$ rpki-client -vvf repo-rpki.idnic.net/repo/e8f3b37d-fe4d-436d-a93b-e1f6fcc9fc4d/0/3130332e3138372e39302e302f32342d3234203d3e20313439383839.roa File: 3130332e3138372e39302e302f32342d3234203d3e20313439383839.roa (raw, json) Hash identifier: TU/lPlfDzJtw35bEd20WHsVMGmXj/m5tHMEpU4CBLtI= Subject key identifier: 26:00:41:33:DF:94:A6:91:3B:CB:53:0D:5B:7D:60:E3:0F:6F:8E:20 Certificate issuer: /CN=439D16E03D05D5CECA2B7F135D2BBB1B30105057 Certificate serial: 0889CA01DCBB7B3A45B458DA5D647357084FB476 Authority key identifier: 43:9D:16:E0:3D:05:D5:CE:CA:2B:7F:13:5D:2B:BB:1B:30:10:50:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439D16E03D05D5CECA2B7F135D2BBB1B30105057.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e8f3b37d-fe4d-436d-a93b-e1f6fcc9fc4d/0/3130332e3138372e39302e302f32342d3234203d3e20313439383839.roa Signing time: Wed 04 Mar 2026 09:01:12 +0000 ROA not before: Wed 04 Mar 2026 08:56:12 +0000 ROA not after: Wed 03 Mar 2027 09:01:12 +0000 asID: 149889 IP address blocks: 103.187.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e8f3b37d-fe4d-436d-a93b-e1f6fcc9fc4d/0/439D16E03D05D5CECA2B7F135D2BBB1B30105057.crl rsync://repo-rpki.idnic.net/repo/e8f3b37d-fe4d-436d-a93b-e1f6fcc9fc4d/0/439D16E03D05D5CECA2B7F135D2BBB1B30105057.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439D16E03D05D5CECA2B7F135D2BBB1B30105057.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 05:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:89:ca:01:dc:bb:7b:3a:45:b4:58:da:5d:64:73:57:08:4f:b4:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=439D16E03D05D5CECA2B7F135D2BBB1B30105057 Validity Not Before: Mar 4 08:56:12 2026 GMT Not After : Mar 3 09:01:12 2027 GMT Subject: CN=26004133DF94A6913BCB530D5B7D60E30F6F8E20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:72:fa:cc:e8:24:40:c9:dd:16:ca:4f:44:af: f2:62:da:45:55:eb:9d:c4:98:aa:8b:98:09:15:de: 2f:fc:f0:44:1d:79:18:e4:a3:2b:51:d3:4a:3e:d7: 74:4a:51:ca:8e:d3:2e:63:19:bd:ed:9d:11:b6:03: 16:df:4a:53:8c:df:6a:fd:76:25:35:de:18:ef:3b: 0f:6d:26:f8:32:5a:cb:98:43:3f:a8:42:ca:6c:3d: d8:a0:fe:40:5a:bc:aa:ab:a3:36:ca:35:72:02:a3: 09:76:82:99:d2:dc:c6:52:56:12:16:bd:3a:95:b5: 0a:45:af:5f:f2:fb:70:a8:91:f1:03:ec:ce:10:14: f1:90:b7:8c:84:72:5b:7e:73:d3:2f:cc:2c:eb:f4: 8e:3b:ce:c0:93:cb:41:e8:67:f0:71:0f:66:da:36: 52:ce:47:84:3c:c4:33:bd:6d:61:8f:80:47:89:0d: ab:3e:29:60:be:df:a8:52:e1:6a:00:8a:b6:ce:59: 9a:52:ac:26:46:fb:ea:bb:88:84:62:f6:51:d1:7b: 38:36:16:d6:38:32:48:2e:f6:39:d3:0b:42:8c:78: 79:32:f7:ef:ec:60:26:d7:ae:a1:31:a7:9a:4a:36: c1:7d:31:18:59:05:72:9e:2f:5b:7e:db:4c:8a:9d: 9a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:00:41:33:DF:94:A6:91:3B:CB:53:0D:5B:7D:60:E3:0F:6F:8E:20 X509v3 Authority Key Identifier: keyid:43:9D:16:E0:3D:05:D5:CE:CA:2B:7F:13:5D:2B:BB:1B:30:10:50:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e8f3b37d-fe4d-436d-a93b-e1f6fcc9fc4d/0/439D16E03D05D5CECA2B7F135D2BBB1B30105057.