$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: XPyDASfr0vbxrF/b0mKIouRsbd25bIBrqFQyFnoz/dc= Subject key identifier: 3C:B4:04:D1:B8:F3:51:F7:7C:2F:16:B2:83:2B:EE:92:18:3A:03:06 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 48F3308E666CB526D8F1DF3421122E5AAEBB5496 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa Signing time: Tue 24 Mar 2026 06:00:01 +0000 ROA not before: Tue 24 Mar 2026 05:55:01 +0000 ROA not after: Tue 23 Mar 2027 06:00:01 +0000 asID: 24525 IP address blocks: 114.199.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:f3:30:8e:66:6c:b5:26:d8:f1:df:34:21:12:2e:5a:ae:bb:54:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 05:55:01 2026 GMT Not After : Mar 23 06:00:01 2027 GMT Subject: CN=3CB404D1B8F351F77C2F16B2832BEE92183A0306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:98:6d:07:bb:28:2d:28:f6:14:96:c6:d6: 27:20:14:97:16:60:fd:67:94:d9:fe:8d:55:c8:39: 9a:b6:71:2a:ac:19:be:50:19:fc:21:e0:d1:2e:be: b5:54:76:a7:4e:3b:ba:52:c6:86:8d:f6:e0:04:03: 37:46:bf:71:9a:bc:9d:e5:19:8e:25:16:c4:a1:8a: cf:83:b3:a7:5d:9d:ad:83:03:1b:7b:30:0f:d6:a3: 3b:54:74:36:5f:11:0f:fd:dd:3c:3e:a0:77:1d:a8: d4:7c:49:87:54:2d:e2:ea:e3:c4:d0:ee:91:d6:05: 12:e1:da:37:09:4a:a5:21:be:7d:38:6e:12:83:96: 98:24:72:75:07:72:79:5a:6a:0a:4c:3b:d0:4d:44: df:18:c1:ad:64:9a:60:ca:81:99:fa:b9:60:c4:6f: d3:4c:40:2b:db:49:61:4c:b1:a2:53:08:09:1b:0b: 46:2d:19:64:16:95:4c:71:49:23:d1:5c:75:0b:8e: 15:26:07:1c:29:84:36:ab:c9:36:75:d1:82:a6:a2: af:62:a7:8e:bb:2e:95:70:ca:b3:63:7f:79:e6:a9: b6:b6:59:13:bc:f3:23:95:c3:bf:42:d5:e6:a0:25: 70:7a:e4:a4:33:22:8f:0b:3b:ab:d6:f9:5a:62:98: 59:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B4:04:D1:B8:F3:51:F7:7C:2F:16:B2:83:2B:EE:92:18:3A:03:06 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.104.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:94:d5:c2:bb:5f:3f:2a:06:fd:9b:78:92:44:4b:82:a2:49: 51:4a:03:6e:9b:8f:46:18:79:02:a9:18:97:ef:a7:7a:b6:f9: 53:8e:98:71:d3:55:04:35:95:16:80:a5:2b:5e:85:25:31:67: 7a:bc:5a:91:67:63:c1:48:20:31:d3:bb:3d:78:47:52:cd:57: d9:11:ba:ea:ca:64:5a:6e:59:97:e2:ac:6d:78:6f:41:ad:12: 01:85:af:82:bc:b1:82:40:e4:88:07:46:8f:98:07:4d:57:5c: 55:e3:3b:3d:28:14:e4:03:b7:89:c5:9f:9e:0c:c6:e8:66:6f: 3b:61:48:55:8b:1d:35:d1:3a:8f:3d:26:0a:e6:a7:14:4f:73: 30:87:f1:77:ef:e2:a7:d1:1d:a7:38:9e:e2:22:55:d6:c9:26: 5f:96:35:d8:bd:52:6f:e8:cc:00:84:e7:bd:57:fb:61:6b:fe: 70:08:89:6d:46:70:41:ed:db:f2:e8:17:2d:fc:fb:4d:d5:4e: e9:58:ed:cc:93:dd:3e:0e:38:a4:d3:7e:d7:5d:75:87:4b:2b: c3:eb:c7:33:f4:92:f7:f5:2d:70:06:99:78:3d:50:a1:67:3b: 0e:ee:79:a0:8f:ee:f8:ca:de:58:bf:c1:f1:cf:a8:2f:86:f5: e4:74:38:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSPMwjmZstSbY8d80IRIuWq67VJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwNTU1MDFaFw0yNzAzMjMwNjAwMDFaMDMxMTAvBgNV BAMTKDNDQjQwNEQxQjhGMzUxRjc3QzJGMTZCMjgzMkJFRTkyMTgzQTAzMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOE5htB7soLSj2FJbG1icgFJcW YP1nlNn+jVXIOZq2cSqsGb5QGfwh4NEuvrVUdqdOO7pSxoaN9uAEAzdGv3GavJ3l GY4lFsShis+Ds6ddna2DAxt7MA/WoztUdDZfEQ/93Tw+oHcdqNR8SYdULeLq48TQ 7pHWBRLh2jcJSqUhvn04bhKDlpgkcnUHcnlaagpMO9BNRN8Ywa1kmmDKgZn6uWDE b9NMQCvbSWFMsaJTCAkbC0YtGWQWlUxxSSPRXHULjhUmBxwphDaryTZ10YKmoq9i p467LpVwyrNjf3nmqba2WRO88yOVw79C1eagJXB65KQzIo8LO6vW+VpimFlbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPLQE0bjzUfd8Lxaygyvukhg6AwYwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdoMA0GCSqG SIb3DQEBCwUAA4IBAQB9lNXCu18/Kgb9m3iSREuCoklRSgNum49GGHkCqRiX76d6 tvlTjphx01UENZUWgKUrXoUlMWd6vFqRZ2PBSCAx07s9eEdSzVfZEbrqymRablmX 4qxteG9BrRIBha+CvLGCQOSIB0aPmAdNV1xV4zs9KBTkA7eJxZ+eDMboZm87YUhV ix010TqPPSYK5qcUT3Mwh/F37+Kn0R2nOJ7iIlXWySZfljXYvVJv6MwAhOe9V/th a/5wCIltRnBB7dvy6Bct/PtN1U7pWO3Mk90+Djik037XXXWHSyvD68cz9JL39S1w Bpl4PVChZzsO7nmgj+74yt5Yv8Hxz6gvhvXkdDgf -----END CERTIFICATE-----Generated at Thu Mar 26 15:49:21 2026 by rpki-client