$ rpki-client -vvf repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/3130332e3138362e3230392e302f32342d3234203d3e20313336383733.roa File: 3130332e3138362e3230392e302f32342d3234203d3e20313336383733.roa (raw, json) Hash identifier: Wg06GQde+GCq5aqBDprKyhd1BT39yXsvRMMpYz9sEns= Subject key identifier: 2B:8E:77:DD:9F:5C:F9:71:A9:5E:17:9A:00:29:AD:59:AF:2A:DB:79 Certificate issuer: /CN=F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64 Certificate serial: 76973B53E83BB52A1596A8D6BDCD87D85ECEEA12 Authority key identifier: F7:00:7F:FD:A6:6A:99:D7:58:8D:A9:3F:FA:F2:6B:DE:57:B3:CA:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.cer Subject info access: rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/3130332e3138362e3230392e302f32342d3234203d3e20313336383733.roa Signing time: Wed 04 Mar 2026 06:00:00 +0000 ROA not before: Wed 04 Mar 2026 05:55:00 +0000 ROA not after: Wed 03 Mar 2027 06:00:00 +0000 asID: 136873 IP address blocks: 103.186.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.crl rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 12:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:97:3b:53:e8:3b:b5:2a:15:96:a8:d6:bd:cd:87:d8:5e:ce:ea:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64 Validity Not Before: Mar 4 05:55:00 2026 GMT Not After : Mar 3 06:00:00 2027 GMT Subject: CN=2B8E77DD9F5CF971A95E179A0029AD59AF2ADB79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:70:6a:80:d2:94:70:d0:61:3c:60:27:af:8a: fe:e7:81:7b:8a:af:0d:90:a7:47:b3:71:fa:22:b4: 6c:9c:d7:8d:bf:d1:43:7a:e6:ed:98:74:02:fc:2e: f7:79:a2:40:29:08:e7:f2:44:2d:0f:f6:b4:bd:11: fa:1a:b7:56:84:ba:d4:ca:4d:19:60:df:fd:36:7b: 3c:4c:7a:51:cc:41:de:33:ff:39:a9:16:a0:c9:88: b1:65:bc:95:86:f2:bd:e7:5a:90:09:a2:4d:2a:8f: 2b:0a:7f:5f:c9:10:96:5c:b6:71:e3:46:d5:1f:f9: f6:57:54:36:ec:bc:39:b5:ca:0d:a9:b4:16:02:83: 09:dd:67:cc:9f:c7:de:90:51:81:1c:a7:1d:c0:0f: b3:29:6f:8d:7f:d0:d4:2a:1f:95:57:f2:0d:95:52: 06:50:b4:7c:ac:6b:cc:40:7d:18:9b:52:02:88:fe: 7c:33:87:c3:78:14:9b:3a:5b:0e:80:b0:5f:92:56: 41:d9:b2:af:2d:bf:c8:6d:d6:d1:68:54:9b:0d:14: ac:9b:c3:b1:a4:d1:1c:be:ed:f0:6d:b0:ab:43:5d: 7d:d7:64:01:01:e3:88:3d:ee:8f:9b:4f:f2:03:18: 58:68:2d:9b:74:22:09:20:f1:3b:8f:d1:86:04:b5: fb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8E:77:DD:9F:5C:F9:71:A9:5E:17:9A:00:29:AD:59:AF:2A:DB:79 X509v3 Authority Key Identifier: keyid:F7:00:7F:FD:A6:6A:99:D7:58:8D:A9:3F:FA:F2:6B:DE:57:B3:CA:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/3130332e3138362e3230392e302f32342d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.209.