$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: O47u/bvvkojt1YwedfetnO7+82tsBScM9cCRxPe8HkU= Subject key identifier: 3C:F7:E6:0D:F2:B3:7A:EB:69:4D:2F:47:E1:C4:56:32:03:64:CA:C3 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 318BC37F89BF199EB857FEDDE1D6EDC8BD663D11 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:50 +0000 ROA not before: Tue 24 Mar 2026 08:57:50 +0000 ROA not after: Tue 23 Mar 2027 09:02:50 +0000 asID: 24525 IP address blocks: 114.199.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 20:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:8b:c3:7f:89:bf:19:9e:b8:57:fe:dd:e1:d6:ed:c8:bd:66:3d:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:50 2026 GMT Not After : Mar 23 09:02:50 2027 GMT Subject: CN=3CF7E60DF2B37AEB694D2F47E1C456320364CAC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c2:b5:31:b5:82:5d:e3:35:44:c8:d8:cf:10: de:10:f8:05:3b:8e:3b:08:3d:d4:65:cc:96:b0:b3: e6:27:dc:db:23:92:5b:86:92:4a:04:a7:e6:8e:96: 55:31:df:b8:79:01:64:51:9e:57:38:db:81:66:96: 80:e9:86:5a:f5:2b:af:cd:59:6e:ba:dd:7e:c8:64: da:62:be:9b:19:32:bc:16:ca:35:93:15:91:86:8f: e6:37:87:b1:15:55:50:8d:0d:1b:2e:48:a9:4d:36: 73:b4:46:5a:6e:a3:38:a7:78:a8:a0:3c:76:25:f2: 55:cb:39:fe:d6:4c:72:e5:28:66:0d:b5:0d:c5:ee: fa:42:28:cb:01:33:a2:79:1a:49:02:fc:4d:0d:f9: 92:e8:81:15:ef:bf:fc:e9:73:82:0c:47:41:59:99: a0:48:cd:3d:ed:4e:95:e6:53:bf:47:71:81:0f:11: 33:5a:3f:3c:b8:13:a4:88:3d:15:3c:48:9e:75:30: 20:f0:39:50:46:60:21:76:cd:ed:c6:5c:67:bf:ff: fd:38:58:fd:81:11:3e:8d:0b:80:ad:79:7d:58:2b: b8:c7:f1:24:47:c2:2d:ae:ce:6c:a7:c8:51:44:34: 9b:a6:d8:24:78:87:16:46:3e:2f:da:50:74:75:c9: 9e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F7:E6:0D:F2:B3:7A:EB:69:4D:2F:47:E1:C4:56:32:03:64:CA:C3 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132322e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.122.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:53:f0:0f:da:9f:ad:0a:0d:6f:bb:86:1b:6d:12:52:d7:3c: 10:15:f9:f1:29:92:89:26:83:e4:ed:ca:54:99:65:4f:d0:9c: bb:9c:77:a3:29:cc:38:18:da:fc:6e:ce:9c:23:b3:76:f9:41: fe:69:f1:a0:ff:9f:e8:12:db:2b:86:2d:2a:f2:20:15:b8:f1: b7:32:2f:95:e4:82:69:98:ad:62:75:83:83:d0:76:12:dd:0a: 6a:ae:41:16:6c:4c:58:44:64:6b:ae:99:30:ae:ad:fe:f7:33: 72:92:c7:e7:2d:ee:6e:d8:42:4a:5a:8f:19:b3:35:ab:ba:15: 1c:de:f7:be:4f:e2:5e:7a:2f:4c:9e:fa:9b:53:5a:3c:69:c7: 4e:a6:f6:58:80:86:79:dc:1c:c1:87:90:1a:fd:2e:cf:18:40: 02:25:4a:00:93:0d:59:36:a1:31:2e:a1:6b:36:61:41:e6:d6: 48:53:ea:79:44:fc:0e:49:2e:36:02:36:e0:d4:bf:5d:90:1b: d8:91:f7:3a:22:fa:16:7a:85:fb:68:b2:04:d1:23:53:41:cf: e3:cc:86:3b:50:20:1f:d4:a2:50:4d:c4:b1:d9:8d:f2:cf:a2: a6:c0:8a:21:61:7d:6c:ba:9b:cf:ee:30:7b:da:b9:5f:5a:a2: aa:52:fa:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMYvDf4m/GZ64V/7d4dbtyL1mPREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTBaFw0yNzAzMjMwOTAyNTBaMDMxMTAvBgNV BAMTKDNDRjdFNjBERjJCMzdBRUI2OTREMkY0N0UxQzQ1NjMyMDM2NENBQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/wrUxtYJd4zVEyNjPEN4Q+AU7 jjsIPdRlzJaws+Yn3NsjkluGkkoEp+aOllUx37h5AWRRnlc424FmloDphlr1K6/N WW663X7IZNpivpsZMrwWyjWTFZGGj+Y3h7EVVVCNDRsuSKlNNnO0RlpuozineKig PHYl8lXLOf7WTHLlKGYNtQ3F7vpCKMsBM6J5GkkC/E0N+ZLogRXvv/zpc4IMR0FZ maBIzT3tTpXmU79HcYEPETNaPzy4E6SIPRU8SJ51MCDwOVBGYCF2ze3GXGe///04 WP2BET6NC4CteX1YK7jH8SRHwi2uzmynyFFENJum2CR4hxZGPi/aUHR1yZ69AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPPfmDfKzeutpTS9H4cRWMgNkysMwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsd6MA0GCSqG SIb3DQEBCwUAA4IBAQBcU/AP2p+tCg1vu4YbbRJS1zwQFfnxKZKJJoPk7cpUmWVP 0Jy7nHejKcw4GNr8bs6cI7N2+UH+afGg/5/oEtsrhi0q8iAVuPG3Mi+V5IJpmK1i dYOD0HYS3QpqrkEWbExYRGRrrpkwrq3+9zNyksfnLe5u2EJKWo8ZszWruhUc3ve+ T+Jeei9MnvqbU1o8acdOpvZYgIZ53BzBh5Aa/S7PGEACJUoAkw1ZNqExLqFrNmFB 5tZIU+p5RPwOSS42Ajbg1L9dkBvYkfc6IvoWeoX7aLIE0SNTQc/jzIY7UCAf1KJQ TcSx2Y3yz6KmwIohYX1supvP7jB72rlfWqKqUvqD -----END CERTIFICATE-----Generated at Thu Mar 26 22:06:48 2026 by rpki-client