$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130322e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: 14EYX4ki0ykEtlusuvy+PDLkBA5cnut96dcvDQIG/2k= Subject key identifier: B4:9B:0C:5F:67:B2:2C:9B:36:73:FB:16:68:9A:4B:AB:57:8C:7B:DC Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 3E1047310F62A6E3840B7E096BCCAC7072FE4926 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:51 +0000 ROA not before: Tue 24 Mar 2026 08:57:51 +0000 ROA not after: Tue 23 Mar 2027 09:02:51 +0000 asID: 24525 IP address blocks: 114.199.102.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:10:47:31:0f:62:a6:e3:84:0b:7e:09:6b:cc:ac:70:72:fe:49:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:51 2026 GMT Not After : Mar 23 09:02:51 2027 GMT Subject: CN=B49B0C5F67B22C9B3673FB16689A4BAB578C7BDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fd:24:40:52:aa:82:11:eb:c6:9f:b0:e5:36: 7b:ff:a4:96:d3:d7:0c:06:e6:57:b7:cc:36:d7:1a: 09:38:39:a6:07:87:6a:ef:d2:b4:d1:c4:df:91:84: 8e:2f:a2:b1:1f:e3:65:34:d7:e0:50:be:e0:45:49: 8b:83:54:52:0a:9f:d7:77:0c:4c:a9:64:b8:ff:48: 36:0f:71:81:de:1e:0b:b3:17:13:d1:25:33:ac:01: 00:63:c6:ee:d9:e7:5b:98:bf:e1:65:ed:ac:8a:f3: 68:12:6c:04:b4:b6:9c:c9:ae:b8:05:d9:34:ab:0a: df:41:e9:94:de:d4:b8:98:17:c1:54:9f:0c:db:e8: a4:3b:2a:c1:7c:85:c9:63:d6:5d:15:db:a9:5c:e0: e1:17:a6:47:1f:c4:9b:7d:ae:d4:d9:2d:e3:42:ac: 5b:fb:35:91:fa:a5:e9:52:73:cc:6d:49:fc:5a:73: 3b:23:2d:2b:21:4d:98:44:03:c1:c8:74:c6:01:ab: 80:59:95:8d:b7:47:81:80:ae:fb:fb:0f:e9:5c:ec: 33:65:80:59:fc:be:c5:af:2f:5d:1d:ef:b9:e7:a8: 09:c4:be:95:f7:41:cc:96:c9:b7:58:8e:24:83:be: 1d:b8:0e:3c:c3:fc:f2:01:b3:79:d8:31:dd:53:d7: 4b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9B:0C:5F:67:B2:2C:9B:36:73:FB:16:68:9A:4B:AB:57:8C:7B:DC X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.102.0/23 Signature Algorithm: sha256WithRSAEncryption b0:ab:4f:59:2a:8a:37:85:7b:20:14:26:ad:97:40:b9:00:36: 0e:3e:c9:b1:12:b7:16:1f:74:bb:df:b9:fe:77:4f:cb:20:72: 27:63:40:1d:08:66:ac:ed:e8:79:c4:54:ab:ea:92:f5:6a:a3: 28:2f:c5:3f:83:d7:91:9a:a6:15:cf:df:b4:7d:14:db:39:e0: 76:54:84:eb:80:bb:8a:b6:27:3f:e5:7d:e5:6c:14:e7:40:98: 60:e7:83:cd:d0:0a:88:6f:d6:89:a8:b2:92:13:1b:2c:6d:eb: 10:45:82:a4:d5:a0:b3:8d:38:f1:a5:b2:a0:43:30:64:62:f0: b5:22:0a:c3:26:f9:46:42:91:1e:d8:c6:b0:6e:4b:96:f4:c4: 2b:1a:24:f3:d4:4b:cd:75:cc:ca:9d:c2:3a:5b:bc:33:2d:dc: 8e:d2:50:cf:2a:24:1c:dc:3b:db:d9:00:19:18:8a:df:36:b2: b3:a6:53:ef:25:24:45:e9:51:b8:20:f1:34:86:ec:87:0f:03: df:6a:1f:18:24:c7:2c:02:1f:bb:56:49:f2:90:0a:cb:c2:73: 9f:f9:28:49:b7:9c:82:1a:64:e9:39:f5:e3:9d:2a:07:32:43: ef:ec:78:bf:5a:15:91:5a:48:98:96:a4:f7:81:1f:52:6b:c0: 98:02:e9:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPhBHMQ9ipuOEC34Ja8yscHL+SSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTFaFw0yNzAzMjMwOTAyNTFaMDMxMTAvBgNV BAMTKEI0OUIwQzVGNjdCMjJDOUIzNjczRkIxNjY4OUE0QkFCNTc4QzdCREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo/SRAUqqCEevGn7DlNnv/pJbT 1wwG5le3zDbXGgk4OaYHh2rv0rTRxN+RhI4vorEf42U01+BQvuBFSYuDVFIKn9d3 DEypZLj/SDYPcYHeHguzFxPRJTOsAQBjxu7Z51uYv+Fl7ayK82gSbAS0tpzJrrgF 2TSrCt9B6ZTe1LiYF8FUnwzb6KQ7KsF8hclj1l0V26lc4OEXpkcfxJt9rtTZLeNC rFv7NZH6pelSc8xtSfxaczsjLSshTZhEA8HIdMYBq4BZlY23R4GArvv7D+lc7DNl gFn8vsWvL10d77nnqAnEvpX3QcyWybdYjiSDvh24DjzD/PIBs3nYMd1T10uFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtJsMX2eyLJs2c/sWaJpLq1eMe9wwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdmMA0GCSqG SIb3DQEBCwUAA4IBAQCwq09ZKoo3hXsgFCatl0C5ADYOPsmxErcWH3S737n+d0/L IHInY0AdCGas7eh5xFSr6pL1aqMoL8U/g9eRmqYVz9+0fRTbOeB2VITrgLuKtic/ 5X3lbBTnQJhg54PN0AqIb9aJqLKSExssbesQRYKk1aCzjTjxpbKgQzBkYvC1IgrD JvlGQpEe2MawbkuW9MQrGiTz1EvNdczKncI6W7wzLdyO0lDPKiQc3Dvb2QAZGIrf NrKzplPvJSRF6VG4IPE0huyHDwPfah8YJMcsAh+7VknykArLwnOf+ShJt5yCGmTp OfXjnSoHMkPv7Hi/WhWRWkiYlqT3gR9Sa8CYAumM -----END CERTIFICATE-----Generated at Thu Mar 26 15:51:15 2026 by rpki-client