$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: SK9rgLVQt3RiX+Hc1VHBYVej4tvwHKgOWK80gdVAgSo= Subject key identifier: 10:31:DB:9E:CA:57:36:CA:8D:7F:C6:1E:56:B8:47:A8:93:9A:73:9C Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 3E0D09D8D7771532F60AB154736A3FCDE5F737D4 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:51 +0000 ROA not before: Tue 24 Mar 2026 08:57:51 +0000 ROA not after: Tue 23 Mar 2027 09:02:51 +0000 asID: 24525 IP address blocks: 114.199.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0d:09:d8:d7:77:15:32:f6:0a:b1:54:73:6a:3f:cd:e5:f7:37:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:51 2026 GMT Not After : Mar 23 09:02:51 2027 GMT Subject: CN=1031DB9ECA5736CA8D7FC61E56B847A8939A739C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:de:d9:50:1b:2b:23:a7:d7:2c:01:3c:52:71: 8b:e8:64:51:60:0f:c2:4d:e9:40:30:cf:71:1c:af: a7:2b:80:24:0b:c6:0b:c8:7a:3c:61:b2:3a:86:af: 85:e6:3b:64:46:97:11:7a:45:6a:64:76:3a:57:ab: 3b:3a:7b:87:a6:9b:1a:0f:60:a1:26:43:e7:47:f2: 53:4b:ff:f7:4f:2b:d3:95:ca:22:3e:21:0e:ff:25: ee:41:9d:ea:20:a5:4b:c1:61:76:65:63:4a:e9:58: 2a:90:d6:13:56:19:91:8b:72:db:bd:1f:22:46:fe: 42:08:ec:a1:08:c5:52:14:4f:45:40:39:e7:be:dd: f9:1f:a2:47:e3:86:a3:83:7f:dd:ee:39:fe:f8:d7: 8a:0d:bc:45:ad:d2:c7:77:4e:b0:fc:f3:f2:83:56: 7f:31:a6:8b:bb:2d:05:9b:b3:7c:38:e2:67:27:fe: ab:63:25:2b:dc:63:34:e4:6a:77:a6:99:03:fc:1d: 6b:d0:52:f9:46:c2:0a:80:12:e4:8c:3b:c0:a8:fd: c5:41:d8:bf:14:b7:33:fc:6a:bf:77:81:73:75:c0: 96:44:05:8f:42:f9:63:2f:ac:54:1a:7b:40:3d:2c: d8:18:c5:0d:19:cb:d3:8b:c8:f1:04:7d:b9:7f:f5: 96:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:31:DB:9E:CA:57:36:CA:8D:7F:C6:1E:56:B8:47:A8:93:9A:73:9C X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.124.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:f0:dd:89:e3:a8:dd:e8:3b:c1:7d:8c:db:7f:f0:7c:73:53: 06:07:2a:0f:6f:e9:11:fb:56:17:af:1c:ce:6d:fa:13:5b:32: 80:3d:d5:6c:e9:9b:84:fd:27:0e:fd:93:67:11:1b:8d:95:4a: 21:fe:71:9c:cb:e0:c6:f5:d5:7a:14:1b:b4:9a:e8:e1:ad:5a: ce:3a:a9:52:21:50:e8:56:1b:af:30:a7:0f:96:68:ea:67:3d: 96:46:d7:b2:6d:ff:db:32:c3:61:87:f3:e7:7c:3b:2f:bb:17: db:f0:6e:e3:5e:3f:36:f1:72:a5:f1:a1:4f:84:6c:3f:84:f0: f4:9b:ea:01:f4:99:67:5f:a9:e2:09:0a:b4:5f:b0:ae:b1:7f: d4:78:3f:ca:96:e3:99:d4:60:ce:1b:bd:01:af:78:01:90:cc: 0d:a9:74:35:90:95:25:c0:f5:1f:39:ce:94:b1:4b:02:b3:c1: fe:3e:c6:25:85:b6:03:51:26:c6:3a:88:1b:be:7b:7c:b9:aa: 91:bd:06:4e:3f:ce:dd:0b:b7:bc:e2:dd:3d:fd:53:c4:07:fc: 53:d9:27:ef:a8:f0:33:88:d2:09:be:8a:75:d4:40:87:bf:e1: 05:8f:0e:e4:ea:57:50:7f:6c:94:a1:ac:9a:05:a9:31:59:48: ed:fa:5a:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPg0J2Nd3FTL2CrFUc2o/zeX3N9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTFaFw0yNzAzMjMwOTAyNTFaMDMxMTAvBgNV BAMTKDEwMzFEQjlFQ0E1NzM2Q0E4RDdGQzYxRTU2Qjg0N0E4OTM5QTczOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo3tlQGysjp9csATxScYvoZFFg D8JN6UAwz3Ecr6crgCQLxgvIejxhsjqGr4XmO2RGlxF6RWpkdjpXqzs6e4emmxoP YKEmQ+dH8lNL//dPK9OVyiI+IQ7/Je5BneogpUvBYXZlY0rpWCqQ1hNWGZGLctu9 HyJG/kII7KEIxVIUT0VAOee+3fkfokfjhqODf93uOf7414oNvEWt0sd3TrD88/KD Vn8xpou7LQWbs3w44mcn/qtjJSvcYzTkanemmQP8HWvQUvlGwgqAEuSMO8Co/cVB 2L8UtzP8ar93gXN1wJZEBY9C+WMvrFQae0A9LNgYxQ0Zy9OLyPEEfbl/9ZY9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEDHbnspXNsqNf8YeVrhHqJOac5wwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsd8MA0GCSqG SIb3DQEBCwUAA4IBAQA98N2J46jd6DvBfYzbf/B8c1MGByoPb+kR+1YXrxzObfoT WzKAPdVs6ZuE/ScO/ZNnERuNlUoh/nGcy+DG9dV6FBu0mujhrVrOOqlSIVDoVhuv MKcPlmjqZz2WRteybf/bMsNhh/PnfDsvuxfb8G7jXj828XKl8aFPhGw/hPD0m+oB 9JlnX6niCQq0X7CusX/UeD/KluOZ1GDOG70Br3gBkMwNqXQ1kJUlwPUfOc6UsUsC s8H+PsYlhbYDUSbGOogbvnt8uaqRvQZOP87dC7e84t09/VPEB/xT2SfvqPAziNIJ vop11ECHv+EFjw7k6ldQf2yUoayaBakxWUjt+lrn -----END CERTIFICATE-----Generated at Thu Mar 26 14:36:29 2026 by rpki-client