$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa File: 3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa (raw, json) Hash identifier: 0KAfxlBg3pCMWVOLS7U5nki0KnQRLRYCYZ69PRa+jaU= Subject key identifier: 95:29:C8:1E:CC:21:BF:88:F1:F4:0D:68:34:5E:3E:2D:DF:12:E0:3E Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Certificate serial: 72AEA588CC0BF7B2A670F1263A280B72F6D12567 Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa Signing time: Wed 04 Mar 2026 22:00:00 +0000 ROA not before: Wed 04 Mar 2026 21:55:00 +0000 ROA not after: Wed 03 Mar 2027 22:00:00 +0000 asID: 138064 IP address blocks: 103.122.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 13:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ae:a5:88:cc:0b:f7:b2:a6:70:f1:26:3a:28:0b:72:f6:d1:25:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Validity Not Before: Mar 4 21:55:00 2026 GMT Not After : Mar 3 22:00:00 2027 GMT Subject: CN=9529C81ECC21BF88F1F40D68345E3E2DDF12E03E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:40:c4:ba:44:f5:83:17:88:fc:45:68:14:06: f0:b5:f4:9d:8a:46:06:ab:e4:db:51:82:db:53:a6: e8:4b:bd:b8:47:30:3c:d3:f4:01:b0:fd:2c:a8:22: fd:6b:c6:b7:65:c9:1d:2b:02:70:02:97:aa:f4:61: 37:77:7f:22:5a:87:1a:3b:28:0a:c4:2f:b4:7b:bc: 68:19:8c:49:6f:a1:67:b0:17:db:10:a4:d8:03:3e: a7:36:5f:ff:95:0b:a6:b3:50:7a:42:40:b7:26:47: c2:fd:53:93:49:31:6d:e5:a6:7a:8e:9e:fe:ad:8a: 8c:24:aa:fd:6f:98:82:fb:75:1d:dd:f1:cf:f6:29: c6:70:3f:5c:99:d4:9c:9e:2c:cc:b0:ef:c4:a7:11: d6:ce:1f:c2:ce:df:fa:d6:e6:68:3a:99:bb:1b:9c: 38:a4:0b:f5:04:8f:da:6c:9a:6a:d2:ca:ab:43:e0: 9a:41:aa:9c:bc:f7:eb:cc:d0:7f:6e:1b:14:49:26: 34:03:3a:77:d9:60:20:dd:5d:a1:9f:ec:18:a8:e7: 83:29:0b:2d:86:f4:5a:f5:c7:f6:b3:55:7d:e4:4e: 58:b4:84:ca:c9:ac:8d:41:db:c7:be:6b:31:b4:9a: 5a:ad:de:9f:8f:49:be:e5:70:8e:14:0e:e6:99:c3: 1b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:29:C8:1E:CC:21:BF:88:F1:F4:0D:68:34:5E:3E:2D:DF:12:E0:3E X509v3 Authority Key Identifier: keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.64.0/22 Signature Algorithm: sha256WithRSAEncryption 72:1e:bb:4c:7b:a6:7c:26:9b:96:75:82:ab:9d:8e:83:ec:1c: ef:bb:e5:0a:38:74:ab:29:43:5e:ab:c2:a3:3a:07:35:65:5c: 7f:48:58:5b:2a:b2:d7:9f:42:81:81:72:f0:7b:e1:34:44:85: 75:83:12:e1:2f:5b:6c:f3:19:58:de:0a:8f:81:59:fe:42:2f: d6:8b:08:38:d6:92:0f:53:3e:7f:49:21:5c:17:6c:46:51:c8: 26:09:44:03:93:53:7b:ba:fc:f6:23:e8:44:47:37:02:50:fa: 79:be:ed:dc:a5:0a:97:75:40:17:5f:ab:d9:28:47:6a:f6:ff: de:9d:30:a1:6f:a5:c9:99:09:55:d1:60:56:95:2a:1d:39:2c: 36:b1:db:a3:a2:b7:13:fd:cb:c4:a7:ba:ab:73:d0:24:0c:db: 0c:59:9b:a8:24:da:9d:3d:7e:01:91:43:fa:b6:62:db:52:f4: 85:f8:83:99:13:38:f0:0e:f9:f2:77:09:55:14:17:87:b8:54: 13:fb:02:19:89:43:d1:f0:fb:79:d3:19:32:44:40:e0:74:1b: 2f:cd:40:7e:3f:df:59:8f:88:ee:44:18:e1:a1:66:b9:28:b8: a4:b9:58:4e:05:29:79:17:da:35:24:50:e1:ef:c1:cf:3b:bb: 35:ee:4b:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcq6liMwL97KmcPEmOigLcvbRJWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJB Qjg5Q0M3NTAeFw0yNjAzMDQyMTU1MDBaFw0yNzAzMDMyMjAwMDBaMDMxMTAvBgNV BAMTKDk1MjlDODFFQ0MyMUJGODhGMUY0MEQ2ODM0NUUzRTJEREYxMkUwM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQMS6RPWDF4j8RWgUBvC19J2K Rgar5NtRgttTpuhLvbhHMDzT9AGw/SyoIv1rxrdlyR0rAnACl6r0YTd3fyJahxo7 KArEL7R7vGgZjElvoWewF9sQpNgDPqc2X/+VC6azUHpCQLcmR8L9U5NJMW3lpnqO nv6tiowkqv1vmIL7dR3d8c/2KcZwP1yZ1JyeLMyw78SnEdbOH8LO3/rW5mg6mbsb nDikC/UEj9psmmrSyqtD4JpBqpy89+vM0H9uGxRJJjQDOnfZYCDdXaGf7Bio54Mp Cy2G9Fr1x/azVX3kTli0hMrJrI1B28e+azG0mlqt3p+PSb7lcI4UDuaZwxuDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlSnIHswhv4jx9A1oNF4+Ld8S4D4wHwYDVR0j BBgwFoAUFKOfpUEOpX4NQW4DLXaeUquJzHUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGQ5YTI5Ni04MjI4LTQzODYtOGZlOS05N2FhMzA5MWRlMGQvMC8xNEEzOUZBNTQx MEVBNTdFMEQ0MTZFMDMyRDc2OUU1MkFCODlDQzc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJBQjg5 Q0M3NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwZDlhMjk2LTgyMjgtNDM4Ni04 ZmU5LTk3YWEzMDkxZGUwZC8wLzMxMzAzMzJlMzEzMjMyMmUzNjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3pAMA0GCSqG SIb3DQEBCwUAA4IBAQByHrtMe6Z8JpuWdYKrnY6D7Bzvu+UKOHSrKUNeq8KjOgc1 ZVx/SFhbKrLXn0KBgXLwe+E0RIV1gxLhL1ts8xlY3gqPgVn+Qi/Wiwg41pIPUz5/ SSFcF2xGUcgmCUQDk1N7uvz2I+hERzcCUPp5vu3cpQqXdUAXX6vZKEdq9v/enTCh b6XJmQlV0WBWlSodOSw2sdujorcT/cvEp7qrc9AkDNsMWZuoJNqdPX4BkUP6tmLb UvSF+IOZEzjwDvnydwlVFBeHuFQT+wIZiUPR8Pt50xkyREDgdBsvzUB+P99Zj4ju RBjhoWa5KLikuVhOBSl5F9o1JFDh78HPO7s17kvy -----END CERTIFICATE-----Generated at Wed Mar 25 06:38:35 2026 by rpki-client