$ rpki-client -vvf repo-rpki.idnic.net/repo/52292ba8-ad1a-4139-8c20-5b526da970bd/0/3130332e3231332e3233312e302f32342d3234203d3e20313339393439.roa File: 3130332e3231332e3233312e302f32342d3234203d3e20313339393439.roa (raw, json) Hash identifier: Gg2XBdZbCjnicTKPYokbLhd8LpWmCIW5O5l0UURxCRc= Subject key identifier: 34:DC:74:CA:34:85:D6:AD:59:1F:5E:D3:B1:0A:66:F2:A3:A8:A7:13 Certificate issuer: /CN=7E6A786ACEF684F37758FC4A6D8517CAD165FA77 Certificate serial: 217894C322256AC99287388C6F4FF3019255F43E Authority key identifier: 7E:6A:78:6A:CE:F6:84:F3:77:58:FC:4A:6D:85:17:CA:D1:65:FA:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E6A786ACEF684F37758FC4A6D8517CAD165FA77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52292ba8-ad1a-4139-8c20-5b526da970bd/0/3130332e3231332e3233312e302f32342d3234203d3e20313339393439.roa Signing time: Sun 26 Apr 2026 14:19:36 +0000 ROA not before: Sun 26 Apr 2026 14:14:36 +0000 ROA not after: Sun 25 Apr 2027 14:19:36 +0000 asID: 139949 IP address blocks: 103.213.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52292ba8-ad1a-4139-8c20-5b526da970bd/0/7E6A786ACEF684F37758FC4A6D8517CAD165FA77.crl rsync://repo-rpki.idnic.net/repo/52292ba8-ad1a-4139-8c20-5b526da970bd/0/7E6A786ACEF684F37758FC4A6D8517CAD165FA77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E6A786ACEF684F37758FC4A6D8517CAD165FA77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Apr 2026 14:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:78:94:c3:22:25:6a:c9:92:87:38:8c:6f:4f:f3:01:92:55:f4:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E6A786ACEF684F37758FC4A6D8517CAD165FA77 Validity Not Before: Apr 26 14:14:36 2026 GMT Not After : Apr 25 14:19:36 2027 GMT Subject: CN=34DC74CA3485D6AD591F5ED3B10A66F2A3A8A713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:49:89:ca:0b:8d:51:89:50:4f:44:7e:dc:1a: 72:13:f4:3d:af:a8:c9:bc:26:4e:97:b1:19:46:dc: e4:77:91:66:9d:a3:76:e9:76:57:de:3e:c2:20:5f: f2:4a:44:78:6b:e0:f2:9b:23:cc:67:e5:2f:dd:e4: 4d:24:7e:1c:fa:0f:27:31:2a:8a:ed:70:29:32:fb: 32:4e:8f:22:5d:ab:21:b9:3f:83:a4:61:28:52:b5: 2d:96:f7:09:f4:a5:61:59:7c:af:1c:9c:ac:33:fb: a9:e9:79:14:3d:19:27:db:e5:d3:8a:06:34:f5:83: a9:b2:a5:cb:85:58:87:d5:dd:c9:35:bc:9b:8c:67: 94:86:d3:16:7d:de:44:a4:5a:88:dc:89:12:0b:f2: 26:a5:12:51:9c:f7:25:f7:64:4b:7c:fa:5e:01:48: 93:a5:7c:54:cc:6b:11:87:8a:f7:f6:f6:e8:76:17: 9b:46:1a:8d:df:1c:78:c7:93:bf:7d:ee:7f:2b:cb: fb:86:c9:38:3d:ba:fa:92:74:9f:2a:02:27:6c:53: fd:23:5b:ec:bb:80:88:d6:47:33:18:dd:7f:75:99: 89:fa:f9:fb:20:e2:f4:80:a0:b1:54:2e:49:16:8d: a9:7a:b5:20:40:7e:8d:aa:ec:04:5a:76:75:15:1b: d4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:DC:74:CA:34:85:D6:AD:59:1F:5E:D3:B1:0A:66:F2:A3:A8:A7:13 X509v3 Authority Key Identifier: keyid:7E:6A:78:6A:CE:F6:84:F3:77:58:FC:4A:6D:85:17:CA:D1:65:FA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52292ba8-ad1a-4139-8c20-5b526da970bd/0/7E6A786ACEF684F37758FC4A6D8517CAD165FA77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E6A786ACEF684F37758FC4A6D8517CAD165FA77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52292ba8-ad1a-4139-8c20-5b526da970bd/0/3130332e3231332e3233312e302f32342d3234203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.231.