$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa File: 3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: qx0gRpyS+qkoTAupBc4dylyNn0JvIVKzjb3xlZMzfnc= Subject key identifier: 4A:BD:DB:9F:2F:FB:FE:71:07:E8:49:4C:FE:BD:BF:C5:29:B2:F9:AA Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 511943ACAA7D90017F1B7F008D2CD8717C345148 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa Signing time: Sat 07 Mar 2026 18:00:01 +0000 ROA not before: Sat 07 Mar 2026 17:55:01 +0000 ROA not after: Sat 06 Mar 2027 18:00:01 +0000 asID: 133799 IP address blocks: 123.108.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:19:43:ac:aa:7d:90:01:7f:1b:7f:00:8d:2c:d8:71:7c:34:51:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Mar 7 17:55:01 2026 GMT Not After : Mar 6 18:00:01 2027 GMT Subject: CN=4ABDDB9F2FFBFE7107E8494CFEBDBFC529B2F9AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f7:b3:32:27:fc:65:fe:98:bf:a3:fb:9f:95: 16:0e:96:2a:5f:ac:19:67:f0:ba:32:b7:82:c5:0b: 34:63:da:88:b0:be:46:18:68:0c:11:f7:30:b4:84: fd:b5:ea:44:d4:19:71:b3:a6:62:8c:1b:89:e6:e2: c2:b6:e5:d6:c0:ff:a8:76:5a:d1:b8:cb:2b:18:9e: d2:66:67:98:76:4c:7b:18:3d:78:e4:77:b0:c6:3b: 57:67:c1:09:a4:e9:03:7b:9d:28:2e:bf:a6:f3:a5: 63:77:f7:21:5c:b5:b4:d2:d3:db:21:95:10:f5:ba: d3:a0:ae:33:de:62:9c:8a:43:53:ed:78:58:72:3d: ab:2d:95:13:32:b4:08:40:db:9e:91:3e:ab:a0:45: f2:b3:5b:22:cc:c8:0b:a2:c4:14:0e:6d:b7:7e:00: 99:e3:b4:ff:db:b8:a4:30:66:23:42:34:8f:47:12: 12:9f:da:9e:6d:a4:70:0b:a6:4a:33:f2:f0:ef:60: b2:fe:a2:0c:80:5e:42:8f:87:3d:c5:01:a5:64:4f: 57:fe:8c:87:8d:98:f9:30:78:eb:f7:8c:b9:60:6d: 37:ac:a0:4e:eb:d0:97:32:41:b0:36:42:d8:79:a5: a5:2b:51:82:fe:f1:d9:05:d2:19:2b:ee:9f:9e:d4: 8a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:BD:DB:9F:2F:FB:FE:71:07:E8:49:4C:FE:BD:BF:C5:29:B2:F9:AA X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.65.0/24 Signature Algorithm: sha256WithRSAEncryption 27:7c:ab:68:1f:d6:d0:99:46:f5:8d:a6:87:25:da:30:77:67: 2b:15:7f:46:8a:7c:5b:0e:77:f9:94:70:4e:0f:4f:0d:c8:97: 89:1f:89:7e:fe:de:1d:84:2a:61:e5:e8:ca:84:11:e9:45:53: af:25:10:e5:cd:7d:92:75:42:e6:20:b9:47:1a:93:24:3f:05: 9c:85:5b:cc:c8:5a:23:c0:f6:e3:b9:d8:94:52:e0:e2:28:93: cb:00:f0:1b:75:9c:7f:5d:5c:40:4f:8c:c3:e3:13:8d:cc:a6: 8b:2a:e9:fa:a4:20:f5:95:59:7e:d5:80:5e:73:f3:91:6f:b9: 68:63:36:8a:9f:1e:55:cc:9f:5b:78:ca:bd:a1:f4:d7:f4:a5: 89:92:79:80:3d:73:5c:01:84:34:fc:9f:22:86:25:bb:c0:24: 97:5e:d6:6e:32:30:fa:87:8c:78:b6:e0:c7:b0:22:fd:75:1b: cf:c5:48:2f:9c:e9:3a:f8:81:7b:e0:24:9b:2d:c1:2a:10:98: 56:f4:c6:eb:d9:e1:0b:62:21:4d:1b:57:e0:7a:2d:29:d1:f5: 47:cc:1e:2f:8e:63:64:ce:30:c0:10:c7:12:af:75:2e:98:d9: aa:c7:a1:00:bf:e8:31:37:54:b1:79:d0:7c:cc:81:77:3e:88: e7:ad:2a:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUURlDrKp9kAF/G38AjSzYcXw0UUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNjAzMDcxNzU1MDFaFw0yNzAzMDYxODAwMDFaMDMxMTAvBgNV BAMTKDRBQkREQjlGMkZGQkZFNzEwN0U4NDk0Q0ZFQkRCRkM1MjlCMkY5QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ97MyJ/xl/pi/o/uflRYOlipf rBln8Loyt4LFCzRj2oiwvkYYaAwR9zC0hP216kTUGXGzpmKMG4nm4sK25dbA/6h2 WtG4yysYntJmZ5h2THsYPXjkd7DGO1dnwQmk6QN7nSguv6bzpWN39yFctbTS09sh lRD1utOgrjPeYpyKQ1PteFhyPastlRMytAhA256RPqugRfKzWyLMyAuixBQObbd+ AJnjtP/buKQwZiNCNI9HEhKf2p5tpHALpkoz8vDvYLL+ogyAXkKPhz3FAaVkT1f+ jIeNmPkweOv3jLlgbTesoE7r0JcyQbA2Qth5paUrUYL+8dkF0hkr7p+e1IrvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSr3bny/7/nEH6ElM/r2/xSmy+aowHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzIzMzJlMzEzMDM4MmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAe2xBMA0GCSqG SIb3DQEBCwUAA4IBAQAnfKtoH9bQmUb1jaaHJdowd2crFX9GinxbDnf5lHBOD08N yJeJH4l+/t4dhCph5ejKhBHpRVOvJRDlzX2SdULmILlHGpMkPwWchVvMyFojwPbj udiUUuDiKJPLAPAbdZx/XVxAT4zD4xONzKaLKun6pCD1lVl+1YBec/ORb7loYzaK nx5VzJ9beMq9ofTX9KWJknmAPXNcAYQ0/J8ihiW7wCSXXtZuMjD6h4x4tuDHsCL9 dRvPxUgvnOk6+IF74CSbLcEqEJhW9Mbr2eELYiFNG1fgei0p0fVHzB4vjmNkzjDA EMcSr3UumNmqx6EAv+gxN1SxedB8zIF3PojnrSpx -----END CERTIFICATE-----Generated at Thu Mar 26 20:46:24 2026 by rpki-client