$ rpki-client -vvf repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32332d3233203d3e203137393935.roa File: 3130332e3135382e3136322e302f32332d3233203d3e203137393935.roa (raw, json) Hash identifier: NxcYlLW+ZkGtzpqXd2yoeS5VdB40v+IZaaf0YTRRXYQ= Subject key identifier: EB:94:B6:93:60:79:A7:C6:1D:F6:64:A1:7C:67:3B:B1:69:26:3C:BC Certificate issuer: /CN=A398FBDF357790C7DC67C6D92A15A3D4617558A6 Certificate serial: 398BB67AF92AFB48392AB4615C70B45F62E9204F Authority key identifier: A3:98:FB:DF:35:77:90:C7:DC:67:C6:D9:2A:15:A3:D4:61:75:58:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32332d3233203d3e203137393935.roa Signing time: Wed 11 Mar 2026 10:02:45 +0000 ROA not before: Wed 11 Mar 2026 09:57:45 +0000 ROA not after: Wed 10 Mar 2027 10:02:45 +0000 asID: 17995 IP address blocks: 103.158.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/A398FBDF357790C7DC67C6D92A15A3D4617558A6.crl rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/A398FBDF357790C7DC67C6D92A15A3D4617558A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 00:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8b:b6:7a:f9:2a:fb:48:39:2a:b4:61:5c:70:b4:5f:62:e9:20:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A398FBDF357790C7DC67C6D92A15A3D4617558A6 Validity Not Before: Mar 11 09:57:45 2026 GMT Not After : Mar 10 10:02:45 2027 GMT Subject: CN=EB94B6936079A7C61DF664A17C673BB169263CBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:fb:69:f7:c3:d7:05:e3:18:73:28:15:65:6d: f8:d6:2c:3e:fd:b9:9d:64:37:f1:c1:5c:8f:51:34: 34:2e:d5:06:f4:63:d7:96:3f:11:b1:ff:8e:e8:da: 40:c1:56:bb:da:79:95:fc:0b:00:ff:94:4b:5b:50: 53:c0:c9:b6:27:37:cd:10:a3:29:92:d6:c5:d8:1a: 08:6c:f4:6c:f6:01:f4:4d:87:d9:11:5f:f0:7a:e7: 6e:da:15:e6:f1:c1:a9:c9:de:b1:29:c6:30:8c:e3: 52:1c:69:f6:68:9e:f6:bf:30:cf:c9:ab:f3:b8:78: 87:07:61:0c:f0:77:7a:a5:db:68:28:99:30:08:c9: e5:ce:ae:c8:f6:39:94:82:55:8b:9c:db:4c:f6:7e: 24:75:d3:b1:cd:86:bb:0f:91:a4:b5:4d:0c:40:c6: 25:9c:d7:2e:b6:0c:79:8c:e8:d9:fa:6a:ba:3f:fc: dd:a3:e1:78:9a:ae:49:64:0e:7e:45:d2:63:35:17: 34:77:c9:fe:10:bf:63:fe:52:67:e7:92:2d:43:39: 50:16:77:3a:12:ce:b9:45:8f:7d:79:33:84:26:50: 79:95:90:19:a3:54:fa:8e:ed:6e:03:22:f3:b1:2b: 01:2e:3c:d5:7d:7d:6c:2b:d2:89:12:d8:16:71:41: 30:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:94:B6:93:60:79:A7:C6:1D:F6:64:A1:7C:67:3B:B1:69:26:3C:BC X509v3 Authority Key Identifier: keyid:A3:98:FB:DF:35:77:90:C7:DC:67:C6:D9:2A:15:A3:D4:61:75:58:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/A398FBDF357790C7DC67C6D92A15A3D4617558A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32332d3233203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.162.0/23 