$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3137312e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3137312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: IpDHF6MQ7Xi/WmcgNokrEqEC2HJfGBD8Dh/PxIoB4QQ= Subject key identifier: D0:D9:0F:18:BD:D0:27:EF:8C:EC:70:92:26:1C:9D:DE:4E:5C:AA:6C Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 1C962F0DB324EFDCAC6025704CC0917B72B20653 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3137312e302f32342d3234203d3e2039333431.roa Signing time: Sun 22 Feb 2026 06:00:02 +0000 ROA not before: Sun 22 Feb 2026 05:55:02 +0000 ROA not after: Sun 21 Feb 2027 06:00:02 +0000 asID: 9341 IP address blocks: 119.252.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:96:2f:0d:b3:24:ef:dc:ac:60:25:70:4c:c0:91:7b:72:b2:06:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Feb 22 05:55:02 2026 GMT Not After : Feb 21 06:00:02 2027 GMT Subject: CN=D0D90F18BDD027EF8CEC7092261C9DDE4E5CAA6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9a:6e:01:ff:ea:99:29:d0:ed:38:23:60:9f: 74:fd:3a:f1:01:70:70:ea:8e:8f:e4:77:e5:5d:e3: a6:78:de:e9:38:50:18:59:f6:de:56:d8:a0:a4:c8: c1:c1:b9:1a:91:cf:6a:34:39:e8:b3:41:c3:31:8c: 02:db:42:36:9f:3f:da:14:db:d1:1b:0f:18:80:a3: 36:95:b5:07:ad:d6:62:78:46:74:46:95:1a:e9:7c: 94:fd:fb:c0:56:0c:df:2b:f6:71:93:48:9a:a7:d3: e7:e4:82:01:6c:11:28:1d:72:00:8b:94:09:aa:7b: 14:0b:09:9b:1e:01:4d:7d:e8:ab:4c:83:a1:a6:85: 28:46:65:55:d3:97:d2:c0:db:ba:eb:73:7d:7e:7b: ce:cd:eb:04:79:57:e3:cd:46:00:ce:c5:54:42:45: 72:58:3c:ad:d0:df:bf:10:d6:ae:84:8e:93:73:a6: 7c:76:56:c0:9f:b6:36:d7:f1:53:1b:db:9d:90:4c: 2b:d6:9b:0a:79:1a:dc:26:d5:10:e0:36:80:92:d0: f7:ef:9f:94:79:8b:cd:f9:ec:8d:56:cd:08:d1:f7: ba:12:58:62:c8:4e:dc:9a:b6:0e:85:47:41:44:01: a3:b9:ed:6c:35:21:5a:b4:f5:c7:78:40:e9:b6:63: b6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D9:0F:18:BD:D0:27:EF:8C:EC:70:92:26:1C:9D:DE:4E:5C:AA:6C X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3137312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.171.0/24 Signature Algorithm: sha256WithRSAEncryption 59:e5:a7:f1:a5:25:dd:64:71:5a:cb:69:db:c0:45:59:59:a8: 9c:6a:84:4c:a1:3c:be:fc:44:f7:bf:aa:7f:3d:26:ba:19:c2: 92:e2:81:a8:be:cc:b9:f2:c9:b4:15:78:9e:62:79:06:c3:b1: 18:93:2e:9e:15:27:6f:58:7e:09:6c:5d:e3:e6:68:64:2b:ec: b6:8a:c1:c8:60:58:87:76:18:3d:44:11:e7:4e:1d:45:67:5c: ee:d9:0c:73:af:b1:7e:e7:a3:bf:e8:80:2c:12:0d:df:16:f7: c4:42:31:c4:38:0d:76:37:81:e2:81:84:63:84:4a:05:8c:0d: 07:1b:fc:68:33:6c:d5:95:90:03:22:a7:24:bf:01:ec:d1:5b: 0a:ab:e7:8a:d6:99:89:50:72:68:a8:56:b5:bf:4f:77:cc:97: 72:46:c1:0c:06:d7:2d:9e:0a:f0:a8:05:f2:96:2e:95:38:0a: 6a:51:c3:66:9b:09:b8:f6:10:4c:a8:05:e5:b2:ca:b2:08:9f: 4b:3b:b6:70:79:cd:9c:0c:bb:71:4a:a9:ee:a9:6c:d6:e1:ab: ce:44:85:02:c8:1c:58:9b:0a:29:89:bf:d6:6a:5e:ec:5c:7b: e1:0b:36:f9:58:9e:87:e2:3a:25:ef:8b:d8:72:ec:d1:72:00: 7d:ce:40:b4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHJYvDbMk79ysYCVwTMCRe3KyBlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjAyMjIwNTU1MDJaFw0yNzAyMjEwNjAwMDJaMDMxMTAvBgNV BAMTKEQwRDkwRjE4QkREMDI3RUY4Q0VDNzA5MjI2MUM5RERFNEU1Q0FBNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsmm4B/+qZKdDtOCNgn3T9OvEB cHDqjo/kd+Vd46Z43uk4UBhZ9t5W2KCkyMHBuRqRz2o0OeizQcMxjALbQjafP9oU 29EbDxiAozaVtQet1mJ4RnRGlRrpfJT9+8BWDN8r9nGTSJqn0+fkggFsESgdcgCL lAmqexQLCZseAU196KtMg6GmhShGZVXTl9LA27rrc31+e87N6wR5V+PNRgDOxVRC RXJYPK3Q378Q1q6EjpNzpnx2VsCftjbX8VMb252QTCvWmwp5Gtwm1RDgNoCS0Pfv n5R5i8357I1WzQjR97oSWGLITtyatg6FR0FEAaO57Ww1IVq09cd4QOm2Y7ZfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0NkPGL3QJ++M7HCSJhyd3k5cqmwwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8qzANBgkqhkiG 9w0BAQsFAAOCAQEAWeWn8aUl3WRxWstp28BFWVmonGqETKE8vvxE97+qfz0muhnC kuKBqL7MufLJtBV4nmJ5BsOxGJMunhUnb1h+CWxd4+ZoZCvstorByGBYh3YYPUQR 504dRWdc7tkMc6+xfuejv+iALBIN3xb3xEIxxDgNdjeB4oGEY4RKBYwNBxv8aDNs 1ZWQAyKnJL8B7NFbCqvnitaZiVByaKhWtb9Pd8yXckbBDAbXLZ4K8KgF8pYulTgK alHDZpsJuPYQTKgF5bLKsgifSzu2cHnNnAy7cUqp7qls1uGrzkSFAsgcWJsKKYm/ 1mpe7Fx74Qs2+Vieh+I6Je+L2HLs0XIAfc5AtA== -----END CERTIFICATE-----Generated at Mon Mar 2 08:05:51 2026 by rpki-client