$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: flxUwmIBm5LywlVGg9yH6C9JGyBpXiBZMWw156cr79I= Subject key identifier: 37:BF:F4:9F:EC:C6:DA:86:30:20:E9:AD:8B:07:1C:D9:D0:17:13:03 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 7059FA572E719714E2B2B838C0FB637C91190FFA Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa Signing time: Thu 05 Mar 2026 05:00:03 +0000 ROA not before: Thu 05 Mar 2026 04:55:03 +0000 ROA not after: Thu 04 Mar 2027 05:00:03 +0000 asID: 38785 IP address blocks: 121.101.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 00:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:59:fa:57:2e:71:97:14:e2:b2:b8:38:c0:fb:63:7c:91:19:0f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Mar 5 04:55:03 2026 GMT Not After : Mar 4 05:00:03 2027 GMT Subject: CN=37BFF49FECC6DA863020E9AD8B071CD9D0171303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e0:65:c2:46:70:45:77:45:f2:74:7e:2a:ff: 8e:78:1f:ab:3c:d2:72:37:07:06:60:64:16:df:e7: 26:11:fb:ca:19:d5:cb:18:d4:1f:5d:ee:fd:8c:bf: 8c:c0:ea:b8:c6:a0:7e:64:33:ff:c8:04:08:84:ad: 16:f5:0f:32:f2:56:9b:68:a1:5d:8e:16:a7:51:81: 31:c8:25:f8:7f:2d:02:1c:f2:5f:f7:10:6a:19:ef: 46:47:c4:42:e4:f7:3d:42:2e:d2:3a:78:36:19:1f: 7a:22:49:e2:a3:1b:4d:f9:5e:17:f1:ef:ef:f3:fc: e6:3a:b6:1c:09:a8:d4:81:17:7c:52:3d:84:8a:ca: b6:ad:e2:37:e8:1e:91:da:2e:c6:39:13:91:11:7b: 59:7f:21:bf:f9:dd:ec:17:98:f1:72:85:50:ce:56: d4:19:37:8c:f0:17:40:f2:72:64:32:f9:b4:ac:0d: 6f:3c:cb:76:99:66:7c:1e:20:37:63:00:9a:53:a1: 58:95:f8:ca:5a:6d:c6:4f:d6:a4:19:6b:f0:b4:f6: ae:6d:47:31:fe:fe:3e:07:3b:52:a7:50:c8:9f:b9: db:bb:6a:dc:78:d2:79:17:01:89:b6:4c:45:5f:d6: ca:97:0d:32:22:83:08:5a:cd:15:53:75:05:96:e8: 20:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BF:F4:9F:EC:C6:DA:86:30:20:E9:AD:8B:07:1C:D9:D0:17:13:03 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.187.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:a3:38:8c:ef:51:eb:3e:87:ea:50:ce:e1:6b:51:63:e1:5a: 3b:2f:40:91:d0:47:09:ec:1b:50:3a:8f:f2:6d:4c:b8:09:5f: 11:d4:50:8c:1e:0d:e7:50:02:cd:63:81:0a:4d:fb:e7:a0:ae: e9:d8:56:11:6c:08:9b:5f:5c:5a:b7:72:c3:7d:07:bd:f5:d7: 95:0a:09:38:eb:d7:db:25:61:4a:db:b6:68:57:4a:05:72:1d: df:77:61:73:98:8b:02:dc:36:ae:0a:b1:15:85:af:c6:a7:f9: ac:1c:09:7c:3d:45:ab:0b:1e:ac:8b:30:54:d1:f7:1b:08:19: de:c8:9a:2d:6e:9d:43:21:b6:0f:0d:b4:42:14:a8:f9:89:f8: df:ae:49:a0:58:6c:8c:02:6a:ae:d5:dd:e1:83:16:fa:b3:97: 5a:f1:18:04:b3:df:5e:66:db:fb:b9:50:d0:0f:62:68:23:86: af:2f:c1:8e:36:fa:52:cd:dd:32:04:70:ba:79:88:cd:9a:3d: 6c:f4:59:46:db:6a:85:f5:f5:51:27:db:39:e8:4e:ba:88:3e: 0e:a9:5e:ac:6f:75:62:5d:ed:23:fd:29:95:02:8a:33:58:e9: 4a:62:91:ad:3c:7e:70:87:94:1f:f4:22:f8:1f:16:c3:5e:d1: bb:25:f4:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcFn6Vy5xlxTisrg4wPtjfJEZD/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNjAzMDUwNDU1MDNaFw0yNzAzMDQwNTAwMDNaMDMxMTAvBgNV BAMTKDM3QkZGNDlGRUNDNkRBODYzMDIwRTlBRDhCMDcxQ0Q5RDAxNzEzMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC84GXCRnBFd0XydH4q/454H6s8 0nI3BwZgZBbf5yYR+8oZ1csY1B9d7v2Mv4zA6rjGoH5kM//IBAiErRb1DzLyVpto oV2OFqdRgTHIJfh/LQIc8l/3EGoZ70ZHxELk9z1CLtI6eDYZH3oiSeKjG035Xhfx 7+/z/OY6thwJqNSBF3xSPYSKyrat4jfoHpHaLsY5E5ERe1l/Ib/53ewXmPFyhVDO VtQZN4zwF0DycmQy+bSsDW88y3aZZnweIDdjAJpToViV+MpabcZP1qQZa/C09q5t RzH+/j4HO1KnUMifudu7atx40nkXAYm2TEVf1sqXDTIigwhazRVTdQWW6CBZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN7/0n+zG2oYwIOmtiwcc2dAXEwMwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW7MA0GCSqG SIb3DQEBCwUAA4IBAQBKoziM71HrPofqUM7ha1Fj4Vo7L0CR0EcJ7BtQOo/ybUy4 CV8R1FCMHg3nUALNY4EKTfvnoK7p2FYRbAibX1xat3LDfQe99deVCgk469fbJWFK 27ZoV0oFch3fd2FzmIsC3DauCrEVha/Gp/msHAl8PUWrCx6sizBU0fcbCBneyJot bp1DIbYPDbRCFKj5ifjfrkmgWGyMAmqu1d3hgxb6s5da8RgEs99eZtv7uVDQD2Jo I4avL8GONvpSzd0yBHC6eYjNmj1s9FlG22qF9fVRJ9s56E66iD4OqV6sb3ViXe0j /SmVAoozWOlKYpGtPH5wh5Qf9CL4HxbDXtG7JfTw -----END CERTIFICATE-----Generated at Thu Mar 26 22:37:23 2026 by rpki-client