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:1c:78:11:fb:75:81:01:82:71:54:18:1d:c9:23:46:85:a9: e0:33:1d:94:2b:bd:1b:7a:b2:64:0b:14:b8:85:57:21:10:10: 30:26:0f:7b:7c:fb:5f:a5:4a:fd:88:49:f6:83:cf:9f:b1:f8: 9e:6c:be:56:f6:4b:ff:d4:5f:89:16:07:ac:c3:60:f2:91:53: 9b:a0:a9:30:a8:7a:d6:9d:1c:11:09:df:27:58:f7:c4:3a:bd: 82:67:cf:1a:9f:39:9b:02:de:af:c7:e3:68:ad:76:d2:ba:98: da:25:ff:64:7a:cf:00:96:10:b5:ba:c4:52:64:95:ff:75:42: 74:18:eb:09:18:5f:87:76:d9:f7:b7:ef:3f:f7:fc:43:ae:43: c9:cf:8e:3d:f2:0a:6e:a3:42:e9:8a:26:07:9b:25:51:02:97: c7:0e:6b:00:19:fe:a6:34:a2:8a:af:20:2f:a0:97:74:ce:88: 06:c5:92:01:16:09:93:38:b7:13:75:f4:7f:b9:ea:43:8c:73: fe:75:d5:22:d3:36:62:b5:c9:c7:18:6b:d1:24:97:39:45:cc: 43:21:26:2c:9b:09:25:9e:cf:bc:87:26:55:7f:a3:6d:79:af: 8f:e1:b2:ce:f1:65:12:3d:ae:a0:6c:eb:85:60:08:f5:42:29: cc:78:ca:00 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIXiUwyIlasmShziMb0/zAZJV9D4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U2QTc4NkFDRUY2ODRGMzc3NThGQzRBNkQ4NTE3Q0FE MTY1RkE3NzAeFw0yNjA0MjYxNDE0MzZaFw0yNzA0MjUxNDE5MzZaMDMxMTAvBgNV BAMTKDM0REM3NENBMzQ4NUQ2QUQ1OTFGNUVEM0IxMEE2NkYyQTNBOEE3MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzSYnKC41RiVBPRH7cGnIT9D2v qMm8Jk6XsRlG3OR3kWado3bpdlfePsIgX/JKRHhr4PKbI8xn5S/d5E0kfhz6Dycx KortcCky+zJOjyJdqyG5P4OkYShStS2W9wn0pWFZfK8cnKwz+6npeRQ9GSfb5dOK BjT1g6mypcuFWIfV3ck1vJuMZ5SG0xZ93kSkWojciRIL8ialElGc9yX3ZEt8+l4B SJOlfFTMaxGHivf29uh2F5tGGo3fHHjHk7997n8ry/uGyTg9uvqSdJ8qAidsU/0j W+y7gIjWRzMY3X91mYn6+fsg4vSAoLFULkkWjal6tSBAfo2q7ARadnUVG9SbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNNx0yjSF1q1ZH17TsQpm8qOopxMwHwYDVR0j BBgwFoAUfmp4as72hPN3WPxKbYUXytFl+ncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjI5MmJhOC1hZDFhLTQxMzktOGMyMC01YjUyNmRhOTcwYmQvMC83RTZBNzg2QUNF RjY4NEYzNzc1OEZDNEE2RDg1MTdDQUQxNjVGQTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0U2QTc4NkFDRUY2ODRGMzc3NThGQzRBNkQ4NTE3Q0FEMTY1 RkE3Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyMjkyYmE4LWFkMWEtNDEzOS04 YzIwLTViNTI2ZGE5NzBiZC8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1ecwDQYJ KoZIhvcNAQELBQADggEBAC4ceBH7dYEBgnFUGB3JI0aFqeAzHZQrvRt6smQLFLiF VyEQEDAmD3t8+1+lSv2ISfaDz5+x+J5svlb2S//UX4kWB6zDYPKRU5ugqTCoetad HBEJ3ydY98Q6vYJnzxqfOZsC3q/H42itdtK6mNol/2R6zwCWELW6xFJklf91QnQY 6wkYX4d22fe37z/3/EOuQ8nPjj3yCm6jQumKJgebJVECl8cOawAZ/qY0ooqvIC+g l3TOiAbFkgEWCZM4txN19H+56kOMc/511SLTNmK1yccYa9EklzlFzEMhJiybCSWe z7yHJlV/o215r4/hss7xZRI9rqBs64VgCPVCKcx4ygA= -----END CERTIFICATE-----Generated at Mon Apr 27 11:16:21 2026 by rpki-client