$ rpki-client -vvf repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa File: 3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa (raw, json) Hash identifier: VIiYsiciQqUcEybdJzWc2/mfp8SJKq8E8uJ2ZasR81U= Subject key identifier: B6:84:2A:39:24:8F:DA:96:11:FF:1E:3F:18:0D:F2:1B:6B:D4:07:53 Certificate issuer: /CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Certificate serial: 5B47A1FFC8F312A044AAE4F6CDA82766C2FB3A38 Authority key identifier: 3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa Signing time: Fri 06 Mar 2026 05:00:02 +0000 ROA not before: Fri 06 Mar 2026 04:55:02 +0000 ROA not after: Fri 05 Mar 2027 05:00:02 +0000 asID: 138608 IP address blocks: 103.171.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 15:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:47:a1:ff:c8:f3:12:a0:44:aa:e4:f6:cd:a8:27:66:c2:fb:3a:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Validity Not Before: Mar 6 04:55:02 2026 GMT Not After : Mar 5 05:00:02 2027 GMT Subject: CN=B6842A39248FDA9611FF1E3F180DF21B6BD40753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9a:54:fd:eb:51:4b:91:b3:b8:28:f6:52:bc: b3:b0:2f:c4:d5:48:b7:20:f5:05:05:40:df:00:cb: 22:d1:77:aa:32:9a:5b:ce:84:61:e3:b8:7c:3d:1a: c6:78:02:7c:92:3e:c3:a7:b3:01:71:66:46:2c:2c: a5:77:5a:3e:63:71:47:1b:ea:41:f9:de:64:d3:ad: 0b:80:f9:f8:ef:79:7d:dd:77:79:af:4b:ed:b5:ed: 2a:a9:6f:7b:c8:8d:0b:78:27:27:43:c9:76:dc:d9: 06:63:c3:aa:d3:72:9d:df:bf:73:c0:12:2b:60:58: dd:b2:03:a9:0f:a4:1a:f7:34:24:63:0b:b0:31:3b: e5:69:f3:b7:2b:c3:20:c0:f5:d5:64:4a:d5:d3:98: 24:a4:cc:83:08:0a:09:eb:02:81:e2:89:35:33:ea: 8f:b8:3a:df:17:9e:87:67:e4:e6:54:ca:8a:2b:08: c6:e9:41:89:2f:d2:8b:ef:14:56:49:1e:31:c2:9e: dc:f8:11:80:59:b5:96:b3:8a:71:6e:f0:8c:1e:72: 32:05:f3:8d:ae:21:e5:e8:30:f8:13:87:44:0c:c4: af:6a:8c:cd:66:ea:ae:85:43:0c:bc:9d:10:3d:1a: f8:d9:a7:95:2d:da:4f:20:b4:b4:6d:89:0f:74:98: 72:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:84:2A:39:24:8F:DA:96:11:FF:1E:3F:18:0D:F2:1B:6B:D4:07:53 X509v3 Authority Key Identifier: keyid:3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.19.0/24 Signature Algorithm: sha256WithRSAEncryption 77:ba:18:fd:4e:de:62:fa:67:ec:f2:82:2e:bd:04:e0:ac:8a: ab:a6:b3:f3:37:41:5c:45:f3:fa:fc:53:d4:d2:5a:35:9c:11: d1:44:af:46:11:82:1f:d4:80:3c:3b:6f:2f:09:f7:60:ca:9c: 90:33:b5:54:ed:61:f6:85:5f:1a:b2:1b:cb:57:be:1b:57:55: 63:9b:43:74:cf:9f:23:fc:ac:2c:12:bd:77:9c:0d:ba:e8:c0: 59:7d:51:b1:85:cf:1b:5a:7d:1e:a0:41:60:1f:03:57:58:65: 6d:8f:a9:a4:93:b2:87:e3:c9:46:0e:0e:64:31:da:f5:32:d8: b1:85:d3:94:08:90:ef:85:1e:f5:25:5a:f6:ae:9d:a7:52:29: 9f:15:45:ad:8d:99:d1:19:63:bb:0d:12:57:44:77:d4:53:53: 49:0a:2e:7c:1b:8b:48:5f:ea:0c:be:74:6c:03:03:87:a9:82: 42:47:92:b8:b5:1e:74:4b:79:22:8a:b4:19:f8:b3:57:33:62: 8c:21:86:12:09:1d:25:50:64:c6:f6:53:ee:49:10:86:b3:c6: 75:e8:b7:46:7a:1e:e5:6a:c1:6c:bf:f4:1e:04:e7:33:b9:a4: ab:23:1b:a1:0c:32:d8:67:39:d7:65:9b:6a:67:70:5a:f8:77: b5:d0:e4:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW0eh/8jzEqBEquT2zagnZsL7OjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZB MENCOUY4QjAeFw0yNjAzMDYwNDU1MDJaFw0yNzAzMDUwNTAwMDJaMDMxMTAvBgNV BAMTKEI2ODQyQTM5MjQ4RkRBOTYxMUZGMUUzRjE4MERGMjFCNkJENDA3NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDamlT961FLkbO4KPZSvLOwL8TV SLcg9QUFQN8AyyLRd6oymlvOhGHjuHw9GsZ4AnySPsOnswFxZkYsLKV3Wj5jcUcb 6kH53mTTrQuA+fjveX3dd3mvS+217Sqpb3vIjQt4JydDyXbc2QZjw6rTcp3fv3PA EitgWN2yA6kPpBr3NCRjC7AxO+Vp87crwyDA9dVkStXTmCSkzIMICgnrAoHiiTUz 6o+4Ot8Xnodn5OZUyoorCMbpQYkv0ovvFFZJHjHCntz4EYBZtZazinFu8IwecjIF 842uIeXoMPgTh0QMxK9qjM1m6q6FQwy8nRA9GvjZp5Ut2k8gtLRtiQ90mHLrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtoQqOSSP2pYR/x4/GA3yG2vUB1MwHwYDVR0j BBgwFoAUPJFI7yevXtNIE0L13vJaJqDLn4swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YThmNjlmNy05MzMyLTRjZDQtYjNlNS1jYzZjNDc3MmNmNzMvMC8zQzkxNDhFRjI3 QUY1RUQzNDgxMzQyRjVERUYyNUEyNkEwQ0I5RjhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZBMENC OUY4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhOGY2OWY3LTkzMzItNGNkNC1i M2U1LWNjNmM0NzcyY2Y3My8wLzMxMzAzMzJlMzEzNzMxMmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzYzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6sTMA0GCSqG SIb3DQEBCwUAA4IBAQB3uhj9Tt5i+mfs8oIuvQTgrIqrprPzN0FcRfP6/FPU0lo1 nBHRRK9GEYIf1IA8O28vCfdgypyQM7VU7WH2hV8ashvLV74bV1Vjm0N0z58j/Kws Er13nA266MBZfVGxhc8bWn0eoEFgHwNXWGVtj6mkk7KH48lGDg5kMdr1MtixhdOU CJDvhR71JVr2rp2nUimfFUWtjZnRGWO7DRJXRHfUU1NJCi58G4tIX+oMvnRsAwOH qYJCR5K4tR50S3kiirQZ+LNXM2KMIYYSCR0lUGTG9lPuSRCGs8Z16LdGeh7lasFs v/QeBOczuaSrIxuhDDLYZznXZZtqZ3Ba+He10ORV -----END CERTIFICATE-----Generated at Tue Mar 17 16:22:11 2026 by rpki-client