$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f31392d3139203d3e203234353235.roa File: 3131342e3139392e39362e302f31392d3139203d3e203234353235.roa (raw, json) Hash identifier: jcARQZ3fByEq/EPmf4DJl8dl1GXv8zgIsVgHRA+poSQ= Subject key identifier: 13:9C:FF:5A:2C:92:89:E2:3F:25:DF:8E:6B:BD:56:DC:6F:49:8A:3F Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 59BD6AE6E002A145971A53C0CE16CD86AA2AE338 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f31392d3139203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:50 +0000 ROA not before: Tue 24 Mar 2026 08:57:50 +0000 ROA not after: Tue 23 Mar 2027 09:02:50 +0000 asID: 24525 IP address blocks: 114.199.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:bd:6a:e6:e0:02:a1:45:97:1a:53:c0:ce:16:cd:86:aa:2a:e3:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:50 2026 GMT Not After : Mar 23 09:02:50 2027 GMT Subject: CN=139CFF5A2C9289E23F25DF8E6BBD56DC6F498A3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0c:ae:fd:a7:a3:1c:24:d4:71:93:e0:80:b3: 68:1b:af:5d:7a:6c:ac:2b:95:37:af:3a:7d:d4:e9: 9a:02:61:a4:9a:61:1c:c3:af:45:41:3e:24:19:95: 74:49:89:42:75:9c:43:c8:76:88:8f:5e:05:5c:72: 71:a6:28:8b:f8:3d:7a:b9:4c:06:81:0c:6d:e7:fd: b1:fc:e9:80:3c:db:d0:dd:ec:f7:f7:0e:45:fb:fe: 35:69:05:69:2a:ad:91:67:4d:0f:c1:46:48:45:4a: 39:8e:48:5c:3a:2e:95:33:dd:4f:b1:b1:f7:f8:b9: 29:82:b1:1c:e5:f5:fb:26:49:36:30:3f:be:ea:b3: 46:34:cc:fe:5c:23:17:e2:a5:36:2e:b9:54:c5:c1: 00:57:9b:7c:ad:30:02:13:6d:e9:39:89:ff:01:22: 7b:05:3e:6d:f5:79:16:19:d8:54:d7:00:b3:51:e3: 05:70:f0:13:3e:aa:f8:b2:46:d6:1f:ab:57:c7:e4: 52:d7:7e:59:32:61:c4:e0:af:1b:a8:e0:21:b2:36: 41:02:a1:ba:a9:4f:66:7d:ef:2f:2e:6c:50:b9:8f: 81:67:22:e6:16:ab:b0:b6:2d:08:09:52:ca:ad:4b: 84:4d:75:be:d4:1a:9d:6d:11:71:ea:80:18:1a:45: a4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9C:FF:5A:2C:92:89:E2:3F:25:DF:8E:6B:BD:56:DC:6F:49:8A:3F X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f31392d3139203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.96.0/19 Signature Algorithm: sha256WithRSAEncryption b5:fa:ca:48:37:f7:be:94:57:42:05:27:33:86:22:a2:9f:0d: 7e:3a:fc:fc:ac:38:3a:d7:8b:24:ce:8f:1e:19:95:cf:f0:91: 44:c7:55:0a:23:16:d8:7c:4c:5d:0c:aa:84:14:51:ec:30:77: 2c:44:aa:05:7a:54:b0:99:ca:d4:49:7f:cb:2f:a4:7c:bf:92: ed:6b:92:b7:63:1c:11:c8:c1:7a:ad:db:98:b1:67:63:50:9c: 68:87:70:1f:53:9a:3f:4f:b9:5b:15:3c:0b:e5:8c:50:26:67: e2:33:e1:b7:f6:c7:10:0e:b3:80:b4:6d:d0:dd:6e:94:1c:89: 89:e3:66:ff:cf:67:c1:38:cc:91:68:e8:43:18:fa:c1:31:9a: 4f:ec:cb:20:7f:dc:0d:6c:51:1c:94:36:69:c0:2c:62:d3:b0: 82:8d:7b:1d:d2:d6:dd:75:94:f4:3d:94:25:e8:de:60:33:af: 22:1a:d7:7e:fd:e4:a0:7b:0f:bf:8c:6e:1d:35:33:2e:7d:5c: b7:df:be:62:67:01:9c:ac:29:0b:0e:e7:a0:bc:10:35:a4:ef: c5:24:82:7e:25:22:5f:80:44:ac:bf:7d:2b:fe:10:08:c8:8e: 19:02:f6:ed:12:5c:81:b5:3f:c7:a8:80:8d:aa:75:51:3e:d7: b8:a1:f8:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWb1q5uACoUWXGlPAzhbNhqoq4zgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTBaFw0yNzAzMjMwOTAyNTBaMDMxMTAvBgNV BAMTKDEzOUNGRjVBMkM5Mjg5RTIzRjI1REY4RTZCQkQ1NkRDNkY0OThBM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHDK79p6McJNRxk+CAs2gbr116 bKwrlTevOn3U6ZoCYaSaYRzDr0VBPiQZlXRJiUJ1nEPIdoiPXgVccnGmKIv4PXq5 TAaBDG3n/bH86YA829Dd7Pf3DkX7/jVpBWkqrZFnTQ/BRkhFSjmOSFw6LpUz3U+x sff4uSmCsRzl9fsmSTYwP77qs0Y0zP5cIxfipTYuuVTFwQBXm3ytMAITbek5if8B InsFPm31eRYZ2FTXALNR4wVw8BM+qviyRtYfq1fH5FLXflkyYcTgrxuo4CGyNkEC obqpT2Z97y8ubFC5j4FnIuYWq7C2LQgJUsqtS4RNdb7UGp1tEXHqgBgaRaSfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUE5z/WiySieI/Jd+Oa71W3G9Jij8wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM2MmUzMDJmMzEz OTJkMzEzOTIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXLHYDANBgkqhkiG 9w0BAQsFAAOCAQEAtfrKSDf3vpRXQgUnM4Yiop8Nfjr8/Kw4OteLJM6PHhmVz/CR RMdVCiMW2HxMXQyqhBRR7DB3LESqBXpUsJnK1El/yy+kfL+S7WuSt2McEcjBeq3b mLFnY1CcaIdwH1OaP0+5WxU8C+WMUCZn4jPht/bHEA6zgLRt0N1ulByJieNm/89n wTjMkWjoQxj6wTGaT+zLIH/cDWxRHJQ2acAsYtOwgo17HdLW3XWU9D2UJejeYDOv IhrXfv3koHsPv4xuHTUzLn1ct9++YmcBnKwpCw7noLwQNaTvxSSCfiUiX4BErL99 K/4QCMiOGQL27RJcgbU/x6iAjap1UT7XuKH4gA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:59:26 2026 by rpki-client