$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa File: 3130332e37312e382e302f32322d3234203d3e203535363632.roa (raw, json) Hash identifier: wgJ4l6Z4XSXlS4bEbbx1UlqQbPaEu6hH6VwQa4mHecg= Subject key identifier: CF:B6:45:33:A0:82:8D:E8:87:D3:9B:9F:BC:34:D0:2C:B9:AB:C3:27 Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 084493CE607C96778E37295B26BECF6BF54A3FD2 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa Signing time: Tue 17 Mar 2026 09:03:24 +0000 ROA not before: Tue 17 Mar 2026 08:58:24 +0000 ROA not after: Tue 16 Mar 2027 09:03:24 +0000 asID: 55662 IP address blocks: 103.71.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 15:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:44:93:ce:60:7c:96:77:8e:37:29:5b:26:be:cf:6b:f5:4a:3f:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Mar 17 08:58:24 2026 GMT Not After : Mar 16 09:03:24 2027 GMT Subject: CN=CFB64533A0828DE887D39B9FBC34D02CB9ABC327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6e:60:04:4d:5c:cf:1a:a4:09:fe:a0:2e:7c: 27:96:e8:c4:3c:40:3b:7e:17:bc:4c:0e:d4:67:15: fd:a4:85:53:53:63:27:dd:bf:ca:88:d4:9c:48:f7: e6:0b:ce:6a:7f:d6:e2:02:c1:5f:9c:1b:c6:bd:88: 2d:2b:03:a8:08:bc:70:4f:32:a5:36:83:fb:87:1d: 58:ee:ff:bc:86:72:56:ce:8b:31:9c:4b:7a:9f:fd: 46:8b:1e:55:36:df:cf:59:05:6c:54:75:66:9c:ae: b9:38:9e:f0:26:1e:e0:ac:03:b4:6e:a0:fc:b1:db: d8:e3:16:1a:ba:54:46:ff:02:ef:be:75:d3:01:d6: 56:81:7e:fe:2d:c6:d7:4e:7c:ba:16:bd:d2:5a:49: 13:69:ba:c5:54:bb:03:af:76:52:0b:c1:39:4a:a5: 8e:c1:53:95:82:c8:35:25:5c:dc:b9:5e:7d:ca:46: c2:f4:55:6c:55:02:31:7e:7f:14:c9:58:4b:d6:65: fe:a2:e3:85:90:d8:1e:4f:fe:c6:10:34:3e:30:14: 3e:f9:db:1b:af:30:b4:26:3e:88:a9:b5:87:d8:2f: 3f:be:25:10:3d:c4:cc:1f:2d:ee:c5:81:bd:0d:29: 0a:26:f9:4c:69:aa:40:b5:3c:ad:f5:74:7c:b2:ce: 89:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B6:45:33:A0:82:8D:E8:87:D3:9B:9F:BC:34:D0:2C:B9:AB:C3:27 X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.8.0/22 Signature Algorithm: sha256WithRSAEncryption 17:8d:9d:df:27:fc:28:76:c2:95:21:91:2d:3b:ab:1f:45:a7: 03:4e:f8:84:e5:99:f9:b4:b3:8d:d0:cc:10:ff:40:7f:0f:a8: 66:52:42:6f:63:ff:7c:16:f1:af:e9:90:11:8b:6b:d1:8d:a6: cb:aa:20:a9:c6:68:f5:d2:07:d2:f5:20:99:38:63:2c:e2:d6: f4:72:f9:16:a0:00:7a:b7:14:b0:5c:c6:26:3d:14:72:a2:df: 7a:c4:ad:25:e9:f4:0e:90:f3:a4:d0:6f:c6:f2:cd:2b:ca:c0: 01:3e:19:16:3e:83:01:64:6e:88:9e:3d:56:43:58:e9:11:c6: cf:f3:33:46:5a:88:7f:ad:17:e0:ea:96:d6:88:c2:fe:98:c4: 12:a2:ce:39:c2:be:df:80:98:f6:f0:15:8e:3d:e3:1b:da:8a: d8:8a:e5:01:01:84:d7:fa:35:6e:e3:f4:f8:f5:3c:76:85:6f: 3d:2b:7e:39:3d:8f:3c:55:0f:97:27:1b:69:d6:c5:91:50:44: a5:e4:78:22:1b:d8:b1:94:72:e8:ec:1e:8c:a5:ec:c9:d3:90: 74:a4:92:80:cb:c6:c8:31:eb:cd:75:67:d9:97:20:c5:bd:d5: 2c:a1:90:91:5c:5f:36:40:11:56:85:1f:ca:f0:b9:1d:d7:cb: a9:ef:67:ee -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUCESTzmB8lneONylbJr7Pa/VKP9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNjAzMTcwODU4MjRaFw0yNzAzMTYwOTAzMjRaMDMxMTAvBgNV BAMTKENGQjY0NTMzQTA4MjhERTg4N0QzOUI5RkJDMzREMDJDQjlBQkMzMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRbmAETVzPGqQJ/qAufCeW6MQ8 QDt+F7xMDtRnFf2khVNTYyfdv8qI1JxI9+YLzmp/1uICwV+cG8a9iC0rA6gIvHBP MqU2g/uHHVju/7yGclbOizGcS3qf/UaLHlU2389ZBWxUdWacrrk4nvAmHuCsA7Ru oPyx29jjFhq6VEb/Au++ddMB1laBfv4txtdOfLoWvdJaSRNpusVUuwOvdlILwTlK pY7BU5WCyDUlXNy5Xn3KRsL0VWxVAjF+fxTJWEvWZf6i44WQ2B5P/sYQND4wFD75 2xuvMLQmPoiptYfYLz++JRA9xMwfLe7Fgb0NKQom+UxpqkC1PK31dHyyzolxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUz7ZFM6CCjeiH05ufvDTQLLmrwycwHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmE0OTYwODItYTBhYS00ODM2LWI1 ODctOTczZGQ3ZTI5N2FmLzAvMzEzMDMzMmUzNzMxMmUzODJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnRwgwDQYJKoZIhvcNAQEL BQADggEBABeNnd8n/Ch2wpUhkS07qx9FpwNO+ITlmfm0s43QzBD/QH8PqGZSQm9j /3wW8a/pkBGLa9GNpsuqIKnGaPXSB9L1IJk4Yyzi1vRy+RagAHq3FLBcxiY9FHKi 33rErSXp9A6Q86TQb8byzSvKwAE+GRY+gwFkboiePVZDWOkRxs/zM0ZaiH+tF+Dq ltaIwv6YxBKizjnCvt+AmPbwFY494xvaitiK5QEBhNf6NW7j9Pj1PHaFbz0rfjk9 jzxVD5cnG2nWxZFQRKXkeCIb2LGUcujsHoyl7MnTkHSkkoDLxsgx6811Z9mXIMW9 1SyhkJFcXzZAEVaFH8rwuR3Xy6nvZ+4= -----END CERTIFICATE-----Generated at Thu Mar 19 11:27:08 2026 by rpki-client