$ rpki-client -vvf repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa File: 3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa (raw, json) Hash identifier: waJ7Yu63xRoY9A89FJsdpRPCyGEr6vKvLA1M7+3Q2jg= Subject key identifier: E9:95:19:FE:2B:D7:84:D9:9E:60:34:9D:15:FD:DB:10:D6:25:1C:98 Certificate issuer: /CN=8DAFDBD814B60F568505D65130E4661FCD7D665F Certificate serial: 1C7F3BCBE6B2516ED99E644E96EAAD2C35AC67CA Authority key identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa Signing time: Sun 19 Apr 2026 02:00:02 +0000 ROA not before: Sun 19 Apr 2026 01:55:02 +0000 ROA not after: Sun 18 Apr 2027 02:00:02 +0000 asID: 142319 IP address blocks: 103.168.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.crl rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 14:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7f:3b:cb:e6:b2:51:6e:d9:9e:64:4e:96:ea:ad:2c:35:ac:67:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DAFDBD814B60F568505D65130E4661FCD7D665F Validity Not Before: Apr 19 01:55:02 2026 GMT Not After : Apr 18 02:00:02 2027 GMT Subject: CN=E99519FE2BD784D99E60349D15FDDB10D6251C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:96:c1:91:72:d0:ff:bb:9d:59:dc:66:81:32: 9c:6d:a3:ad:2d:66:39:de:f3:60:43:04:af:d4:33: 27:3d:b1:fc:7f:2e:08:59:bb:36:e9:4d:77:82:e3: 42:79:b6:b6:de:57:f4:61:c8:60:11:a0:ae:57:9a: 69:39:89:f5:8e:59:fe:07:8a:9a:d0:1d:4c:cb:ba: 05:07:30:4a:2d:f6:e0:57:ca:15:c1:95:38:cd:3f: db:32:79:64:2b:c4:bb:0c:66:0d:dc:c0:3d:a1:5f: 96:26:3d:16:e0:7d:11:f9:3a:62:48:df:cd:23:e7: 18:59:f1:e0:fa:88:cb:60:c2:19:ce:65:69:eb:e5: e2:20:2f:05:f4:84:63:da:65:9c:b6:58:9c:6b:73: e9:96:36:2e:e7:62:0a:de:3e:99:f1:87:8c:59:ba: 0f:a4:16:65:11:e6:21:73:f9:88:5c:a3:0b:b7:cd: 68:ff:15:e5:db:7d:ed:ee:c3:e9:20:2a:c2:a8:07: ea:25:0a:fe:8b:f3:3d:81:c9:09:4a:52:73:49:fd: 06:21:b7:30:95:2d:17:f3:18:15:20:6b:88:50:a0: b4:15:09:2b:21:24:8c:d9:9f:69:6a:a9:a5:a0:8b: 5a:94:cc:f3:7e:76:4e:c9:e9:0a:d9:4e:a8:b8:09: f7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:95:19:FE:2B:D7:84:D9:9E:60:34:9D:15:FD:DB:10:D6:25:1C:98 X509v3 Authority Key Identifier: keyid:8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.190.