$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: 2LAnkSvWxXXaEGGm1yJvdSA4Gwhg/hn4sTcGPWVqYVM= Subject key identifier: 7A:D8:29:63:35:F9:21:24:3B:19:B7:50:A3:E8:47:82:00:3E:94:43 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0ADA30567775199FF33C8A9F34C786EF4DF1808B Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa Signing time: Tue 24 Mar 2026 08:01:33 +0000 ROA not before: Tue 24 Mar 2026 07:56:33 +0000 ROA not after: Tue 23 Mar 2027 08:01:33 +0000 asID: 24525 IP address blocks: 114.199.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:da:30:56:77:75:19:9f:f3:3c:8a:9f:34:c7:86:ef:4d:f1:80:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 07:56:33 2026 GMT Not After : Mar 23 08:01:33 2027 GMT Subject: CN=7AD8296335F921243B19B750A3E84782003E9443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0a:00:ce:a4:33:a6:58:6d:74:5a:5e:eb:46: 98:1f:75:de:ed:9d:ea:2f:c6:4f:e8:b6:28:84:33: 09:a0:92:b4:c9:db:05:32:fa:c5:fb:1a:16:6e:ad: 07:38:6f:07:12:f5:6f:e7:c9:13:16:70:1e:8a:0b: 9b:1b:36:83:d7:28:3d:8f:17:b4:55:c8:84:f3:fa: 68:2b:2f:26:5a:3f:93:37:3f:da:f4:0f:7a:fb:1e: 12:b9:f8:f8:b3:f0:64:27:e0:70:df:dc:39:86:d3: fc:45:0c:e0:29:36:35:7d:0b:6a:0c:75:16:39:d1: ed:41:60:61:06:d8:4e:5b:a6:77:42:90:2f:73:f9: d9:cf:6c:87:a8:ba:ad:ed:58:36:13:d4:51:c8:83: fa:1c:95:fa:70:af:2d:91:9f:e8:5a:7e:5c:6c:6c: 75:05:b2:94:9a:17:c3:f5:05:2c:20:9f:c3:17:50: 69:b3:ff:93:4d:24:d3:f8:7d:e1:1b:ec:cf:97:1f: d3:7f:d5:2e:4a:38:16:53:17:2b:63:98:88:21:b7: 2e:c2:6b:cb:d4:a9:f6:6b:d3:0c:ae:c8:0c:10:6f: 45:c6:9f:34:bc:5d:1a:c4:82:c3:92:b7:b2:b7:77: 81:c5:8f:f1:55:40:fc:ae:52:43:9d:a6:9c:0b:88: ed:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D8:29:63:35:F9:21:24:3B:19:B7:50:A3:E8:47:82:00:3E:94:43 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.104.0/21 Signature Algorithm: sha256WithRSAEncryption 13:8e:c5:d3:15:fd:d0:e4:78:e1:8d:ab:ee:4a:90:09:81:df: 84:a3:2b:e2:75:2b:89:cf:27:98:de:f7:28:b3:11:3b:bb:46: 69:59:f6:e7:a6:fc:99:11:2b:78:2c:ad:68:1e:ba:55:1f:8a: 41:d2:1e:7b:4e:22:83:d2:85:17:2b:30:8e:8e:2e:59:2c:3c: d7:fd:24:a4:29:d3:42:7c:ef:66:92:80:0f:d4:de:c2:73:a5: ae:05:c2:d9:0a:41:a6:5c:64:78:e2:20:5f:0a:0d:40:4f:c8: 9f:74:a5:3c:ff:0a:ee:50:c1:55:3f:7d:a5:a6:55:34:71:7c: 99:41:75:6d:ae:31:84:28:92:40:fe:7e:19:ed:40:84:50:a3: a6:a8:b6:94:cb:0f:55:82:3e:dd:b4:0a:5f:39:71:35:6b:84: 63:87:43:1d:47:d6:64:fd:60:d3:df:77:fe:ae:98:ca:71:cd: 8b:4e:6e:25:83:71:6e:5d:23:d3:1a:e6:64:fd:15:13:bb:a5: 50:19:6e:18:ee:3c:ca:b4:06:02:d3:8f:63:4d:85:54:c1:70: 25:b9:64:4b:55:f6:6b:5e:44:0a:b3:3c:48:83:17:b7:97:50: 2e:ba:bb:05:d5:22:0f:e5:96:14:3d:9e:35:3d:17:a5:61:3e: a2:7e:8f:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCtowVnd1GZ/zPIqfNMeG703xgIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwNzU2MzNaFw0yNzAzMjMwODAxMzNaMDMxMTAvBgNV BAMTKDdBRDgyOTYzMzVGOTIxMjQzQjE5Qjc1MEEzRTg0NzgyMDAzRTk0NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChCgDOpDOmWG10Wl7rRpgfdd7t neovxk/otiiEMwmgkrTJ2wUy+sX7GhZurQc4bwcS9W/nyRMWcB6KC5sbNoPXKD2P F7RVyITz+mgrLyZaP5M3P9r0D3r7HhK5+Piz8GQn4HDf3DmG0/xFDOApNjV9C2oM dRY50e1BYGEG2E5bpndCkC9z+dnPbIeouq3tWDYT1FHIg/oclfpwry2Rn+haflxs bHUFspSaF8P1BSwgn8MXUGmz/5NNJNP4feEb7M+XH9N/1S5KOBZTFytjmIghty7C a8vUqfZr0wyuyAwQb0XGnzS8XRrEgsOSt7K3d4HFj/FVQPyuUkOdppwLiO3lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUetgpYzX5ISQ7GbdQo+hHggA+lEMwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzQyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsdoMA0GCSqG SIb3DQEBCwUAA4IBAQATjsXTFf3Q5HjhjavuSpAJgd+EoyvidSuJzyeY3vcosxE7 u0ZpWfbnpvyZESt4LK1oHrpVH4pB0h57TiKD0oUXKzCOji5ZLDzX/SSkKdNCfO9m koAP1N7Cc6WuBcLZCkGmXGR44iBfCg1AT8ifdKU8/wruUMFVP32lplU0cXyZQXVt rjGEKJJA/n4Z7UCEUKOmqLaUyw9Vgj7dtApfOXE1a4Rjh0MdR9Zk/WDT33f+rpjK cc2LTm4lg3FuXSPTGuZk/RUTu6VQGW4Y7jzKtAYC049jTYVUwXAluWRLVfZrXkQK szxIgxe3l1AuursF1SIP5ZYUPZ41PRelYT6ifo8d -----END CERTIFICATE-----Generated at Thu Mar 26 15:53:19 2026 by rpki-client