$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3130332e3235332e38362e302f32332d3234203d3e2039333431.roa File: 3130332e3235332e38362e302f32332d3234203d3e2039333431.roa (raw, json) Hash identifier: hThF19mt74DY1f1VemaQVNh5jPwKKf3Whg8i2+7wT7Y= Subject key identifier: BA:89:34:57:5D:7C:EE:B9:6D:B5:C7:58:33:2D:37:00:D4:AF:33:B5 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 233B7AD28C4E144657BC555D5F9A6BC82BACE30F Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3130332e3235332e38362e302f32332d3234203d3e2039333431.roa Signing time: Wed 04 Mar 2026 09:02:42 +0000 ROA not before: Wed 04 Mar 2026 08:57:42 +0000 ROA not after: Wed 03 Mar 2027 09:02:42 +0000 asID: 9341 IP address blocks: 103.253.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 12:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:3b:7a:d2:8c:4e:14:46:57:bc:55:5d:5f:9a:6b:c8:2b:ac:e3:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Mar 4 08:57:42 2026 GMT Not After : Mar 3 09:02:42 2027 GMT Subject: CN=BA8934575D7CEEB96DB5C758332D3700D4AF33B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d4:bd:ef:66:b6:67:3e:e7:25:31:32:6a:cc: 99:b0:28:2e:e5:3c:9a:ab:82:b3:f0:b6:30:bc:4a: 32:c1:e1:61:49:e6:51:96:db:73:84:84:83:ff:50: f4:99:f5:ab:50:f4:53:ca:8b:24:c5:44:aa:aa:57: 77:ff:52:57:70:00:9f:47:f7:45:13:c1:dc:1e:0e: ce:0b:2e:fe:29:0c:af:e2:b0:81:5f:63:ad:e5:0d: 18:86:44:f2:cd:4b:67:f4:cf:15:b4:1b:13:08:d1: 85:8b:7e:a6:96:5a:83:cb:c7:0c:67:c1:b2:1c:09: 3c:45:17:95:c9:67:2a:d4:68:0f:b8:0b:78:6f:d7: e4:9c:fe:8e:4b:49:0b:c8:59:34:2b:91:28:82:e1: e3:01:e6:3c:ed:e9:a4:21:a9:fc:14:f0:9a:f7:1f: 60:4e:d6:ae:93:4b:a1:95:12:4c:12:43:ee:30:c2: fd:2d:d6:7c:d9:2d:36:26:8f:f0:fc:f6:be:80:c1: 05:b0:54:16:06:33:1b:c8:a1:35:fc:0a:2e:e4:f1: ad:29:cf:5d:3c:97:57:c0:fb:28:76:13:9e:d6:da: bc:49:5a:cf:9a:a4:e6:e9:99:40:a6:02:f4:63:3a: 16:0c:9f:c9:d4:f7:8d:ba:7d:bf:43:56:ad:16:8c: c9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:89:34:57:5D:7C:EE:B9:6D:B5:C7:58:33:2D:37:00:D4:AF:33:B5 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3130332e3235332e38362e302f32332d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.86.0/23 Signature Algorithm: sha256WithRSAEncryption 29:12:fb:41:38:e1:79:bb:bc:15:44:41:33:a3:ee:1a:04:01: ab:86:49:29:67:8f:74:da:65:3c:1c:43:ad:67:0a:ac:0d:55: d7:f8:c5:b5:9b:a6:b7:76:6e:4b:1b:37:34:03:91:0f:fa:e1: 9e:b4:69:36:5e:31:e6:dc:50:36:a0:55:43:e0:12:5f:16:f9: 9d:e8:e5:a4:e2:5c:57:c7:e7:9d:fd:4b:88:75:cd:e8:df:02: ac:c0:33:86:c5:11:d4:6e:7c:79:e1:05:c0:d8:f0:c3:ae:a6: b3:d5:8a:04:ba:f7:c3:cd:7d:c3:f8:2e:02:6c:9c:27:50:6d: f0:7f:0c:16:2d:45:0a:a2:9b:67:dd:cb:a0:42:00:21:c3:26: 1b:0a:3f:72:2a:3e:63:aa:71:2a:90:4a:20:fc:81:bf:33:04: 18:d1:41:f0:30:f9:9b:75:a6:a4:28:74:e7:33:85:b1:79:86: d0:61:27:a5:83:72:1a:c4:94:ab:d5:bf:af:8a:6b:3a:d3:b2: 0b:8e:9b:2a:26:1d:58:55:09:d0:29:79:7c:3f:c9:bb:1b:83: 60:7a:41:16:e3:69:1d:6d:99:7f:ac:17:08:f7:94:6d:50:1a: aa:9b:07:20:de:3a:d0:43:27:95:94:e9:4b:48:9d:bc:65:50: 50:c9:39:0f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIzt60oxOFEZXvFVdX5pryCus4w8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjAzMDQwODU3NDJaFw0yNzAzMDMwOTAyNDJaMDMxMTAvBgNV BAMTKEJBODkzNDU3NUQ3Q0VFQjk2REI1Qzc1ODMzMkQzNzAwRDRBRjMzQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS1L3vZrZnPuclMTJqzJmwKC7l PJqrgrPwtjC8SjLB4WFJ5lGW23OEhIP/UPSZ9atQ9FPKiyTFRKqqV3f/UldwAJ9H 90UTwdweDs4LLv4pDK/isIFfY63lDRiGRPLNS2f0zxW0GxMI0YWLfqaWWoPLxwxn wbIcCTxFF5XJZyrUaA+4C3hv1+Sc/o5LSQvIWTQrkSiC4eMB5jzt6aQhqfwU8Jr3 H2BO1q6TS6GVEkwSQ+4wwv0t1nzZLTYmj/D89r6AwQWwVBYGMxvIoTX8Ci7k8a0p z108l1fA+yh2E57W2rxJWs+apObpmUCmAvRjOhYMn8nU9426fb9DVq0WjMnxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuok0V1187rlttcdYMy03ANSvM7UwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzAzMzJlMzIzNTMzMmUzODM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn/VYwDQYJKoZIhvcN AQELBQADggEBACkS+0E44Xm7vBVEQTOj7hoEAauGSSlnj3TaZTwcQ61nCqwNVdf4 xbWbprd2bksbNzQDkQ/64Z60aTZeMebcUDagVUPgEl8W+Z3o5aTiXFfH5539S4h1 zejfAqzAM4bFEdRufHnhBcDY8MOuprPVigS698PNfcP4LgJsnCdQbfB/DBYtRQqi m2fdy6BCACHDJhsKP3IqPmOqcSqQSiD8gb8zBBjRQfAw+Zt1pqQodOczhbF5htBh J6WDchrElKvVv6+KazrTsguOmyomHVhVCdApeXw/ybsbg2B6QRbjaR1tmX+sFwj3 lG1QGqqbByDeOtBDJ5WU6UtInbxlUFDJOQ8= -----END CERTIFICATE-----Generated at Fri Mar 20 10:55:12 2026 by rpki-client