$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233352e302f32342d3234203d3e203435323936.roa File: 3131332e35392e3233352e302f32342d3234203d3e203435323936.roa (raw, json) Hash identifier: FxTnIw5vjqoZ72+CAYm/fpZrJZrtFwulq6Su/flXW3g= Subject key identifier: 40:52:42:01:DF:30:38:18:8B:60:BC:05:79:3A:BA:43:86:EC:04:70 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 4EBADC66739940A2C2237004EC757FF32448338B Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233352e302f32342d3234203d3e203435323936.roa Signing time: Mon 30 Mar 2026 10:00:00 +0000 ROA not before: Mon 30 Mar 2026 09:55:00 +0000 ROA not after: Mon 29 Mar 2027 10:00:00 +0000 asID: 45296 IP address blocks: 113.59.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ba:dc:66:73:99:40:a2:c2:23:70:04:ec:75:7f:f3:24:48:33:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Mar 30 09:55:00 2026 GMT Not After : Mar 29 10:00:00 2027 GMT Subject: CN=40524201DF3038188B60BC05793ABA4386EC0470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:08:b8:5c:78:76:bb:cd:65:cd:08:fc:4c:a0: 3f:b7:53:19:a3:a6:ad:79:9b:07:84:60:e0:47:c2: 16:4e:54:36:11:86:b4:3b:01:35:03:6d:24:d3:e9: 5c:fa:6d:6c:3b:9b:c9:e4:7b:cf:ad:5c:6d:02:03: 8b:29:ae:72:a6:94:3c:13:e7:be:09:b0:2f:3e:5a: 7e:7b:99:0b:8a:be:60:79:25:84:8f:50:4e:1c:0f: a1:33:c6:88:e9:d4:c3:0a:d5:07:fd:0b:cb:0b:e9: ec:f2:83:96:cb:80:d9:bb:f9:a4:81:8b:9a:19:08: c7:fe:d5:62:ba:bd:dd:89:a6:f0:49:db:a6:ca:86: 0c:81:ea:e9:11:56:95:bc:58:36:f8:4b:3b:b2:a3: 2a:e7:70:91:a1:81:ed:3e:13:72:8b:42:a0:9d:dd: 4c:e5:c2:7a:a2:0f:24:1b:71:b9:1a:72:9b:23:ae: b0:16:47:81:16:e3:45:b0:56:a5:7a:db:65:48:30: 6f:9f:c1:ac:7d:28:be:68:c9:8d:e8:f4:a4:ae:54: f7:f7:68:f9:19:fa:29:bc:f6:a7:df:41:e4:b9:3d: 15:73:be:64:3e:4a:68:0b:69:cf:e2:98:58:e2:dc: 61:f6:9d:ef:26:1c:a8:4a:24:36:a8:a1:49:94:af: a6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:52:42:01:DF:30:38:18:8B:60:BC:05:79:3A:BA:43:86:EC:04:70 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/3131332e35392e3233352e302f32342d3234203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.59.235.0/24 Signature Algorithm: sha256WithRSAEncryption 88:48:8f:c6:9f:32:4e:1d:6b:84:cf:3c:82:2e:e4:ae:ae:0c: 79:ef:74:28:86:85:e3:04:06:0d:83:d3:53:bb:d2:43:46:b9: d7:04:10:5f:ae:ef:66:17:0c:c6:1b:10:4c:2f:5a:be:52:29: 72:1a:76:86:4c:03:99:b5:de:c9:82:d7:43:24:e5:bb:80:ad: 9b:cd:e1:34:c2:56:75:59:be:a9:08:b5:d2:dd:43:b3:e9:5c: f6:21:d1:24:b2:8e:b7:a2:20:6f:57:e8:c7:c2:13:bd:d6:a1: b9:2e:57:dd:3b:09:c8:33:34:da:f2:a7:1b:c8:9a:c6:a2:3b: 13:3e:c7:78:25:ed:5d:bb:77:a9:b5:ce:11:71:f2:e0:c9:01: fe:f1:59:48:94:d3:fd:5e:87:50:57:78:7c:8b:e3:bd:a9:70: ab:9c:c1:b6:82:8d:b8:89:79:76:99:ee:3d:18:b7:2d:b6:3f: b4:26:39:e5:bf:82:a6:1c:ef:63:2d:f8:cc:7c:cf:b7:62:d8: 5f:88:e6:75:5b:6c:af:80:d7:95:d4:50:6a:b5:06:c2:fa:68: fe:bd:03:e8:55:42:7f:ac:4b:fb:53:e9:7c:ad:10:26:df:82: d6:7e:78:24:1b:57:e4:53:86:97:e7:9e:2b:b5:e8:f5:0e:83: db:15:ba:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTrrcZnOZQKLCI3AE7HV/8yRIM4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNjAzMzAwOTU1MDBaFw0yNzAzMjkxMDAwMDBaMDMxMTAvBgNV BAMTKDQwNTI0MjAxREYzMDM4MTg4QjYwQkMwNTc5M0FCQTQzODZFQzA0NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxCLhceHa7zWXNCPxMoD+3Uxmj pq15mweEYOBHwhZOVDYRhrQ7ATUDbSTT6Vz6bWw7m8nke8+tXG0CA4sprnKmlDwT 574JsC8+Wn57mQuKvmB5JYSPUE4cD6Ezxojp1MMK1Qf9C8sL6ezyg5bLgNm7+aSB i5oZCMf+1WK6vd2JpvBJ26bKhgyB6ukRVpW8WDb4SzuyoyrncJGhge0+E3KLQqCd 3UzlwnqiDyQbcbkacpsjrrAWR4EW40WwVqV622VIMG+fwax9KL5oyY3o9KSuVPf3 aPkZ+im89qffQeS5PRVzvmQ+SmgLac/imFji3GH2ne8mHKhKJDaooUmUr6ahAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQFJCAd8wOBiLYLwFeTq6Q4bsBHAwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMxMzEzMzJlMzUzOTJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE76zANBgkqhkiG 9w0BAQsFAAOCAQEAiEiPxp8yTh1rhM88gi7krq4Mee90KIaF4wQGDYPTU7vSQ0a5 1wQQX67vZhcMxhsQTC9avlIpchp2hkwDmbXeyYLXQyTlu4Ctm83hNMJWdVm+qQi1 0t1Ds+lc9iHRJLKOt6Igb1fox8ITvdahuS5X3TsJyDM02vKnG8iaxqI7Ez7HeCXt Xbt3qbXOEXHy4MkB/vFZSJTT/V6HUFd4fIvjvalwq5zBtoKNuIl5dpnuPRi3LbY/ tCY55b+CphzvYy34zHzPt2LYX4jmdVtsr4DXldRQarUGwvpo/r0D6FVCf6xL+1Pp fK0QJt+C1n54JBtX5FOGl+eeK7Xo9Q6D2xW6yQ== -----END CERTIFICATE-----Generated at Sat Apr 18 01:15:00 2026 by rpki-client