$ rpki-client -vvf repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa File: 3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa (raw, json) Hash identifier: bFimiAzva9LShsHLA11pXQ0Ytb437eF/rz76mDmBlA0= Subject key identifier: 73:9D:31:9B:E0:B0:11:50:CF:BF:61:F5:5F:0B:4C:F5:2F:20:F3:DC Certificate issuer: /CN=A385F006CB4A332AED2E94013E7482A62617F17F Certificate serial: 5A534C9E4CEDD5E3DBB7660D87A6A030815590D1 Authority key identifier: A3:85:F0:06:CB:4A:33:2A:ED:2E:94:01:3E:74:82:A6:26:17:F1:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa Signing time: Tue 03 Mar 2026 08:02:37 +0000 ROA not before: Tue 03 Mar 2026 07:57:37 +0000 ROA not after: Tue 02 Mar 2027 08:02:37 +0000 asID: 142347 IP address blocks: 103.169.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.crl rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:53:4c:9e:4c:ed:d5:e3:db:b7:66:0d:87:a6:a0:30:81:55:90:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A385F006CB4A332AED2E94013E7482A62617F17F Validity Not Before: Mar 3 07:57:37 2026 GMT Not After : Mar 2 08:02:37 2027 GMT Subject: CN=739D319BE0B01150CFBF61F55F0B4CF52F20F3DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f3:46:5b:8a:50:09:3e:94:07:ae:86:e6:f8: 0a:0c:c8:b6:e1:28:55:ca:85:48:7b:af:85:44:47: 7c:15:02:29:b0:83:29:fb:69:86:6c:72:2a:12:60: 94:d0:6d:28:80:89:15:24:71:e9:44:27:a2:36:c5: f3:4f:76:35:f7:57:8b:6b:1e:62:3d:f7:d0:f2:bf: 22:7d:48:8a:ad:07:18:4e:75:ba:dd:eb:e5:2f:a6: 5e:88:cd:a5:f2:1e:61:45:7b:53:e8:38:2c:71:15: 0e:38:3b:a5:a9:6f:46:2b:ac:ec:70:90:cb:60:bb: 26:3f:62:fd:fa:38:88:28:fb:54:2d:84:6a:6a:76: b2:c5:2c:53:7d:3d:52:30:db:04:74:74:50:e2:b9: ac:6f:ba:20:9d:db:72:7c:93:2d:01:47:71:22:46: b6:89:87:26:93:04:70:47:9c:e6:46:f9:42:23:f3: 73:7e:26:67:d0:2b:d3:96:69:51:53:ca:ed:1b:43: 92:fc:d1:c4:c8:51:7a:91:e6:52:20:86:a1:42:56: b2:e4:ba:05:84:f7:a0:cc:ec:c9:1e:ac:b8:b2:6a: 65:cd:e1:8f:f0:15:d3:8e:54:32:f6:1a:3e:26:c7: 8c:13:5e:9e:79:9f:b0:68:da:b7:35:09:de:f1:ce: 38:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9D:31:9B:E0:B0:11:50:CF:BF:61:F5:5F:0B:4C:F5:2F:20:F3:DC X509v3 Authority Key Identifier: keyid:A3:85:F0:06:CB:4A:33:2A:ED:2E:94:01:3E:74:82:A6:26:17:F1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.188.