$ rpki-client -vvf repo-rpki.idnic.net/repo/021f999b-abce-4fa9-8e79-93b9c5e454e1/0/3130332e3139302e34372e302f32342d3234203d3e2039333431.roa File: 3130332e3139302e34372e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: HpXZ6Mb1GcnAb+11U+HXGOj36jg3/8aHSC+es16QFSk= Subject key identifier: BC:3A:56:CB:46:B1:91:B3:E8:FF:DD:3F:52:4C:DD:58:35:5F:8D:7E Certificate issuer: /CN=5C7240CA135C93835F95A8E1F3526942D3214EC2 Certificate serial: 4E221C8967D3415B4C1FCDB451FC125F2EAC7C20 Authority key identifier: 5C:72:40:CA:13:5C:93:83:5F:95:A8:E1:F3:52:69:42:D3:21:4E:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C7240CA135C93835F95A8E1F3526942D3214EC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/021f999b-abce-4fa9-8e79-93b9c5e454e1/0/3130332e3139302e34372e302f32342d3234203d3e2039333431.roa Signing time: Wed 11 Mar 2026 06:00:00 +0000 ROA not before: Wed 11 Mar 2026 05:55:00 +0000 ROA not after: Wed 10 Mar 2027 06:00:00 +0000 asID: 9341 IP address blocks: 103.190.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/021f999b-abce-4fa9-8e79-93b9c5e454e1/0/5C7240CA135C93835F95A8E1F3526942D3214EC2.crl rsync://repo-rpki.idnic.net/repo/021f999b-abce-4fa9-8e79-93b9c5e454e1/0/5C7240CA135C93835F95A8E1F3526942D3214EC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C7240CA135C93835F95A8E1F3526942D3214EC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 06:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:22:1c:89:67:d3:41:5b:4c:1f:cd:b4:51:fc:12:5f:2e:ac:7c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C7240CA135C93835F95A8E1F3526942D3214EC2 Validity Not Before: Mar 11 05:55:00 2026 GMT Not After : Mar 10 06:00:00 2027 GMT Subject: CN=BC3A56CB46B191B3E8FFDD3F524CDD58355F8D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:24:2c:a3:c9:ac:8d:5e:41:e6:a7:1e:73:41: 04:26:df:a7:96:ac:20:2a:3d:ee:b0:60:85:a5:3b: aa:f3:46:97:00:b0:24:00:a9:cf:2e:f8:27:45:bb: 02:58:d6:d8:7c:b0:ec:9e:52:8f:2a:b1:54:88:28: 91:0e:8b:e2:1d:bc:36:30:b9:5c:b3:56:02:48:fa: a5:e7:1b:3f:80:c6:03:a3:7a:4c:36:f1:58:73:3c: 1d:d8:54:3f:0a:cc:e6:b8:22:37:31:e8:a4:6a:65: 3f:ce:0c:02:93:99:a1:73:6c:a0:ee:14:b5:85:ce: 9a:6b:94:28:d2:87:99:13:4e:97:79:16:86:77:9d: 60:13:c6:7f:73:81:a7:f4:62:76:19:b0:29:bb:1f: 08:8c:2f:74:33:ed:e5:09:c0:cd:9d:0f:19:80:e5: 3f:42:a1:34:cb:9b:2b:6f:24:5a:8d:fd:92:26:11: a5:46:5a:78:a3:dc:59:97:87:a9:68:d8:55:6b:12: 21:7a:56:c7:3d:ed:73:83:82:c4:63:2c:3d:0f:ad: b8:11:52:36:a0:f0:28:67:01:a0:3b:b5:ba:75:1b: 01:df:66:b3:90:0e:c5:3a:79:40:cd:d2:54:74:bb: 9d:6b:e9:90:ad:9b:ce:17:5d:74:61:65:38:d8:7b: 58:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3A:56:CB:46:B1:91:B3:E8:FF:DD:3F:52:4C:DD:58:35:5F:8D:7E X509v3 Authority Key Identifier: