$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa File: 3130332e31302e3133362e302f32322d3234203d3e203137363731.roa (raw, json) Hash identifier: AzxCiF2pzhxT1CLqm6Vka0uoMpNWH/fxTB2VaoxBkhE= Subject key identifier: 4F:B8:FF:7A:81:18:5F:3B:42:52:58:24:CA:49:FB:C1:3C:4A:E9:C1 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 74F5B6BB354A5F1897FDE90107738D6C51A459C9 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa Signing time: Fri 17 Apr 2026 03:00:02 +0000 ROA not before: Fri 17 Apr 2026 02:55:02 +0000 ROA not after: Fri 16 Apr 2027 03:00:02 +0000 asID: 17671 IP address blocks: 103.10.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 04:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f5:b6:bb:35:4a:5f:18:97:fd:e9:01:07:73:8d:6c:51:a4:59:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Apr 17 02:55:02 2026 GMT Not After : Apr 16 03:00:02 2027 GMT Subject: CN=4FB8FF7A81185F3B42525824CA49FBC13C4AE9C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:65:fc:7f:88:2b:11:65:cf:a8:04:32:7d:15: dc:ff:10:d4:eb:10:bc:ef:7b:6a:75:02:08:e7:f0: 0a:6f:8e:cf:98:52:3a:99:0b:53:83:71:62:eb:d6: d4:3a:cb:96:1d:1e:8c:0a:cb:49:f6:a1:51:cf:1b: 9c:e6:83:e1:8e:d0:b5:ad:07:9d:45:7f:46:4f:4b: 36:b7:12:b9:93:be:7c:da:8c:13:49:c1:52:5b:17: 34:8b:69:6b:bf:0d:ad:fe:1f:56:2d:d1:3e:f6:10: a6:14:77:96:ab:3d:b8:a7:62:20:7d:f6:4f:be:66: 44:11:4c:a4:e8:e1:0e:1e:76:b1:56:46:6c:47:90: e7:3f:84:07:90:f8:da:7f:90:0e:98:6d:e8:12:13: 93:d7:d8:7f:99:eb:8b:34:ca:0b:4c:97:fa:66:3b: 89:76:06:78:c0:03:c7:86:01:c4:b3:e5:84:70:13: 71:33:ef:56:7b:5a:32:c8:b9:a8:f4:62:c1:e3:9c: 09:a0:9c:1d:5f:ec:5c:a5:66:c6:d1:6f:a6:51:62: 05:76:e9:69:c8:81:3a:24:06:aa:e2:97:38:c1:2f: 18:3b:40:a3:e6:b7:d7:b3:7c:15:67:ec:a9:51:a2: 11:4e:6d:a5:74:7a:c5:46:b3:b1:cc:62:d4:2f:23: 9d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B8:FF:7A:81:18:5F:3B:42:52:58:24:CA:49:FB:C1:3C:4A:E9:C1 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.136.0/22 Signature Algorithm: sha256WithRSAEncryption 67:f4:8c:8e:e9:45:c2:28:ed:a8:05:1f:3b:92:c5:df:14:49: 0c:ad:00:3a:22:5d:db:d2:dc:06:c4:06:dd:89:3a:e4:1e:df: 3f:18:bc:64:97:6c:3d:f7:37:0b:dc:36:40:b3:9d:3f:a4:98: e4:b9:7a:d6:15:48:21:64:1d:b3:52:04:d6:ec:a2:e8:41:32: fa:3f:1d:24:2b:dd:69:1e:ef:41:da:3d:d9:99:a6:d2:76:8e: f1:88:e1:c6:e1:40:6d:41:61:30:07:b7:38:f3:b7:29:b7:a0: ca:02:db:93:84:6e:0b:ef:6c:67:f2:26:4a:30:1c:5c:40:ce: 83:18:94:2c:b3:7a:77:a1:99:92:3a:e2:4f:03:a8:8b:8e:a9: 8c:a1:e5:58:b4:83:dc:14:39:1b:8b:c2:28:72:31:29:0e:28: b9:7b:de:81:12:9f:56:17:66:ba:f9:73:df:b2:a4:48:8f:43: 35:0e:3a:a2:63:89:46:8a:f1:ed:14:7c:a3:e7:a7:75:31:5b: 99:63:e4:4f:a6:98:ed:44:51:19:e1:3b:6c:6a:7e:73:da:30: 20:39:89:a0:09:17:e3:57:25:40:85:1d:e9:d4:5c:9c:d4:e0: 84:4f:7e:8f:f4:b6:86:05:d7:b4:4a:e3:ca:f5:4b:76:a2:4f: 2d:eb:e2:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdPW2uzVKXxiX/ekBB3ONbFGkWckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNjA0MTcwMjU1MDJaFw0yNzA0MTYwMzAwMDJaMDMxMTAvBgNV BAMTKDRGQjhGRjdBODExODVGM0I0MjUyNTgyNENBNDlGQkMxM0M0QUU5QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxZfx/iCsRZc+oBDJ9Fdz/ENTr ELzve2p1Agjn8Apvjs+YUjqZC1ODcWLr1tQ6y5YdHowKy0n2oVHPG5zmg+GO0LWt B51Ff0ZPSza3ErmTvnzajBNJwVJbFzSLaWu/Da3+H1Yt0T72EKYUd5arPbinYiB9 9k++ZkQRTKTo4Q4edrFWRmxHkOc/hAeQ+Np/kA6YbegSE5PX2H+Z64s0ygtMl/pm O4l2BnjAA8eGAcSz5YRwE3Ez71Z7WjLIuaj0YsHjnAmgnB1f7FylZsbRb6ZRYgV2 6WnIgTokBqrilzjBLxg7QKPmt9ezfBVn7KlRohFObaV0esVGs7HMYtQvI53RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUT7j/eoEYXztCUlgkykn7wTxK6cEwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzAzMzJlMzEzMDJlMzEzMzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcKiDANBgkqhkiG 9w0BAQsFAAOCAQEAZ/SMjulFwijtqAUfO5LF3xRJDK0AOiJd29LcBsQG3Yk65B7f Pxi8ZJdsPfc3C9w2QLOdP6SY5Ll61hVIIWQds1IE1uyi6EEy+j8dJCvdaR7vQdo9 2Zmm0naO8YjhxuFAbUFhMAe3OPO3KbegygLbk4RuC+9sZ/ImSjAcXEDOgxiULLN6 d6GZkjriTwOoi46pjKHlWLSD3BQ5G4vCKHIxKQ4ouXvegRKfVhdmuvlz37KkSI9D NQ46omOJRorx7RR8o+endTFbmWPkT6aY7URRGeE7bGp+c9owIDmJoAkX41clQIUd 6dRcnNTghE9+j/S2hgXXtErjyvVLdqJPLeviUQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:47:45 2026 by rpki-client