$ rpki-client -vvf repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3132332e3137362e3132342e302f32322d3234203d3e20313336313036.roa File: 3132332e3137362e3132342e302f32322d3234203d3e20313336313036.roa (raw, json) Hash identifier: VB1Y5BNCzQEKogDwLTgjYycvWE1FyBz9htZM5j3iHII= Subject key identifier: 28:A8:C2:F9:03:08:55:40:31:8C:06:1F:5C:0A:67:66:2F:98:03:5D Certificate issuer: /CN=55FE929F3DF18E4B5BC4309769AA6C72AFF634CC Certificate serial: 420716099B2AD76EE6D3CC96F40B9F8990A7C755 Authority key identifier: 55:FE:92:9F:3D:F1:8E:4B:5B:C4:30:97:69:AA:6C:72:AF:F6:34:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3132332e3137362e3132342e302f32322d3234203d3e20313336313036.roa Signing time: Wed 18 Mar 2026 09:02:50 +0000 ROA not before: Wed 18 Mar 2026 08:57:50 +0000 ROA not after: Wed 17 Mar 2027 09:02:50 +0000 asID: 136106 IP address blocks: 123.176.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.crl rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 20:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:07:16:09:9b:2a:d7:6e:e6:d3:cc:96:f4:0b:9f:89:90:a7:c7:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55FE929F3DF18E4B5BC4309769AA6C72AFF634CC Validity Not Before: Mar 18 08:57:50 2026 GMT Not After : Mar 17 09:02:50 2027 GMT Subject: CN=28A8C2F903085540318C061F5C0A67662F98035D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3c:6b:f8:fd:ef:ea:c3:f1:76:cf:ed:7d:9e: d2:fb:21:0b:81:12:2d:45:ff:33:6a:bc:71:f0:66: 4c:a1:cc:b2:e2:52:f7:8f:0a:c0:10:19:a1:93:e2: 5f:8d:ba:40:b1:e2:16:92:69:f7:f8:47:45:c2:a3: d6:b2:ef:af:18:d0:a4:20:86:32:46:9d:5e:9e:ac: fe:7d:bb:42:c2:89:ce:19:20:b4:81:de:82:41:ac: 60:be:a7:91:94:b2:87:d7:cd:55:90:29:f9:3f:33: 8c:a4:7b:e5:4b:76:dc:98:0b:53:e2:a2:34:cc:10: 02:4e:07:86:6b:06:f4:41:b1:50:ca:5f:28:70:db: 8c:2e:9a:06:1a:92:ee:88:37:d0:a3:55:95:c9:46: 32:de:00:45:a9:41:5e:22:a3:de:77:04:c7:ab:fd: 84:69:26:7d:bc:2c:15:24:c0:4e:74:8b:69:77:9a: 77:64:53:3f:26:85:25:e5:e1:5e:16:bc:3e:21:1c: 3f:73:93:11:cd:5a:1d:19:c3:1f:ba:89:c1:a8:e7: f0:ee:67:5e:19:ec:8e:70:87:38:0c:dd:77:d9:76: 12:f4:ef:fd:ef:26:ec:cc:70:18:84:d9:f6:64:6f: ea:0b:91:0a:94:62:f2:11:fe:be:de:48:96:e8:dd: 0d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A8:C2:F9:03:08:55:40:31:8C:06:1F:5C:0A:67:66:2F:98:03:5D X509v3 Authority Key Identifier: keyid:55:FE:92:9F:3D:F1:8E:4B:5B:C4:30:97:69:AA:6C:72:AF:F6:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55FE929F3DF18E4B5BC4309769AA6C72AFF634CC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc976ec5-b05a-480f-86da-d557f84a2364/0/3132332e3137362e3132342e302f32322d3234203d3e20313336313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.176.124.