$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38352e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: kcBPnTVDGFhrkVi1eRI5DnmzQI22ok70RrsO5ibRtlg= Subject key identifier: 81:C9:5F:D5:C1:AD:EF:BA:A2:48:CE:9E:E2:0B:29:97:51:0A:09:91 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 298384977956ED1B7637FB01B92D75D4352D4018 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa Signing time: Fri 10 Apr 2026 04:00:01 +0000 ROA not before: Fri 10 Apr 2026 03:55:01 +0000 ROA not after: Fri 09 Apr 2027 04:00:01 +0000 asID: 38753 IP address blocks: 119.110.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:83:84:97:79:56:ed:1b:76:37:fb:01:b9:2d:75:d4:35:2d:40:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Apr 10 03:55:01 2026 GMT Not After : Apr 9 04:00:01 2027 GMT Subject: CN=81C95FD5C1ADEFBAA248CE9EE20B2997510A0991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:18:12:f3:51:03:f3:df:07:7b:e9:b9:d6:09: c4:31:10:e2:ed:46:60:fe:ad:ae:44:1d:95:ad:f1: 39:87:7a:1b:26:19:0e:e8:cd:21:cf:20:90:f4:75: 54:38:aa:22:bc:d3:9f:7e:cf:cc:45:9e:e2:e9:7c: 4f:e7:1f:09:8f:2f:57:58:ce:31:eb:ec:5e:a7:4e: b3:83:8f:89:03:2e:7a:c4:db:af:a4:76:32:fd:ab: e7:c2:1a:4e:d3:3f:76:81:84:18:b8:c1:6e:83:80: 7f:3e:bf:b2:56:31:69:f9:ec:b5:da:e2:1e:5f:9f: b2:50:41:27:91:98:ad:dc:8e:e4:33:32:78:dc:ef: e2:91:bd:df:4f:9a:38:9f:91:a7:4c:c8:59:89:50: f4:c8:4f:96:7b:a2:2d:42:cb:13:37:62:c2:9d:70: 69:31:84:da:fd:4c:37:50:a5:3e:1a:00:03:8d:5b: 17:d6:1d:19:65:8c:e4:6d:29:e3:89:f8:d6:18:7f: f4:ba:0d:77:a6:c7:12:a8:63:58:d5:7b:15:a8:6a: 92:4e:65:43:d6:01:41:9f:fb:e8:8b:82:b7:41:8d: aa:51:89:4e:bd:8f:7e:fd:f9:71:a7:be:db:e9:ac: f3:44:66:eb:03:f7:6c:39:1a:0a:9d:f4:10:01:63: 45:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C9:5F:D5:C1:AD:EF:BA:A2:48:CE:9E:E2:0B:29:97:51:0A:09:91 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.85.0/24 Signature Algorithm: sha256WithRSAEncryption 26:46:a1:a1:da:eb:c1:e3:f3:c4:43:fb:27:6a:43:4f:86:eb: 16:de:69:fe:e5:b0:c2:d0:60:ae:62:23:ac:43:56:5d:92:ce: 9f:5f:19:de:fc:0a:2f:14:e4:34:8c:9e:72:fe:64:11:c9:7f: 68:6a:9c:be:c1:38:54:64:9f:e4:bf:81:08:04:fc:f1:3c:9b: 1b:b7:13:5f:52:3c:07:fa:66:5c:79:64:ec:e4:37:f9:23:d2: 1a:61:31:f2:01:ed:8d:bb:4f:3d:01:88:5b:2a:fa:09:91:2c: f1:24:9a:d7:ef:9d:7d:f7:cc:2a:27:bf:78:a0:d0:a8:91:26: 15:c9:3d:cd:cc:30:ac:6f:2b:bc:cf:44:cb:3c:22:31:cf:ff: 8b:9b:15:0f:22:d2:de:a6:19:ac:40:f6:f3:61:8b:ff:36:ae: 01:9d:28:f6:51:48:39:f6:05:0f:7b:95:3f:34:d4:c2:4a:e0: 76:ba:68:89:1a:e8:2f:06:ef:d2:f2:2a:00:69:6f:c3:cf:c4: 66:8a:75:cc:51:f5:6c:e3:7e:52:5b:36:08:cb:6a:69:60:f1: a4:54:3d:6c:3e:68:1d:e9:8f:a4:a0:31:4f:72:aa:1b:e5:c0: 9c:3e:8b:27:bc:76:5c:83:58:99:2f:dd:41:51:47:78:f7:8c: c8:d7:e6:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKYOEl3lW7Rt2N/sBuS111DUtQBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNjA0MTAwMzU1MDFaFw0yNzA0MDkwNDAwMDFaMDMxMTAvBgNV BAMTKDgxQzk1RkQ1QzFBREVGQkFBMjQ4Q0U5RUUyMEIyOTk3NTEwQTA5OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/GBLzUQPz3wd76bnWCcQxEOLt RmD+ra5EHZWt8TmHehsmGQ7ozSHPIJD0dVQ4qiK8059+z8xFnuLpfE/nHwmPL1dY zjHr7F6nTrODj4kDLnrE26+kdjL9q+fCGk7TP3aBhBi4wW6DgH8+v7JWMWn57LXa 4h5fn7JQQSeRmK3cjuQzMnjc7+KRvd9PmjifkadMyFmJUPTIT5Z7oi1CyxM3YsKd cGkxhNr9TDdQpT4aAAONWxfWHRlljORtKeOJ+NYYf/S6DXemxxKoY1jVexWoapJO ZUPWAUGf++iLgrdBjapRiU69j379+XGnvtvprPNEZusD92w5Ggqd9BABY0UhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgclf1cGt77qiSM6e4gspl1EKCZEwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVTANBgkqhkiG 9w0BAQsFAAOCAQEAJkahodrrwePzxEP7J2pDT4brFt5p/uWwwtBgrmIjrENWXZLO n18Z3vwKLxTkNIyecv5kEcl/aGqcvsE4VGSf5L+BCAT88TybG7cTX1I8B/pmXHlk 7OQ3+SPSGmEx8gHtjbtPPQGIWyr6CZEs8SSa1++dfffMKie/eKDQqJEmFck9zcww rG8rvM9EyzwiMc//i5sVDyLS3qYZrED282GL/zauAZ0o9lFIOfYFD3uVPzTUwkrg drpoiRroLwbv0vIqAGlvw8/EZop1zFH1bON+Uls2CMtqaWDxpFQ9bD5oHemPpKAx T3KqG+XAnD6LJ7x2XINYmS/dQVFHePeMyNfmkA== -----END CERTIFICATE-----Generated at Sun Apr 19 11:54:48 2026 by rpki-client