$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa File: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (raw, json) Hash identifier: iZk4nKRAyYY4CGj+caK3PfJut3d/hrLgka43LgJ9lgQ= Subject key identifier: C5:0E:2A:2A:82:90:7E:17:49:4E:1B:E0:B5:80:4E:45:6B:A8:D5:A8 Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 5827D4167B1A7C578033944B95F3E5B7954735E7 Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa Signing time: Thu 05 Mar 2026 06:00:01 +0000 ROA not before: Thu 05 Mar 2026 05:55:01 +0000 ROA not after: Thu 04 Mar 2027 06:00:01 +0000 asID: 38496 IP address blocks: 103.91.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 07:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:27:d4:16:7b:1a:7c:57:80:33:94:4b:95:f3:e5:b7:95:47:35:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Mar 5 05:55:01 2026 GMT Not After : Mar 4 06:00:01 2027 GMT Subject: CN=C50E2A2A82907E17494E1BE0B5804E456BA8D5A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:47:76:5a:11:2b:f1:bd:86:ee:d4:78:1e: e1:53:7d:2f:bf:37:c1:18:6b:2f:b0:07:1d:1e:3a: f7:92:1b:03:78:80:4a:eb:34:c0:b9:bc:08:e9:3f: 19:db:4f:58:1e:e0:e1:11:c4:56:b4:79:78:1c:49: 0f:5a:bb:22:d8:98:4c:97:fa:01:74:98:62:53:22: a2:cb:de:da:8b:b7:24:2b:f5:18:03:17:08:fa:33: 4e:ff:60:26:d2:e8:98:98:a5:91:30:0a:c4:8d:f7: 24:a4:41:17:55:b7:40:94:25:9b:9c:dd:f3:9e:73: 1c:96:ba:b1:0e:99:ca:54:48:a0:4b:16:6e:a6:e1: 43:14:99:ad:be:05:19:80:b7:76:f0:fe:05:e6:c3: af:2f:5e:9a:e8:f1:c8:84:b6:be:30:cf:2f:99:44: 65:29:86:41:68:3e:46:11:d7:04:f5:a6:df:43:58: 9f:62:e9:49:72:00:05:04:71:07:b0:fb:0d:4b:b9: a4:81:c2:2f:83:41:b4:34:83:35:b7:c3:3b:e8:73: d6:01:a9:17:f1:f3:2e:42:d8:2d:3a:92:df:f6:2f: 7a:ee:a2:75:7e:19:2c:00:fa:ba:13:de:29:14:80: 98:24:f6:71:bf:f2:9f:c8:95:dd:bd:b9:22:85:2e: 25:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0E:2A:2A:82:90:7E:17:49:4E:1B:E0:B5:80:4E:45:6B:A8:D5:A8 X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.28.0/22 Signature Algorithm: sha256WithRSAEncryption b9:6d:f9:ec:71:48:3b:11:ed:7c:b0:cb:86:81:42:0a:db:5b: 52:dd:de:f5:fe:18:c4:a4:ae:13:6c:97:7a:5f:92:31:3b:3c: 4f:e0:b1:a3:4c:f6:b2:5d:3a:52:1c:8a:3c:c7:82:fe:84:aa: 4a:ee:6d:48:79:cf:d4:a6:30:2f:7f:a5:f6:26:cb:ed:37:3a: 22:b5:ea:e2:69:46:e7:1d:86:46:fe:9a:1a:4b:2f:15:71:b7: ab:43:52:14:d6:92:cf:2d:24:6f:69:e1:9a:e6:1e:96:e5:f1: 3f:0a:7c:de:49:95:c5:bd:c0:4a:e7:9f:50:94:32:30:a4:2b: 8d:40:f9:e2:01:d1:40:62:45:4a:2b:83:70:6d:31:ae:4d:a9: db:39:48:33:ae:46:ab:e4:69:f7:03:ee:09:ba:ab:8c:f5:00: 22:34:ce:93:d5:39:3b:75:9d:df:1e:53:cb:57:2b:82:ca:f9: 21:ec:6e:f3:77:e2:3f:01:82:4e:bb:d9:2f:40:e1:4b:9d:01: c6:4d:f4:38:4f:91:dd:96:17:92:4b:3e:c3:9e:c3:ed:aa:11: 3a:23:1a:44:d7:7b:d1:c2:12:f2:2e:83:57:35:66:e1:e2:2b: 37:fa:b0:94:f0:82:bd:dd:f8:ac:1c:72:dc:ca:53:85:a0:67: 8a:87:b4:da -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWCfUFnsafFeAM5RLlfPlt5VHNecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNjAzMDUwNTU1MDFaFw0yNzAzMDQwNjAwMDFaMDMxMTAvBgNV BAMTKEM1MEUyQTJBODI5MDdFMTc0OTRFMUJFMEI1ODA0RTQ1NkJBOEQ1QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1G0d2WhEr8b2G7tR4HuFTfS+/ N8EYay+wBx0eOveSGwN4gErrNMC5vAjpPxnbT1ge4OERxFa0eXgcSQ9auyLYmEyX +gF0mGJTIqLL3tqLtyQr9RgDFwj6M07/YCbS6JiYpZEwCsSN9ySkQRdVt0CUJZuc 3fOecxyWurEOmcpUSKBLFm6m4UMUma2+BRmAt3bw/gXmw68vXpro8ciEtr4wzy+Z RGUphkFoPkYR1wT1pt9DWJ9i6UlyAAUEcQew+w1LuaSBwi+DQbQ0gzW3wzvoc9YB qRfx8y5C2C06kt/2L3ruonV+GSwA+roT3ikUgJgk9nG/8p/Ild29uSKFLiU1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUxQ4qKoKQfhdJThvgtYBORWuo1agwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMxMzAzMzJlMzkzMTJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzNDM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnWxwwDQYJKoZIhvcN AQELBQADggEBALlt+exxSDsR7Xywy4aBQgrbW1Ld3vX+GMSkrhNsl3pfkjE7PE/g saNM9rJdOlIcijzHgv6EqkrubUh5z9SmMC9/pfYmy+03OiK16uJpRucdhkb+mhpL LxVxt6tDUhTWks8tJG9p4ZrmHpbl8T8KfN5JlcW9wErnn1CUMjCkK41A+eIB0UBi RUorg3BtMa5Nqds5SDOuRqvkafcD7gm6q4z1ACI0zpPVOTt1nd8eU8tXK4LK+SHs bvN34j8Bgk672S9A4UudAcZN9DhPkd2WF5JLPsOew+2qETojGkTXe9HCEvIug1c1 ZuHiKzf6sJTwgr3d+KwcctzKU4WgZ4qHtNo= -----END CERTIFICATE-----Generated at Tue Mar 24 10:55:33 2026 by rpki-client