keyid:5C:72:40:CA:13:5C:93:83:5F:95:A8:E1:F3:52:69:42:D3:21:4E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/021f999b-abce-4fa9-8e79-93b9c5e454e1/0/5C7240CA135C93835F95A8E1F3526942D3214EC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C7240CA135C93835F95A8E1F3526942D3214EC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/021f999b-abce-4fa9-8e79-93b9c5e454e1/0/3130332e3139302e34372e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.47.0/24 Signature Algorithm: sha256WithRSAEncryption a3:db:c3:ac:0b:aa:98:59:63:4d:cd:31:57:09:ea:99:8f:0c: c0:e7:98:52:f6:73:06:49:c5:ef:12:78:31:fa:e9:ec:d3:f6: 85:34:ae:63:9a:52:09:ff:6c:93:23:48:62:7e:47:42:c1:e1: f8:7b:63:41:84:a2:56:c3:a5:60:a2:1d:c5:7d:b4:de:36:35: 6a:4b:80:d4:63:f9:3c:05:d3:b1:dc:f9:1f:0d:f2:63:3d:0c: 80:02:f9:d6:bf:ed:db:e1:37:db:f2:ee:96:64:2e:f5:e6:66: 02:b3:fe:d4:57:8c:ba:f9:c1:06:7a:3e:06:1b:7e:65:fb:05: 00:f1:6e:f6:cc:6a:60:23:93:d3:f8:95:f1:f7:f7:16:54:73: 98:ef:40:9f:6f:53:4a:17:74:12:47:99:29:8c:ea:d5:f0:ca: 98:ae:15:55:18:51:95:c2:7e:ff:54:6c:4d:dc:55:41:3c:0f: 3d:21:31:d9:5f:79:dd:ea:5a:d9:fc:23:b8:5e:20:58:aa:06: f2:14:f8:d8:91:06:72:42:02:60:6b:7a:6e:70:15:9e:91:48: 01:8f:87:1c:a8:60:4c:54:73:13:54:87:c4:0c:2c:3d:1e:ba: 05:91:50:0d:5a:f8:a7:f1:9e:e0:36:97:52:6b:d8:f2:a3:32: 55:7f:f0:3e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTiIciWfTQVtMH820UfwSXy6sfCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM3MjQwQ0ExMzVDOTM4MzVGOTVBOEUxRjM1MjY5NDJE MzIxNEVDMjAeFw0yNjAzMTEwNTU1MDBaFw0yNzAzMTAwNjAwMDBaMDMxMTAvBgNV BAMTKEJDM0E1NkNCNDZCMTkxQjNFOEZGREQzRjUyNENERDU4MzU1RjhEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIJCyjyayNXkHmpx5zQQQm36eW rCAqPe6wYIWlO6rzRpcAsCQAqc8u+CdFuwJY1th8sOyeUo8qsVSIKJEOi+IdvDYw uVyzVgJI+qXnGz+AxgOjekw28VhzPB3YVD8KzOa4Ijcx6KRqZT/ODAKTmaFzbKDu FLWFzpprlCjSh5kTTpd5FoZ3nWATxn9zgaf0YnYZsCm7HwiML3Qz7eUJwM2dDxmA 5T9CoTTLmytvJFqN/ZImEaVGWnij3FmXh6lo2FVrEiF6Vsc97XODgsRjLD0PrbgR Ujag8ChnAaA7tbp1GwHfZrOQDsU6eUDN0lR0u51r6ZCtm84XXXRhZTjYe1jvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvDpWy0axkbPo/90/UkzdWDVfjX4wHwYDVR0j BBgwFoAUXHJAyhNck4Nflajh81JpQtMhTsIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjFmOTk5Yi1hYmNlLTRmYTktOGU3OS05M2I5YzVlNDU0ZTEvMC81QzcyNDBDQTEz NUM5MzgzNUY5NUE4RTFGMzUyNjk0MkQzMjE0RUMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUM3MjQwQ0ExMzVDOTM4MzVGOTVBOEUxRjM1MjY5NDJEMzIx NEVDMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMWY5OTliLWFiY2UtNGZhOS04 ZTc5LTkzYjljNWU0NTRlMS8wLzMxMzAzMzJlMzEzOTMwMmUzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvi8wDQYJKoZIhvcN AQELBQADggEBAKPbw6wLqphZY03NMVcJ6pmPDMDnmFL2cwZJxe8SeDH66ezT9oU0 rmOaUgn/bJMjSGJ+R0LB4fh7Y0GEolbDpWCiHcV9tN42NWpLgNRj+TwF07Hc+R8N 8mM9DIAC+da/7dvhN9vy7pZkLvXmZgKz/tRXjLr5wQZ6PgYbfmX7BQDxbvbMamAj k9P4lfH39xZUc5jvQJ9vU0oXdBJHmSmM6tXwypiuFVUYUZXCfv9UbE3cVUE8Dz0h Mdlfed3qWtn8I7heIFiqBvIU+NiRBnJCAmBrem5wFZ6RSAGPhxyoYExUcxNUh8QM LD0eugWRUA1a+KfxnuA2l1Jr2PKjMlV/8D4= -----END CERTIFICATE-----Generated at Fri Mar 20 10:55:50 2026 by rpki-client