$ rpki-client -vvf repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa File: 3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa (raw, json) Hash identifier: yThEaj9cxtdok/5GUXj7+kkX5Xj5C+3r/fUIRdcZf5k= Subject key identifier: FE:26:66:E3:5C:BA:55:8D:18:D4:17:4A:DE:B4:92:F4:D0:7B:EE:34 Certificate issuer: /CN=1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B Certificate serial: 1AFCB95A8A69C101B407EDB80DCF484181413B41 Authority key identifier: 1D:21:38:5E:B5:B3:F8:2C:7D:1A:B5:C7:FD:3E:F2:7B:E8:E8:3A:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa Signing time: Mon 16 Mar 2026 08:03:20 +0000 ROA not before: Mon 16 Mar 2026 07:58:20 +0000 ROA not after: Mon 15 Mar 2027 08:03:20 +0000 asID: 149716 IP address blocks: 103.186.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.crl rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 08:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:fc:b9:5a:8a:69:c1:01:b4:07:ed:b8:0d:cf:48:41:81:41:3b:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B Validity Not Before: Mar 16 07:58:20 2026 GMT Not After : Mar 15 08:03:20 2027 GMT Subject: CN=FE2666E35CBA558D18D4174ADEB492F4D07BEE34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ad:fe:03:7f:de:d8:b9:50:08:88:e4:0a:d2: cb:94:43:2e:61:6a:e2:c7:9a:f3:c4:91:64:b8:0b: b9:25:cc:cf:18:eb:54:45:cb:48:90:3a:3a:52:02: e8:96:ae:68:ac:09:3a:01:93:a2:bc:0a:c9:b8:91: fb:9e:08:4d:f9:0d:bf:7a:fa:ae:2c:0e:1e:a2:89: 72:b2:69:da:0e:12:97:f6:96:0e:b0:37:36:6d:a0: 28:1f:b7:24:1f:8c:7e:57:26:5c:53:c3:f6:8b:02: c4:00:24:b9:29:8a:68:0a:85:62:ba:92:ea:a9:c2: 24:a1:c2:85:cc:ed:f6:e6:54:c8:14:53:9a:18:a1: ae:e0:48:52:08:7c:1e:bd:ec:c8:a8:5c:e3:fd:b2: 78:f4:e6:9d:70:e2:88:43:08:ac:df:79:e3:b1:ac: 57:b1:ad:fb:e8:39:75:ea:9d:95:40:46:78:e7:34: 1e:fd:6b:39:2d:dc:62:6f:dd:3c:75:fb:70:5d:55: 34:ff:5a:48:f7:62:90:d5:16:e0:53:2d:64:10:fa: d5:ce:d8:9b:dd:d1:bb:02:63:98:0b:c1:80:09:0a: 99:2a:0b:56:2d:4b:ce:b5:61:ff:8e:f2:e7:0d:8e: 18:82:14:c3:28:04:c8:6d:e8:89:80:be:c7:8d:5a: 81:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:26:66:E3:5C:BA:55:8D:18:D4:17:4A:DE:B4:92:F4:D0:7B:EE:34 X509v3 Authority Key Identifier: keyid:1D:21:38:5E:B5:B3:F8:2C:7D:1A:B5:C7:FD:3E:F2:7B:E8:E8:3A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.211.0/24 Signature Algorithm: sha256WithRSAEncryption 23:28:eb:85:b9:9b:99:eb:e5:75:44:ee:dd:87:42:6f:c9:44: 74:26:6f:46:89:4b:85:a8:ad:e0:86:3d:83:65:66:b8:11:fc: