$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38332e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38332e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: sLMglhsSLMmO+/5LlAzOSAmVEeymhyldicPnxFvVZj4= Subject key identifier: 68:53:91:A3:0A:39:ED:B5:AF:62:1E:27:DE:B0:EC:DA:68:42:27:57 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 6DC0218BC30ED05329820AECEA24341D22639A41 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38332e302f32342d3234203d3e203338373533.roa Signing time: Tue 14 Apr 2026 03:03:19 +0000 ROA not before: Tue 14 Apr 2026 02:58:19 +0000 ROA not after: Tue 13 Apr 2027 03:03:19 +0000 asID: 38753 IP address blocks: 119.110.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c0:21:8b:c3:0e:d0:53:29:82:0a:ec:ea:24:34:1d:22:63:9a:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Apr 14 02:58:19 2026 GMT Not After : Apr 13 03:03:19 2027 GMT Subject: CN=685391A30A39EDB5AF621E27DEB0ECDA68422757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:22:05:99:66:13:e4:22:14:73:d0:7e:73:96: 13:07:4c:92:49:5a:43:93:03:b0:10:1a:95:2d:a4: 2a:52:eb:20:2a:7b:9c:5f:11:d6:a4:b5:a2:10:b8: 85:bd:5e:ad:cf:16:c7:b5:e1:3a:79:01:13:62:c8: 42:75:3e:b1:7d:ee:9a:1f:57:56:f4:85:c7:d7:f4: 41:db:f7:43:1a:76:91:bc:b5:cb:33:b8:c1:5f:26: b3:a3:ee:72:a3:7d:66:36:ba:0b:ad:de:52:a9:90: f9:99:e7:6e:f7:9a:75:51:02:79:ff:a1:11:c0:e5: 66:91:dd:6c:d7:61:67:b7:d6:b0:10:6a:81:a7:69: 43:90:4f:95:22:5f:0c:b1:47:51:0f:7e:05:d6:c5: f5:e2:ca:08:09:b3:c3:f8:0d:b6:3f:2c:ac:00:ea: c7:5c:92:d0:62:95:d2:40:55:b5:b6:f4:80:7b:64: 42:70:af:39:0f:59:b0:47:82:1e:99:4d:76:09:90: d9:a9:55:e8:3b:f9:00:9a:66:b0:d0:2e:55:c7:7b: 98:67:01:ea:f5:02:9a:b3:a1:0a:54:69:19:fb:85: 74:b4:82:02:a3:b0:77:3a:2b:f7:29:8e:cd:3a:bd: e8:57:f2:ae:95:0c:87:a9:2c:d5:30:1a:01:f4:39: a1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:53:91:A3:0A:39:ED:B5:AF:62:1E:27:DE:B0:EC:DA:68:42:27:57 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38332e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.83.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:43:2b:bd:27:bb:c5:83:4c:e5:88:ae:37:23:60:ab:52:2c: 47:bf:23:df:45:17:0d:d2:6c:a8:2f:fd:db:78:3d:70:c9:ba: 77:c6:84:70:af:58:fa:9f:a8:56:72:d1:ba:a8:c1:76:5e:b7: ef:51:45:91:99:df:8d:05:4e:ab:92:cb:64:e4:be:08:a3:ba: a4:2c:66:d5:98:41:cb:57:fc:23:b7:72:06:3b:2a:6e:09:80: 26:cf:8c:65:8d:8a:2b:b1:7d:08:db:e6:cf:17:69:0e:23:5f: 35:d9:6e:31:29:68:21:07:fe:59:ee:a2:87:12:12:75:5a:24: bf:1e:e0:20:7c:c1:96:7b:68:4c:96:d5:1e:4e:d6:ac:ca:6f: 41:c9:de:43:d8:d9:ae:90:eb:54:8a:dc:f1:4f:a9:bb:56:d6: f3:f0:73:28:7e:0d:5d:f7:8e:0a:78:ac:90:f9:a4:f4:06:5e: a9:8d:ee:8d:bf:52:a3:0f:44:9f:b6:4f:57:48:0a:b1:5e:07: d8:c0:37:f1:17:4d:f8:51:b8:9d:23:76:5c:48:8c:1d:15:f1: 52:5a:6c:46:2c:36:9f:f0:dd:07:4a:ed:63:d6:9d:b9:04:a8: 5f:7e:24:65:ea:80:4c:51:0c:21:31:de:eb:10:41:1e:42:ea: 92:79:54:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbcAhi8MO0FMpggrs6iQ0HSJjmkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNjA0MTQwMjU4MTlaFw0yNzA0MTMwMzAzMTlaMDMxMTAvBgNV BAMTKDY4NTM5MUEzMEEzOUVEQjVBRjYyMUUyN0RFQjBFQ0RBNjg0MjI3NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaIgWZZhPkIhRz0H5zlhMHTJJJ WkOTA7AQGpUtpCpS6yAqe5xfEdaktaIQuIW9Xq3PFse14Tp5ARNiyEJ1PrF97pof V1b0hcfX9EHb90MadpG8tcszuMFfJrOj7nKjfWY2ugut3lKpkPmZ5273mnVRAnn/ oRHA5WaR3WzXYWe31rAQaoGnaUOQT5UiXwyxR1EPfgXWxfXiyggJs8P4DbY/LKwA 6sdcktBildJAVbW29IB7ZEJwrzkPWbBHgh6ZTXYJkNmpVeg7+QCaZrDQLlXHe5hn Aer1ApqzoQpUaRn7hXS0ggKjsHc6K/cpjs06vehX8q6VDIepLNUwGgH0OaEDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaFORowo57bWvYh4n3rDs2mhCJ1cwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduUzANBgkqhkiG 9w0BAQsFAAOCAQEAf0MrvSe7xYNM5YiuNyNgq1IsR78j30UXDdJsqC/923g9cMm6 d8aEcK9Y+p+oVnLRuqjBdl6371FFkZnfjQVOq5LLZOS+CKO6pCxm1ZhBy1f8I7dy BjsqbgmAJs+MZY2KK7F9CNvmzxdpDiNfNdluMSloIQf+We6ihxISdVokvx7gIHzB lntoTJbVHk7WrMpvQcneQ9jZrpDrVIrc8U+pu1bW8/BzKH4NXfeOCniskPmk9AZe qY3ujb9Sow9En7ZPV0gKsV4H2MA38RdN+FG4nSN2XEiMHRXxUlpsRiw2n/DdB0rt Y9aduQSoX34kZeqATFEMITHe6xBBHkLqknlUqw== -----END CERTIFICATE-----Generated at Sun Apr 19 11:54:47 2026 by rpki-client