$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: VR9/fyfoD1rBFbHkp0wNSYsyhp3wCE/woArZg+QnFl0= Subject key identifier: 92:22:37:20:5F:4D:7F:04:6A:B5:69:DA:08:82:7D:7A:3E:F9:0D:09 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 684A17812F606796CF5D59AE4DFEAE3536C0FBA9 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:51 +0000 ROA not before: Tue 24 Mar 2026 08:57:51 +0000 ROA not after: Tue 23 Mar 2027 09:02:51 +0000 asID: 24525 IP address blocks: 114.199.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4a:17:81:2f:60:67:96:cf:5d:59:ae:4d:fe:ae:35:36:c0:fb:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:51 2026 GMT Not After : Mar 23 09:02:51 2027 GMT Subject: CN=922237205F4D7F046AB569DA08827D7A3EF90D09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:79:7f:73:b6:23:c6:3e:c4:1b:4a:a3:d6:53: eb:f6:f1:3f:17:d8:c6:b8:f3:1c:46:6e:4b:3b:8a: 19:89:7a:96:44:f1:ca:69:42:8a:82:61:5e:00:0e: 12:51:f9:d8:f6:42:c8:7a:3d:01:92:13:9f:69:7a: d3:00:bf:6a:09:6f:c4:08:ec:69:18:86:88:bd:db: 48:7f:73:24:cc:ed:c6:44:6b:d9:37:dd:5a:43:25: 19:50:6b:8f:37:e1:b7:4a:e5:5f:d8:6b:87:e3:24: fc:b2:b5:4a:7c:78:7d:d9:ea:7b:36:4d:92:83:00: ce:a5:70:87:5f:b8:2c:cb:fb:57:6f:04:84:97:58: 76:f7:59:80:a9:5c:7f:9c:54:40:4a:86:6d:0e:4a: c8:67:14:1d:7d:04:2e:37:4c:90:fd:90:d0:7a:fb: 22:3c:6c:5a:86:13:ac:8e:17:01:38:d1:46:9f:4a: e0:de:fd:f2:17:d0:a8:b1:ce:ac:0d:3b:97:c0:6e: d7:07:50:a0:f9:41:c0:60:56:9b:97:7b:8f:31:20: 8c:b9:5f:1d:c0:09:ec:7e:1d:a5:96:0d:2b:5e:6c: bb:28:4a:74:ee:82:e3:34:89:08:19:aa:1a:01:87: 64:b6:e8:6e:fb:a8:41:2d:da:d4:c7:b8:13:ec:73: e9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:22:37:20:5F:4D:7F:04:6A:B5:69:DA:08:82:7D:7A:3E:F9:0D:09 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130302e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.100.0/22 Signature Algorithm: sha256WithRSAEncryption aa:74:19:e0:b6:ed:cc:7f:de:fd:d5:ba:f9:07:76:ac:ad:d2: 69:f9:9d:35:dc:f9:05:8f:05:91:f9:b8:e2:48:6f:22:0c:96: 67:0a:b0:76:27:65:65:e2:71:17:8b:5a:2b:92:48:d6:f0:7c: 72:a8:9a:bb:12:77:cc:67:fe:09:18:a5:af:03:c4:5d:36:28: b9:5c:67:9f:13:27:00:9b:57:6e:90:71:75:7e:4f:12:75:7c: 6e:c0:ae:75:15:bb:a6:2d:42:58:f9:49:f0:a8:80:47:b4:9c: 1a:77:84:0f:9b:c8:34:f2:2b:3f:2b:19:bd:33:ef:43:ea:cf: 0c:84:ac:f0:67:49:9c:04:81:4f:42:a7:c9:63:22:62:37:ce: 2d:fc:5c:e8:b0:75:6a:a1:8f:45:23:e8:9f:f8:a1:7a:78:c0: 1a:ee:d9:54:b0:ba:4e:d1:81:ca:e0:79:66:2b:44:d7:79:2f: a7:8b:f2:6e:34:95:ff:4c:4c:5e:09:88:d9:ce:b8:64:2e:99: 5d:a6:af:40:21:bb:b4:1b:82:eb:62:ca:27:bb:6f:c9:17:53: 25:ce:32:c7:6c:03:05:bd:c4:7e:23:99:3c:1e:ec:4c:de:f4: 92:bb:16:78:35:be:24:56:ca:94:d6:96:93:a3:45:d5:87:6d: 98:b5:61:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaEoXgS9gZ5bPXVmuTf6uNTbA+6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTFaFw0yNzAzMjMwOTAyNTFaMDMxMTAvBgNV BAMTKDkyMjIzNzIwNUY0RDdGMDQ2QUI1NjlEQTA4ODI3RDdBM0VGOTBEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeeX9ztiPGPsQbSqPWU+v28T8X 2Ma48xxGbks7ihmJepZE8cppQoqCYV4ADhJR+dj2Qsh6PQGSE59petMAv2oJb8QI 7GkYhoi920h/cyTM7cZEa9k33VpDJRlQa4834bdK5V/Ya4fjJPyytUp8eH3Z6ns2 TZKDAM6lcIdfuCzL+1dvBISXWHb3WYCpXH+cVEBKhm0OSshnFB19BC43TJD9kNB6 +yI8bFqGE6yOFwE40UafSuDe/fIX0KixzqwNO5fAbtcHUKD5QcBgVpuXe48xIIy5 Xx3ACex+HaWWDStebLsoSnTuguM0iQgZqhoBh2S26G77qEEt2tTHuBPsc+l/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkiI3IF9NfwRqtWnaCIJ9ej75DQkwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdkMA0GCSqG SIb3DQEBCwUAA4IBAQCqdBngtu3Mf9791br5B3asrdJp+Z013PkFjwWR+bjiSG8i DJZnCrB2J2Vl4nEXi1orkkjW8HxyqJq7EnfMZ/4JGKWvA8RdNii5XGefEycAm1du kHF1fk8SdXxuwK51FbumLUJY+UnwqIBHtJwad4QPm8g08is/Kxm9M+9D6s8MhKzw Z0mcBIFPQqfJYyJiN84t/FzosHVqoY9FI+if+KF6eMAa7tlUsLpO0YHK4HlmK0TX eS+ni/JuNJX/TExeCYjZzrhkLpldpq9AIbu0G4LrYsonu2/JF1MlzjLHbAMFvcR+ I5k8HuxM3vSSuxZ4Nb4kVsqU1paTo0XVh22YtWG5 -----END CERTIFICATE-----Generated at Thu Mar 26 15:30:46 2026 by rpki-client