$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 5sc+QqxjdWe0DQ0JjrpHKEu08csqkFwwK6jA3G8zEnQ= Subject key identifier: 23:4F:75:22:65:F0:8D:17:5B:32:62:39:AE:3F:B7:3D:0A:F1:A3:7C Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 4B3AF1AF6845EDA60ADAD851AAAB9227CC564F5E Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa Signing time: Sun 22 Feb 2026 08:00:01 +0000 ROA not before: Sun 22 Feb 2026 07:55:01 +0000 ROA not after: Sun 21 Feb 2027 08:00:01 +0000 asID: 9341 IP address blocks: 119.252.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:3a:f1:af:68:45:ed:a6:0a:da:d8:51:aa:ab:92:27:cc:56:4f:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Feb 22 07:55:01 2026 GMT Not After : Feb 21 08:00:01 2027 GMT Subject: CN=234F752265F08D175B326239AE3FB73D0AF1A37C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d0:59:68:5d:e5:a5:ef:d2:9c:ed:43:84:30: 28:32:4c:98:35:6a:b7:e3:c5:95:24:5c:7e:b2:ef: b6:ff:38:52:c9:f1:58:4a:33:46:d6:cf:b0:bd:52: 9e:bf:e4:5b:62:55:59:b9:e9:36:52:83:8c:a1:61: 2b:a9:fe:66:8f:1b:22:52:2f:a1:d6:22:5e:b8:0e: da:77:e2:23:ef:f8:38:42:ae:83:5a:18:fe:63:9b: f0:e1:88:d8:2c:22:27:ab:04:d4:96:ee:6f:e1:db: c3:f5:31:90:69:75:50:8f:29:4c:65:aa:db:9a:9a: 54:94:27:56:fe:cb:36:b6:59:ee:14:81:5c:48:9c: a3:36:c3:03:d3:83:4c:92:db:19:73:ce:45:91:8c: 46:9a:3c:18:dc:88:a2:2e:76:66:cb:dc:07:aa:7c: ea:c9:ce:df:02:02:e5:39:80:1a:ba:4a:8f:3a:67: 79:1f:1f:1f:9f:6e:30:88:6c:4a:10:f5:7e:04:88: 1f:05:9a:d9:33:3e:36:55:b5:a3:f0:a7:3d:c7:59: 75:2a:02:b9:b4:bc:6d:ce:3f:ad:db:44:83:99:93: a7:02:ae:5d:56:ad:0f:09:cd:23:93:46:83:d2:c2: fc:11:f5:c3:da:c8:da:03:94:06:2a:97:7e:06:64: 14:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4F:75:22:65:F0:8D:17:5B:32:62:39:AE:3F:B7:3D:0A:F1:A3:7C X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136362e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.166.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:fe:e7:d9:be:a1:e1:80:42:f7:de:44:d1:0e:10:45:87:d2: 76:85:20:26:49:8d:05:18:3a:ec:f3:77:24:58:9d:1d:5d:11: 59:81:8e:92:5e:02:0c:b0:28:44:c7:36:07:01:3c:15:56:fe: c7:84:ff:94:c4:be:04:d7:9c:5c:6b:40:37:9a:0c:a5:2f:07: 3a:17:71:a7:c1:0a:8c:27:99:e8:65:96:37:6e:ca:aa:7d:39: 3c:7c:26:ae:79:4b:b7:3d:dd:d2:fc:da:c6:20:f7:24:3e:76: 8d:d7:18:c2:58:69:e6:88:14:b2:d4:00:75:ca:7f:33:23:51: 5c:8f:5f:59:07:44:7b:94:ba:49:4c:7e:85:e6:df:c2:fa:f8: 47:af:6a:e9:a8:7a:c7:10:48:3f:b0:87:c0:14:3a:c1:af:10: 91:81:19:3b:46:07:64:90:8f:11:9a:fd:d1:c8:8b:c8:28:fc: 2e:95:d7:17:58:1a:ac:f2:93:ee:c6:ff:17:0b:48:a3:f8:63: 64:2a:e2:84:2f:74:ff:e9:7e:46:73:75:58:2b:23:82:43:db: 49:d9:93:5a:ae:9a:24:ca:92:09:b4:47:df:7b:dd:87:68:dc: d9:12:20:93:2c:9d:22:7b:4e:09:99:5d:1d:6a:4a:a7:ae:30: e3:29:43:4e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSzrxr2hF7aYK2thRqquSJ8xWT14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjAyMjIwNzU1MDFaFw0yNzAyMjEwODAwMDFaMDMxMTAvBgNV BAMTKDIzNEY3NTIyNjVGMDhEMTc1QjMyNjIzOUFFM0ZCNzNEMEFGMUEzN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN0FloXeWl79Kc7UOEMCgyTJg1 arfjxZUkXH6y77b/OFLJ8VhKM0bWz7C9Up6/5FtiVVm56TZSg4yhYSup/maPGyJS L6HWIl64Dtp34iPv+DhCroNaGP5jm/DhiNgsIierBNSW7m/h28P1MZBpdVCPKUxl qtuamlSUJ1b+yza2We4UgVxInKM2wwPTg0yS2xlzzkWRjEaaPBjciKIudmbL3Aeq fOrJzt8CAuU5gBq6So86Z3kfHx+fbjCIbEoQ9X4EiB8FmtkzPjZVtaPwpz3HWXUq Arm0vG3OP63bRIOZk6cCrl1WrQ8JzSOTRoPSwvwR9cPayNoDlAYql34GZBTxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUI091ImXwjRdbMmI5rj+3PQrxo3wwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8pjANBgkqhkiG 9w0BAQsFAAOCAQEAHv7n2b6h4YBC995E0Q4QRYfSdoUgJkmNBRg67PN3JFidHV0R WYGOkl4CDLAoRMc2BwE8FVb+x4T/lMS+BNecXGtAN5oMpS8HOhdxp8EKjCeZ6GWW N27Kqn05PHwmrnlLtz3d0vzaxiD3JD52jdcYwlhp5ogUstQAdcp/MyNRXI9fWQdE e5S6SUx+hebfwvr4R69q6ah6xxBIP7CHwBQ6wa8QkYEZO0YHZJCPEZr90ciLyCj8 LpXXF1garPKT7sb/FwtIo/hjZCrihC90/+l+RnN1WCsjgkPbSdmTWq6aJMqSCbRH 33vdh2jc2RIgkyydIntOCZldHWpKp64w4ylDTg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:38:48 2026 by rpki-client