$ rpki-client -vvf repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/3130332e3136342e35382e302f32342d3234203d3e20313431393130.roa File: 3130332e3136342e35382e302f32342d3234203d3e20313431393130.roa (raw, json) Hash identifier: Ztu1zC4P//Wr/D7wJOmEtvMGkjEYCJfDGpTLJpsLi2U= Subject key identifier: 8C:3A:B1:96:C4:E6:15:F6:46:45:FC:13:B7:86:99:BD:4D:DC:96:F7 Certificate issuer: /CN=F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F Certificate serial: 3084679DE81DEE66104A89DB72C848BC68D9B97E Authority key identifier: F1:BD:A5:72:CF:8D:79:20:C2:10:DB:CA:14:54:B1:90:4F:1C:1D:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/3130332e3136342e35382e302f32342d3234203d3e20313431393130.roa Signing time: Tue 10 Mar 2026 05:00:01 +0000 ROA not before: Tue 10 Mar 2026 04:55:01 +0000 ROA not after: Tue 09 Mar 2027 05:00:01 +0000 asID: 141910 IP address blocks: 103.164.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.crl rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 10:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:84:67:9d:e8:1d:ee:66:10:4a:89:db:72:c8:48:bc:68:d9:b9:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F Validity Not Before: Mar 10 04:55:01 2026 GMT Not After : Mar 9 05:00:01 2027 GMT Subject: CN=8C3AB196C4E615F64645FC13B78699BD4DDC96F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:2e:8b:a2:a8:5c:94:4f:66:3d:f8:75:94: 8e:69:3b:a0:f6:21:8f:5b:a5:c4:a8:e8:be:33:28: 00:c1:e9:ad:64:fc:bc:6f:4a:98:76:0c:b4:af:0e: 41:4b:cd:7d:80:6d:65:fa:6a:71:e8:0f:6b:9e:62: 6b:b9:49:92:05:36:6d:47:71:12:84:1e:13:63:ef: 49:1f:ee:4f:85:05:b7:b7:3f:d9:2b:91:54:1c:b4: 90:5b:40:25:78:a2:a7:17:fe:dd:4c:ad:ae:53:1f: 23:6b:99:22:39:2f:52:26:81:fe:a1:1b:9e:ad:f3: 98:f4:7a:65:b4:e5:99:90:30:8d:8c:3c:71:94:e6: f7:f8:98:82:76:92:03:9e:54:9b:cb:04:1c:a0:16: ca:86:6f:a3:65:05:64:73:2f:02:0b:93:4d:95:df: 22:3d:39:f7:2e:bf:48:a5:b0:af:32:9a:77:9e:29: 48:8f:3d:b0:b6:f9:6b:c1:49:76:0a:03:c4:b8:f3: c7:05:7e:e6:63:b5:02:7b:67:7c:db:b2:37:25:71: 13:fc:68:8d:ba:1f:df:05:ea:26:36:ad:04:f4:b6: 0a:32:db:b2:d8:62:d0:49:52:4f:b9:fa:72:92:48: 49:3e:0d:ed:f4:2e:a5:d9:fd:bf:bc:fb:57:25:9e: b6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:3A:B1:96:C4:E6:15:F6:46:45:FC:13:B7:86:99:BD:4D:DC:96:F7 X509v3 Authority Key Identifier: keyid:F1:BD:A5:72:CF:8D:79:20:C2:10:DB:CA:14:54:B1:90:4F:1C:1D:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/3130332e3136342e35382e302f32342d3234203d3e20313431393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.58.0/24 Signature Algorithm: