$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e39362e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: vOptRaqssdakJ5SwkZxIrIZlil75NMhOsvWGynDLTac= Subject key identifier: 21:9F:24:C5:A7:47:54:4A:A9:ED:43:10:3E:66:36:FE:AE:FE:8A:31 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7B2B9ADFCB3ED3DC2798E408D62D7390A65B35AA Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32312d3231203d3e203234353235.roa Signing time: Tue 24 Mar 2026 08:01:33 +0000 ROA not before: Tue 24 Mar 2026 07:56:33 +0000 ROA not after: Tue 23 Mar 2027 08:01:33 +0000 asID: 24525 IP address blocks: 114.199.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 20:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:2b:9a:df:cb:3e:d3:dc:27:98:e4:08:d6:2d:73:90:a6:5b:35:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 07:56:33 2026 GMT Not After : Mar 23 08:01:33 2027 GMT Subject: CN=219F24C5A747544AA9ED43103E6636FEAEFE8A31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:0d:94:13:a2:e7:ec:cd:ae:a4:d7:9d:7b:83: 9c:b1:86:e3:8d:5e:75:bb:ef:35:5d:81:de:ff:fd: b4:3d:8f:82:66:cd:bc:2e:49:a8:b6:12:84:11:cc: 20:db:04:d3:58:be:0a:7b:b8:58:33:b8:5e:cb:17: 4c:79:ce:12:5a:3e:ef:7e:ca:26:97:11:bc:12:48: b6:24:a7:66:5a:c3:e1:f4:0f:f1:10:33:d0:59:01: fe:0e:30:eb:21:15:f6:0f:b1:ae:7e:40:84:47:ca: 8c:5f:33:5d:31:80:a2:69:11:c6:40:19:36:79:67: 47:73:9a:df:b6:69:cc:74:90:38:8d:23:1c:02:5b: 56:04:d5:1f:6a:fa:d5:ae:1a:dc:ab:9c:f3:df:88: 0f:d0:2e:4b:f2:5c:f4:0a:84:0d:d8:8d:aa:b3:35: 16:b1:88:d1:c2:55:aa:cf:91:53:af:f1:2a:a4:5e: 44:fe:11:45:d8:4f:34:67:18:a3:30:6c:6c:8e:b1: 10:32:5e:9f:34:c7:93:e6:22:63:bd:99:f7:18:b8: 4b:e3:4b:dd:b4:45:eb:58:43:26:4a:46:af:7e:98: a5:b9:2f:a9:48:af:b1:87:7e:cb:e5:96:9e:1a:64: 4b:a4:5c:9c:a4:ab:db:6f:89:8b:d0:9b:89:36:af: 8d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9F:24:C5:A7:47:54:4A:A9:ED:43:10:3E:66:36:FE:AE:FE:8A:31 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.96.0/21 Signature Algorithm: sha256WithRSAEncryption ad:1e:2b:a7:e4:b2:fb:9c:fe:4d:2d:22:9f:ed:65:39:dc:32: cf:50:6f:ce:46:5c:1b:df:9c:b4:07:67:08:9b:9b:a9:54:eb: 05:76:24:4d:03:68:ca:9b:76:8e:f8:6b:26:6a:60:95:40:ec: 6d:bc:49:b6:db:c8:65:c1:04:04:8e:08:83:31:44:20:57:50: 31:04:c6:35:a3:e8:2f:3b:28:07:ac:37:d6:f7:38:51:f6:02: e4:a0:9c:32:24:21:fa:b0:56:75:03:6b:4c:c2:c1:fd:60:02: 54:b8:dd:50:f5:21:a7:12:a8:43:d3:3d:37:c4:f7:bf:93:b3: 09:80:40:42:85:2b:46:f4:3e:19:0d:c9:53:56:b0:d1:04:c9: 83:40:c5:35:9d:64:2f:5a:fa:07:7b:2f:bd:6a:73:12:e3:31: 2d:d3:9c:9a:7e:8f:89:1a:d5:cc:eb:b3:4c:b0:61:3b:5c:70: 6b:98:f7:ff:7a:2e:2f:fd:58:28:64:c5:4f:9b:5f:dc:41:80: 8a:2e:13:c3:e5:1d:0d:fe:91:fe:b3:2a:b8:bf:c7:eb:c3:8f: 9b:f4:1b:31:3d:c4:63:f3:58:45:1a:d4:8e:18:76:43:de:52: 59:1d:de:9f:d3:4d:bf:44:66:de:77:a3:31:79:cd:20:3a:e8: c2:e2:a5:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeyua38s+09wnmOQI1i1zkKZbNaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwNzU2MzNaFw0yNzAzMjMwODAxMzNaMDMxMTAvBgNV BAMTKDIxOUYyNEM1QTc0NzU0NEFBOUVENDMxMDNFNjYzNkZFQUVGRThBMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyDZQToufsza6k1517g5yxhuON XnW77zVdgd7//bQ9j4JmzbwuSai2EoQRzCDbBNNYvgp7uFgzuF7LF0x5zhJaPu9+ yiaXEbwSSLYkp2Zaw+H0D/EQM9BZAf4OMOshFfYPsa5+QIRHyoxfM10xgKJpEcZA GTZ5Z0dzmt+2acx0kDiNIxwCW1YE1R9q+tWuGtyrnPPfiA/QLkvyXPQKhA3Yjaqz NRaxiNHCVarPkVOv8SqkXkT+EUXYTzRnGKMwbGyOsRAyXp80x5PmImO9mfcYuEvj S920RetYQyZKRq9+mKW5L6lIr7GHfsvllp4aZEukXJykq9tviYvQm4k2r42fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIZ8kxadHVEqp7UMQPmY2/q7+ijEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM2MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3LHYDANBgkqhkiG 9w0BAQsFAAOCAQEArR4rp+Sy+5z+TS0in+1lOdwyz1BvzkZcG9+ctAdnCJubqVTr BXYkTQNoypt2jvhrJmpglUDsbbxJttvIZcEEBI4IgzFEIFdQMQTGNaPoLzsoB6w3 1vc4UfYC5KCcMiQh+rBWdQNrTMLB/WACVLjdUPUhpxKoQ9M9N8T3v5OzCYBAQoUr RvQ+GQ3JU1aw0QTJg0DFNZ1kL1r6B3svvWpzEuMxLdOcmn6PiRrVzOuzTLBhO1xw a5j3/3ouL/1YKGTFT5tf3EGAii4Tw+UdDf6R/rMquL/H68OPm/QbMT3EY/NYRRrU jhh2Q95SWR3en9NNv0Rm3nejMXnNIDrowuKlfg== -----END CERTIFICATE-----Generated at Thu Mar 26 22:08:16 2026 by rpki-client