$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa File: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: mkN2Di1lXcAcvFZosL2o50JJ0lMMeW14mF//8K93nec= Subject key identifier: 47:ED:2C:59:F6:23:C7:10:D9:3B:1E:22:52:22:E5:37:FB:D9:37:62 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 7BD732AC8C100EC99D0D8AD32493678C57A12B02 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa Signing time: Wed 04 Mar 2026 05:00:00 +0000 ROA not before: Wed 04 Mar 2026 04:55:00 +0000 ROA not after: Wed 03 Mar 2027 05:00:00 +0000 asID: 149883 IP address blocks: 103.189.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 22:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d7:32:ac:8c:10:0e:c9:9d:0d:8a:d3:24:93:67:8c:57:a1:2b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Mar 4 04:55:00 2026 GMT Not After : Mar 3 05:00:00 2027 GMT Subject: CN=47ED2C59F623C710D93B1E225222E537FBD93762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:75:94:cb:0e:97:0c:d7:21:d5:2f:94:1d:fc: dd:1e:27:ac:e4:8f:a5:4d:6a:e5:04:1e:2f:db:75: ec:33:13:14:21:5e:3c:d2:ed:59:ff:85:f8:ee:29: b0:1c:57:f9:55:22:4b:57:00:c9:1f:ea:29:3c:17: 6a:cd:42:aa:69:bc:16:61:56:46:57:ca:52:94:4d: 0c:4e:d9:ae:a8:e3:1b:96:6f:e1:6a:f6:73:c4:40: c2:00:30:5e:f5:64:d4:8f:e1:12:a9:28:b8:47:ed: 08:80:01:f7:5f:c8:8e:d0:b0:1c:41:11:78:08:b9: 51:e4:cf:79:8f:ce:fd:71:30:5d:35:02:e9:db:c2: f1:e1:c1:36:d2:cd:b6:5a:2e:d7:7c:9a:ea:1e:57: b5:8b:db:52:16:6f:41:2c:53:35:46:ce:8f:f8:d6: 71:18:1f:14:97:cb:8a:9d:65:7d:0b:66:57:34:74: 30:ff:d1:50:c5:ed:92:70:46:aa:a5:97:0c:dc:a4: ba:1a:e7:e1:f1:7c:36:77:7c:38:29:88:7d:36:fc: 3b:a9:26:4b:87:0c:b6:d6:2f:cb:ba:bb:f9:db:2b: 52:55:f0:d4:92:19:7d:8e:0d:c6:35:0f:7e:0e:fa: 70:81:c4:cb:eb:4b:de:6b:45:97:40:76:97:d7:1f: 17:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:ED:2C:59:F6:23:C7:10:D9:3B:1E:22:52:22:E5:37:FB:D9:37:62 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.119.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:f3:3f:01:d5:3f:b0:b8:5a:7b:f9:d2:29:14:d5:b7:78:9e: b3:42:ce:e6:86:06:8f:09:f6:28:06:c1:45:36:2c:5a:2a:d4: 9e:d8:02:b8:12:fb:68:62:f4:17:45:c0:b0:b9:da:f1:db:71: a7:d5:db:0b:37:11:9b:f4:bb:2b:eb:2d:e4:76:85:dd:c7:3f: ff:a1:bd:1b:6d:bc:dd:9b:43:0e:4d:47:4f:05:20:8d:a1:88: 77:7c:9c:d8:96:89:69:d5:dc:ca:24:a4:dd:7c:15:4d:14:dd: 42:36:d6:fc:1b:f8:11:a8:a2:b8:15:84:b6:4e:c5:56:16:89: 8e:d4:a7:ff:e6:30:41:dd:46:55:5d:93:ec:24:dd:b4:b5:26: f1:c6:a5:09:f5:3d:b8:cc:67:43:d9:5f:54:b6:3e:5a:e2:66: 41:06:02:8a:e4:76:5e:f3:52:48:e6:64:ef:e7:fb:a8:41:20: 30:5c:ba:5a:cb:c4:32:2f:f4:9b:31:9f:ed:bc:37:2f:87:75: 4a:75:b1:9f:9b:49:74:a9:12:af:c7:11:6a:16:a3:e0:10:da: b7:8d:28:e7:99:56:23:8a:df:59:e3:cb:e4:af:a6:01:e2:1a: 83:b2:53:be:31:14:bf:fb:fa:eb:25:34:1e:58:bb:0c:3c:42: b8:14:c2:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe9cyrIwQDsmdDYrTJJNnjFehKwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNjAzMDQwNDU1MDBaFw0yNzAzMDMwNTAwMDBaMDMxMTAvBgNV BAMTKDQ3RUQyQzU5RjYyM0M3MTBEOTNCMUUyMjUyMjJFNTM3RkJEOTM3NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTdZTLDpcM1yHVL5Qd/N0eJ6zk j6VNauUEHi/bdewzExQhXjzS7Vn/hfjuKbAcV/lVIktXAMkf6ik8F2rNQqppvBZh VkZXylKUTQxO2a6o4xuWb+Fq9nPEQMIAMF71ZNSP4RKpKLhH7QiAAfdfyI7QsBxB EXgIuVHkz3mPzv1xMF01AunbwvHhwTbSzbZaLtd8muoeV7WL21IWb0EsUzVGzo/4 1nEYHxSXy4qdZX0LZlc0dDD/0VDF7ZJwRqqllwzcpLoa5+HxfDZ3fDgpiH02/Dup JkuHDLbWL8u6u/nbK1JV8NSSGX2ODcY1D34O+nCBxMvrS95rRZdAdpfXHxfPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUR+0sWfYjxxDZOx4iUiLlN/vZN2IwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2LTY1NmQtNDYxZC05 Y2ZmLWM4M2FjMDc0MmYyMC8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXcwDQYJ KoZIhvcNAQELBQADggEBAC7zPwHVP7C4Wnv50ikU1bd4nrNCzuaGBo8J9igGwUU2 LFoq1J7YArgS+2hi9BdFwLC52vHbcafV2ws3EZv0uyvrLeR2hd3HP/+hvRttvN2b Qw5NR08FII2hiHd8nNiWiWnV3MokpN18FU0U3UI21vwb+BGoorgVhLZOxVYWiY7U p//mMEHdRlVdk+wk3bS1JvHGpQn1PbjMZ0PZX1S2PlriZkEGAorkdl7zUkjmZO/n +6hBIDBculrLxDIv9Jsxn+28Ny+HdUp1sZ+bSXSpEq/HEWoWo+AQ2reNKOeZViOK 31njy+SvpgHiGoOyU74xFL/7+uslNB5Yuww8QrgUwsk= -----END CERTIFICATE-----Generated at Thu Mar 19 11:34:50 2026 by rpki-client