$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: 1R2O/r6j/Z2JIvpI1gj24JgeK9sd0xzW94a+KDUM1Bk= Subject key identifier: F1:E8:EA:F9:68:02:DC:80:0F:49:E0:56:DB:F6:63:EA:1C:C8:11:7D Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 1B6D9D30443CF60F21EDD59AB3BF2B6353E19718 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa Signing time: Thu 05 Mar 2026 05:00:03 +0000 ROA not before: Thu 05 Mar 2026 04:55:03 +0000 ROA not after: Thu 04 Mar 2027 05:00:03 +0000 asID: 38785 IP address blocks: 121.101.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 00:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:6d:9d:30:44:3c:f6:0f:21:ed:d5:9a:b3:bf:2b:63:53:e1:97:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Mar 5 04:55:03 2026 GMT Not After : Mar 4 05:00:03 2027 GMT Subject: CN=F1E8EAF96802DC800F49E056DBF663EA1CC8117D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:21:c1:94:94:93:56:bf:41:bf:ec:9f:7d:e2: fa:95:de:6e:bc:85:41:41:14:6f:db:ad:f8:b1:97: d7:2a:92:fb:62:c0:46:4a:b7:81:22:3c:4c:14:14: 34:6e:95:8c:2a:dd:22:08:c9:85:16:7b:8e:54:9b: c0:47:98:d7:21:7f:25:b4:16:14:73:be:ef:9b:99: 82:84:2b:a6:3d:62:23:5e:61:8b:8e:f5:33:43:55: d2:a8:52:ee:f1:d0:7e:27:a7:e9:d5:40:f5:32:a8: d8:46:93:c8:5e:5b:a2:dc:3f:56:1b:99:7b:0b:32: 90:e7:16:13:9d:c9:0b:83:c6:e2:d2:d2:6f:bf:36: 07:a6:f2:f7:a7:e0:09:4b:73:ef:6b:ce:d9:b1:d7: f0:fd:88:5d:af:39:6c:99:1e:d5:31:57:e2:3e:a4: 35:92:fd:30:1b:4e:56:52:8a:14:3d:4f:52:9d:c0: 3d:d1:34:06:7a:a6:10:4d:19:12:d1:f4:97:f3:4b: f4:bf:08:85:c9:b8:bb:39:00:c9:c8:9d:fa:24:24: 9a:b5:88:82:e4:25:93:37:1d:25:e9:87:be:bc:ad: 45:12:31:5e:22:e8:e9:25:4c:dd:46:2e:9a:98:79: 17:81:fe:6e:f9:cb:77:52:41:16:ce:b7:17:59:32: 56:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E8:EA:F9:68:02:DC:80:0F:49:E0:56:DB:F6:63:EA:1C:C8:11:7D X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.190.0/24 Signature Algorithm: sha256WithRSAEncryption 72:8c:0d:7d:b8:0d:96:10:34:53:86:ac:f2:c6:1a:f1:d6:dd: b5:0f:8b:f8:8d:df:f3:9e:d7:c7:4e:ac:7a:39:12:aa:92:6d: a1:cb:03:cb:90:fa:37:19:e0:51:52:68:c6:39:a1:f8:22:95: 11:de:1b:1b:5c:dc:fb:bf:8f:da:96:a1:16:f0:cb:c5:41:7a: 9d:bb:09:d9:ad:81:a8:af:67:c4:6c:3a:7d:2d:53:af:b4:1d: 32:2b:2b:93:7a:c3:dd:6f:25:61:d2:0c:3b:f0:20:84:72:4e: b1:fe:9a:45:31:c7:2d:22:52:0f:4d:f3:49:51:b6:2f:d0:36: 48:c1:79:52:b8:cd:7a:72:21:f0:1e:d4:c2:78:cd:c5:c4:b6: 13:79:93:b3:a0:16:1a:b3:fc:18:4e:e4:42:1f:45:bf:3b:b1: 40:ec:ba:e8:8f:6e:3b:63:89:48:14:e5:30:c8:75:44:a4:42: f3:e7:70:27:e6:28:b4:aa:44:75:c2:04:ba:f9:93:cf:ee:da: c5:06:e3:3f:96:69:98:3a:03:45:12:99:6b:89:da:a2:a4:84: 66:32:9a:55:93:4d:44:d3:ed:69:74:c5:95:b9:69:ce:9e:67: d7:ab:09:ec:96:9a:0b:94:27:c2:e8:32:ae:82:04:1d:51:1b: 25:7e:e0:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG22dMEQ89g8h7dWas78rY1PhlxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNjAzMDUwNDU1MDNaFw0yNzAzMDQwNTAwMDNaMDMxMTAvBgNV BAMTKEYxRThFQUY5NjgwMkRDODAwRjQ5RTA1NkRCRjY2M0VBMUNDODExN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIIcGUlJNWv0G/7J994vqV3m68 hUFBFG/brfixl9cqkvtiwEZKt4EiPEwUFDRulYwq3SIIyYUWe45Um8BHmNchfyW0 FhRzvu+bmYKEK6Y9YiNeYYuO9TNDVdKoUu7x0H4np+nVQPUyqNhGk8heW6LcP1Yb mXsLMpDnFhOdyQuDxuLS0m+/Ngem8ven4AlLc+9rztmx1/D9iF2vOWyZHtUxV+I+ pDWS/TAbTlZSihQ9T1KdwD3RNAZ6phBNGRLR9JfzS/S/CIXJuLs5AMnInfokJJq1 iILkJZM3HSXph768rUUSMV4i6OklTN1GLpqYeReB/m75y3dSQRbOtxdZMlZtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8ejq+WgC3IAPSeBW2/Zj6hzIEX0wHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW+MA0GCSqG SIb3DQEBCwUAA4IBAQByjA19uA2WEDRThqzyxhrx1t21D4v4jd/zntfHTqx6ORKq km2hywPLkPo3GeBRUmjGOaH4IpUR3hsbXNz7v4/alqEW8MvFQXqduwnZrYGor2fE bDp9LVOvtB0yKyuTesPdbyVh0gw78CCEck6x/ppFMcctIlIPTfNJUbYv0DZIwXlS uM16ciHwHtTCeM3FxLYTeZOzoBYas/wYTuRCH0W/O7FA7Lroj247Y4lIFOUwyHVE pELz53An5ii0qkR1wgS6+ZPP7trFBuM/lmmYOgNFEplridqipIRmMppVk01E0+1p dMWVuWnOnmfXqwnslpoLlCfC6DKuggQdURslfuCI -----END CERTIFICATE-----Generated at Thu Mar 26 22:36:16 2026 by rpki-client