$ rpki-client -vvf repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa File: 3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: Bs5Awi2ROwKff4BLbS2KelsdGscmWwXl7Ms/+kA85eg= Subject key identifier: 11:7F:D8:4B:A6:1E:CE:77:47:4C:D2:07:79:BC:DD:6F:49:DA:E5:75 Certificate issuer: /CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Certificate serial: 51035515229A005028D45BCA64D289D81C0B5E70 Authority key identifier: 3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa Signing time: Fri 06 Mar 2026 05:00:02 +0000 ROA not before: Fri 06 Mar 2026 04:55:02 +0000 ROA not after: Fri 05 Mar 2027 05:00:02 +0000 asID: 136052 IP address blocks: 103.171.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 15:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:03:55:15:22:9a:00:50:28:d4:5b:ca:64:d2:89:d8:1c:0b:5e:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Validity Not Before: Mar 6 04:55:02 2026 GMT Not After : Mar 5 05:00:02 2027 GMT Subject: CN=117FD84BA61ECE77474CD20779BCDD6F49DAE575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e7:92:eb:91:64:00:7c:2a:ae:ed:73:be:f1: 77:43:7b:e1:0f:6a:b1:ac:b5:ba:02:7b:e9:d3:82: 7d:bf:99:1a:d3:24:fc:50:a9:eb:50:1a:2b:90:a3: e0:0c:69:8c:90:29:1e:b0:59:87:a9:42:b4:b8:cd: c0:7f:89:3f:fc:b8:03:0a:aa:f3:72:3c:8d:cc:cf: 6e:cb:3f:3f:1d:c0:95:17:2d:90:08:16:e2:e0:5c: 3d:04:db:22:78:49:92:dc:c7:bc:91:07:9d:f8:44: 5a:ce:ad:9a:9f:1b:2d:df:ae:95:54:3b:e3:3f:98: 0d:f5:b7:3c:ec:c2:af:fb:33:38:6b:eb:84:b6:b2: 72:09:f2:ae:d6:a7:ef:0d:a0:53:d9:fc:a4:73:6d: 22:54:9e:10:14:d3:4f:46:c6:8b:62:ea:03:34:86: 6c:2e:11:e2:e6:fd:1d:96:35:0c:3a:26:a2:4c:e6: e3:1f:da:b1:77:c3:83:11:99:69:21:cd:fa:a3:c0: 06:f1:7e:85:7f:a4:61:4f:af:9a:e5:99:43:3c:44: 50:0f:f3:31:bd:ed:64:9f:64:51:60:5b:1c:9e:da: 40:6c:65:19:c0:0e:d5:79:62:3f:2f:70:cb:e2:30: a2:1e:4a:64:31:89:76:50:1b:d1:a3:fd:65:61:64: b3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:7F:D8:4B:A6:1E:CE:77:47:4C:D2:07:79:BC:DD:6F:49:DA:E5:75 X509v3 Authority Key Identifier: keyid:3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.18.0/24 Signature Algorithm: sha256WithRSAEncryption 30:90:30:bf:08:f8:3c:10:a0:69:fc:8f:a8:66:f2:ed:29:2f: 6b:fd:43:47:be:73:b6:f5:de:bc:db:e4:65:23:f5:18:32:63: 76:82:82:6e:96:9e:ad:a8:45:22:c7:2e:c9:14:40:8c:5d:c5: a9:c4:fd:d4:b9:a6:0e:bc:7b:b3:52:7c:d6:3e:d4:71:02:cb: 86:e4:44:e4:27:1e:03:ca:18:91:68:2c:9d:0b:f8:04:2a:93: 15:28:42:5a:06:0f:09:aa:b1:cb:de:c7:eb:d4:2d:78:26:59: 65:c3:a4:31:b2:d4:6c:97:2f:b5:12:e9:ab:5c:5f:3d:f7:19: 0c:f9:4e:f8:de:74:09:77:96:9e:b3:2d:4e:19:1a:55:e7:b1: 57:cd:55:d2:2f:61:e7:77:05:c0:1d:69:1c:75:37:b2:5e:f9: 13:79:5b:aa:13:0e:45:63:2e:ff:c0:56:96:ae:98:5f:a3:7a: 03:4d:96:88:f1:f1:eb:88:69:68:09:2b:e4:23:43:f4:0f:fb: b3:a6:81:2f:b5:95:4c:af:8f:4c:69:87:f2:80:83:6f:d1:d4: 87:c5:a9:26:ff:db:f6:f0:14:5d:b4:3b:4f:fe:55:0d:50:e0: 0e:be:ac:57:69:48:11:4a:22:55:0d:8c:d0:12:69:b2:78:d1: 1f:a7:2f:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUQNVFSKaAFAo1FvKZNKJ2BwLXnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZB MENCOUY4QjAeFw0yNjAzMDYwNDU1MDJaFw0yNzAzMDUwNTAwMDJaMDMxMTAvBgNV BAMTKDExN0ZEODRCQTYxRUNFNzc0NzRDRDIwNzc5QkNERDZGNDlEQUU1NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA55LrkWQAfCqu7XO+8XdDe+EP arGstboCe+nTgn2/mRrTJPxQqetQGiuQo+AMaYyQKR6wWYepQrS4zcB/iT/8uAMK qvNyPI3Mz27LPz8dwJUXLZAIFuLgXD0E2yJ4SZLcx7yRB534RFrOrZqfGy3frpVU O+M/mA31tzzswq/7Mzhr64S2snIJ8q7Wp+8NoFPZ/KRzbSJUnhAU009Gxoti6gM0 hmwuEeLm/R2WNQw6JqJM5uMf2rF3w4MRmWkhzfqjwAbxfoV/pGFPr5rlmUM8RFAP 8zG97WSfZFFgWxye2kBsZRnADtV5Yj8vcMviMKIeSmQxiXZQG9Gj/WVhZLNlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEX/YS6YezndHTNIHebzdb0na5XUwHwYDVR0j BBgwFoAUPJFI7yevXtNIE0L13vJaJqDLn4swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YThmNjlmNy05MzMyLTRjZDQtYjNlNS1jYzZjNDc3MmNmNzMvMC8zQzkxNDhFRjI3 QUY1RUQzNDgxMzQyRjVERUYyNUEyNkEwQ0I5RjhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZBMENC OUY4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhOGY2OWY3LTkzMzItNGNkNC1i M2U1LWNjNmM0NzcyY2Y3My8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6sSMA0GCSqG SIb3DQEBCwUAA4IBAQAwkDC/CPg8EKBp/I+oZvLtKS9r/UNHvnO29d682+RlI/UY MmN2goJulp6tqEUixy7JFECMXcWpxP3UuaYOvHuzUnzWPtRxAsuG5ETkJx4DyhiR aCydC/gEKpMVKEJaBg8JqrHL3sfr1C14Jlllw6QxstRsly+1EumrXF899xkM+U74 3nQJd5aesy1OGRpV57FXzVXSL2HndwXAHWkcdTeyXvkTeVuqEw5FYy7/wFaWrphf o3oDTZaI8fHriGloCSvkI0P0D/uzpoEvtZVMr49MaYfygINv0dSHxakm/9v28BRd tDtP/lUNUOAOvqxXaUgRSiJVDYzQEmmyeNEfpy+H -----END CERTIFICATE-----Generated at Tue Mar 17 18:47:10 2026 by rpki-client