$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: /t7ewOL2KtusHlv1wBkDCF1zZ10kkGElUK8QaXH6/LA= Subject key identifier: 35:70:1B:BF:E6:D1:E3:93:BD:5F:B1:20:46:89:56:76:08:13:1F:88 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0784479A9B08EE403D9C59BCEE3FB976E4181A6A Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:51 +0000 ROA not before: Tue 24 Mar 2026 08:57:51 +0000 ROA not after: Tue 23 Mar 2027 09:02:51 +0000 asID: 24525 IP address blocks: 114.199.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:84:47:9a:9b:08:ee:40:3d:9c:59:bc:ee:3f:b9:76:e4:18:1a:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:51 2026 GMT Not After : Mar 23 09:02:51 2027 GMT Subject: CN=35701BBFE6D1E393BD5FB1204689567608131F88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2c:50:ef:36:4e:6a:ac:5e:c8:5a:a9:56:76: 33:c3:4e:c4:f6:af:52:01:df:3d:32:fe:06:fb:0e: 50:ff:ba:90:a9:3d:38:35:b4:e8:4a:91:bb:f4:38: e2:fa:ba:63:a6:a3:a3:f1:49:2b:54:09:94:4d:b6: 0b:d7:4f:49:63:b3:e2:d7:41:98:f1:c8:08:bf:ab: 0b:5f:10:fd:71:d4:34:11:c8:01:2f:e8:34:3f:d3: 93:42:59:27:de:b9:60:0c:d7:7d:e9:5a:50:c9:63: a2:4f:71:2b:0c:09:6a:1b:5b:00:28:dc:32:f4:d9: e6:52:1f:ec:c2:cf:49:25:ec:86:69:ee:af:b6:91: 31:2f:83:05:eb:d0:1a:82:85:65:d7:aa:ee:8c:b4: db:5b:6b:43:6c:24:5b:37:cf:d5:80:ed:83:9a:15: 1f:73:7b:af:3e:10:6f:ec:cf:4c:2c:92:16:a0:ea: 96:7d:d7:ff:f3:68:93:ae:7c:68:3a:72:1e:76:b2: 4c:6a:cf:7d:99:0c:96:9e:df:42:b8:92:8c:9b:b9: 56:c7:7e:f6:b7:a8:74:dc:f9:64:c6:81:77:17:54: ca:fb:46:f8:4b:aa:6a:45:df:c4:8f:a8:c2:16:fd: 92:5f:75:68:00:b8:3f:75:b6:fa:c0:5b:59:aa:c7: f2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:70:1B:BF:E6:D1:E3:93:BD:5F:B1:20:46:89:56:76:08:13:1F:88 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/21 Signature Algorithm: sha256WithRSAEncryption bb:d9:e2:52:46:83:8d:3e:7f:08:52:cf:64:34:ca:1a:3c:0f: a2:c4:57:3f:79:9f:20:47:c5:ca:8e:d6:5d:e5:52:97:19:b6: b9:1c:33:f2:2c:08:dd:e5:c9:73:cd:9d:43:d9:7d:b5:f8:19: 5e:24:f7:c0:cc:0c:84:45:9f:ef:98:fb:6d:e4:e2:24:93:fc: c3:a7:7f:83:a3:8f:a7:e4:80:f4:08:62:ec:37:5d:19:50:87: ea:ff:95:e8:81:9b:7d:f9:22:66:c1:f3:6c:00:7f:ac:8e:41: 45:63:c8:03:cd:19:7f:a0:38:23:f6:a7:1b:6c:cb:04:21:17: 11:ce:a5:32:3e:56:f6:48:e7:76:66:dd:cf:f9:04:1a:ac:ac: 14:95:10:fc:19:22:30:fe:ad:ab:5d:05:bf:c1:86:49:68:30: 32:0d:ff:4d:21:b9:08:2d:93:f9:99:83:a6:72:75:f9:a1:bc: 9b:f8:04:f0:7d:ad:49:a7:a8:79:ba:ec:dd:e3:74:6b:d3:25: 39:52:bf:78:72:7d:93:f0:3b:d8:b6:12:c4:f9:a9:3c:d5:b8: 6a:75:94:3a:85:9a:ea:e0:a2:b1:e2:a3:85:bd:43:2d:b1:23: a3:d4:f9:53:2f:22:e9:f2:a7:7e:42:11:1b:6e:07:54:63:f9: 49:2d:f6:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB4RHmpsI7kA9nFm87j+5duQYGmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTFaFw0yNzAzMjMwOTAyNTFaMDMxMTAvBgNV BAMTKDM1NzAxQkJGRTZEMUUzOTNCRDVGQjEyMDQ2ODk1Njc2MDgxMzFGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDULFDvNk5qrF7IWqlWdjPDTsT2 r1IB3z0y/gb7DlD/upCpPTg1tOhKkbv0OOL6umOmo6PxSStUCZRNtgvXT0ljs+LX QZjxyAi/qwtfEP1x1DQRyAEv6DQ/05NCWSfeuWAM133pWlDJY6JPcSsMCWobWwAo 3DL02eZSH+zCz0kl7IZp7q+2kTEvgwXr0BqChWXXqu6MtNtba0NsJFs3z9WA7YOa FR9ze68+EG/sz0wskhag6pZ91//zaJOufGg6ch52skxqz32ZDJae30K4koybuVbH fva3qHTc+WTGgXcXVMr7RvhLqmpF38SPqMIW/ZJfdWgAuD91tvrAW1mqx/JXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNXAbv+bR45O9X7EgRolWdggTH4gwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQC72eJSRoONPn8IUs9kNMoaPA+ixFc/eZ8gR8XKjtZd5VKX Gba5HDPyLAjd5clzzZ1D2X21+BleJPfAzAyERZ/vmPtt5OIkk/zDp3+Do4+n5ID0 CGLsN10ZUIfq/5XogZt9+SJmwfNsAH+sjkFFY8gDzRl/oDgj9qcbbMsEIRcRzqUy Plb2SOd2Zt3P+QQarKwUlRD8GSIw/q2rXQW/wYZJaDAyDf9NIbkILZP5mYOmcnX5 obyb+ATwfa1Jp6h5uuzd43Rr0yU5Ur94cn2T8DvYthLE+ak81bhqdZQ6hZrq4KKx 4qOFvUMtsSOj1PlTLyLp8qd+QhEbbgdUY/lJLfbc -----END CERTIFICATE-----Generated at Thu Mar 26 16:44:50 2026 by rpki-client