$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa File: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (raw, json) Hash identifier: 9n83xrlqClU8EreC5b0A1VtR+6Td1JPgQy3YDNhy7m8= Subject key identifier: 8D:EA:C8:35:40:2B:F2:59:49:13:80:5A:A8:AA:63:43:B7:66:C8:BA Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 471FB17C361DE0837DD9733B03D2CD992E3DE4AF Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa Signing time: Thu 09 Apr 2026 02:00:00 +0000 ROA not before: Thu 09 Apr 2026 01:55:00 +0000 ROA not after: Thu 08 Apr 2027 02:00:00 +0000 asID: 141056 IP address blocks: 103.155.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 05:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1f:b1:7c:36:1d:e0:83:7d:d9:73:3b:03:d2:cd:99:2e:3d:e4:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Apr 9 01:55:00 2026 GMT Not After : Apr 8 02:00:00 2027 GMT Subject: CN=8DEAC835402BF2594913805AA8AA6343B766C8BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:26:3c:99:36:ac:fe:d2:79:26:33:3f:02: 44:8d:fd:e1:f6:60:46:d2:8f:05:1c:bb:2a:ee:78: 2f:b7:af:3b:22:f9:cd:91:64:be:9a:10:48:41:69: 60:05:2d:4a:83:10:01:ba:01:5c:87:01:69:88:4a: 39:2d:4a:fc:be:75:c4:77:9d:b8:a5:d4:98:1b:cc: b7:a8:2a:8e:2b:64:34:1f:a3:01:1c:ba:62:c3:b5: 6a:b2:a1:d3:df:37:97:d4:82:25:8c:83:d1:b8:77: 64:23:d3:15:ea:b1:32:cb:b5:bd:8b:ee:d5:69:77: 8d:cf:04:90:73:89:b0:d5:4e:4a:4e:8e:5c:4d:02: 57:2b:02:e4:8e:a8:6a:22:c8:1e:fb:d9:84:c4:7b: 38:95:73:58:9d:b7:16:54:c1:78:60:85:71:5d:5a: 64:7c:cf:9f:ee:31:0b:c5:f0:98:bd:24:77:90:51: b3:bc:67:67:3d:04:c6:45:0e:d0:08:32:4f:65:ec: c9:96:57:9c:c7:7f:d9:eb:8f:4a:a1:87:55:5f:ad: f2:ce:cb:a8:b0:ac:66:5c:bc:b4:c1:51:af:9f:7e: 67:c7:a5:a5:ca:d0:e3:94:f6:1e:12:84:9c:e0:4b: f9:f6:eb:f2:87:90:6f:67:98:69:b0:65:84:ec:e6: 2c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EA:C8:35:40:2B:F2:59:49:13:80:5A:A8:AA:63:43:B7:66:C8:BA X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.116.0/23 Signature Algorithm: sha256WithRSAEncryption 29:24:d6:aa:50:78:d4:2f:c4:07:19:2f:10:09:f1:a5:9f:e8: 7b:e4:6a:70:6e:c3:eb:e4:6e:6d:74:98:c7:e4:b2:e1:ed:3b: e1:7c:8c:48:fc:db:51:d2:e8:a4:79:28:59:ec:07:1c:1a:f2: d5:96:67:d2:6b:4f:16:65:f5:30:3b:1d:0c:29:9d:4b:69:17: 38:44:32:92:b7:20:45:88:9a:e1:4a:43:d5:d0:30:d2:98:6d: 5f:2c:45:46:c6:a8:6a:3e:b3:d8:33:74:01:e2:6c:8b:1f:58: 6e:66:51:41:fc:62:6b:2d:af:88:bd:84:fb:dc:6f:60:a5:31: 41:55:15:78:f5:80:24:69:96:ab:5b:f2:11:f6:72:e2:41:1e: b2:bb:8b:02:28:15:61:26:48:ef:a2:b0:20:a9:18:d2:87:d6: 29:eb:3d:cd:fe:af:a8:79:90:25:21:a4:7f:dc:99:0d:46:18: 27:aa:eb:5d:92:9b:70:7d:d6:14:33:0a:72:01:42:42:21:5d: 39:28:e1:bb:a2:50:b6:ca:56:5d:24:fc:eb:79:b2:22:7c:63: b3:96:22:39:53:f7:04:9c:5f:df:77:3d:85:59:db:87:e6:02: ec:77:af:d2:c9:f6:c7:5b:b6:60:4a:cf:8d:31:8a:b2:b3:df: 48:6a:23:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURx+xfDYd4IN92XM7A9LNmS495K8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNjA0MDkwMTU1MDBaFw0yNzA0MDgwMjAwMDBaMDMxMTAvBgNV BAMTKDhERUFDODM1NDAyQkYyNTk0OTEzODA1QUE4QUE2MzQzQjc2NkM4QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01CY8mTas/tJ5JjM/AkSN/eH2 YEbSjwUcuyrueC+3rzsi+c2RZL6aEEhBaWAFLUqDEAG6AVyHAWmISjktSvy+dcR3 nbil1JgbzLeoKo4rZDQfowEcumLDtWqyodPfN5fUgiWMg9G4d2Qj0xXqsTLLtb2L 7tVpd43PBJBzibDVTkpOjlxNAlcrAuSOqGoiyB772YTEeziVc1idtxZUwXhghXFd WmR8z5/uMQvF8Ji9JHeQUbO8Z2c9BMZFDtAIMk9l7MmWV5zHf9nrj0qhh1VfrfLO y6iwrGZcvLTBUa+ffmfHpaXK0OOU9h4ShJzgS/n26/KHkG9nmGmwZYTs5iylAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjerINUAr8llJE4BaqKpjQ7dmyLowHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMxMzAzMzJlMzEzNTM1MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm3QwDQYJ KoZIhvcNAQELBQADggEBACkk1qpQeNQvxAcZLxAJ8aWf6HvkanBuw+vkbm10mMfk suHtO+F8jEj821HS6KR5KFnsBxwa8tWWZ9JrTxZl9TA7HQwpnUtpFzhEMpK3IEWI muFKQ9XQMNKYbV8sRUbGqGo+s9gzdAHibIsfWG5mUUH8Ymstr4i9hPvcb2ClMUFV FXj1gCRplqtb8hH2cuJBHrK7iwIoFWEmSO+isCCpGNKH1inrPc3+r6h5kCUhpH/c mQ1GGCeq612Sm3B91hQzCnIBQkIhXTko4buiULbKVl0k/Ot5siJ8Y7OWIjlT9wSc X993PYVZ24fmAux3r9LJ9sdbtmBKz40xirKz30hqI1g= -----END CERTIFICATE-----Generated at Fri Apr 17 12:01:53 2026 by rpki-client