$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: SigP7c8uN7ZEipEn9kw1/WwcgaxLUSfsvItn350TjJY= Subject key identifier: 83:0A:0D:EC:31:BC:CF:DC:8D:15:B8:54:BF:C2:29:DC:1F:29:7B:31 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 12A5842B6FD652C1FA8E392C426C66FDC6A10B1F Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:49 +0000 ROA not before: Tue 24 Mar 2026 08:57:49 +0000 ROA not after: Tue 23 Mar 2027 09:02:49 +0000 asID: 24525 IP address blocks: 114.199.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a5:84:2b:6f:d6:52:c1:fa:8e:39:2c:42:6c:66:fd:c6:a1:0b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:49 2026 GMT Not After : Mar 23 09:02:49 2027 GMT Subject: CN=830A0DEC31BCCFDC8D15B854BFC229DC1F297B31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:36:f3:01:52:e2:df:13:c6:39:fa:d5:93:fa: 2b:6c:dc:35:d8:da:2f:01:d9:92:2d:a0:8c:b3:05: a9:c2:30:7e:fe:1c:2c:71:38:20:8c:1f:bf:0b:c0: 4b:52:ce:11:8b:56:f4:63:98:3c:67:5e:e4:b3:ca: 19:05:f3:82:43:5b:65:48:82:04:2e:63:d0:9a:e5: 3f:db:12:a3:51:1a:9c:09:60:11:d2:d1:91:e2:ba: f9:95:b2:b5:46:ac:85:81:68:59:e7:33:0e:3b:f9: f7:42:0c:7b:0b:1c:57:30:e7:01:8e:ca:e7:b8:dc: 74:cf:20:41:ff:1e:2d:8a:1e:06:1e:cf:b6:28:81: 5f:9d:ee:9d:fd:a4:a8:a0:a9:66:bb:c8:5a:5c:1c: d4:57:34:80:6d:b0:6e:ad:af:f3:7c:4d:82:2c:99: 97:86:1d:f4:6a:80:0d:78:91:7c:80:dc:a8:e7:78: d4:78:36:6b:5e:50:be:b4:f2:06:c3:d5:3b:dd:58: 12:47:40:19:fc:66:64:97:40:07:03:e9:aa:2a:26: 5d:cf:93:00:0b:8f:5e:52:98:d5:f0:bd:f6:15:60: 51:12:71:e9:08:14:48:fa:d8:9a:2f:ad:83:1d:3e: 55:3d:68:42:ff:de:47:20:b5:d0:fb:56:d8:19:33: 62:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:0A:0D:EC:31:BC:CF:DC:8D:15:B8:54:BF:C2:29:DC:1F:29:7B:31 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.114.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:f6:bb:cb:38:99:82:bc:6e:d1:1d:ca:c3:6f:37:d8:25:f7: c3:0c:21:54:05:a0:2d:81:52:7e:ba:17:91:7c:2a:d1:41:43: ea:4e:fe:80:b9:f8:bc:23:1a:dd:a9:a8:0f:25:d8:d0:ce:0d: 55:23:2b:a8:4e:2b:c2:84:fe:ad:4f:49:16:b1:ae:1e:08:10: a7:16:08:d5:f5:41:8e:5f:21:a2:31:7a:83:0d:5d:fe:eb:bb: 38:89:2c:64:e1:a1:6d:1a:98:49:33:7d:1f:79:f2:0d:a3:1b: d7:09:3b:2b:59:f1:d1:86:8a:69:f1:b6:17:c6:1c:a6:9b:22: 88:f1:00:04:eb:30:59:db:ce:79:65:2e:74:f3:77:8e:f7:12: 2e:fd:bb:4a:88:4e:4f:96:f1:b7:00:f7:3c:b1:dc:65:26:d3: ef:4f:23:8b:81:4c:87:07:46:39:6d:01:ad:da:55:f0:4b:bd: a0:bd:6b:4f:4b:be:d4:b8:f7:74:05:be:e2:65:47:8a:b2:9f: f1:a5:54:aa:82:40:25:2d:ef:f6:20:1a:8b:45:85:ad:dd:42: 6b:d2:3b:a7:6d:49:a8:19:21:97:c3:dc:b1:86:5a:22:2a:c1: 6a:a4:7f:8e:58:1b:6b:af:19:4d:de:00:d7:c3:4d:91:cd:61: d9:9b:90:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEqWEK2/WUsH6jjksQmxm/cahCx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NDlaFw0yNzAzMjMwOTAyNDlaMDMxMTAvBgNV BAMTKDgzMEEwREVDMzFCQ0NGREM4RDE1Qjg1NEJGQzIyOURDMUYyOTdCMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5NvMBUuLfE8Y5+tWT+its3DXY 2i8B2ZItoIyzBanCMH7+HCxxOCCMH78LwEtSzhGLVvRjmDxnXuSzyhkF84JDW2VI ggQuY9Ca5T/bEqNRGpwJYBHS0ZHiuvmVsrVGrIWBaFnnMw47+fdCDHsLHFcw5wGO yue43HTPIEH/Hi2KHgYez7YogV+d7p39pKigqWa7yFpcHNRXNIBtsG6tr/N8TYIs mZeGHfRqgA14kXyA3KjneNR4NmteUL608gbD1TvdWBJHQBn8ZmSXQAcD6aoqJl3P kwALj15SmNXwvfYVYFEScekIFEj62JovrYMdPlU9aEL/3kcgtdD7VtgZM2LHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgwoN7DG8z9yNFbhUv8Ip3B8pezEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdyMA0GCSqG SIb3DQEBCwUAA4IBAQAP9rvLOJmCvG7RHcrDbzfYJffDDCFUBaAtgVJ+uheRfCrR QUPqTv6Aufi8IxrdqagPJdjQzg1VIyuoTivChP6tT0kWsa4eCBCnFgjV9UGOXyGi MXqDDV3+67s4iSxk4aFtGphJM30fefINoxvXCTsrWfHRhopp8bYXxhymmyKI8QAE 6zBZ2855ZS5083eO9xIu/btKiE5PlvG3APc8sdxlJtPvTyOLgUyHB0Y5bQGt2lXw S72gvWtPS77UuPd0Bb7iZUeKsp/xpVSqgkAlLe/2IBqLRYWt3UJr0junbUmoGSGX w9yxhloiKsFqpH+OWBtrrxlN3gDXw02RzWHZm5Cm -----END CERTIFICATE-----Generated at Thu Mar 26 14:36:28 2026 by rpki-client