$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: BWHsNhkF0J5wHKQLsiTQorzGoXOIBj5efaghitg1SgY= Subject key identifier: 7D:BD:29:36:10:73:FC:7D:99:2D:4C:9C:15:6C:23:4B:92:DE:13:7A Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 25C9FCBE6E9D779717151C57F50FA2DB12198EB9 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 08:01:32 +0000 ROA not before: Tue 24 Mar 2026 07:56:32 +0000 ROA not after: Tue 23 Mar 2027 08:01:32 +0000 asID: 24525 IP address blocks: 114.199.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:c9:fc:be:6e:9d:77:97:17:15:1c:57:f5:0f:a2:db:12:19:8e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 07:56:32 2026 GMT Not After : Mar 23 08:01:32 2027 GMT Subject: CN=7DBD29361073FC7D992D4C9C156C234B92DE137A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0e:5a:f0:5c:79:3c:2b:8f:7b:ca:25:62:d1: 3a:fb:c1:24:36:9c:e8:0d:d6:f6:e1:7b:fd:4f:5f: 96:ec:a6:a2:8d:40:64:3d:b4:bd:b0:12:c5:83:ba: 2b:5b:5f:3b:34:94:3c:2f:07:60:f9:22:fa:07:45: 3a:ab:90:8b:fb:c5:d8:54:f3:71:b6:a4:41:93:b2: e1:07:91:3e:43:1b:36:3c:f6:a7:17:40:85:6a:cd: 6c:95:7a:99:08:ab:b1:8b:2e:ae:74:2c:f0:e9:e8: 6f:f3:92:e5:18:2b:52:88:5f:cb:6b:58:eb:8d:36: 49:9b:1e:01:b3:7b:21:bd:5e:52:8d:b1:9e:17:73: 12:23:7f:6e:72:91:03:00:9f:7d:93:e3:3b:a7:dd: 38:1a:60:90:c9:94:9a:19:12:9b:57:8c:6b:48:fb: 3c:33:46:eb:69:cb:7f:4e:9b:53:e1:5c:ad:80:0c: 21:a2:92:ef:fe:e4:13:57:d2:69:22:4d:32:c1:cf: ee:fb:2b:34:42:c1:1a:74:09:c2:07:c7:13:9e:a1: 1a:4a:cd:48:b0:73:50:a8:1d:bc:aa:9f:b7:b9:55: 7e:ff:6d:1b:55:eb:22:91:86:dc:54:e0:23:87:fa: fd:01:cd:63:56:a9:6e:02:65:d0:3f:10:2c:e3:d7: 56:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:BD:29:36:10:73:FC:7D:99:2D:4C:9C:15:6C:23:4B:92:DE:13:7A X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/23 Signature Algorithm: sha256WithRSAEncryption 15:56:4d:df:57:d5:0c:50:70:96:d1:ac:a2:be:d7:71:d2:b5: c1:b7:56:9c:3d:d5:ce:8b:97:7b:58:4c:f9:22:45:7f:ee:e7: 51:ef:cc:35:81:a1:f9:29:a6:ef:25:4f:de:38:16:ac:1a:6f: 22:d6:57:d9:25:03:62:c1:cd:2d:8f:c1:10:15:77:fd:13:be: 48:bd:9d:d3:19:db:76:5d:d7:f9:54:da:6c:a6:6a:a7:95:ea: 7c:05:70:e7:6b:a4:e5:4c:44:6c:78:89:5d:4a:1c:f6:55:cd: c6:d2:cb:ca:2b:c9:11:67:41:b1:f2:f6:8c:02:5a:2a:13:23: e2:39:fa:fe:ce:9f:83:20:fa:6d:82:d3:78:24:5d:79:2c:1c: d4:01:a1:11:8f:30:a5:bb:fb:82:ef:00:15:8b:fe:62:c0:9d: 59:5e:4b:74:41:1b:02:d9:bc:dd:ce:cd:46:8b:0b:a6:12:75: 6e:ca:b2:b0:79:5b:37:6e:8f:36:3d:9e:a1:1c:3a:0c:8b:a1: 8d:32:68:fd:c4:9d:58:82:cc:14:47:d0:74:57:1e:1e:47:e9: 74:29:c5:2c:c4:77:e1:91:be:9f:1a:a2:7a:3b:aa:63:ab:9b: af:fa:ea:72:86:64:ca:4a:79:42:cd:2e:89:68:bd:58:aa:ec: 96:ec:59:62 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJcn8vm6dd5cXFRxX9Q+i2xIZjrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwNzU2MzJaFw0yNzAzMjMwODAxMzJaMDMxMTAvBgNV BAMTKDdEQkQyOTM2MTA3M0ZDN0Q5OTJENEM5QzE1NkMyMzRCOTJERTEzN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/DlrwXHk8K497yiVi0Tr7wSQ2 nOgN1vbhe/1PX5bspqKNQGQ9tL2wEsWDuitbXzs0lDwvB2D5IvoHRTqrkIv7xdhU 83G2pEGTsuEHkT5DGzY89qcXQIVqzWyVepkIq7GLLq50LPDp6G/zkuUYK1KIX8tr WOuNNkmbHgGzeyG9XlKNsZ4XcxIjf25ykQMAn32T4zun3TgaYJDJlJoZEptXjGtI +zwzRutpy39Om1PhXK2ADCGiku/+5BNX0mkiTTLBz+77KzRCwRp0CcIHxxOeoRpK zUiwc1CoHbyqn7e5VX7/bRtV6yKRhtxU4COH+v0BzWNWqW4CZdA/ECzj11ZbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfb0pNhBz/H2ZLUycFWwjS5LeE3owHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQAVVk3fV9UMUHCW0ayivtdx0rXBt1acPdXOi5d7WEz5IkV/ 7udR78w1gaH5KabvJU/eOBasGm8i1lfZJQNiwc0tj8EQFXf9E75IvZ3TGdt2Xdf5 VNpspmqnlep8BXDna6TlTERseIldShz2Vc3G0svKK8kRZ0Gx8vaMAloqEyPiOfr+ zp+DIPptgtN4JF15LBzUAaERjzClu/uC7wAVi/5iwJ1ZXkt0QRsC2bzdzs1Giwum EnVuyrKweVs3bo82PZ6hHDoMi6GNMmj9xJ1YgswUR9B0Vx4eR+l0KcUsxHfhkb6f GqJ6O6pjq5uv+upyhmTKSnlCzS6JaL1YquyW7Fli -----END CERTIFICATE-----Generated at Thu Mar 26 14:42:27 2026 by rpki-client