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:06:14:01:d4:e6:48:85:25:0a:11:31:c9:fd:b9:64:90:5c: df:50:e1:f5:b0:c7:f9:b8:33:78:ec:63:a2:01:aa:7e:c5:fa: 76:b5:ea:aa:5d:b3:af:de:ce:77:c9:17:21:1b:12:2d:f4:26: 7e:87:45:d0:43:a6:f8:f5:4b:2d:d7:5f:7a:3f:65:6d:51:ae: 34:fd:37:d2:b8:ba:bb:7b:c6:8f:52:18:67:75:f2:42:0b:5b: 7e:c0:a6:09:8f:a6:51:95:69:b1:0f:c8:e4:ba:a7:04:25:a7: 27:40:b9:44:70:b4:60:6c:52:ec:78:dd:aa:5e:7d:b3:3b:a3: fd:33:8e:f4:34:36:1e:01:20:2a:f7:ec:1b:55:1c:e6:1e:49: 94:ae:8f:0c:e2:3c:d3:0c:23:bb:a3:fd:2b:a3:c2:4b:83:64: ef:79:59:3a:14:75:8e:c2:fd:8f:5e:a4:d8:07:e9:a2:52:7a: 60:52:ea:4a:50:c7:30:59:dd:4f:b4:c7:51:96:55:6c:a3:2d: 21:56:b5:3d:62:ac:22:a4:d1:8c:ea:e6:62:a2:23:28:87:ce: 10:72:2d:47:3b:c0:88:22:e7:eb:3e:9f:02:fd:eb:97:21:bb: f8:3c:d3:86:86:bf:00:5f:d5:a3:74:ea:de:c1:5c:ec:ba:93: 6e:6b:a9:7d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdpc7U+g7tSoVlqjWvc2H2F7O6hIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjcwMDdGRkRBNjZBOTlENzU4OERBOTNGRkFGMjZCREU1 N0IzQ0E2NDAeFw0yNjAzMDQwNTU1MDBaFw0yNzAzMDMwNjAwMDBaMDMxMTAvBgNV BAMTKDJCOEU3N0REOUY1Q0Y5NzFBOTVFMTc5QTAwMjlBRDU5QUYyQURCNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIcGqA0pRw0GE8YCeviv7ngXuK rw2Qp0ezcfoitGyc142/0UN65u2YdAL8Lvd5okApCOfyRC0P9rS9Efoat1aEutTK TRlg3/02ezxMelHMQd4z/zmpFqDJiLFlvJWG8r3nWpAJok0qjysKf1/JEJZctnHj RtUf+fZXVDbsvDm1yg2ptBYCgwndZ8yfx96QUYEcpx3AD7Mpb41/0NQqH5VX8g2V UgZQtHysa8xAfRibUgKI/nwzh8N4FJs6Ww6AsF+SVkHZsq8tv8ht1tFoVJsNFKyb w7Gk0Ry+7fBtsKtDXX3XZAEB44g97o+bT/IDGFhoLZt0Igkg8TuP0YYEtftbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUK4533Z9c+XGpXheaACmtWa8q23kwHwYDVR0j BBgwFoAU9wB//aZqmddYjak/+vJr3lezymQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OWE5ZTgzNS1mM2ExLTRjMzYtYjQ3ZC02ZjJmNzFlYjhhYTQvMC9GNzAwN0ZGREE2 NkE5OUQ3NTg4REE5M0ZGQUYyNkJERTU3QjNDQTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjcwMDdGRkRBNjZBOTlENzU4OERBOTNGRkFGMjZCREU1N0Iz Q0E2NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5YTllODM1LWYzYTEtNGMzNi1i NDdkLTZmMmY3MWViOGFhNC8wLzMxMzAzMzJlMzEzODM2MmUzMjMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnutEwDQYJ KoZIhvcNAQELBQADggEBAI0GFAHU5kiFJQoRMcn9uWSQXN9Q4fWwx/m4M3jsY6IB qn7F+na16qpds6/eznfJFyEbEi30Jn6HRdBDpvj1Sy3XX3o/ZW1RrjT9N9K4urt7 xo9SGGd18kILW37ApgmPplGVabEPyOS6pwQlpydAuURwtGBsUux43apefbM7o/0z jvQ0Nh4BICr37BtVHOYeSZSujwziPNMMI7uj/SujwkuDZO95WToUdY7C/Y9epNgH 6aJSemBS6kpQxzBZ3U+0x1GWVWyjLSFWtT1irCKk0Yzq5mKiIyiHzhByLUc7wIgi 5+s+nwL965chu/g804aGvwBf1aN06t7BXOy6k25rqX0= -----END CERTIFICATE-----Generated at Fri Mar 20 17:22:53 2026 by rpki-client