$ rpki-client -vvf repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa File: 3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa (raw, json) Hash identifier: X3HIEEwQlR4yfqmx+zkvxJkm3aSOmIor+tLiUzbXopk= Subject key identifier: 0C:A9:A7:37:90:AE:E0:24:C8:D0:BE:DB:BC:E6:5F:D4:22:D1:3D:24 Certificate issuer: /CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Certificate serial: 291F61C31306A7CAA475ADBCA7A7847EF4A66C87 Authority key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa Signing time: Tue 03 Mar 2026 12:00:02 +0000 ROA not before: Tue 03 Mar 2026 11:55:02 +0000 ROA not after: Tue 02 Mar 2027 12:00:02 +0000 asID: 140423 IP address blocks: 103.191.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 17:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:1f:61:c3:13:06:a7:ca:a4:75:ad:bc:a7:a7:84:7e:f4:a6:6c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Validity Not Before: Mar 3 11:55:02 2026 GMT Not After : Mar 2 12:00:02 2027 GMT Subject: CN=0CA9A73790AEE024C8D0BEDBBCE65FD422D13D24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:05:86:38:a8:aa:4b:8e:35:5d:c5:22:bd:ad: 81:2e:0d:70:0a:b2:2e:b1:8d:e2:fc:18:d5:99:64: 2c:87:16:ad:96:47:12:0e:6b:7c:46:97:6a:f5:a9: e3:a9:17:ac:f5:4f:61:fb:e5:70:26:40:b8:57:6d: d7:94:06:0f:8c:c0:04:aa:39:b5:34:ca:dc:f1:d8: 8a:da:30:02:a6:b8:23:30:d2:73:0b:f4:68:3e:01: 7a:e6:82:fb:b6:f3:f5:d9:de:17:7a:6c:4b:a2:85: 82:39:c4:72:84:a7:34:fb:cf:8d:a7:77:fb:b7:73: 4c:fe:26:92:b2:5c:81:29:78:66:68:b7:f6:82:e6: 3d:b4:5e:df:24:67:97:99:f9:1b:fd:6a:7b:0c:31: a3:9c:42:f6:ac:bd:86:a3:b8:27:56:f4:5d:ba:18: e3:85:d2:4d:64:82:d7:c6:0a:b1:e5:ff:4e:8b:45: 93:07:2c:12:12:5f:1d:27:ab:11:5b:c5:aa:9e:ff: d1:fa:30:d4:c7:a6:af:9a:12:38:28:a7:82:27:ac: c1:1d:0b:cd:38:74:c9:c5:8e:48:91:45:11:23:31: 0b:14:e2:0c:0c:ef:10:94:31:74:e9:8a:95:ba:5a: 2c:49:4e:ab:99:b4:4d:e2:79:46:37:9f:06:77:36: a7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A9:A7:37:90:AE:E0:24:C8:D0:BE:DB:BC:E6:5F:D4:22:D1:3D:24 X509v3 Authority Key Identifier: keyid:2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/24 Signature Algorithm: sha256WithRSAEncryption 98:e3:f6:52:34:af:b6:a0:12:c9:07:9a:57:6c:a1:23:c7:e0: dd:17:63:2f:3b:ac:77:d0:54:03:e7:3c:36:1c:31:23:41:16: 12:ce:b1:67:8b:82:13:0e:be:bd:92:51:dd:e6:97:3f:da:f4: bd:f7:fc:79:d3:30:52:74:1a:bd:25:dc:b8:fb:3f:7b:a0:e8: 57:d8:03:86:8a:2b:06:64:5c:07:f8:50:50:80:a0:4b:60:61: 97:4f:dc:29:76:19:5e:7e:c4:07:b6:33:3d:a0:ea:b3:3a:5f: c9:55:37:c4:52:c8:ba:e2:36:50:2d:50:bc:2b:ed:da:81:d6: 58:bc:09:94:f8:8e:5b:00:c0:8a:95:89:46:50:25:9e:e2:92: 3a:2a:cb:8d:0d:93:a5:44:86:47:40:2d:0f:aa:45:66:be:95: 22:ef:f0:7b:20:55:41:26:70:93:90:94:43:59:05:d9:27:29: 72:91:22:7a:c7:6f:cd:b3:7d:33:56:b4:59:9d:b0:8a:7a:b8: a3:e7:da:97:7d:a5:2c:74:7c:c7:d0:fc:0e:88:4a:66:e0:88: 01:18:03:97:af:72:12:5e:57:70:13:e1:a4:14:71:ed:5a:8b: 0a:69:c6:e8:8c:6c:fb:b3:64:6d:c7:97:02:b5:c6:2a:e0:fc: c8:69:68:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKR9hwxMGp8qkda28p6eEfvSmbIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1 RjMyQ0VCNTAeFw0yNjAzMDMxMTU1MDJaFw0yNzAzMDIxMjAwMDJaMDMxMTAvBgNV BAMTKDBDQTlBNzM3OTBBRUUwMjRDOEQwQkVEQkJDRTY1RkQ0MjJEMTNEMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2BYY4qKpLjjVdxSK9rYEuDXAK si6xjeL8GNWZZCyHFq2WRxIOa3xGl2r1qeOpF6z1T2H75XAmQLhXbdeUBg+MwASq ObU0ytzx2IraMAKmuCMw0nML9Gg+AXrmgvu28/XZ3hd6bEuihYI5xHKEpzT7z42n d/u3c0z+JpKyXIEpeGZot/aC5j20Xt8kZ5eZ+Rv9ansMMaOcQvasvYajuCdW9F26 GOOF0k1kgtfGCrHl/06LRZMHLBISXx0nqxFbxaqe/9H6MNTHpq+aEjgop4InrMEd C804dMnFjkiRRREjMQsU4gwM7xCUMXTpipW6WixJTquZtE3ieUY3nwZ3Nqd3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDKmnN5Cu4CTI0L7bvOZf1CLRPSQwHwYDVR0j BBgwFoAULW+W+mMOp64KKxIrbwTMT18yzrUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMC8yRDZGOTZGQTYz MEVBN0FFMEEyQjEyMkI2RjA0Q0M0RjVGMzJDRUI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1RjMy Q0VCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4LTM0YWYtNDc1Ny04 YWQ5LTkyZGEzNWQ5MjE2OC8wLzMxMzAzMzJlMzEzOTMxMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ788MA0GCSqG SIb3DQEBCwUAA4IBAQCY4/ZSNK+2oBLJB5pXbKEjx+DdF2MvO6x30FQD5zw2HDEj QRYSzrFni4ITDr69klHd5pc/2vS99/x50zBSdBq9Jdy4+z97oOhX2AOGiisGZFwH +FBQgKBLYGGXT9wpdhlefsQHtjM9oOqzOl/JVTfEUsi64jZQLVC8K+3agdZYvAmU +I5bAMCKlYlGUCWe4pI6KsuNDZOlRIZHQC0PqkVmvpUi7/B7IFVBJnCTkJRDWQXZ JylykSJ6x2/Ns30zVrRZnbCKerij59qXfaUsdHzH0PwOiEpm4IgBGAOXr3ISXldw E+GkFHHtWosKacbojGz7s2Rtx5cCtcYq4PzIaWg6 -----END CERTIFICATE-----Generated at Sun Mar 22 07:57:44 2026 by rpki-client