$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: LwrpOaka1VOvAbFBieQBzyePQWMSnUFnBOSE/FjlVH0= Subject key identifier: 1E:A6:79:DB:0E:87:0C:4A:33:7E:3F:DA:3F:7C:36:6B:F8:A2:E6:54 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5815AFF890D3E7731F9711870AB124652B45E64E Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:50 +0000 ROA not before: Tue 24 Mar 2026 08:57:50 +0000 ROA not after: Tue 23 Mar 2027 09:02:50 +0000 asID: 24525 IP address blocks: 114.199.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:15:af:f8:90:d3:e7:73:1f:97:11:87:0a:b1:24:65:2b:45:e6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:50 2026 GMT Not After : Mar 23 09:02:50 2027 GMT Subject: CN=1EA679DB0E870C4A337E3FDA3F7C366BF8A2E654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:df:8f:56:16:5f:79:d6:a0:ab:c3:44:3c:95: 4d:ff:20:9f:e2:59:f8:e3:e8:29:bd:b4:61:b9:a5: af:38:a3:c2:77:07:8c:a1:e8:2e:8f:d7:fe:56:d7: 82:f5:c2:55:0f:46:9a:a7:b3:a1:fb:2b:f0:f8:fd: 2f:77:f0:82:b7:68:91:8d:7d:6f:f3:ea:14:3f:7d: ca:45:59:0b:04:6e:8b:0b:4b:bd:2e:54:c1:5b:27: 78:6c:05:9f:5c:20:61:e2:88:31:93:01:1b:f9:8d: d6:a1:dc:b1:96:62:93:c8:1e:bc:b6:ed:00:83:33: 80:cb:08:a8:11:08:ba:cc:2a:13:be:19:cb:c9:ae: 89:99:57:2c:e5:03:7c:f5:7d:e2:47:ee:3d:ff:8e: 78:16:1a:78:28:6c:c7:4c:42:e5:e3:99:c0:23:05: b6:d6:43:dc:4b:c7:33:95:5b:cb:b0:19:a3:40:8b: f2:b7:13:29:68:c9:eb:5a:9e:3a:e3:fe:85:71:35: 48:3b:20:34:2a:7b:c1:d7:f4:80:1b:9b:77:78:dd: 91:4a:94:7b:df:75:45:b3:e8:c8:13:ae:47:96:7f: 37:8d:ce:55:2d:9d:cc:ec:7d:3d:b5:d1:ea:68:c9: 83:1e:d6:6a:4d:d2:14:58:47:d8:28:85:01:15:ad: 9f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A6:79:DB:0E:87:0C:4A:33:7E:3F:DA:3F:7C:36:6B:F8:A2:E6:54 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/23 Signature Algorithm: sha256WithRSAEncryption 82:b0:fa:f5:c4:97:85:9a:d7:50:8d:29:20:ac:b3:29:10:6e: fa:fa:6a:92:51:fe:5f:e1:38:ca:92:39:6f:1f:79:2d:be:88: 93:1a:39:e5:cf:42:75:23:80:22:19:ac:32:0f:3d:38:96:9f: 59:90:60:56:16:4b:90:e5:0a:05:f0:2c:c5:a7:c3:ed:64:b3: a0:3b:55:18:f8:c0:1d:94:d0:dc:47:18:e0:92:09:9b:3c:2b: fa:9c:96:ed:9f:a5:90:3c:f9:d8:1e:79:86:3c:c0:c5:59:f3: 50:7e:86:41:d2:82:7f:e8:9b:fb:1a:3c:4e:29:2c:3e:8e:ee: 19:89:86:10:c7:b8:df:91:a3:4f:e8:4c:36:29:0a:ab:f4:32: a6:55:85:ef:c6:5b:a2:14:90:ce:a3:85:01:d8:f5:cf:a1:8d: 83:b5:3e:c7:b9:1f:3b:53:8e:c1:a9:f5:10:bf:85:c6:de:1c: 03:63:9f:0d:32:1e:d9:cd:e7:b9:74:f6:86:87:1c:1e:fc:ca: f1:e9:f5:bf:82:12:c1:e2:2a:ad:88:e2:f5:b9:bd:91:14:9a: 82:03:7a:02:47:f4:cb:b9:4f:b7:44:f8:a9:2e:79:e9:63:75: 8c:95:86:a2:6d:71:57:c7:fd:07:38:ee:f3:21:cd:68:e9:96: 34:5b:2b:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWBWv+JDT53MflxGHCrEkZStF5k4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTBaFw0yNzAzMjMwOTAyNTBaMDMxMTAvBgNV BAMTKDFFQTY3OURCMEU4NzBDNEEzMzdFM0ZEQTNGN0MzNjZCRjhBMkU2NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE349WFl951qCrw0Q8lU3/IJ/i Wfjj6Cm9tGG5pa84o8J3B4yh6C6P1/5W14L1wlUPRpqns6H7K/D4/S938IK3aJGN fW/z6hQ/fcpFWQsEbosLS70uVMFbJ3hsBZ9cIGHiiDGTARv5jdah3LGWYpPIHry2 7QCDM4DLCKgRCLrMKhO+GcvJromZVyzlA3z1feJH7j3/jngWGngobMdMQuXjmcAj BbbWQ9xLxzOVW8uwGaNAi/K3Eyloyetanjrj/oVxNUg7IDQqe8HX9IAbm3d43ZFK lHvfdUWz6MgTrkeWfzeNzlUtnczsfT210epoyYMe1mpN0hRYR9gohQEVrZ8tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHqZ52w6HDEozfj/aP3w2a/ii5lQwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQCCsPr1xJeFmtdQjSkgrLMpEG76+mqSUf5f4TjKkjlvH3kt voiTGjnlz0J1I4AiGawyDz04lp9ZkGBWFkuQ5QoF8CzFp8PtZLOgO1UY+MAdlNDc RxjgkgmbPCv6nJbtn6WQPPnYHnmGPMDFWfNQfoZB0oJ/6Jv7GjxOKSw+ju4ZiYYQ x7jfkaNP6Ew2KQqr9DKmVYXvxluiFJDOo4UB2PXPoY2DtT7HuR87U47BqfUQv4XG 3hwDY58NMh7Zzee5dPaGhxwe/Mrx6fW/ghLB4iqtiOL1ub2RFJqCA3oCR/TLuU+3 RPipLnnpY3WMlYaibXFXx/0HOO7zIc1o6ZY0Wytv -----END CERTIFICATE-----Generated at Thu Mar 26 14:42:06 2026 by rpki-client