$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: RNFXuu7L/z0dD57GaXRmdkhwXjRZFKqZ3LWCp8EuoRA= Subject key identifier: BE:07:D1:FD:4C:77:E5:D5:1E:87:5E:21:1A:AB:A5:64:AE:30:7F:5C Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 3EC45A4801B402C5BFAF9D8C9D6B6F3A148D3438 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:50 +0000 ROA not before: Tue 24 Mar 2026 08:57:50 +0000 ROA not after: Tue 23 Mar 2027 09:02:50 +0000 asID: 24525 IP address blocks: 114.199.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c4:5a:48:01:b4:02:c5:bf:af:9d:8c:9d:6b:6f:3a:14:8d:34:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:50 2026 GMT Not After : Mar 23 09:02:50 2027 GMT Subject: CN=BE07D1FD4C77E5D51E875E211AABA564AE307F5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:fc:5f:e3:24:a1:1c:f8:16:51:11:e6:b6:86: 71:90:1d:54:0c:d5:e6:7d:20:43:a1:cb:a3:bc:74: 4d:c3:0b:e2:ba:77:95:2d:8d:86:a8:9a:1c:ea:84: 2f:1d:c7:e6:b5:1b:f6:f8:04:29:aa:8d:ec:45:c4: f1:bc:fd:ed:52:76:5b:7f:2b:b3:87:8d:5a:c3:4a: 46:3b:4b:4e:38:1b:82:e5:3e:93:66:1d:cf:5a:d5: 27:d0:28:58:40:9d:aa:0d:c8:35:54:8b:70:57:77: be:14:2e:01:b1:38:0f:6a:8f:24:95:de:74:38:ac: 67:26:85:69:61:b6:ce:87:e0:d2:33:2a:12:50:34: d8:d9:c3:09:65:9f:84:71:47:0a:0c:58:a4:2e:48: 9f:84:b5:37:fc:02:c7:20:37:64:fe:97:94:d6:fd: a5:13:21:ad:d6:1a:32:6f:1b:d7:24:1c:03:89:40: 7d:5b:e9:f6:f0:3e:ab:c5:76:b6:b0:c1:a1:2b:65: dc:12:2c:61:4d:12:b1:2f:0f:06:f3:5d:e9:d8:f5: 11:62:5d:e7:bd:f8:10:9a:4f:07:c1:94:66:68:94: d7:cb:69:35:20:a9:51:79:e6:a4:18:a7:90:ef:83: 34:50:53:04:bf:56:44:9c:49:33:f1:5e:7e:56:48: 43:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:07:D1:FD:4C:77:E5:D5:1E:87:5E:21:1A:AB:A5:64:AE:30:7F:5C X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.104.0/23 Signature Algorithm: sha256WithRSAEncryption c0:47:48:07:b2:b0:4e:2f:3e:86:36:24:b8:4b:07:4c:d3:ae: c1:63:21:5f:57:d4:25:83:e5:03:86:59:7e:4c:68:01:2b:c7: c0:ac:64:60:ce:4b:66:7c:8f:a6:b1:b5:a1:8b:e2:da:1e:69: 80:d4:52:f7:70:c4:e6:bc:72:4f:27:e9:38:bf:0b:43:49:23: 3c:b7:6d:a4:88:fa:42:01:71:37:99:5e:b4:5e:a1:09:d2:81: 19:d6:3c:62:e6:2c:bc:b1:f8:88:2f:09:92:c2:d5:cb:95:9c: 2f:07:1a:6d:24:f1:df:a1:0c:1d:49:6e:88:fc:5a:5c:d7:ed: b2:63:cd:31:76:9b:ed:7f:dd:e3:c9:ed:3f:e0:79:7d:10:2b: da:7a:d4:c7:58:40:c9:0b:79:90:c9:94:45:dc:0a:31:0a:eb: 20:e3:bb:ad:55:94:c4:2f:7e:c1:a6:29:fb:30:48:b7:a1:7e: 5b:9c:15:0e:bc:69:e5:de:90:88:8a:a4:d7:e8:3b:2d:fe:83: 2c:57:ba:8e:af:4d:65:57:b3:01:46:e0:c5:2c:95:16:b2:1f: 1f:d5:c3:0c:31:51:cb:1f:d4:fd:6a:68:4c:1c:0c:6e:30:1e: 41:db:5d:31:34:21:b1:53:0d:57:cd:ce:ed:c2:f8:9a:b1:b4: 11:be:44:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPsRaSAG0AsW/r52MnWtvOhSNNDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTBaFw0yNzAzMjMwOTAyNTBaMDMxMTAvBgNV BAMTKEJFMDdEMUZENEM3N0U1RDUxRTg3NUUyMTFBQUJBNTY0QUUzMDdGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs/F/jJKEc+BZREea2hnGQHVQM 1eZ9IEOhy6O8dE3DC+K6d5UtjYaomhzqhC8dx+a1G/b4BCmqjexFxPG8/e1Sdlt/ K7OHjVrDSkY7S044G4LlPpNmHc9a1SfQKFhAnaoNyDVUi3BXd74ULgGxOA9qjySV 3nQ4rGcmhWlhts6H4NIzKhJQNNjZwwlln4RxRwoMWKQuSJ+EtTf8AscgN2T+l5TW /aUTIa3WGjJvG9ckHAOJQH1b6fbwPqvFdrawwaErZdwSLGFNErEvDwbzXenY9RFi Xee9+BCaTwfBlGZolNfLaTUgqVF55qQYp5DvgzRQUwS/VkScSTPxXn5WSEMbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvgfR/Ux35dUeh14hGqulZK4wf1wwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdoMA0GCSqG SIb3DQEBCwUAA4IBAQDAR0gHsrBOLz6GNiS4SwdM067BYyFfV9Qlg+UDhll+TGgB K8fArGRgzktmfI+msbWhi+LaHmmA1FL3cMTmvHJPJ+k4vwtDSSM8t22kiPpCAXE3 mV60XqEJ0oEZ1jxi5iy8sfiILwmSwtXLlZwvBxptJPHfoQwdSW6I/Fpc1+2yY80x dpvtf93jye0/4Hl9ECvaetTHWEDJC3mQyZRF3AoxCusg47utVZTEL37Bpin7MEi3 oX5bnBUOvGnl3pCIiqTX6Dst/oMsV7qOr01lV7MBRuDFLJUWsh8f1cMMMVHLH9T9 amhMHAxuMB5B210xNCGxUw1Xzc7twviasbQRvkTG -----END CERTIFICATE-----Generated at Thu Mar 26 16:19:07 2026 by rpki-client