$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132342e302f32342d3234203d3e20313439373630.roa File: 3131392e3131302e3132342e302f32342d3234203d3e20313439373630.roa (raw, json) Hash identifier: C8BT/oJHsVjtasB4m3YxMPc5slUFwRmC/gYY83ROAl0= Subject key identifier: 71:F8:2A:A8:47:28:75:9E:E1:4E:36:74:E6:24:D7:10:A0:19:80:B1 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 18E93593CF9934AE5569E1101D436F0A70084C34 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132342e302f32342d3234203d3e20313439373630.roa Signing time: Sun 05 Apr 2026 15:00:00 +0000 ROA not before: Sun 05 Apr 2026 14:55:00 +0000 ROA not after: Sun 04 Apr 2027 15:00:00 +0000 asID: 149760 IP address blocks: 119.110.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 19:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e9:35:93:cf:99:34:ae:55:69:e1:10:1d:43:6f:0a:70:08:4c:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Apr 5 14:55:00 2026 GMT Not After : Apr 4 15:00:00 2027 GMT Subject: CN=71F82AA84728759EE14E3674E624D710A01980B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d6:68:5a:54:ad:0b:79:a4:06:bd:bc:32:8b: 18:9b:f6:da:c6:f8:a3:8d:87:66:de:59:54:72:1e: 5e:8a:f2:16:f5:a3:1a:10:e8:90:0e:12:68:c9:9b: 91:a2:8a:d3:6d:d4:92:56:e9:ed:b6:dd:4d:2e:4e: bb:2a:a9:24:27:09:31:ae:94:ef:ac:6d:06:c5:dc: 98:1d:07:6b:b7:9b:f0:44:59:93:ac:20:c6:e9:bf: 2e:64:93:30:7b:ae:54:45:99:84:86:c4:07:69:c3: dc:cf:97:0b:9a:b7:4b:50:b5:72:a9:01:5d:e7:3e: 2d:43:0c:ca:4a:f7:1c:59:5a:bf:d5:df:71:57:b3: 1f:81:46:53:6f:d2:e7:81:7d:00:cc:42:05:49:05: d3:31:0c:85:01:23:ee:43:f7:f4:7d:07:8d:46:a4: bd:60:76:f5:e6:73:d7:7c:84:f0:61:e4:4a:2c:de: 6c:01:45:6f:e2:bf:42:20:ce:2a:0c:0e:5d:36:d2: 26:cd:7e:76:13:e7:4b:80:3f:4a:1d:65:6d:3a:70: bb:88:85:2d:96:54:c0:55:30:a4:1c:6b:ac:55:f2: 0c:b5:8d:20:c9:49:11:c7:40:81:ed:2f:00:67:37: 08:c4:b7:58:fc:c0:80:f6:6b:8e:42:1a:d8:66:c3: 45:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F8:2A:A8:47:28:75:9E:E1:4E:36:74:E6:24:D7:10:A0:19:80:B1 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132342e302f32342d3234203d3e20313439373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.124.0/24 Signature Algorithm: sha256WithRSAEncryption 07:c6:91:ff:58:8e:83:44:71:19:57:9a:63:4f:52:e7:ab:af: 52:63:3d:91:94:d5:14:e3:a8:49:d1:3e:d9:14:69:a9:d1:58: 2b:51:ac:9b:6d:a9:72:0e:f5:6c:54:82:f5:a3:7a:01:55:d6: 89:e4:87:e7:2c:36:a5:e0:b8:84:72:f2:5e:a9:fd:92:c6:b0: b4:ca:29:d0:02:52:57:58:16:f1:d2:d7:00:36:c2:55:ef:76: e6:cc:9b:0f:d2:f5:d3:41:11:f4:f3:6d:82:98:c9:92:e3:55: 7f:4e:8f:93:63:68:04:99:e9:6a:fb:f9:f5:3c:a5:f8:de:75: a6:70:a7:1f:e7:a4:c0:6e:6c:dc:ad:0a:39:ba:ba:38:d0:ae: 0d:c0:eb:0d:98:f9:e6:0e:72:30:96:d3:42:b3:49:29:48:4c: bb:e7:70:db:1f:53:2d:98:d4:35:6d:7d:a8:fd:ba:26:0d:3b: 40:ed:8c:66:96:8a:cc:dc:d0:36:7e:91:e4:04:83:4e:69:e5: 98:d3:b2:23:b2:2a:af:7b:19:35:c3:85:a2:f4:81:e2:17:f2: bb:e3:f3:76:92:75:10:54:01:19:47:56:67:f7:12:ca:a7:ba: 1e:48:aa:99:72:ea:56:71:71:5b:ec:87:10:94:5b:b8:b7:be: 13:91:bb:4b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGOk1k8+ZNK5VaeEQHUNvCnAITDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNjA0MDUxNDU1MDBaFw0yNzA0MDQxNTAwMDBaMDMxMTAvBgNV BAMTKDcxRjgyQUE4NDcyODc1OUVFMTRFMzY3NEU2MjRENzEwQTAxOTgwQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf1mhaVK0LeaQGvbwyixib9trG +KONh2beWVRyHl6K8hb1oxoQ6JAOEmjJm5GiitNt1JJW6e223U0uTrsqqSQnCTGu lO+sbQbF3JgdB2u3m/BEWZOsIMbpvy5kkzB7rlRFmYSGxAdpw9zPlwuat0tQtXKp AV3nPi1DDMpK9xxZWr/V33FXsx+BRlNv0ueBfQDMQgVJBdMxDIUBI+5D9/R9B41G pL1gdvXmc9d8hPBh5Eos3mwBRW/iv0IgzioMDl020ibNfnYT50uAP0odZW06cLuI hS2WVMBVMKQca6xV8gy1jSDJSRHHQIHtLwBnNwjEt1j8wID2a45CGthmw0WhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcfgqqEcodZ7hTjZ05iTXEKAZgLEwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM2MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3bnwwDQYJ KoZIhvcNAQELBQADggEBAAfGkf9YjoNEcRlXmmNPUuerr1JjPZGU1RTjqEnRPtkU aanRWCtRrJttqXIO9WxUgvWjegFV1onkh+csNqXguIRy8l6p/ZLGsLTKKdACUldY FvHS1wA2wlXvdubMmw/S9dNBEfTzbYKYyZLjVX9Oj5NjaASZ6Wr7+fU8pfjedaZw px/npMBubNytCjm6ujjQrg3A6w2Y+eYOcjCW00KzSSlITLvncNsfUy2Y1DVtfaj9 uiYNO0DtjGaWiszc0DZ+keQEg05p5ZjTsiOyKq97GTXDhaL0geIX8rvj83aSdRBU ARlHVmf3Esqnuh5Iqply6lZxcVvshxCUW7i3vhORu0s= -----END CERTIFICATE-----Generated at Fri Apr 17 18:24:22 2026 by rpki-client