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:c9:28:b9:dc:ea:70:95:8a:09:92:6e:f5:8d:41:c6:e5:e2: 1a:b2:2b:4b:d8:50:de:95:20:97:c6:36:c7:02:bd:da:c5:8d: 1d:89:fc:54:d5:71:21:87:33:4d:a5:59:6b:52:d2:78:49:eb: 66:e6:7d:f3:d4:b1:c4:be:29:ac:6c:1a:c1:48:69:ac:f9:b1: a3:55:59:59:3a:0e:d5:51:fc:8d:d6:09:1d:23:b7:bf:0c:4e: 7b:81:e4:fc:bb:f7:4a:36:91:8c:65:33:73:bf:82:5e:0c:20: 45:2b:f7:b1:f6:76:d1:2e:4e:eb:fe:9d:0e:37:5a:e1:a6:10: e9:78:fb:13:18:9b:58:0e:3d:b7:fc:77:ac:a0:eb:02:20:ec: 04:df:bf:4c:4d:90:40:39:bc:d0:e5:ab:52:05:07:05:d7:88: af:80:14:1f:98:34:a0:ad:4a:3f:0d:81:35:9d:7c:30:73:bd: 3e:98:ef:0b:de:b2:0e:09:f9:47:af:a7:f7:9a:d7:26:61:91: 0d:82:da:b5:b3:ce:70:26:73:b2:a9:ac:a5:e4:53:2d:8f:1e: 45:18:91:57:55:0a:24:e2:20:66:a8:77:3d:22:0e:99:87:b8: a4:a4:b0:23:29:7c:f1:f8:98:53:83:f0:97:b5:24:3c:ef:75: 19:7c:a1:37 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHH87y+ayUW7ZnmROluqtLDWsZ8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBRkRCRDgxNEI2MEY1Njg1MDVENjUxMzBFNDY2MUZD RDdENjY1RjAeFw0yNjA0MTkwMTU1MDJaFw0yNzA0MTgwMjAwMDJaMDMxMTAvBgNV BAMTKEU5OTUxOUZFMkJENzg0RDk5RTYwMzQ5RDE1RkREQjEwRDYyNTFDOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmlsGRctD/u51Z3GaBMpxto60t Zjne82BDBK/UMyc9sfx/LghZuzbpTXeC40J5trbeV/RhyGARoK5Xmmk5ifWOWf4H iprQHUzLugUHMEot9uBXyhXBlTjNP9syeWQrxLsMZg3cwD2hX5YmPRbgfRH5OmJI 380j5xhZ8eD6iMtgwhnOZWnr5eIgLwX0hGPaZZy2WJxrc+mWNi7nYgrePpnxh4xZ ug+kFmUR5iFz+Yhcowu3zWj/FeXbfe3uw+kgKsKoB+olCv6L8z2ByQlKUnNJ/QYh tzCVLRfzGBUga4hQoLQVCSshJIzZn2lqqaWgi1qUzPN+dk7J6QrZTqi4Cfc3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6ZUZ/ivXhNmeYDSdFf3bENYlHJgwHwYDVR0j BBgwFoAUja/b2BS2D1aFBdZRMORmH819Zl8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTliMGJhZC02NmI5LTRmMjgtYTdjNS1lOWE5ZmUxMjBhZDcvMC84REFGREJEODE0 QjYwRjU2ODUwNUQ2NTEzMEU0NjYxRkNEN0Q2NjVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBRkRCRDgxNEI2MEY1Njg1MDVENjUxMzBFNDY2MUZDRDdE NjY1Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOWIwYmFkLTY2YjktNGYyOC1h N2M1LWU5YTlmZTEyMGFkNy8wLzMxMzAzMzJlMzEzNjM4MmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqL4wDQYJ KoZIhvcNAQELBQADggEBACzJKLnc6nCVigmSbvWNQcbl4hqyK0vYUN6VIJfGNscC vdrFjR2J/FTVcSGHM02lWWtS0nhJ62bmffPUscS+KaxsGsFIaaz5saNVWVk6DtVR /I3WCR0jt78MTnuB5Py790o2kYxlM3O/gl4MIEUr97H2dtEuTuv+nQ43WuGmEOl4 +xMYm1gOPbf8d6yg6wIg7ATfv0xNkEA5vNDlq1IFBwXXiK+AFB+YNKCtSj8NgTWd fDBzvT6Y7wvesg4J+Uevp/ea1yZhkQ2C2rWzznAmc7KprKXkUy2PHkUYkVdVCiTi IGaodz0iDpmHuKSksCMpfPH4mFOD8Je1JDzvdRl8oTc= -----END CERTIFICATE-----Generated at Wed Apr 22 06:05:21 2026 by rpki-client