$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: EN+FuZyAlwcXf3S7h5aPggywnbWTkzFrr8Ly8AE6b0k= Subject key identifier: EC:25:CD:5C:72:6B:4C:97:8C:11:2D:F0:B3:45:08:C2:29:31:D2:2F Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 72DF53C9F85D92F398EBFC909C8DCB35DFCBA874 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa Signing time: Sat 04 Apr 2026 09:00:02 +0000 ROA not before: Sat 04 Apr 2026 08:55:02 +0000 ROA not after: Sat 03 Apr 2027 09:00:02 +0000 asID: 24525 IP address blocks: 114.199.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 11:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:df:53:c9:f8:5d:92:f3:98:eb:fc:90:9c:8d:cb:35:df:cb:a8:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 4 08:55:02 2026 GMT Not After : Apr 3 09:00:02 2027 GMT Subject: CN=EC25CD5C726B4C978C112DF0B34508C22931D22F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d5:1b:20:9c:c4:ce:37:b5:f0:64:96:57:9e: 51:d4:e3:6f:68:be:ca:9e:84:34:9b:05:3a:ff:c6: 34:94:b9:0c:6a:26:1e:3e:72:17:90:ce:60:18:de: f2:37:20:94:36:d9:7b:5c:2e:3f:c3:ad:86:59:4e: ce:53:f9:ed:4e:21:68:16:81:9d:41:f3:75:10:3b: bb:59:ba:2c:41:e9:b4:fa:83:14:b3:fe:c2:a5:a0: 74:f9:81:52:41:2f:a4:cf:da:34:c0:cb:0f:c0:8d: 09:df:a2:28:c5:e6:69:57:33:da:9a:4b:34:d6:7e: ea:22:22:56:7c:94:7f:e3:9d:cc:c8:f4:48:fb:8a: 80:b8:99:95:c3:b7:d7:7e:76:a6:d4:50:59:ae:e2: 17:6d:82:49:d8:31:7f:b5:08:7f:58:1b:81:76:ea: aa:6b:24:ab:79:58:7f:e1:dc:ab:57:b1:99:42:1f: 97:7f:c0:1f:d9:34:a6:f2:7c:4a:fb:e5:f8:6e:dc: cc:0a:b2:4e:10:d5:fb:d8:cf:44:ca:9a:10:29:64: 58:05:c9:e8:15:58:87:bd:cb:6b:c4:d1:2a:86:98: fd:20:92:04:d5:05:ab:6b:09:b1:f6:bb:c4:52:fd: 72:6f:24:48:88:91:40:bf:b8:83:7a:79:c8:3b:8b: 59:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:25:CD:5C:72:6B:4C:97:8C:11:2D:F0:B3:45:08:C2:29:31:D2:2F X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130312e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.101.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:b2:be:68:85:5c:af:fb:d5:c1:06:bc:2e:ab:b3:54:c0:8e: c6:b1:14:9a:54:25:e1:5d:15:69:67:dd:ae:d1:85:8d:6f:8c: e8:5c:07:d5:39:f7:25:c3:49:9f:0b:c2:17:1c:40:fb:38:da: 3c:81:6a:55:97:05:2a:a8:ba:c0:3d:79:e5:fe:de:7f:03:85: 8c:f7:e0:ac:9c:33:79:e5:b6:a7:cd:8d:f3:c6:4e:65:59:25: 50:c6:f3:ff:dd:a4:b6:cf:d6:9e:3f:5f:b9:42:6e:f1:44:47: 1c:7d:84:f3:3b:d5:f3:21:2d:7d:28:fa:dd:b4:0b:43:94:89: bd:69:6d:df:aa:56:0b:e8:29:e3:7d:b7:8f:fb:19:22:b8:6b: 16:fe:c7:ab:9a:cc:0b:50:ce:88:20:25:98:4f:63:d4:2c:35: 2f:b6:c6:81:2d:03:d2:97:8c:7e:c1:fc:88:cc:91:84:40:e3: e7:f4:86:ec:b2:1a:e3:f1:8a:39:72:b9:de:49:b2:32:54:1f: 0b:fb:6b:6f:28:04:fa:90:7a:ab:2c:2f:08:98:6b:37:a8:99: b5:7e:dc:f7:69:c0:5d:2a:da:f4:45:59:1d:24:3a:c9:58:09: b0:63:8f:ac:a8:b8:c8:7a:f6:16:c0:bd:d7:8d:51:39:6c:22: e5:52:6d:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUct9TyfhdkvOY6/yQnI3LNd/LqHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjA0MDQwODU1MDJaFw0yNzA0MDMwOTAwMDJaMDMxMTAvBgNV BAMTKEVDMjVDRDVDNzI2QjRDOTc4QzExMkRGMEIzNDUwOEMyMjkzMUQyMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs1RsgnMTON7XwZJZXnlHU429o vsqehDSbBTr/xjSUuQxqJh4+cheQzmAY3vI3IJQ22XtcLj/DrYZZTs5T+e1OIWgW gZ1B83UQO7tZuixB6bT6gxSz/sKloHT5gVJBL6TP2jTAyw/AjQnfoijF5mlXM9qa SzTWfuoiIlZ8lH/jnczI9Ej7ioC4mZXDt9d+dqbUUFmu4hdtgknYMX+1CH9YG4F2 6qprJKt5WH/h3KtXsZlCH5d/wB/ZNKbyfEr75fhu3MwKsk4Q1fvYz0TKmhApZFgF yegVWIe9y2vE0SqGmP0gkgTVBatrCbH2u8RS/XJvJEiIkUC/uIN6ecg7i1kpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7CXNXHJrTJeMES3ws0UIwikx0i8wHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdlMA0GCSqG SIb3DQEBCwUAA4IBAQB8sr5ohVyv+9XBBrwuq7NUwI7GsRSaVCXhXRVpZ92u0YWN b4zoXAfVOfclw0mfC8IXHED7ONo8gWpVlwUqqLrAPXnl/t5/A4WM9+CsnDN55ban zY3zxk5lWSVQxvP/3aS2z9aeP1+5Qm7xREccfYTzO9XzIS19KPrdtAtDlIm9aW3f qlYL6CnjfbeP+xkiuGsW/sermswLUM6IICWYT2PULDUvtsaBLQPSl4x+wfyIzJGE QOPn9Ibsshrj8Yo5crneSbIyVB8L+2tvKAT6kHqrLC8ImGs3qJm1ftz3acBdKtr0 RVkdJDrJWAmwY4+sqLjIevYWwL3XjVE5bCLlUm1c -----END CERTIFICATE-----Generated at Sun Apr 19 14:23:39 2026 by rpki-client