sha256WithRSAEncryption ac:c6:57:5f:5a:14:7f:37:a1:89:1c:37:3c:1a:4b:c0:dc:25: 45:48:79:3d:48:fe:c2:f9:d0:d2:46:bf:14:59:ec:c5:45:ef: d2:78:80:51:b4:b6:15:51:eb:e3:85:ea:25:07:b2:6a:b2:a6: de:61:18:66:a6:fa:03:b6:2b:2b:06:cf:c4:96:67:66:a9:db: 5a:2f:6d:0a:17:37:fc:7c:1f:c7:ac:61:ed:a1:d2:69:fe:76: 3e:9d:5e:04:79:61:5c:13:a3:db:45:97:3b:ca:13:a4:c5:3a: 1a:3c:07:37:2c:e0:31:61:87:86:f5:57:73:6c:d9:10:f4:e1: f7:9a:e9:08:74:d4:0e:2d:c3:d9:7f:35:50:5a:bf:60:eb:05: 26:b4:86:87:7b:93:d0:e6:c8:4d:bb:55:53:4e:3b:4d:aa:4d: 08:f0:04:15:e8:a7:d3:7b:33:15:a6:d9:af:4b:c5:37:ab:20: 50:8b:c8:24:eb:30:93:e0:df:07:56:cc:ab:f6:2d:f1:81:05: 11:0c:4b:c3:c5:b0:dc:a5:3c:ac:c4:8b:f4:65:64:23:73:ba: ec:15:56:5e:22:aa:4f:94:de:48:ea:8d:16:99:f6:d6:fb:3e: a2:be:8d:67:ff:a4:bf:ec:7e:a0:9f:45:95:90:77:38:83:8f: 22:f3:7a:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMIRnnegd7mYQSonbcshIvGjZuX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCREE1NzJDRjhENzkyMEMyMTBEQkNBMTQ1NEIxOTA0 RjFDMUQ1RjAeFw0yNjAzMTAwNDU1MDFaFw0yNzAzMDkwNTAwMDFaMDMxMTAvBgNV BAMTKDhDM0FCMTk2QzRFNjE1RjY0NjQ1RkMxM0I3ODY5OUJENEREQzk2RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8IC6LoqhclE9mPfh1lI5pO6D2 IY9bpcSo6L4zKADB6a1k/LxvSph2DLSvDkFLzX2AbWX6anHoD2ueYmu5SZIFNm1H cRKEHhNj70kf7k+FBbe3P9krkVQctJBbQCV4oqcX/t1Mra5THyNrmSI5L1Imgf6h G56t85j0emW05ZmQMI2MPHGU5vf4mIJ2kgOeVJvLBBygFsqGb6NlBWRzLwILk02V 3yI9Ofcuv0ilsK8ymneeKUiPPbC2+WvBSXYKA8S488cFfuZjtQJ7Z3zbsjclcRP8 aI26H98F6iY2rQT0tgoy27LYYtBJUk+5+nKSSEk+De30LqXZ/b+8+1clnrZvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjDqxlsTmFfZGRfwTt4aZvU3clvcwHwYDVR0j BBgwFoAU8b2lcs+NeSDCENvKFFSxkE8cHV8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTAxY2RmOS01MmUxLTRjOTgtOWFiMy1hZmI3MGZhYzM3N2MvMC9GMUJEQTU3MkNG OEQ3OTIwQzIxMERCQ0ExNDU0QjE5MDRGMUMxRDVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCREE1NzJDRjhENzkyMEMyMTBEQkNBMTQ1NEIxOTA0RjFD MUQ1Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1MDFjZGY5LTUyZTEtNGM5OC05 YWIzLWFmYjcwZmFjMzc3Yy8wLzMxMzAzMzJlMzEzNjM0MmUzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6Q6MA0GCSqG SIb3DQEBCwUAA4IBAQCsxldfWhR/N6GJHDc8GkvA3CVFSHk9SP7C+dDSRr8UWezF Re/SeIBRtLYVUevjheolB7JqsqbeYRhmpvoDtisrBs/ElmdmqdtaL20KFzf8fB/H rGHtodJp/nY+nV4EeWFcE6PbRZc7yhOkxToaPAc3LOAxYYeG9VdzbNkQ9OH3mukI dNQOLcPZfzVQWr9g6wUmtIaHe5PQ5shNu1VTTjtNqk0I8AQV6KfTezMVptmvS8U3 qyBQi8gk6zCT4N8HVsyr9i3xgQURDEvDxbDcpTysxIv0ZWQjc7rsFVZeIqpPlN5I 6o0WmfbW+z6ivo1n/6S/7H6gn0WVkHc4g48i83oa -----END CERTIFICATE-----Generated at Thu Mar 19 10:43:35 2026 by rpki-client