Signature Algorithm: sha256WithRSAEncryption a3:80:41:04:77:55:7b:8c:fc:d5:88:26:e8:2c:8d:70:3b:34: e7:41:75:41:23:7c:29:3c:7c:8c:8f:b5:2f:35:49:de:5f:b1: e2:35:e7:0d:61:cc:93:99:d1:99:4f:b2:4a:45:ae:b5:21:95: cb:7c:49:9f:c4:78:5e:1a:0c:90:41:fe:1d:09:d4:ec:34:12: 42:1b:a5:75:37:a7:32:e1:fc:a9:e4:12:c9:e7:1b:31:77:18: a9:e8:c3:4f:58:f5:cd:db:67:00:8e:1c:47:19:41:5c:a8:04: e9:f3:ce:f8:5f:83:0c:04:e0:7d:77:df:eb:d4:77:be:52:53: ac:a9:67:83:ed:a2:08:ad:cf:de:cb:fa:c3:e7:ad:d2:34:07: 81:7d:29:9e:ca:3a:e0:75:22:6d:22:ea:71:e5:e8:e5:b9:93: 0d:8d:de:bc:60:98:a9:e8:fa:36:cc:82:66:30:68:76:29:9f: de:d1:c9:d9:78:a6:5d:a1:28:c8:12:80:1b:8d:d8:81:0b:b8: 8a:56:d7:10:d9:f5:cb:28:52:ea:5b:46:23:43:be:fc:97:cb: 5b:2a:f2:9e:dc:7a:9d:38:bc:d5:27:e6:dd:c3:21:5f:66:02: 83:ee:40:c6:a7:c6:27:c3:9c:77:fd:56:e2:de:f6:df:df:74: 36:a8:db:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOYu2evkq+0g5KrRhXHC0X2LpIE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM5OEZCREYzNTc3OTBDN0RDNjdDNkQ5MkExNUEzRDQ2 MTc1NThBNjAeFw0yNjAzMTEwOTU3NDVaFw0yNzAzMTAxMDAyNDVaMDMxMTAvBgNV BAMTKEVCOTRCNjkzNjA3OUE3QzYxREY2NjRBMTdDNjczQkIxNjkyNjNDQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw+2n3w9cF4xhzKBVlbfjWLD79 uZ1kN/HBXI9RNDQu1Qb0Y9eWPxGx/47o2kDBVrvaeZX8CwD/lEtbUFPAybYnN80Q oymS1sXYGghs9Gz2AfRNh9kRX/B6527aFebxwanJ3rEpxjCM41IcafZonva/MM/J q/O4eIcHYQzwd3ql22gomTAIyeXOrsj2OZSCVYuc20z2fiR107HNhrsPkaS1TQxA xiWc1y62DHmM6Nn6aro//N2j4XiarklkDn5F0mM1FzR3yf4Qv2P+Umfnki1DOVAW dzoSzrlFj315M4QmUHmVkBmjVPqO7W4DIvOxKwEuPNV9fWwr0okS2BZxQTDFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU65S2k2B5p8Yd9mShfGc7sWkmPLwwHwYDVR0j BBgwFoAUo5j73zV3kMfcZ8bZKhWj1GF1WKYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmMxYzUyOS02MjQ0LTQ1MDMtYWY1Ni02OTQ1OWU0YTc2MGYvMC9BMzk4RkJERjM1 Nzc5MEM3REM2N0M2RDkyQTE1QTNENDYxNzU1OEE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM5OEZCREYzNTc3OTBDN0RDNjdDNkQ5MkExNUEzRDQ2MTc1 NThBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YzFjNTI5LTYyNDQtNDUwMy1h ZjU2LTY5NDU5ZTRhNzYwZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM2MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ56iMA0GCSqG SIb3DQEBCwUAA4IBAQCjgEEEd1V7jPzViCboLI1wOzTnQXVBI3wpPHyMj7UvNUne X7HiNecNYcyTmdGZT7JKRa61IZXLfEmfxHheGgyQQf4dCdTsNBJCG6V1N6cy4fyp 5BLJ5xsxdxip6MNPWPXN22cAjhxHGUFcqATp8874X4MMBOB9d9/r1He+UlOsqWeD 7aIIrc/ey/rD563SNAeBfSmeyjrgdSJtIupx5ejluZMNjd68YJip6Po2zIJmMGh2 KZ/e0cnZeKZdoSjIEoAbjdiBC7iKVtcQ2fXLKFLqW0YjQ778l8tbKvKe3HqdOLzV J+bdwyFfZgKD7kDGp8Ynw5x3/Vbi3vbf33Q2qNt8 -----END CERTIFICATE-----Generated at Tue Mar 24 00:38:45 2026 by rpki-client