$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: b4GLF/GevFnbIp402p2BhubsF0IZAkeGmnQMbgAQgQE= Subject key identifier: C1:E3:C6:8C:11:1F:3B:FF:28:3A:27:4D:35:85:70:68:3C:FB:C0:88 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 1C5BE51CA8FC28888CCAFB7CF77E4B93684A2EC2 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa Signing time: Sat 04 Apr 2026 10:00:01 +0000 ROA not before: Sat 04 Apr 2026 09:55:01 +0000 ROA not after: Sat 03 Apr 2027 10:00:01 +0000 asID: 24525 IP address blocks: 114.199.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 11:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:5b:e5:1c:a8:fc:28:88:8c:ca:fb:7c:f7:7e:4b:93:68:4a:2e:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 4 09:55:01 2026 GMT Not After : Apr 3 10:00:01 2027 GMT Subject: CN=C1E3C68C111F3BFF283A274D358570683CFBC088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e7:e3:86:6d:98:48:bb:66:92:e4:b3:7f:7a: 09:fd:c6:e7:3d:d6:af:c4:d1:74:7d:ae:39:85:48: 5d:88:9c:f4:c4:5b:a3:19:93:d7:df:32:76:70:4b: 0c:88:bd:f8:33:2b:0a:e7:da:6a:60:22:e6:17:3d: 0f:30:f8:3a:01:06:41:93:71:d0:76:9b:f5:cd:54: e7:2d:c7:25:2f:6f:29:3f:9a:0b:fc:6e:9c:9b:aa: 72:86:4f:25:24:11:d6:1d:37:29:85:d4:0e:70:fb: e2:a0:fc:11:16:29:25:19:48:db:6b:d7:04:c7:79: db:18:ed:df:f5:b8:ce:35:6a:ab:3a:1f:35:a6:fc: bc:23:fc:d4:0f:9f:23:c4:27:14:79:59:f5:85:f0: d6:ee:fa:3b:e4:83:7e:f5:7f:bd:e3:e9:41:c1:ba: 70:0a:54:7c:72:f4:df:32:50:fa:79:5d:71:1b:d8: e2:99:15:0e:de:05:51:f8:c9:d5:45:1c:c0:26:75: 8d:eb:e0:9d:ac:96:d6:bb:25:5d:f0:a9:b1:a9:0f: 29:af:e9:28:a3:f5:d2:89:8d:d8:d0:d8:84:d2:5a: b2:27:48:57:f0:49:d5:30:6e:f0:a9:8e:f0:30:57: e5:6b:6f:49:67:8e:d9:4c:88:12:6a:5b:1c:9f:9b: be:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E3:C6:8C:11:1F:3B:FF:28:3A:27:4D:35:85:70:68:3C:FB:C0:88 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.107.0/24 Signature Algorithm: sha256WithRSAEncryption 80:22:da:51:12:9c:09:53:10:77:bc:91:45:79:5c:9b:41:8a: 00:89:20:f9:9a:74:fc:96:a3:b6:78:8d:19:78:20:7a:27:d6: 9d:a5:0f:c8:24:15:e0:dc:65:41:bb:3d:89:25:64:d2:ff:52: ec:3b:83:3f:72:69:63:2c:72:ed:9e:39:0d:9f:f8:0a:a9:1b: 5e:a0:ad:c9:cf:3b:ab:ad:55:1f:0b:e4:79:9c:80:60:22:6a: 0e:b8:fe:1d:d9:aa:ae:1e:61:8d:58:08:4f:16:16:08:7b:78: d0:b0:9e:0d:18:88:08:2b:35:0b:6f:2c:05:31:c8:53:ae:a5: 8a:16:a7:d9:6b:4b:e7:7d:fb:9a:76:8c:8d:e3:dd:40:94:2d: bd:75:bd:12:f2:b1:52:fd:4e:58:63:e8:32:a5:39:80:39:a0: c0:ff:a5:a4:2d:b7:14:91:71:cc:40:f3:89:57:a5:d8:f8:78: 58:19:85:f3:8a:a6:71:b2:1a:42:1d:ec:c8:97:54:ae:38:19: b7:96:a2:78:1e:9d:16:d5:3d:0a:28:03:84:d2:86:c6:12:05: f1:0e:2e:6c:5e:b5:b4:57:50:ee:06:02:ff:4b:64:09:b1:7c: d0:0c:89:3f:c6:0a:82:71:d9:db:f4:f9:b9:b5:3f:9b:cd:f4: d0:f9:44:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHFvlHKj8KIiMyvt8935Lk2hKLsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjA0MDQwOTU1MDFaFw0yNzA0MDMxMDAwMDFaMDMxMTAvBgNV BAMTKEMxRTNDNjhDMTExRjNCRkYyODNBMjc0RDM1ODU3MDY4M0NGQkMwODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb5+OGbZhIu2aS5LN/egn9xuc9 1q/E0XR9rjmFSF2InPTEW6MZk9ffMnZwSwyIvfgzKwrn2mpgIuYXPQ8w+DoBBkGT cdB2m/XNVOctxyUvbyk/mgv8bpybqnKGTyUkEdYdNymF1A5w++Kg/BEWKSUZSNtr 1wTHedsY7d/1uM41aqs6HzWm/Lwj/NQPnyPEJxR5WfWF8Nbu+jvkg371f73j6UHB unAKVHxy9N8yUPp5XXEb2OKZFQ7eBVH4ydVFHMAmdY3r4J2slta7JV3wqbGpDymv 6Sij9dKJjdjQ2ITSWrInSFfwSdUwbvCpjvAwV+Vrb0lnjtlMiBJqWxyfm747AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwePGjBEfO/8oOidNNYVwaDz7wIgwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdrMA0GCSqG SIb3DQEBCwUAA4IBAQCAItpREpwJUxB3vJFFeVybQYoAiSD5mnT8lqO2eI0ZeCB6 J9adpQ/IJBXg3GVBuz2JJWTS/1LsO4M/cmljLHLtnjkNn/gKqRteoK3JzzurrVUf C+R5nIBgImoOuP4d2aquHmGNWAhPFhYIe3jQsJ4NGIgIKzULbywFMchTrqWKFqfZ a0vnffuadoyN491AlC29db0S8rFS/U5YY+gypTmAOaDA/6WkLbcUkXHMQPOJV6XY +HhYGYXziqZxshpCHezIl1SuOBm3lqJ4Hp0W1T0KKAOE0obGEgXxDi5sXrW0V1Du BgL/S2QJsXzQDIk/xgqCcdnb9Pm5tT+bzfTQ+US+ -----END CERTIFICATE-----Generated at Sun Apr 19 13:03:11 2026 by rpki-client