$ rpki-client -vvf repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa File: 3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa (raw, json) Hash identifier: MCsJamis6iOXm6hLXc7OaIE2GZNYqTtsiTRjdaXwpbo= Subject key identifier: D3:FF:2B:A9:AD:9C:FC:4A:2A:D8:C0:6B:C9:A8:BA:25:4C:CA:20:18 Certificate issuer: /CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Certificate serial: 595F991744C0214E1669F0F1DC377BC2EFD2AC7F Authority key identifier: 42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa Signing time: Thu 05 Mar 2026 12:02:41 +0000 ROA not before: Thu 05 Mar 2026 11:57:41 +0000 ROA not after: Thu 04 Mar 2027 12:02:41 +0000 asID: 142338 IP address blocks: 103.169.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 16:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:5f:99:17:44:c0:21:4e:16:69:f0:f1:dc:37:7b:c2:ef:d2:ac:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Validity Not Before: Mar 5 11:57:41 2026 GMT Not After : Mar 4 12:02:41 2027 GMT Subject: CN=D3FF2BA9AD9CFC4A2AD8C06BC9A8BA254CCA2018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b1:5d:19:ca:6c:86:f1:4c:91:d5:e3:d5:fd: 1f:36:9a:7f:8e:b7:02:3a:65:f2:eb:34:6d:70:6b: 5d:82:77:8c:81:ed:bf:5a:6d:7f:58:e8:b1:60:d9: 27:49:69:b1:69:91:b3:0b:e5:ac:45:ed:1c:74:a4: a9:46:87:24:6c:5b:7c:29:8a:9c:e9:e4:16:2c:ae: b4:6b:0b:9c:e7:52:ea:de:03:ec:36:c8:db:dd:04: a3:cb:d2:20:95:5e:d8:49:11:e1:a1:5e:c3:9a:f7: 2f:d4:27:15:75:36:87:c7:cb:1c:e5:4c:cd:d2:a5: 89:34:46:65:58:c7:cc:7c:68:c0:45:d8:44:56:24: 44:29:a3:72:c7:a0:03:39:13:12:8a:95:33:70:d8: 17:ee:9e:ca:cf:1f:be:55:f7:90:f1:7f:90:62:03: ad:16:e9:70:6c:2f:73:28:aa:df:68:8e:ec:26:90: 69:f9:97:d2:35:97:78:2a:27:33:ac:3f:01:4c:2b: 62:5c:33:9b:06:87:4a:fe:05:20:f2:b4:ec:ae:17: e4:1c:08:36:43:b9:f5:ef:57:25:67:41:de:71:83: a0:a6:c8:d7:44:e6:8a:6b:f3:70:14:39:ec:50:b3: 68:a7:23:23:8c:c9:c3:46:d5:9a:e3:a7:21:6f:80: cf:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FF:2B:A9:AD:9C:FC:4A:2A:D8:C0:6B:C9:A8:BA:25:4C:CA:20:18 X509v3 Authority Key Identifier: keyid:42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.134.0/24 Signature Algorithm: sha256WithRSAEncryption b8:c9:09:2c:c9:4c:97:93:ac:1b:11:1e:1f:93:9b:7e:1b:96: f3:5b:fc:d2:a1:ab:04:46:4e:ec:c3:ff:5e:2b:38:f1:6a:de: bd:23:17:6b:7a:01:ed:bb:42:9f:fc:81:20:d3:bb:ca:74:f2: 54:0c:04:d1:e4:85:b5:ad:3b:f7:a2:67:15:57:c5:ca:2f:ec: 83:29:13:51:84:3a:0b:04:4d:2a:7b:e1:e8:80:9f:4e:80:ce: d8:c7:cc:16:7c:c4:51:7e:9e:2c:04:49:b0:19:2b:c2:fa:4d: 21:53:41:6d:58:13:8a:fb:8d:1c:e4:62:ee:48:1f:1d:c9:fd: f4:cc:6f:4d:bb:10:9c:84:fd:d3:7f:ba:b6:d7:32:14:0c:ee: ac:c4:94:d8:67:05:51:f7:ff:89:24:cb:82:96:d3:95:5f:7b: 0c:1f:a2:b6:c6:57:2c:3b:ea:a9:bf:ff:5b:d9:7f:c2:35:54: 1b:27:e0:07:69:e5:58:b5:74:ce:93:73:39:b7:41:fc:9b:9b: 67:54:c4:0d:b5:92:11:4e:7d:8e:51:c3:15:76:ca:23:01:c8: 8f:82:06:9d:3f:69:d4:96:27:18:60:ab:22:d5:51:6f:7a:56: 31:f1:02:fc:0c:b4:ee:37:ef:af:30:67:f0:78:92:89:46:6e: 61:3b:49:9a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWV+ZF0TAIU4WafDx3Dd7wu/SrH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3 NjIwQTM3MzAeFw0yNjAzMDUxMTU3NDFaFw0yNzAzMDQxMjAyNDFaMDMxMTAvBgNV BAMTKEQzRkYyQkE5QUQ5Q0ZDNEEyQUQ4QzA2QkM5QThCQTI1NENDQTIwMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIsV0ZymyG8UyR1ePV/R82mn+O twI6ZfLrNG1wa12Cd4yB7b9abX9Y6LFg2SdJabFpkbML5axF7Rx0pKlGhyRsW3wp ipzp5BYsrrRrC5znUureA+w2yNvdBKPL0iCVXthJEeGhXsOa9y/UJxV1NofHyxzl TM3SpYk0RmVYx8x8aMBF2ERWJEQpo3LHoAM5ExKKlTNw2BfunsrPH75V95Dxf5Bi A60W6XBsL3Moqt9ojuwmkGn5l9I1l3gqJzOsPwFMK2JcM5sGh0r+BSDytOyuF+Qc CDZDufXvVyVnQd5xg6CmyNdE5opr83AUOexQs2inIyOMycNG1ZrjpyFvgM/3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0/8rqa2c/Eoq2MBryai6JUzKIBgwHwYDVR0j BBgwFoAUQsswAT+XBO+9z3hPzWAonHYgo3MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTAwM2Q2Yy05NWYxLTQ3YTQtOWQ1ZC1mN2I0OGNhYWE3ZjQvMC80MkNCMzAwMTNG OTcwNEVGQkRDRjc4NEZDRDYwMjg5Qzc2MjBBMzczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3NjIw QTM3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5MDAzZDZjLTk1ZjEtNDdhNC05 ZDVkLWY3YjQ4Y2FhYTdmNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYYwDQYJ KoZIhvcNAQELBQADggEBALjJCSzJTJeTrBsRHh+Tm34blvNb/NKhqwRGTuzD/14r OPFq3r0jF2t6Ae27Qp/8gSDTu8p08lQMBNHkhbWtO/eiZxVXxcov7IMpE1GEOgsE TSp74eiAn06AztjHzBZ8xFF+niwESbAZK8L6TSFTQW1YE4r7jRzkYu5IHx3J/fTM b027EJyE/dN/urbXMhQM7qzElNhnBVH3/4kky4KW05VfewwforbGVyw76qm//1vZ f8I1VBsn4Adp5Vi1dM6Tczm3Qfybm2dUxA21khFOfY5RwxV2yiMByI+CBp0/adSW JxhgqyLVUW96VjHxAvwMtO43768wZ/B4kolGbmE7SZo= -----END CERTIFICATE-----Generated at Thu Mar 19 11:17:42 2026 by rpki-client