$ rpki-client -vvf repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa File: 3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: gNg3pSVKH2ZGTQUKj2gYHIgoAzjmyWJ8bVXnPWnC+00= Subject key identifier: 82:54:72:F5:75:DA:BD:9C:94:00:95:43:FE:4C:7E:B2:F0:16:70:84 Certificate issuer: /CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Certificate serial: 212A44D602B82D044477B47393F2156763DA7F16 Authority key identifier: C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa Signing time: Thu 29 Jan 2026 14:00:02 +0000 ROA not before: Thu 29 Jan 2026 13:55:02 +0000 ROA not after: Thu 28 Jan 2027 14:00:02 +0000 asID: 58369 IP address blocks: 103.167.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Mar 2026 12:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2a:44:d6:02:b8:2d:04:44:77:b4:73:93:f2:15:67:63:da:7f:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Validity Not Before: Jan 29 13:55:02 2026 GMT Not After : Jan 28 14:00:02 2027 GMT Subject: CN=825472F575DABD9C94009543FE4C7EB2F0167084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:f9:b8:bb:29:33:99:8b:0e:a7:23:3d:73:72: 5a:b2:7d:a4:6d:1e:fb:85:0f:c7:d7:d5:ab:37:6b: 4c:cb:e3:49:4b:2c:2a:68:e9:36:ce:e4:bd:b2:13: 69:94:96:c7:5b:7b:c4:14:40:52:c4:11:4e:11:cb: a4:0a:50:04:07:ff:4c:0f:25:91:46:58:bd:9a:76: a2:09:39:0a:d9:d2:22:88:7a:ce:aa:0b:a6:53:fc: 10:d8:80:c2:20:7d:a0:43:b5:45:ed:86:7e:ba:29: 65:92:77:b0:b8:21:e7:69:bd:75:75:fd:d1:e6:3f: 64:7e:e9:3f:f6:c1:05:cb:aa:25:a1:65:64:f0:91: 4b:42:b2:09:a7:c6:ec:a9:d6:a4:12:f7:3a:26:c3: ba:63:9a:fa:24:fa:c2:2e:00:59:cd:78:0a:82:6f: 2e:ee:e3:f8:9e:7f:c0:51:21:b0:49:94:5a:7e:02: 1c:a0:d6:f5:0a:04:98:81:ff:d9:77:fd:46:57:c1: b2:3b:6c:dd:94:ad:ed:43:23:2b:96:02:ec:82:cc: c4:71:fe:4a:fa:b6:b0:4f:cd:6f:bf:18:0c:cf:dd: 69:65:24:39:29:a8:c5:a0:0f:96:66:91:5d:c2:76: 33:ea:af:30:7f:75:7a:03:7a:31:56:30:a9:c8:3e: 00:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:54:72:F5:75:DA:BD:9C:94:00:95:43:FE:4C:7E:B2:F0:16:70:84 X509v3 Authority Key Identifier: keyid:C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.106.0/23 Signature Algorithm: sha256WithRSAEncryption 10:39:ba:fa:a5:27:76:fd:60:73:34:d9:15:69:54:db:7c:e6: 5b:b5:11:07:88:88:4b:d9:97:85:64:5d:8d:0d:19:80:80:c3: c6:53:b1:ae:55:00:17:fa:86:40:03:b6:10:fa:9d:e3:2e:ec: ff:2d:34:0b:bb:fa:30:af:0c:01:de:85:f6:22:09:fd:73:87: 39:f7:47:46:af:12:57:49:f4:f9:74:01:96:dd:54:2d:e7:f5: c7:f2:97:4f:82:f7:c7:d0:6d:43:64:3f:98:ee:ed:5c:36:74: 6a:a6:0e:0e:c1:26:24:ca:2f:98:03:06:d7:75:f1:c2:1f:fa: 7d:78:25:1d:87:6c:8d:54:70:70:0e:16:73:2a:dc:7b:f2:e4: 95:a2:68:89:4c:67:fc:0b:95:56:67:bc:52:f7:03:f0:13:2b: 23:90:12:f9:57:ce:91:12:69:ec:6a:64:e8:46:71:2d:25:b5: e7:65:fb:c5:60:9a:84:40:54:5e:8a:df:9c:d4:d2:0b:90:db: 2d:6c:d6:d2:b8:ff:7b:97:b0:6c:3e:d1:c6:22:0f:57:d7:a9: d6:65:fa:39:c6:8c:9e:99:88:3e:1b:45:20:72:f0:be:fa:fd: cf:10:3c:a2:f0:57:f0:75:91:f3:01:e3:b0:1c:4e:9a:72:bb: 0c:f8:fb:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUISpE1gK4LQREd7Rzk/IVZ2PafxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIy QzBFMkUwNTAeFw0yNjAxMjkxMzU1MDJaFw0yNzAxMjgxNDAwMDJaMDMxMTAvBgNV BAMTKDgyNTQ3MkY1NzVEQUJEOUM5NDAwOTU0M0ZFNEM3RUIyRjAxNjcwODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3+bi7KTOZiw6nIz1zclqyfaRt HvuFD8fX1as3a0zL40lLLCpo6TbO5L2yE2mUlsdbe8QUQFLEEU4Ry6QKUAQH/0wP JZFGWL2adqIJOQrZ0iKIes6qC6ZT/BDYgMIgfaBDtUXthn66KWWSd7C4IedpvXV1 /dHmP2R+6T/2wQXLqiWhZWTwkUtCsgmnxuyp1qQS9zomw7pjmvok+sIuAFnNeAqC by7u4/ief8BRIbBJlFp+Ahyg1vUKBJiB/9l3/UZXwbI7bN2Ure1DIyuWAuyCzMRx /kr6trBPzW+/GAzP3WllJDkpqMWgD5ZmkV3CdjPqrzB/dXoDejFWMKnIPgBpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUglRy9XXavZyUAJVD/kx+svAWcIQwHwYDVR0j BBgwFoAUyKwiEqJy7OrojVIyByV4kiwOLgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODFlOTIzOC00MjY3LTQ4ZWYtYjAyZS0xZDdkMDQ0MDA5NDEvMC9DOEFDMjIxMkEy NzJFQ0VBRTg4RDUyMzIwNzI1Nzg5MjJDMEUyRTA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIyQzBF MkUwNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MWU5MjM4LTQyNjctNDhlZi1i MDJlLTFkN2QwNDQwMDk0MS8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6dqMA0GCSqG SIb3DQEBCwUAA4IBAQAQObr6pSd2/WBzNNkVaVTbfOZbtREHiIhL2ZeFZF2NDRmA gMPGU7GuVQAX+oZAA7YQ+p3jLuz/LTQLu/owrwwB3oX2Ign9c4c590dGrxJXSfT5 dAGW3VQt5/XH8pdPgvfH0G1DZD+Y7u1cNnRqpg4OwSYkyi+YAwbXdfHCH/p9eCUd h2yNVHBwDhZzKtx78uSVomiJTGf8C5VWZ7xS9wPwEysjkBL5V86REmnsamToRnEt JbXnZfvFYJqEQFReit+c1NILkNstbNbSuP97l7BsPtHGIg9X16nWZfo5xoyemYg+ G0UgcvC++v3PEDyi8FfwdZHzAeOwHE6acrsM+Pts -----END CERTIFICATE-----Generated at Fri Feb 27 01:59:57 2026 by rpki-client