b9:dd:52:74:cd:9a:5d:ee:07:7b:24:8e:e7:9d:10:a5:34:55: b7:a4:74:51:39:f4:01:a8:14:71:63:25:38:a3:fc:9e:59:e6: 98:d1:ab:ca:29:fa:c0:29:07:8f:14:f0:e1:bf:2f:5d:59:4c: 36:37:77:53:d8:c7:61:f2:1b:60:79:18:b7:ad:ce:10:66:12: 31:8b:14:3c:c2:d9:b4:0c:4c:c6:62:59:d6:e0:27:34:6a:e6: 82:fb:c4:36:57:2e:45:f1:3c:83:df:3b:86:33:b4:30:7d:8c: ff:41:05:fc:f9:bb:fd:7e:88:85:6b:56:16:27:ca:de:e6:d3: 7e:8e:fd:83:0b:51:c1:c8:5e:b9:02:7a:30:f2:98:dc:7b:1d: c0:53:eb:11:f9:7c:78:60:81:df:2a:cb:1a:a5:68:47:c3:a7: 3d:9a:5a:d5:84:75:f0:68:f2:70:ea:6d:05:7f:6c:fa:37:5a: 4f:16:22:68:eb:b7:64:68:14:e8:c3:28:e6:b3:4a:b3:7f:a0: 3c:a2:5c:6e:55:52:2d:3c:16:8e:8c:94:c9:ea:d1:2b:3b:a5: d6:f3:3d:1f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGvy5WoppwQG0B+24Dc9IQYFBO0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQyMTM4NUVCNUIzRjgyQzdEMUFCNUM3RkQzRUYyN0JF OEU4M0E3QjAeFw0yNjAzMTYwNzU4MjBaFw0yNzAzMTUwODAzMjBaMDMxMTAvBgNV BAMTKEZFMjY2NkUzNUNCQTU1OEQxOEQ0MTc0QURFQjQ5MkY0RDA3QkVFMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1rf4Df97YuVAIiOQK0suUQy5h auLHmvPEkWS4C7klzM8Y61RFy0iQOjpSAuiWrmisCToBk6K8Csm4kfueCE35Db96 +q4sDh6iiXKyadoOEpf2lg6wNzZtoCgftyQfjH5XJlxTw/aLAsQAJLkpimgKhWK6 kuqpwiShwoXM7fbmVMgUU5oYoa7gSFIIfB697MioXOP9snj05p1w4ohDCKzfeeOx rFexrfvoOXXqnZVARnjnNB79azkt3GJv3Tx1+3BdVTT/Wkj3YpDVFuBTLWQQ+tXO 2Jvd0bsCY5gLwYAJCpkqC1YtS861Yf+O8ucNjhiCFMMoBMht6ImAvseNWoHLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/iZm41y6VY0Y1BdK3rSS9NB77jQwHwYDVR0j BBgwFoAUHSE4XrWz+Cx9GrXH/T7ye+joOnswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGRjZWY2NS01ZGUzLTQxMjktYWMyNy03NzA2ZDcyNjYwMDEvMC8xRDIxMzg1RUI1 QjNGODJDN0QxQUI1QzdGRDNFRjI3QkU4RTgzQTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQyMTM4NUVCNUIzRjgyQzdEMUFCNUM3RkQzRUYyN0JFOEU4 M0E3Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0ZGNlZjY1LTVkZTMtNDEyOS1h YzI3LTc3MDZkNzI2NjAwMS8wLzMxMzAzMzJlMzEzODM2MmUzMjMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnutMwDQYJ KoZIhvcNAQELBQADggEBACMo64W5m5nr5XVE7t2HQm/JRHQmb0aJS4WoreCGPYNl ZrgR/LndUnTNml3uB3skjuedEKU0VbekdFE59AGoFHFjJTij/J5Z5pjRq8op+sAp B48U8OG/L11ZTDY3d1PYx2HyG2B5GLetzhBmEjGLFDzC2bQMTMZiWdbgJzRq5oL7 xDZXLkXxPIPfO4YztDB9jP9BBfz5u/1+iIVrVhYnyt7m036O/YMLUcHIXrkCejDy mNx7HcBT6xH5fHhggd8qyxqlaEfDpz2aWtWEdfBo8nDqbQV/bPo3Wk8WImjrt2Ro FOjDKOazSrN/oDyiXG5VUi08Fo6MlMnq0Ss7pdbzPR8= -----END CERTIFICATE-----Generated at Thu Mar 19 10:57:17 2026 by rpki-client