$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3131322e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: XAqDgsoTHn4yn7wswd1KWYz0CGXuGTOsMKbe9tPm2E4= Subject key identifier: B1:E4:DA:D0:4A:54:1A:48:0B:E2:EF:03:E3:E3:9F:8B:E6:A9:0F:27 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 487CC056FD9F546AB42108E6D8E0A225EA67483F Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32322d3232203d3e203234353235.roa Signing time: Tue 24 Mar 2026 06:00:02 +0000 ROA not before: Tue 24 Mar 2026 05:55:02 +0000 ROA not after: Tue 23 Mar 2027 06:00:02 +0000 asID: 24525 IP address blocks: 114.199.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 20:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:7c:c0:56:fd:9f:54:6a:b4:21:08:e6:d8:e0:a2:25:ea:67:48:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 05:55:02 2026 GMT Not After : Mar 23 06:00:02 2027 GMT Subject: CN=B1E4DAD04A541A480BE2EF03E3E39F8BE6A90F27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:92:20:7d:e4:5c:49:4e:c9:51:9b:eb:99:a5: e4:bb:58:33:0f:1e:6e:32:d2:ab:79:35:e5:8a:96: 27:ba:f4:9c:2a:89:8b:b6:4a:1e:c0:fe:ad:b3:09: 52:61:c0:9a:a6:dc:ee:2b:5e:1e:ae:5d:12:60:d4: 0a:59:17:25:93:78:92:fc:0b:a7:e4:e6:20:04:b7: 71:03:5d:6c:81:24:1a:c1:3b:0f:70:0e:3a:55:7a: f3:9d:2e:f2:20:f1:a3:28:21:6a:2c:9a:c8:db:18: 36:04:03:3e:21:e1:bc:68:db:bb:39:18:bb:39:d1: 00:9c:ef:45:dc:18:32:aa:38:7f:9f:c0:5e:8d:35: 2e:fc:a4:ab:44:f1:2a:ff:24:e1:f2:5d:b5:1a:d4: 27:d4:a6:a2:ba:0e:38:a8:47:85:c4:b2:82:e1:51: b2:ea:ef:5f:9e:a9:30:8d:e0:85:a3:66:92:ce:38: a6:a0:5b:c3:34:c9:51:17:20:02:33:fa:74:74:98: 1e:77:57:b9:f8:1a:73:0b:0c:85:f1:c0:fa:50:32: 1d:47:e7:4f:38:a2:a4:29:99:f6:fb:26:67:5f:03: 3d:ca:cd:ba:9b:c1:78:a0:6a:ac:24:57:08:a5:97: 80:24:8e:ae:9b:89:43:b4:61:d4:f9:7d:16:fc:a0: 78:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E4:DA:D0:4A:54:1A:48:0B:E2:EF:03:E3:E3:9F:8B:E6:A9:0F:27 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/22 Signature Algorithm: sha256WithRSAEncryption 17:5f:65:8a:59:43:ab:c6:9a:8e:58:f4:89:af:78:c1:32:47: 74:b4:53:ac:85:22:2d:60:a4:d1:b2:60:c9:02:10:d3:54:11: cb:a6:d6:82:17:d6:ad:da:6a:a6:b2:5a:75:5d:4e:bf:96:2a: cc:d2:27:76:93:55:d0:6e:05:8b:ea:85:51:9b:d5:0c:ad:ad: db:21:e7:3b:ba:4f:e2:23:bc:08:0d:f5:ac:57:c3:d9:e3:a8: 2e:3f:7b:18:ec:5b:93:ab:60:97:41:f7:d5:26:52:40:a8:a3: e4:1d:59:b7:1e:46:a2:a9:0d:c0:f3:5d:0d:a7:8b:fd:5a:75: 8c:40:fd:e5:13:f0:73:f9:fe:b9:37:ed:c2:68:dc:ec:dc:3a: 50:c7:df:57:6c:3c:75:dc:80:60:37:4c:46:50:2a:cf:b5:d2: b0:b9:3d:83:80:35:38:6c:45:e2:93:5e:0c:9c:51:cd:fe:66: 6b:7a:f3:30:48:df:c6:4a:54:3b:26:db:5d:c6:3f:5f:63:d7: 54:7f:a7:39:36:3c:16:e7:cb:37:58:a3:b9:a0:43:c3:bb:e0: cf:2e:fc:a6:ea:54:bd:19:bc:ba:2a:7c:37:5a:0c:79:b2:4d: 72:6f:d5:b0:ba:e2:79:5e:01:38:85:ec:43:18:a4:5b:d6:47: 71:71:97:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSHzAVv2fVGq0IQjm2OCiJepnSD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwNTU1MDJaFw0yNzAzMjMwNjAwMDJaMDMxMTAvBgNV BAMTKEIxRTREQUQwNEE1NDFBNDgwQkUyRUYwM0UzRTM5RjhCRTZBOTBGMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEkiB95FxJTslRm+uZpeS7WDMP Hm4y0qt5NeWKlie69JwqiYu2Sh7A/q2zCVJhwJqm3O4rXh6uXRJg1ApZFyWTeJL8 C6fk5iAEt3EDXWyBJBrBOw9wDjpVevOdLvIg8aMoIWosmsjbGDYEAz4h4bxo27s5 GLs50QCc70XcGDKqOH+fwF6NNS78pKtE8Sr/JOHyXbUa1CfUpqK6DjioR4XEsoLh UbLq71+eqTCN4IWjZpLOOKagW8M0yVEXIAIz+nR0mB53V7n4GnMLDIXxwPpQMh1H 5084oqQpmfb7JmdfAz3KzbqbwXigaqwkVwill4Akjq6biUO0YdT5fRb8oHiBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUseTa0EpUGkgL4u8D4+Ofi+apDycwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQAXX2WKWUOrxpqOWPSJr3jBMkd0tFOshSItYKTRsmDJAhDT VBHLptaCF9at2mqmslp1XU6/lirM0id2k1XQbgWL6oVRm9UMra3bIec7uk/iI7wI DfWsV8PZ46guP3sY7FuTq2CXQffVJlJAqKPkHVm3HkaiqQ3A810Np4v9WnWMQP3l E/Bz+f65N+3CaNzs3DpQx99XbDx13IBgN0xGUCrPtdKwuT2DgDU4bEXik14MnFHN /mZrevMwSN/GSlQ7Jttdxj9fY9dUf6c5NjwW58s3WKO5oEPDu+DPLvym6lS9Gby6 Knw3Wgx5sk1yb9WwuuJ5XgE4hexDGKRb1kdxcZdl -----END CERTIFICATE-----Generated at Fri Mar 27 01:14:45 2026 by rpki-client