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:f3:93:eb:1b:9d:29:f8:3f:89:97:4f:d5:e6:3f:4e:aa:38: 0a:89:27:33:ae:eb:d6:69:1b:82:98:76:aa:e6:d7:60:38:f5: 8e:04:e5:1c:3f:06:2b:c9:cf:e8:ba:53:5c:e3:54:96:34:b4: 14:4d:fa:61:10:42:16:8e:68:88:a5:51:95:db:bf:d3:d5:83: d2:78:eb:60:74:0c:81:1f:62:a8:48:ea:98:6c:06:75:3f:88: f1:01:7f:ac:e7:01:b8:88:2a:ba:78:54:c5:85:cd:85:44:d6: 12:40:8f:e8:66:53:43:34:7b:e6:9d:e5:c3:bc:23:91:11:50: 13:29:9b:c4:5a:e6:4a:86:0b:3f:eb:17:78:05:2e:25:45:15: f1:83:8f:f2:e0:b5:f8:b9:e9:bb:31:68:87:80:2a:22:94:3e: ab:55:64:7b:e7:ba:5f:77:43:d6:34:a5:24:0e:36:db:7b:f5: 7f:95:fc:e6:a6:d9:4d:36:02:cd:19:7f:ee:d2:ac:f9:ee:a8: 2a:04:38:0c:15:20:d4:71:33:38:57:5d:35:64:ce:15:a5:d4: 42:8a:d3:06:79:22:f0:b7:a3:32:af:02:60:96:e3:84:c1:63: c7:3f:e1:be:ba:5e:bf:ce:cb:89:19:0a:ad:1f:38:d8:58:64: b1:30:48:3e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWlNMnkzt1ePbt2YNh6agMIFVkNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM4NUYwMDZDQjRBMzMyQUVEMkU5NDAxM0U3NDgyQTYy NjE3RjE3RjAeFw0yNjAzMDMwNzU3MzdaFw0yNzAzMDIwODAyMzdaMDMxMTAvBgNV BAMTKDczOUQzMTlCRTBCMDExNTBDRkJGNjFGNTVGMEI0Q0Y1MkYyMEYzREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy80ZbilAJPpQHrobm+AoMyLbh KFXKhUh7r4VER3wVAimwgyn7aYZscioSYJTQbSiAiRUkcelEJ6I2xfNPdjX3V4tr HmI999DyvyJ9SIqtBxhOdbrd6+Uvpl6IzaXyHmFFe1PoOCxxFQ44O6Wpb0YrrOxw kMtguyY/Yv36OIgo+1QthGpqdrLFLFN9PVIw2wR0dFDiuaxvuiCd23J8ky0BR3Ei RraJhyaTBHBHnOZG+UIj83N+JmfQK9OWaVFTyu0bQ5L80cTIUXqR5lIghqFCVrLk ugWE96DM7MkerLiyamXN4Y/wFdOOVDL2Gj4mx4wTXp55n7Bo2rc1Cd7xzjgZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc50xm+CwEVDPv2H1XwtM9S8g89wwHwYDVR0j BBgwFoAUo4XwBstKMyrtLpQBPnSCpiYX8X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmUyYTJlMS0xYjJkLTQ4Y2MtOWRiMy02N2E4MWFmNjcwNjIvMC9BMzg1RjAwNkNC NEEzMzJBRUQyRTk0MDEzRTc0ODJBNjI2MTdGMTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM4NUYwMDZDQjRBMzMyQUVEMkU5NDAxM0U3NDgyQTYyNjE3 RjE3Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2ZTJhMmUxLTFiMmQtNDhjYy05 ZGIzLTY3YTgxYWY2NzA2Mi8wLzMxMzAzMzJlMzEzNjM5MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqbwwDQYJ KoZIhvcNAQELBQADggEBAArzk+sbnSn4P4mXT9XmP06qOAqJJzOu69ZpG4KYdqrm 12A49Y4E5Rw/BivJz+i6U1zjVJY0tBRN+mEQQhaOaIilUZXbv9PVg9J462B0DIEf YqhI6phsBnU/iPEBf6znAbiIKrp4VMWFzYVE1hJAj+hmU0M0e+ad5cO8I5ERUBMp m8Ra5kqGCz/rF3gFLiVFFfGDj/Lgtfi56bsxaIeAKiKUPqtVZHvnul93Q9Y0pSQO Ntt79X+V/Oam2U02As0Zf+7SrPnuqCoEOAwVINRxMzhXXTVkzhWl1EKK0wZ5IvC3 ozKvAmCW44TBY8c/4b66Xr/Oy4kZCq0fONhYZLEwSD4= -----END CERTIFICATE-----Generated at Sat Mar 7 19:27:03 2026 by rpki-client