$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: sQ9Q3CLU9WHdHrsnPdeYW9X3iw4IR7ufS1FZpvzB9wU= Subject key identifier: 2F:0C:3F:FF:8F:2A:BD:3C:68:0B:B8:64:97:7C:07:B1:18:88:DC:5F Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0B0EDCA26445806E6FE00AFCDE20C8E6A1BA48CB Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:51 +0000 ROA not before: Tue 24 Mar 2026 08:57:51 +0000 ROA not after: Tue 23 Mar 2027 09:02:51 +0000 asID: 24525 IP address blocks: 114.199.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:0e:dc:a2:64:45:80:6e:6f:e0:0a:fc:de:20:c8:e6:a1:ba:48:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:51 2026 GMT Not After : Mar 23 09:02:51 2027 GMT Subject: CN=2F0C3FFF8F2ABD3C680BB864977C07B11888DC5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:03:bb:ca:00:ae:23:5c:65:7d:cb:e5:ad:1b: e0:77:c3:63:ca:3f:4a:2b:6c:9c:f0:fb:91:dc:0e: aa:d7:fb:0a:c2:d6:3f:1d:4a:77:7a:21:1a:13:ca: ca:81:7f:fe:85:78:71:eb:77:26:be:48:ac:73:53: a6:3f:21:a2:38:56:e3:8a:90:25:04:37:7c:02:32: 20:d0:7a:e3:da:59:91:e1:b3:fa:ad:ba:fa:13:90: 81:25:8d:89:04:91:e9:1b:ab:39:df:0c:4b:db:ed: 9f:0f:1b:1e:02:0a:b6:3a:56:3e:42:42:eb:f6:19: 44:84:7b:6c:08:b2:fd:53:b4:83:85:cc:75:06:07: 33:ce:02:81:cc:b7:fd:0a:50:29:34:fd:7b:d7:e9: 4a:25:d1:e2:01:ad:58:9e:96:92:cf:b3:7a:aa:47: 8f:ed:75:67:2e:d1:e3:47:22:aa:4a:cb:e4:dc:3e: 71:4b:0c:ce:b3:f3:a2:65:45:27:68:6e:8b:14:c6: d3:a1:99:6e:c1:cc:fd:55:bf:c9:6a:a2:d7:2d:d4: 71:15:59:f0:d6:ed:aa:6b:44:48:0d:6c:b1:cd:6e: 4b:ee:12:69:bd:80:f5:04:42:1b:23:a0:b7:4c:5e: 06:04:c4:69:e4:b9:99:9c:2c:3b:8e:cf:eb:cd:eb: 3a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0C:3F:FF:8F:2A:BD:3C:68:0B:B8:64:97:7C:07:B1:18:88:DC:5F X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:a7:c3:f7:1a:f3:ca:73:60:d6:3c:b7:91:71:94:8b:2d:f3: cd:19:60:7d:03:c3:b2:31:5f:03:e9:a1:7e:ba:b4:9d:d4:93: dc:47:0f:ec:1e:82:89:46:83:b6:a0:2d:5e:e0:14:87:fb:13: d2:18:2d:4e:e8:47:51:56:81:a1:cd:d8:63:65:24:35:2f:7d: a6:ed:f1:a2:4a:e8:05:52:02:55:64:fa:4e:26:36:2b:0e:4b: 51:eb:a4:3b:e1:81:bd:ee:55:4d:81:3c:47:d0:d6:2e:76:32: 93:73:73:3e:77:62:e4:85:f5:50:38:ef:de:e0:33:5d:de:01: 76:df:00:95:ee:4b:1f:21:05:c2:20:76:c7:da:75:38:62:a6: 32:f2:60:37:ef:70:76:f7:20:bf:c4:b5:d1:af:06:14:e9:4d: ec:8e:0e:2e:38:af:2b:e6:97:70:28:c6:64:23:29:25:3f:8c: 4c:03:cd:9d:f4:e6:2f:05:af:78:7d:82:2c:d6:ea:2c:7e:c4: 98:b1:ee:ab:2b:40:40:b5:ce:23:60:74:3c:95:fc:8b:c8:e2: a6:a2:e0:bd:d1:d7:52:ae:74:a6:84:21:32:ae:1d:f8:2d:23: 58:6f:7f:7d:d0:85:42:ae:bd:e6:71:f1:b1:57:0c:e9:42:6c: 35:27:dd:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCw7comRFgG5v4Ar83iDI5qG6SMswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTFaFw0yNzAzMjMwOTAyNTFaMDMxMTAvBgNV BAMTKDJGMEMzRkZGOEYyQUJEM0M2ODBCQjg2NDk3N0MwN0IxMTg4OERDNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFA7vKAK4jXGV9y+WtG+B3w2PK P0orbJzw+5HcDqrX+wrC1j8dSnd6IRoTysqBf/6FeHHrdya+SKxzU6Y/IaI4VuOK kCUEN3wCMiDQeuPaWZHhs/qtuvoTkIEljYkEkekbqznfDEvb7Z8PGx4CCrY6Vj5C Quv2GUSEe2wIsv1TtIOFzHUGBzPOAoHMt/0KUCk0/XvX6Uol0eIBrVielpLPs3qq R4/tdWcu0eNHIqpKy+TcPnFLDM6z86JlRSdobosUxtOhmW7BzP1Vv8lqotct1HEV WfDW7aprREgNbLHNbkvuEmm9gPUEQhsjoLdMXgYExGnkuZmcLDuOz+vN6zqhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULww//48qvTxoC7hkl3wHsRiI3F8wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQB/p8P3GvPKc2DWPLeRcZSLLfPNGWB9A8OyMV8D6aF+urSd 1JPcRw/sHoKJRoO2oC1e4BSH+xPSGC1O6EdRVoGhzdhjZSQ1L32m7fGiSugFUgJV ZPpOJjYrDktR66Q74YG97lVNgTxH0NYudjKTc3M+d2LkhfVQOO/e4DNd3gF23wCV 7ksfIQXCIHbH2nU4YqYy8mA373B29yC/xLXRrwYU6U3sjg4uOK8r5pdwKMZkIykl P4xMA82d9OYvBa94fYIs1uosfsSYse6rK0BAtc4jYHQ8lfyLyOKmouC90ddSrnSm hCEyrh34LSNYb3990IVCrr3mcfGxVwzpQmw1J926 -----END CERTIFICATE-----Generated at Thu Mar 26 15:24:34 2026 by rpki-client