$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: /XDSaVsrSjwe2U97ABDcqea/xKaB2R3seZrfdL8XTtc= Subject key identifier: E0:3A:FD:8E:AD:34:BF:09:FA:A4:11:0A:9C:46:FC:0E:19:65:CE:85 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 53E1E876DE12FE775C1A9C39E6DB73EE9C72CDC9 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa Signing time: Thu 05 Mar 2026 05:00:04 +0000 ROA not before: Thu 05 Mar 2026 04:55:04 +0000 ROA not after: Thu 04 Mar 2027 05:00:04 +0000 asID: 38785 IP address blocks: 121.101.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 00:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e1:e8:76:de:12:fe:77:5c:1a:9c:39:e6:db:73:ee:9c:72:cd:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Mar 5 04:55:04 2026 GMT Not After : Mar 4 05:00:04 2027 GMT Subject: CN=E03AFD8EAD34BF09FAA4110A9C46FC0E1965CE85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:59:34:7c:38:a6:d1:b1:27:2c:97:78:eb:d1: 40:32:3e:47:10:9f:42:bf:e6:ae:60:27:8c:cc:16: 38:5a:38:03:28:be:f3:01:a0:d7:44:7e:59:9f:4a: c8:e1:69:0b:56:ce:1b:cb:67:f2:ba:cf:67:25:b9: 42:b0:ae:f1:bd:5b:d9:a9:1d:ca:24:86:68:cb:a7: ab:46:c0:c5:37:1d:a0:b6:89:08:06:a4:03:38:a0: 96:0b:e4:c7:8e:e1:f4:5c:7b:2a:fd:5d:8b:84:dc: 06:62:5d:da:19:a0:ec:bc:cf:ee:5c:1d:7f:66:f4: 95:23:61:6a:59:41:94:86:97:79:4b:71:af:7c:03: 43:b3:7d:6f:01:c3:bc:b5:ff:79:29:09:ec:c4:35: 15:f3:33:df:8b:62:40:a7:ec:9e:e3:9e:18:58:a6: e8:92:9b:06:73:b9:ca:a6:b4:bb:7c:fb:c5:9a:04: 22:c8:22:ea:34:6d:31:2a:3c:26:9f:03:5a:0a:76: 72:56:ec:f6:d7:a2:0d:f1:95:e4:d6:1c:75:0f:db: 71:5e:80:42:37:7d:8b:14:f1:7c:a1:bd:1e:b1:3e: 7c:5a:8d:7a:f6:3c:68:c9:2b:0c:bd:66:e4:e9:a1: 8a:91:32:7a:60:69:a6:fc:07:92:31:3c:a4:f2:2e: f6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:3A:FD:8E:AD:34:BF:09:FA:A4:11:0A:9C:46:FC:0E:19:65:CE:85 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.186.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:55:c5:e9:43:e8:99:e9:d5:32:de:4d:6a:05:40:cb:30:6f: 20:78:d8:6b:10:d1:01:88:a0:8b:01:18:0c:f4:46:63:70:fa: 58:3e:89:ec:29:d2:ed:27:a2:0c:5f:77:d7:2c:2e:63:0a:d9: 90:62:8c:64:5d:2d:d7:55:b7:4b:be:9d:e3:37:05:1b:5d:be: 26:62:a4:13:fe:0c:78:84:59:ff:2c:9a:58:b5:a1:51:cf:fd: de:83:17:0d:31:10:9e:25:34:2e:0e:63:96:92:0c:43:6f:f4: c0:54:19:f5:f2:30:bf:5b:e2:e5:cc:07:da:3e:c9:a7:45:9c: ea:cd:10:5d:7a:ed:e2:85:6c:51:1e:55:c7:b7:07:a4:a7:94: c6:67:74:e9:77:4c:cd:ac:2b:9c:e3:bc:b0:d4:37:7c:a4:ce: 5e:55:eb:97:b7:fe:ab:41:ea:8c:25:47:40:5e:3f:33:cc:32: fb:ea:33:15:9c:68:03:e4:ba:63:7b:b8:0d:56:d5:8a:33:1b: 2d:95:a0:3d:ab:72:a0:a3:a4:e3:51:5a:21:f5:82:4a:db:54: a6:cf:02:7d:b3:79:6b:f3:5f:f7:b5:c7:b3:dc:fc:f7:88:2c: 31:6c:1a:4a:d4:6c:16:c0:39:e2:5e:d3:17:2b:69:50:20:69: 2d:59:0f:6e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU+Hodt4S/ndcGpw55ttz7pxyzckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNjAzMDUwNDU1MDRaFw0yNzAzMDQwNTAwMDRaMDMxMTAvBgNV BAMTKEUwM0FGRDhFQUQzNEJGMDlGQUE0MTEwQTlDNDZGQzBFMTk2NUNFODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuWTR8OKbRsScsl3jr0UAyPkcQ n0K/5q5gJ4zMFjhaOAMovvMBoNdEflmfSsjhaQtWzhvLZ/K6z2cluUKwrvG9W9mp HcokhmjLp6tGwMU3HaC2iQgGpAM4oJYL5MeO4fRceyr9XYuE3AZiXdoZoOy8z+5c HX9m9JUjYWpZQZSGl3lLca98A0OzfW8Bw7y1/3kpCezENRXzM9+LYkCn7J7jnhhY puiSmwZzucqmtLt8+8WaBCLIIuo0bTEqPCafA1oKdnJW7PbXog3xleTWHHUP23Fe gEI3fYsU8XyhvR6xPnxajXr2PGjJKwy9ZuTpoYqRMnpgaab8B5IxPKTyLvaTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4Dr9jq00vwn6pBEKnEb8DhllzoUwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW6MA0GCSqG SIb3DQEBCwUAA4IBAQB+VcXpQ+iZ6dUy3k1qBUDLMG8geNhrENEBiKCLARgM9EZj cPpYPonsKdLtJ6IMX3fXLC5jCtmQYoxkXS3XVbdLvp3jNwUbXb4mYqQT/gx4hFn/ LJpYtaFRz/3egxcNMRCeJTQuDmOWkgxDb/TAVBn18jC/W+LlzAfaPsmnRZzqzRBd eu3ihWxRHlXHtwekp5TGZ3Tpd0zNrCuc47yw1Dd8pM5eVeuXt/6rQeqMJUdAXj8z zDL76jMVnGgD5Lpje7gNVtWKMxstlaA9q3Kgo6TjUVoh9YJK21SmzwJ9s3lr81/3 tcez3Pz3iCwxbBpK1GwWwDniXtMXK2lQIGktWQ9u -----END CERTIFICATE-----Generated at Thu Mar 26 22:35:53 2026 by rpki-client