$ rpki-client -vvf repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa File: 3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa (raw, json) Hash identifier: Xwns5Ogpfyb6PVc5ICTvXYVnJhIy9x8E6M2bieEhjv0= Subject key identifier: 82:97:7E:E2:8F:E5:45:70:0A:AB:F0:7E:48:B4:A0:0B:D8:42:D8:25 Certificate issuer: /CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Certificate serial: 6FAD375A46A289E729CD5B923303030F4172905F Authority key identifier: 42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa Signing time: Thu 05 Mar 2026 12:02:41 +0000 ROA not before: Thu 05 Mar 2026 11:57:41 +0000 ROA not after: Thu 04 Mar 2027 12:02:41 +0000 asID: 142338 IP address blocks: 103.169.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 16:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ad:37:5a:46:a2:89:e7:29:cd:5b:92:33:03:03:0f:41:72:90:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Validity Not Before: Mar 5 11:57:41 2026 GMT Not After : Mar 4 12:02:41 2027 GMT Subject: CN=82977EE28FE545700AABF07E48B4A00BD842D825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a1:cf:46:7b:dc:6b:aa:b5:e8:fc:82:cd:f5: ed:c4:6f:c2:48:d3:d4:20:3a:71:a2:7b:d5:51:65: 81:4c:3e:f6:6e:6d:a6:74:ed:a7:b1:a1:e7:ac:21: 9b:e0:39:17:f3:c0:b1:6a:75:81:57:3d:8d:20:6c: 8e:52:34:e0:b6:76:94:41:05:54:4b:18:26:5b:3c: 71:c2:04:06:82:f8:60:7d:b5:91:b8:e0:d5:bb:99: 61:6d:e6:3c:cf:fb:75:2c:f1:67:81:81:6b:6b:da: bc:87:61:67:32:59:b7:f5:04:53:b7:d8:57:50:91: b9:53:32:5d:c1:60:41:ce:57:d9:31:db:98:ea:ae: 29:70:85:a6:44:eb:e2:58:44:03:e6:c7:3a:f7:40: e0:1d:f1:4f:83:aa:39:1f:2d:2e:e0:7c:a6:bf:4d: b5:d3:04:30:bf:7e:45:f0:9e:12:b6:05:7c:2b:84: 38:c9:aa:60:6b:c3:7b:71:0d:49:3f:86:0e:0a:12: bd:78:69:e2:87:73:8a:6f:22:52:b4:a6:a6:aa:cd: 12:bf:56:31:49:9f:c8:e2:c0:56:6b:84:a8:cb:76: 78:9c:ac:ff:d5:55:5d:a7:4e:9a:25:62:53:cf:33: 5c:49:95:da:03:d4:4c:31:27:ff:6b:ff:b0:1e:55: ef:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:97:7E:E2:8F:E5:45:70:0A:AB:F0:7E:48:B4:A0:0B:D8:42:D8:25 X509v3 Authority Key Identifier: keyid:42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.135.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:8c:0d:76:47:89:13:b9:f7:a4:1d:23:c7:e3:4b:03:21:14: 49:53:ec:7b:17:88:f3:9b:75:38:ef:29:00:6b:5d:1f:31:cb: 22:09:21:ca:3b:3b:46:33:a1:f2:f3:4e:b2:cc:d0:70:a5:ae: f2:d3:da:38:d4:db:a4:3d:78:e9:7c:c0:ae:a2:0e:15:a7:34: 1b:46:9c:a1:33:7c:b0:c9:da:c9:01:68:19:e7:86:7b:3f:ec: 81:61:00:90:ae:f5:e6:c5:c9:e9:83:55:11:24:10:6c:8a:b7: 97:05:8a:5b:90:8d:11:8f:4c:6c:75:85:46:cb:ce:e7:71:a5: d6:ce:78:78:4c:86:f6:51:68:be:ad:df:27:fa:41:71:5b:e7: 94:76:57:02:88:00:33:ef:d6:40:43:2c:6b:74:48:69:d7:2f: c4:39:fe:e6:a7:af:df:de:e6:36:94:a6:49:78:04:73:a6:aa: e9:1e:3c:22:a1:f7:cc:e4:5a:df:3f:e9:4d:12:91:5b:80:87: c7:f9:53:9d:81:b5:18:8f:a0:b0:b3:ec:26:fc:23:a7:4f:00: 2e:f7:33:a6:33:47:af:c9:e3:ff:ea:61:1f:65:bc:0f:48:b0: 3d:60:85:b1:13:b0:1c:53:13:98:6a:4f:df:ec:08:7d:15:cf: 10:5b:56:e8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb603WkaiiecpzVuSMwMDD0FykF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3 NjIwQTM3MzAeFw0yNjAzMDUxMTU3NDFaFw0yNzAzMDQxMjAyNDFaMDMxMTAvBgNV BAMTKDgyOTc3RUUyOEZFNTQ1NzAwQUFCRjA3RTQ4QjRBMDBCRDg0MkQ4MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCooc9Ge9xrqrXo/ILN9e3Eb8JI 09QgOnGie9VRZYFMPvZubaZ07aexoeesIZvgORfzwLFqdYFXPY0gbI5SNOC2dpRB BVRLGCZbPHHCBAaC+GB9tZG44NW7mWFt5jzP+3Us8WeBgWtr2ryHYWcyWbf1BFO3 2FdQkblTMl3BYEHOV9kx25jqrilwhaZE6+JYRAPmxzr3QOAd8U+DqjkfLS7gfKa/ TbXTBDC/fkXwnhK2BXwrhDjJqmBrw3txDUk/hg4KEr14aeKHc4pvIlK0pqaqzRK/ VjFJn8jiwFZrhKjLdnicrP/VVV2nTpolYlPPM1xJldoD1EwxJ/9r/7AeVe9VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgpd+4o/lRXAKq/B+SLSgC9hC2CUwHwYDVR0j BBgwFoAUQsswAT+XBO+9z3hPzWAonHYgo3MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTAwM2Q2Yy05NWYxLTQ3YTQtOWQ1ZC1mN2I0OGNhYWE3ZjQvMC80MkNCMzAwMTNG OTcwNEVGQkRDRjc4NEZDRDYwMjg5Qzc2MjBBMzczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3NjIw QTM3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5MDAzZDZjLTk1ZjEtNDdhNC05 ZDVkLWY3YjQ4Y2FhYTdmNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYcwDQYJ KoZIhvcNAQELBQADggEBAGyMDXZHiRO596QdI8fjSwMhFElT7HsXiPObdTjvKQBr XR8xyyIJIco7O0YzofLzTrLM0HClrvLT2jjU26Q9eOl8wK6iDhWnNBtGnKEzfLDJ 2skBaBnnhns/7IFhAJCu9ebFyemDVREkEGyKt5cFiluQjRGPTGx1hUbLzudxpdbO eHhMhvZRaL6t3yf6QXFb55R2VwKIADPv1kBDLGt0SGnXL8Q5/uanr9/e5jaUpkl4 BHOmqukePCKh98zkWt8/6U0SkVuAh8f5U52BtRiPoLCz7Cb8I6dPAC73M6YzR6/J 4//qYR9lvA9IsD1ghbETsBxTE5hqT9/sCH0VzxBbVug= -----END CERTIFICATE-----Generated at Thu Mar 19 11:19:52 2026 by rpki-client