$ rpki-client -vvf repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136392e302f32342d3234203d3e2039333431.roa File: 3130332e3138392e3136392e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 7LVSpHD/+5SvrNtdEAOca6lFeRx3Ycxz9J1G8TF3m/w= Subject key identifier: FF:00:44:9F:08:41:EC:4B:BA:BF:4B:A1:9C:F1:07:A2:AA:1E:B3:08 Certificate issuer: /CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA Certificate serial: 0D2099180B7C2FCD7281EDF6C3FB2285549B7982 Authority key identifier: 6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136392e302f32342d3234203d3e2039333431.roa Signing time: Wed 18 Mar 2026 08:00:02 +0000 ROA not before: Wed 18 Mar 2026 07:55:02 +0000 ROA not after: Wed 17 Mar 2027 08:00:02 +0000 asID: 9341 IP address blocks: 103.189.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.crl rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 13:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:20:99:18:0b:7c:2f:cd:72:81:ed:f6:c3:fb:22:85:54:9b:79:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA Validity Not Before: Mar 18 07:55:02 2026 GMT Not After : Mar 17 08:00:02 2027 GMT Subject: CN=FF00449F0841EC4BBABF4BA19CF107A2AA1EB308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:82:fc:96:ec:10:6d:a9:cc:4d:b3:3d:0f: 79:6b:75:51:4d:4a:b3:99:22:c9:0c:f0:02:bc:fd: 10:35:27:f3:b6:03:ca:25:cf:48:48:14:ea:65:c6: 2b:73:d2:67:3d:36:b2:27:96:92:ca:a7:2c:2e:60: b2:39:fc:19:fd:ec:1b:fa:ac:fe:f4:b1:7c:25:55: 19:7c:32:ec:24:72:c3:66:ef:97:fa:13:0c:24:23: df:c2:d7:bc:cf:f8:4b:03:c3:88:ab:f6:d1:fd:b9: 21:52:ca:f4:96:66:21:ca:e1:40:a4:54:07:4b:36: 1c:ea:c3:52:08:3d:bd:c0:22:b9:d4:69:b3:21:4b: 88:9d:4d:3e:8f:fc:bb:28:a8:8d:da:41:c5:e7:21: 93:9a:3a:42:39:6e:eb:42:60:74:23:46:d3:8e:1b: 28:d6:0f:14:a0:ed:bb:53:15:7d:25:e1:3b:83:59: b9:97:a1:fd:09:02:34:5f:fb:d3:bd:81:34:60:61: 7b:96:5b:d7:79:3b:b5:a3:4e:1f:a7:86:01:09:5a: 2a:b8:5f:47:a7:72:d8:44:81:51:48:a2:10:1a:7c: c5:c7:b6:9b:a5:b1:6d:1e:4a:e9:27:d2:c0:5a:28: 7e:50:26:f1:b3:38:d8:bf:7c:69:d9:3b:17:13:fd: 92:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:00:44:9F:08:41:EC:4B:BA:BF:4B:A1:9C:F1:07:A2:AA:1E:B3:08 X509v3 Authority Key Identifier: keyid:6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136392e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.169.0/24 Signature Algorithm: sha256WithRSAEncryption 25:5a:f7:44:88:70:58:ba:d1:1f:8d:77:2b:4c:88:f4:92:1c: 5e:9f:83:b1:8c:39:4a:b6:cc:11:10:b7:3b:e0:0f:53:03:08: fa:ba:63:c4:79:c4:01:c8:aa:b6:39:75:52:92:e3:90:68:e3: e7:6a:9c:46:b4:91:ba:a5:25:cb:88:f6:d8:e1:31:03:a0:80: 96:af:ec:1a:ef:eb:71:9d:26:ef:32:d0:7e:dd:74:52:4e:5c: c3:9c:f7:d7:89:a0:e9:58:68:74:c7:61:bf:61:0b:27:a9:86: 8f:47:31:7a:c8:7f:23:ad:6d:c1:6d:fd:ee:62:cf:11:89:33: 5f:5b:10:3e:aa:c2:b9:a7:67:69:2b:72:b8:8a:26:7b:c9:43: 67:30:0f:96:cc:46:06:95:cb:fe:19:aa:33:25:9c:e5:06:aa: eb:08:c2:17:e0:1b:6c:b1:89:a6:6d:68:7b:8c:65:75:46:1b: 5b:40:0d:54:2a:66:9c:54:e4:18:11:9e:31:91:b8:91:9e:92: a7:0f:78:f1:5a:63:38:30:da:36:2a:26:aa:70:a2:f8:9c:b1: da:19:29:3e:d1:ee:23:32:03:65:e0:4f:a8:93:9d:eb:8d:f1: 5c:42:76:a9:a4:29:d6:e0:83:41:78:b3:0b:b4:21:9c:4a:3b: 64:b6:7f:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDSCZGAt8L81yge32w/sihVSbeYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMx REIwOEZEQTAeFw0yNjAzMTgwNzU1MDJaFw0yNzAzMTcwODAwMDJaMDMxMTAvBgNV BAMTKEZGMDA0NDlGMDg0MUVDNEJCQUJGNEJBMTlDRjEwN0EyQUExRUIzMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLeYL8luwQbanMTbM9D3lrdVFN SrOZIskM8AK8/RA1J/O2A8olz0hIFOplxitz0mc9NrInlpLKpywuYLI5/Bn97Bv6 rP70sXwlVRl8MuwkcsNm75f6EwwkI9/C17zP+EsDw4ir9tH9uSFSyvSWZiHK4UCk VAdLNhzqw1IIPb3AIrnUabMhS4idTT6P/LsoqI3aQcXnIZOaOkI5butCYHQjRtOO GyjWDxSg7btTFX0l4TuDWbmXof0JAjRf+9O9gTRgYXuWW9d5O7WjTh+nhgEJWiq4 X0encthEgVFIohAafMXHtpulsW0eSukn0sBaKH5QJvGzONi/fGnZOxcT/ZIpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/wBEnwhB7Eu6v0uhnPEHoqoeswgwHwYDVR0j BBgwFoAUb8DJM0D/c1k0NMjv/O2Osx2wj9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjY1OTkwNC0zNzAyLTQ3OTctYmQxYi00NDdhYjhjOTRlMGMvMC82RkMwQzkzMzQw RkY3MzU5MzQzNEM4RUZGQ0VEOEVCMzFEQjA4RkRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMxREIw OEZEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmNjU5OTA0LTM3MDItNDc5Ny1i ZDFiLTQ0N2FiOGM5NGUwYy8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe9qTANBgkqhkiG 9w0BAQsFAAOCAQEAJVr3RIhwWLrRH413K0yI9JIcXp+DsYw5SrbMERC3O+APUwMI +rpjxHnEAciqtjl1UpLjkGjj52qcRrSRuqUly4j22OExA6CAlq/sGu/rcZ0m7zLQ ft10Uk5cw5z314mg6VhodMdhv2ELJ6mGj0cxesh/I61twW397mLPEYkzX1sQPqrC uadnaStyuIome8lDZzAPlsxGBpXL/hmqMyWc5Qaq6wjCF+AbbLGJpm1oe4xldUYb W0ANVCpmnFTkGBGeMZG4kZ6Spw948VpjODDaNiomqnCi+Jyx2hkpPtHuIzIDZeBP qJOd643xXEJ2qaQp1uCDQXizC7QhnEo7ZLZ/ew== -----END CERTIFICATE-----Generated at Fri Mar 20 10:58:13 2026 by rpki-client