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439D16E03D05D5CECA2B7F135D2BBB1B30105057.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e8f3b37d-fe4d-436d-a93b-e1f6fcc9fc4d/0/3130332e3138372e39302e302f32342d3234203d3e20313439383839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.90.0/24 Signature Algorithm: sha256WithRSAEncryption 83:8c:6b:6e:30:5c:51:be:8e:cc:76:ef:17:b1:43:0c:98:dd: 6e:c6:9a:d7:69:bb:ae:e6:29:92:1b:20:a7:cf:61:6a:bf:eb: 2c:41:06:49:a6:03:67:08:f3:55:f2:b1:47:63:eb:41:3c:df: da:a0:cb:20:f9:dc:f9:e9:64:34:6f:ca:52:10:6e:95:f8:f8: 38:c1:3f:e7:e3:30:6c:75:e9:02:e1:66:b9:c5:e7:67:d3:fa: 70:2e:12:7c:16:e6:91:57:97:b3:82:4c:2d:09:3a:c3:ff:79: 76:5c:14:79:cc:4c:ec:78:41:ee:ba:93:cf:a7:d4:8f:91:6b: 24:69:93:aa:ac:e4:5d:2e:76:2e:a3:f1:8b:43:84:fe:8a:6b: b3:18:0b:09:f7:ca:9e:09:ff:da:4c:9e:de:ba:1d:86:7a:44: 7c:9a:f0:2c:10:8f:dd:8e:bb:c6:2b:f4:04:87:ec:7b:1b:f3: ff:89:a7:2a:e7:a6:48:83:9e:b6:28:15:54:af:71:ea:e7:02: b6:8b:8f:60:ef:d6:59:cd:a2:d1:b6:5e:90:0d:74:10:fb:ef: e3:a5:3a:2f:43:e5:79:80:5e:74:83:77:3a:14:55:33:7d:21: 60:b4:82:8b:32:8c:c5:9d:5f:a4:e8:2c:78:13:bf:fd:0a:c2: 08:73:35:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCInKAdy7ezpFtFjaXWRzVwhPtHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDM5RDE2RTAzRDA1RDVDRUNBMkI3RjEzNUQyQkJCMUIz MDEwNTA1NzAeFw0yNjAzMDQwODU2MTJaFw0yNzAzMDMwOTAxMTJaMDMxMTAvBgNV BAMTKDI2MDA0MTMzREY5NEE2OTEzQkNCNTMwRDVCN0Q2MEUzMEY2RjhFMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5cvrM6CRAyd0Wyk9Er/Ji2kVV 653EmKqLmAkV3i/88EQdeRjkoytR00o+13RKUcqO0y5jGb3tnRG2AxbfSlOM32r9 diU13hjvOw9tJvgyWsuYQz+oQspsPdig/kBavKqrozbKNXICowl2gpnS3MZSVhIW vTqVtQpFr1/y+3CokfED7M4QFPGQt4yEclt+c9MvzCzr9I47zsCTy0HoZ/BxD2ba NlLOR4Q8xDO9bWGPgEeJDas+KWC+36hS4WoAirbOWZpSrCZG++q7iIRi9lHRezg2 FtY4Mkgu9jnTC0KMeHky9+/sYCbXrqExp5pKNsF9MRhZBXKeL1t+20yKnZqTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJgBBM9+UppE7y1MNW31g4w9vjiAwHwYDVR0j BBgwFoAUQ50W4D0F1c7KK38TXSu7GzAQUFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OGYzYjM3ZC1mZTRkLTQzNmQtYTkzYi1lMWY2ZmNjOWZjNGQvMC80MzlEMTZFMDNE MDVENUNFQ0EyQjdGMTM1RDJCQkIxQjMwMTA1MDU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDM5RDE2RTAzRDA1RDVDRUNBMkI3RjEzNUQyQkJCMUIzMDEw NTA1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4ZjNiMzdkLWZlNGQtNDM2ZC1h OTNiLWUxZjZmY2M5ZmM0ZC8wLzMxMzAzMzJlMzEzODM3MmUzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7taMA0GCSqG SIb3DQEBCwUAA4IBAQCDjGtuMFxRvo7Mdu8XsUMMmN1uxprXabuu5imSGyCnz2Fq v+ssQQZJpgNnCPNV8rFHY+tBPN/aoMsg+dz56WQ0b8pSEG6V+Pg4wT/n4zBsdekC 4Wa5xedn0/pwLhJ8FuaRV5ezgkwtCTrD/3l2XBR5zEzseEHuupPPp9SPkWskaZOq rORdLnYuo/GLQ4T+imuzGAsJ98qeCf/aTJ7euh2GekR8mvAsEI/djrvGK/QEh+x7 G/P/iacq56ZIg562KBVUr3Hq5wK2i49g79ZZzaLRtl6QDXQQ++/jpTovQ+V5gF50 g3c6FFUzfSFgtIKLMozFnV+k6Cx4E7/9CsIIczX8 -----END CERTIFICATE-----Generated at Thu Mar 19 10:51:20 2026 by rpki-client