$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: /w8F4FgBE2BMMU4B9jWYhcxU1fIWimVAQRvpToIsSv8= Subject key identifier: 11:A8:E3:12:FF:E0:83:F6:99:4A:D2:7A:F1:02:42:11:DD:F6:57:89 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 2C4A84F6005E1440DA2B8D1C0FD9E9B9C775ACF6 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:50 +0000 ROA not before: Tue 24 Mar 2026 08:57:50 +0000 ROA not after: Tue 23 Mar 2027 09:02:50 +0000 asID: 24525 IP address blocks: 114.199.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4a:84:f6:00:5e:14:40:da:2b:8d:1c:0f:d9:e9:b9:c7:75:ac:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:50 2026 GMT Not After : Mar 23 09:02:50 2027 GMT Subject: CN=11A8E312FFE083F6994AD27AF1024211DDF65789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:bd:5c:47:18:18:56:e4:d3:92:8f:07:e8:c6: c3:8e:3b:0c:f5:a6:04:be:b9:c5:d5:56:78:ab:f9: 89:f0:a3:3b:a7:5b:bd:c6:f5:e8:44:97:ef:6f:0b: 48:c2:79:2e:d6:0b:e1:2c:79:0a:fd:c3:9b:c3:71: 0a:2b:11:41:6f:44:61:0b:6e:e9:de:d5:91:07:96: 1b:b6:12:bd:59:a9:d5:d7:77:b2:49:61:6a:1d:d8: f6:e8:ec:e9:2e:94:36:b8:a2:61:50:2d:21:c2:f9: 85:83:32:36:0b:e1:5b:eb:95:b8:b5:31:ae:86:07: e2:7d:89:05:1a:05:38:44:af:75:29:60:06:e9:2a: d3:0b:f5:dd:ee:34:09:28:04:2f:be:a9:67:28:33: 9f:63:c2:d0:10:9d:0d:93:ab:f0:ae:fd:a1:7d:4b: c3:c7:b1:7a:36:d3:89:ad:95:cf:8d:cd:68:59:db: 92:f0:92:6d:98:ab:fc:ae:9c:cf:cf:f6:7e:bf:28: 6d:38:d9:10:71:d5:e5:5b:13:d8:74:bf:e0:58:ad: ac:34:a5:17:03:97:12:20:6a:5f:d1:d5:af:5f:9c: 29:d3:98:c6:22:95:1d:56:12:1b:b0:34:0b:71:5f: d6:ab:3c:8a:fa:d4:64:f4:6f:59:f3:8e:34:cc:5c: 1c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A8:E3:12:FF:E0:83:F6:99:4A:D2:7A:F1:02:42:11:DD:F6:57:89 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.124.0/22 Signature Algorithm: sha256WithRSAEncryption 17:44:46:c0:a1:77:31:ae:8a:8f:4a:4b:56:2b:a4:c3:df:58: d1:f2:ff:a9:07:5a:37:0f:a9:8f:e5:b6:54:ce:ff:94:c1:d8: d3:bc:a6:c0:a7:98:60:eb:03:05:ba:13:c0:b8:b8:0f:ba:6b: cc:92:03:f1:0c:86:fb:58:98:94:31:d0:49:70:9d:66:a4:a0: bb:6f:a8:a9:c1:cf:63:d6:f8:cc:fe:cd:a4:c7:3a:56:e4:b1: 3f:50:8f:29:d2:b8:ce:cf:44:fb:ff:bd:26:e8:0b:f4:66:ad: 77:72:c2:9a:3c:cd:01:a3:fc:bc:92:36:61:47:17:90:fd:c3: 59:f0:73:81:16:04:b1:11:42:e9:12:71:cd:7e:1a:26:75:3a: 94:7f:f2:1d:64:b1:36:42:c7:15:ea:1b:1a:8f:d7:9a:e3:67: a4:49:54:1c:ee:18:b8:fa:ea:cf:0c:2a:f3:87:69:a7:34:bc: cb:e6:99:6b:83:38:5a:9a:ff:c5:02:b1:0f:e8:26:cc:03:80: 55:eb:1f:b3:bc:15:e1:ce:90:20:e3:69:ec:36:e9:d8:30:8f: 32:9e:20:d9:0c:3c:8f:d9:db:a5:85:7f:2f:ac:e1:9d:df:a7: b7:99:82:7a:04:63:48:f4:d9:e9:76:ec:14:cf:33:5c:65:35: 72:43:9b:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULEqE9gBeFEDaK40cD9npucd1rPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTBaFw0yNzAzMjMwOTAyNTBaMDMxMTAvBgNV BAMTKDExQThFMzEyRkZFMDgzRjY5OTRBRDI3QUYxMDI0MjExRERGNjU3ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgvVxHGBhW5NOSjwfoxsOOOwz1 pgS+ucXVVnir+YnwozunW73G9ehEl+9vC0jCeS7WC+EseQr9w5vDcQorEUFvRGEL bune1ZEHlhu2Er1ZqdXXd7JJYWod2Pbo7OkulDa4omFQLSHC+YWDMjYL4Vvrlbi1 Ma6GB+J9iQUaBThEr3UpYAbpKtML9d3uNAkoBC++qWcoM59jwtAQnQ2Tq/Cu/aF9 S8PHsXo204mtlc+NzWhZ25Lwkm2Yq/yunM/P9n6/KG042RBx1eVbE9h0v+BYraw0 pRcDlxIgal/R1a9fnCnTmMYilR1WEhuwNAtxX9arPIr61GT0b1nzjjTMXByfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEajjEv/gg/aZStJ68QJCEd32V4kwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsd8MA0GCSqG SIb3DQEBCwUAA4IBAQAXREbAoXcxroqPSktWK6TD31jR8v+pB1o3D6mP5bZUzv+U wdjTvKbAp5hg6wMFuhPAuLgPumvMkgPxDIb7WJiUMdBJcJ1mpKC7b6ipwc9j1vjM /s2kxzpW5LE/UI8p0rjOz0T7/70m6Av0Zq13csKaPM0Bo/y8kjZhRxeQ/cNZ8HOB FgSxEULpEnHNfhomdTqUf/IdZLE2QscV6hsaj9ea42ekSVQc7hi4+urPDCrzh2mn NLzL5plrgzhamv/FArEP6CbMA4BV6x+zvBXhzpAg42nsNunYMI8yniDZDDyP2dul hX8vrOGd36e3mYJ6BGNI9NnpduwUzzNcZTVyQ5sF -----END CERTIFICATE-----Generated at Thu Mar 26 14:36:04 2026 by rpki-client