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:d5:5c:b4:93:f7:c8:40:58:6d:b9:d2:a5:27:96:02:7c:d6: 40:5d:90:23:ee:aa:e3:d6:53:52:18:73:96:7d:06:fb:e5:ab: 08:d5:48:61:70:e4:d0:44:12:3f:d6:28:ab:40:66:93:85:14: dd:74:77:cf:2d:77:de:c1:2d:54:99:1e:95:98:42:77:e5:cd: 0e:57:93:f1:11:fd:90:7f:cf:0c:da:35:64:ce:f1:c8:da:85: 93:ed:fb:6d:4b:0b:50:3d:47:6f:8d:99:9f:a6:3e:7b:f6:ed: d3:af:cb:9e:05:6a:4b:bd:ac:c5:c0:5e:24:46:0e:0a:30:3a: 37:c0:7f:4f:0d:fb:7c:4f:2a:70:87:5f:12:39:b6:34:c6:c4: 7b:f8:a3:23:e3:98:0c:eb:7a:12:0b:e6:2c:e7:72:d3:ae:e1: 6b:b0:ae:e7:78:56:3c:55:ba:a4:b4:96:8d:72:2b:e2:e7:4a: 59:fb:8a:5c:0f:1f:20:6c:47:9f:7d:88:b4:fd:2e:b3:c0:bf: 5a:cc:d9:0c:95:69:79:17:3d:c6:1d:e6:ce:d4:48:6c:6c:ed: 09:8b:08:47:eb:13:d2:50:13:64:e4:53:34:e1:a2:9b:4b:25: a1:09:17:6a:ab:0b:f4:cb:c7:3c:81:c9:38:ad:ea:af:0b:b3: 2e:29:72:de -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQgcWCZsq127m08yW9AufiZCnx1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVGRTkyOUYzREYxOEU0QjVCQzQzMDk3NjlBQTZDNzJB RkY2MzRDQzAeFw0yNjAzMTgwODU3NTBaFw0yNzAzMTcwOTAyNTBaMDMxMTAvBgNV BAMTKDI4QThDMkY5MDMwODU1NDAzMThDMDYxRjVDMEE2NzY2MkY5ODAzNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjPGv4/e/qw/F2z+19ntL7IQuB Ei1F/zNqvHHwZkyhzLLiUvePCsAQGaGT4l+NukCx4haSaff4R0XCo9ay768Y0KQg hjJGnV6erP59u0LCic4ZILSB3oJBrGC+p5GUsofXzVWQKfk/M4yke+VLdtyYC1Pi ojTMEAJOB4ZrBvRBsVDKXyhw24wumgYaku6IN9CjVZXJRjLeAEWpQV4io953BMer /YRpJn28LBUkwE50i2l3mndkUz8mhSXl4V4WvD4hHD9zkxHNWh0Zwx+6icGo5/Du Z14Z7I5whzgM3XfZdhL07/3vJuzMcBiE2fZkb+oLkQqUYvIR/r7eSJbo3Q2vAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKKjC+QMIVUAxjAYfXApnZi+YA10wHwYDVR0j BBgwFoAUVf6Snz3xjktbxDCXaapscq/2NMwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Yzk3NmVjNS1iMDVhLTQ4MGYtODZkYS1kNTU3Zjg0YTIzNjQvMC81NUZFOTI5RjNE RjE4RTRCNUJDNDMwOTc2OUFBNkM3MkFGRjYzNENDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTVGRTkyOUYzREYxOEU0QjVCQzQzMDk3NjlBQTZDNzJBRkY2 MzRDQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjOTc2ZWM1LWIwNWEtNDgwZi04 NmRhLWQ1NTdmODRhMjM2NC8wLzMxMzIzMzJlMzEzNzM2MmUzMTMyMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7sHwwDQYJ KoZIhvcNAQELBQADggEBAC7VXLST98hAWG250qUnlgJ81kBdkCPuquPWU1IYc5Z9 BvvlqwjVSGFw5NBEEj/WKKtAZpOFFN10d88td97BLVSZHpWYQnflzQ5Xk/ER/ZB/ zwzaNWTO8cjahZPt+21LC1A9R2+NmZ+mPnv27dOvy54Faku9rMXAXiRGDgowOjfA f08N+3xPKnCHXxI5tjTGxHv4oyPjmAzrehIL5iznctOu4Wuwrud4VjxVuqS0lo1y K+LnSln7ilwPHyBsR599iLT9LrPAv1rM2QyVaXkXPcYd5s7USGxs7QmLCEfrE9JQ E2TkUzThoptLJaEJF2qrC/TLxzyByTit6q8Lsy4pct4= -----END CERTIFICATE-----Generated at Thu Mar 26 16:07:52 2026 by rpki-client