$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e39382e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: G3d1wepWwRITFpo/3HzbZlDi0B2/xqPc8iZ7gEvxYmc= Subject key identifier: C2:E7:1A:D6:EF:54:CE:1B:58:E3:17:70:91:D7:4B:AA:31:E2:B4:A1 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 636A35B4AF6C3FFCCB4F397417244AA40709E600 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa Signing time: Tue 24 Mar 2026 08:01:33 +0000 ROA not before: Tue 24 Mar 2026 07:56:33 +0000 ROA not after: Tue 23 Mar 2027 08:01:33 +0000 asID: 24525 IP address blocks: 114.199.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:6a:35:b4:af:6c:3f:fc:cb:4f:39:74:17:24:4a:a4:07:09:e6:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Mar 24 07:56:33 2026 GMT Not After : Mar 23 08:01:33 2027 GMT Subject: CN=C2E71AD6EF54CE1B58E3177091D74BAA31E2B4A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6d:21:b2:7c:f8:b6:2b:1a:67:8c:6a:e5:db: 14:0d:f9:c1:30:94:3d:c8:95:fa:53:58:50:e8:3c: bb:21:f7:be:91:e6:1e:a4:06:d9:d3:17:99:1a:75: 0d:e8:54:bb:f5:99:4b:ad:17:86:fe:df:af:9c:6d: 95:bd:43:81:35:bc:97:c8:ee:20:07:56:b8:e6:f2: 60:a9:1b:66:a1:b4:1c:ea:43:d5:47:8e:eb:39:72: d5:c3:24:44:9f:cf:d8:34:a5:dd:1b:e0:9b:2b:a0: c0:5b:cc:3a:e5:3c:bf:c0:bf:6a:19:c4:35:92:12: 71:21:36:a0:db:9f:d1:2c:8c:83:06:2e:3e:ca:22: 87:98:47:84:c0:f3:87:a3:33:ed:17:3c:17:f7:b7: 68:de:e8:b1:33:99:e5:18:2d:af:1c:a2:85:9b:55: 67:fd:b5:fb:0b:8f:fc:f6:84:36:e7:89:37:6d:3b: 1e:01:8b:1e:7b:10:3a:53:97:32:10:24:b1:ea:60: 7d:5e:78:bc:2a:f8:8c:1e:dc:1c:37:5a:84:1b:7e: 71:54:c3:75:96:98:3a:de:4f:20:2f:16:43:77:06: 93:cf:66:86:83:ac:9c:74:32:d9:99:d3:41:61:03: f1:04:e7:19:3a:10:99:2e:80:f2:32:80:04:33:fb: 3c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E7:1A:D6:EF:54:CE:1B:58:E3:17:70:91:D7:4B:AA:31:E2:B4:A1 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39382e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.98.0/23 Signature Algorithm: sha256WithRSAEncryption 61:00:6e:0d:db:78:9d:a4:96:98:5b:1b:75:37:71:07:4e:2d: 3b:4e:b1:ed:a4:a0:4d:49:e8:8a:47:fd:cc:05:55:35:a6:d0: 53:16:3a:ff:4d:d7:12:a0:49:e7:65:2c:43:ff:9f:f2:c9:cf: 44:ff:52:91:fd:ee:c5:9c:7f:af:17:8a:26:c2:c0:1f:32:a6: 3f:cd:e6:19:ec:79:68:8e:cf:4e:f5:3d:ff:93:35:30:e6:95: 10:24:fe:19:6a:b5:70:73:ba:11:1e:6b:73:b2:44:1b:d3:d0: 2c:21:ed:10:cc:a8:bb:9b:01:51:ea:ff:ea:bc:a0:f5:35:f8: 37:59:1d:b7:ff:93:a5:b4:53:cc:32:63:21:ad:64:f5:52:f3: 3e:92:00:65:75:c9:9c:63:87:1c:2d:e5:80:0f:a2:b7:7f:10: 56:b6:e2:9a:dd:14:7c:ec:23:c3:5c:8c:a0:9e:83:4c:cd:f3: c8:cb:a0:41:bc:86:0e:55:d1:fa:f0:78:29:30:8c:95:88:7d: 60:b5:5e:b0:68:5b:4e:e0:02:8b:5f:97:13:92:dc:ed:c2:62: 05:a1:25:94:8e:00:c2:a8:ac:bd:52:0f:c1:27:b7:1a:6d:6b: e6:09:4d:e9:f3:79:70:93:fc:70:20:b7:ba:17:14:4c:0d:82: 26:b3:6d:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY2o1tK9sP/zLTzl0FyRKpAcJ5gAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjAzMjQwNzU2MzNaFw0yNzAzMjMwODAxMzNaMDMxMTAvBgNV BAMTKEMyRTcxQUQ2RUY1NENFMUI1OEUzMTc3MDkxRDc0QkFBMzFFMkI0QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdbSGyfPi2KxpnjGrl2xQN+cEw lD3IlfpTWFDoPLsh976R5h6kBtnTF5kadQ3oVLv1mUutF4b+36+cbZW9Q4E1vJfI 7iAHVrjm8mCpG2ahtBzqQ9VHjus5ctXDJESfz9g0pd0b4JsroMBbzDrlPL/Av2oZ xDWSEnEhNqDbn9EsjIMGLj7KIoeYR4TA84ejM+0XPBf3t2je6LEzmeUYLa8cooWb VWf9tfsLj/z2hDbniTdtOx4Bix57EDpTlzIQJLHqYH1eeLwq+Iwe3Bw3WoQbfnFU w3WWmDreTyAvFkN3BpPPZoaDrJx0MtmZ00FhA/EE5xk6EJkugPIygAQz+zxfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwuca1u9UzhtY4xdwkddLqjHitKEwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXLHYjANBgkqhkiG 9w0BAQsFAAOCAQEAYQBuDdt4naSWmFsbdTdxB04tO06x7aSgTUnoikf9zAVVNabQ UxY6/03XEqBJ52UsQ/+f8snPRP9Skf3uxZx/rxeKJsLAHzKmP83mGex5aI7PTvU9 /5M1MOaVECT+GWq1cHO6ER5rc7JEG9PQLCHtEMyou5sBUer/6ryg9TX4N1kdt/+T pbRTzDJjIa1k9VLzPpIAZXXJnGOHHC3lgA+it38QVrbimt0UfOwjw1yMoJ6DTM3z yMugQbyGDlXR+vB4KTCMlYh9YLVesGhbTuACi1+XE5Lc7cJiBaEllI4AwqisvVIP wSe3Gm1r5glN6fN5cJP8cCC3uhcUTA2CJrNt9w== -----END CERTIFICATE-----Generated at Thu Mar 26 16:19:14 2026 by rpki-client