$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e39362e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: G5R3Sih8VxZo0XmgWt+6XmZzxee30nTjgUUjg7dnavY= Subject key identifier: 47:D7:EA:B1:78:01:88:93:AE:27:A8:19:54:50:03:10:86:09:54:4F Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 01DEF4082FD68C03D41088532C9EDC0000D83F09 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 09:02:50 +0000 ROA not before: Tue 24 Mar 2026 08:57:50 +0000 ROA not after: Tue 23 Mar 2027 09:02:50 +0000 asID: 24525 IP address blocks: 114.199.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:de:f4:08:2f:d6:8c:03:d4:10:88:53:2c:9e:dc:00:00:d8:3f:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 08:57:50 2026 GMT Not After : Mar 23 09:02:50 2027 GMT Subject: CN=47D7EAB178018893AE27A819545003108609544F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f2:5d:b2:72:0e:be:b8:81:b6:2d:86:da:af: 26:a7:3b:b0:04:38:35:9d:b3:3e:79:4b:f8:67:3b: 60:03:21:e6:8a:ce:5a:b9:87:d9:72:65:2a:38:b0: 6c:c3:e1:bf:f2:54:a7:45:30:88:3a:00:f3:1a:67: c9:fc:0b:c4:ce:51:d8:5a:fd:27:25:8f:74:49:13: 47:53:37:d7:40:a8:fa:15:11:df:e2:15:46:43:41: b4:eb:9a:d0:82:27:bf:ee:2c:86:bf:43:34:da:54: 5b:36:bf:95:16:ae:42:6f:4e:af:01:05:05:27:95: ed:02:3b:2a:05:e8:89:cd:20:2d:05:6d:a4:a7:02: 46:7c:a7:88:0f:54:3c:9a:5c:4d:89:f5:f3:79:cd: 67:b4:1e:da:8d:c7:b5:1a:04:60:8c:9e:ed:30:b4: 25:c4:8b:7b:3c:3e:03:eb:a8:0a:d8:0a:bc:f9:6a: 2b:a0:df:a2:f4:07:22:ad:0a:e0:3d:fa:8c:7f:2b: f7:22:e5:d8:93:39:27:42:41:ce:e2:31:8e:c9:43: aa:1e:a5:10:e2:67:b9:25:50:82:4a:49:dd:5e:5c: b6:73:ff:10:1e:93:7c:cb:6e:48:bd:d0:b3:5a:a8: 42:21:9e:36:08:dd:b7:65:a0:93:d4:3e:53:4b:87: 56:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D7:EA:B1:78:01:88:93:AE:27:A8:19:54:50:03:10:86:09:54:4F X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39362e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.96.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:86:1a:da:8e:74:34:80:64:d4:66:ea:97:ae:3f:ba:d1:72: 9c:b6:78:e0:0e:77:5e:97:29:17:d6:53:58:01:74:c1:8e:dc: f9:3b:af:f7:ff:0f:60:6c:cd:ee:52:0a:e9:d2:5d:74:00:a2: c9:5c:be:f3:a9:20:90:b8:25:a3:e0:dd:6f:9e:89:17:f7:f6: 31:af:77:2a:1f:16:7e:53:41:f8:ee:39:82:aa:20:ed:04:bc: 89:b3:13:fb:8c:20:16:d2:1d:6b:bd:b0:09:95:65:f1:49:11: 9d:10:5c:f6:2b:44:45:82:6c:8c:fd:6a:32:90:81:be:47:99: 24:93:48:7a:5c:6b:46:65:47:b6:72:f6:84:ee:30:03:b7:3d: a2:20:62:51:5a:a4:46:77:95:0a:b5:61:34:5d:d6:73:9e:ef: e3:1a:8a:37:c1:aa:81:66:6a:ce:ff:a1:e2:71:99:21:a1:a2: f8:93:d6:c5:f9:fe:57:29:2d:19:f4:04:92:0a:36:14:b8:e7: f8:35:b5:27:ea:5c:22:69:cc:47:fb:4e:14:62:d6:f2:be:f0: 15:31:ae:2c:e2:45:1c:d6:50:3d:d0:63:c2:c5:f1:0b:42:1f: 2e:c1:0c:8b:88:94:d3:71:35:d2:ab:7e:50:5c:6a:af:86:b0: 35:d4:3b:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAd70CC/WjAPUEIhTLJ7cAADYPwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwODU3NTBaFw0yNzAzMjMwOTAyNTBaMDMxMTAvBgNV BAMTKDQ3RDdFQUIxNzgwMTg4OTNBRTI3QTgxOTU0NTAwMzEwODYwOTU0NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM8l2ycg6+uIG2LYbaryanO7AE ODWdsz55S/hnO2ADIeaKzlq5h9lyZSo4sGzD4b/yVKdFMIg6APMaZ8n8C8TOUdha /Sclj3RJE0dTN9dAqPoVEd/iFUZDQbTrmtCCJ7/uLIa/QzTaVFs2v5UWrkJvTq8B BQUnle0COyoF6InNIC0FbaSnAkZ8p4gPVDyaXE2J9fN5zWe0HtqNx7UaBGCMnu0w tCXEi3s8PgPrqArYCrz5aiug36L0ByKtCuA9+ox/K/ci5diTOSdCQc7iMY7JQ6oe pRDiZ7klUIJKSd1eXLZz/xAek3zLbki90LNaqEIhnjYI3bdloJPUPlNLh1YhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR9fqsXgBiJOuJ6gZVFADEIYJVE8wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXLHYDANBgkqhkiG 9w0BAQsFAAOCAQEAHIYa2o50NIBk1Gbql64/utFynLZ44A53XpcpF9ZTWAF0wY7c +Tuv9/8PYGzN7lIK6dJddACiyVy+86kgkLglo+Ddb56JF/f2Ma93Kh8WflNB+O45 gqog7QS8ibMT+4wgFtIda72wCZVl8UkRnRBc9itERYJsjP1qMpCBvkeZJJNIelxr RmVHtnL2hO4wA7c9oiBiUVqkRneVCrVhNF3Wc57v4xqKN8GqgWZqzv+h4nGZIaGi +JPWxfn+VyktGfQEkgo2FLjn+DW1J+pcImnMR/tOFGLW8r7wFTGuLOJFHNZQPdBj wsXxC0IfLsEMi4iU03E10qt+UFxqr4awNdQ7gA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:37:30 2026 by rpki-client