:f1:2c:f7:45:d6:11:35:63:0c:fc:2b:66: 37:90:89:0c:1b:1c:e7:4d:55:84:01:c4:80:0a:79: f1:c6:f2:db:34:5a:cc:9c:ad:06:6a:21:c7:37:66: e6:39:33:09:5f:43:15:f7:09:0e:4f:ae:6b:e3:b7: 47:fe:c5:8d:0d:b9:c6:b2:93:d5:b8:92:07:84:0e: a5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3C:80:E7:03:E1:2D:BB:3B:9C:E8:3B:15:48:E2:12:BD:53:25:12 X509v3 Authority Key Identifier: keyid:CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3234203d3e203538353531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.166.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:93:9e:97:37:7e:f0:2c:4a:7b:93:90:d2:ec:d9:e6:6d:62: 9c:cc:7e:15:a2:74:4b:62:33:98:9c:56:d2:55:e0:e7:c5:e8: c0:0f:1b:95:99:35:35:21:21:fa:52:7e:0f:1d:1d:23:c6:ea: e8:91:f3:26:34:39:57:d1:a9:ad:0a:e0:be:1f:aa:35:34:7b: aa:95:28:80:6f:98:21:93:b2:db:52:c2:6f:1b:fc:73:c8:d4: 42:39:2b:a1:50:47:c0:c5:59:b1:2e:dd:20:ad:33:62:8d:d0: 03:cb:17:48:10:87:20:88:19:20:28:dc:6d:0c:f0:8b:66:09: 5f:53:a9:ed:a6:32:9b:ef:ac:2d:43:1d:3f:f5:b2:4e:ef:47: 24:59:5b:cd:f0:61:e7:3b:21:22:33:1f:fb:91:d0:e6:e2:5b: 49:d2:93:46:26:d0:82:30:34:c8:57:c9:da:2f:70:df:08:07: 20:bb:f5:cc:e1:42:d6:e5:c6:d6:10:e8:9b:7d:7d:a9:e5:73: fa:c1:aa:cd:14:bb:d7:3d:45:fe:14:fe:c3:3d:5a:87:16:ae: 39:39:ed:79:59:a7:39:d8:af:0d:85:1f:06:71:bb:c7:af:d4: f8:0d:52:39:72:6c:96:d1:a3:e2:7c:b3:4c:4c:d4:27:d5:c8: fd:60:bd:4e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJBgCZE1UYz9nPygrsEa9vzZWeo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgx QUFEMjQ1MDAeFw0yNjAyMTgwNzU3MTdaFw0yNzAyMTcwODAyMTdaMDMxMTAvBgNV BAMTKDVFM0M4MEU3MDNFMTJEQkIzQjlDRTgzQjE1NDhFMjEyQkQ1MzI1MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0Gyp/5k0NRU2Jr2cpeTquAeYP d9bcfIllhQhtF0r7F0e2YscX4gk+IQfHn1KRIZC+uH7UdLKDT8NudtdsDZ9koQ8i myXDZRpEjYVQHHYuked3QiR3IqrWytigrNUsxgfz3kFqLiESCIz+Gp326WX5FJGw QKZX1W79uz2vEAXpUjixzp/+4pBZ/zOxPswQEmcFCUKyZ4yrOZh8EXeTSIkvzE3J nq73SOc6fVce5RUaRdB6fhaCtPEs90XWETVjDPwrZjeQiQwbHOdNVYQBxIAKefHG 8ts0WsycrQZqIcc3ZuY5MwlfQxX3CQ5Prmvjt0f+xY0Nucayk9W4kgeEDqXVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXjyA5wPhLbs7nOg7FUjiEr1TJRIwHwYDVR0j BBgwFoAUzcCF49TXVDmuG7bLaPGA6BqtJFAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDBlMGRlYS01ZjliLTQyNWMtODJjZS0zMGE4NjUwMDdjMzUvMC9DREMwODVFM0Q0 RDc1NDM5QUUxQkI2Q0I2OEYxODBFODFBQUQyNDUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgxQUFE MjQ1MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkMGUwZGVhLTVmOWItNDI1Yy04 MmNlLTMwYTg2NTAwN2MzNS8wLzMxMzAzMzJlMzIzMDJlMzEzNjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcUpjANBgkqhkiG 9w0BAQsFAAOCAQEAC5Oelzd+8CxKe5OQ0uzZ5m1inMx+FaJ0S2IzmJxW0lXg58Xo wA8blZk1NSEh+lJ+Dx0dI8bq6JHzJjQ5V9GprQrgvh+qNTR7qpUogG+YIZOy21LC bxv8c8jUQjkroVBHwMVZsS7dIK0zYo3QA8sXSBCHIIgZICjcbQzwi2YJX1Op7aYy m++sLUMdP/WyTu9HJFlbzfBh5zshIjMf+5HQ5uJbSdKTRibQgjA0yFfJ2i9w3wgH ILv1zOFC1uXG1hDom319qeVz+sGqzRS71z1F/hT+wz1ahxauOTnteVmnOdivDYUf BnG7x6/U+A1SOXJsltGj4nyzTEzUJ9XI/WC9Tg== -----END CERTIFICATE-----Generated at Mon Mar 2 21:12:32 2026 by rpki-client