$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39372e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e39372e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 1tY7tppf6L8ZKH3/PsYAAHl05RaYrsyZ0RzbzIk5B5E= Subject key identifier: 78:CE:71:56:37:11:65:BF:F1:73:26:02:FE:CD:60:3B:03:FE:E9:A0 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 0FD8BE01E9FA3B4FFED4AED3E4A0D877B7646691 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39372e302f32342d3234203d3e203234353235.roa Signing time: Sat 04 Apr 2026 10:00:03 +0000 ROA not before: Sat 04 Apr 2026 09:55:03 +0000 ROA not after: Sat 03 Apr 2027 10:00:03 +0000 asID: 24525 IP address blocks: 114.199.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 11:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d8:be:01:e9:fa:3b:4f:fe:d4:ae:d3:e4:a0:d8:77:b7:64:66:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 4 09:55:03 2026 GMT Not After : Apr 3 10:00:03 2027 GMT Subject: CN=78CE7156371165BFF1732602FECD603B03FEE9A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:59:bd:c3:1c:f3:4c:27:c5:d1:9e:76:42:8e: 69:62:bc:28:ca:71:d4:e5:5c:08:b3:97:47:08:ee: b3:99:51:4d:50:d6:b5:df:29:0d:5d:8f:65:28:87: fb:ef:67:86:b4:62:16:f9:60:cd:67:45:1b:e9:5f: 99:6e:46:5c:82:1a:62:97:8a:58:56:69:96:e1:86: de:92:66:70:bd:2a:5f:07:58:09:b8:92:93:d1:aa: ec:92:02:89:b0:be:cd:da:d9:d2:fc:ef:6c:17:2f: 53:05:17:29:09:52:76:fa:5b:9f:03:90:91:8e:7f: c2:8f:09:73:a9:83:c6:99:64:2e:b4:08:c7:bb:c5: 68:7b:c4:e2:89:fa:cc:e3:27:0f:a0:dd:e9:5f:0f: e5:77:00:36:e3:a9:94:16:08:4e:87:7e:17:9c:e6: 40:31:8c:a8:a5:cf:5d:1d:49:4b:f2:e5:3a:c1:0d: 25:e9:5d:47:dc:51:b5:fa:ef:7e:09:94:a2:4b:8f: 07:c4:77:16:39:fb:0d:18:f4:d3:05:0a:e4:01:ec: 32:3a:2a:5c:8c:35:e9:5c:c9:dd:f0:cc:b7:dd:ba: 71:90:40:68:33:61:68:29:f5:7e:79:f7:4e:24:fd: 0e:b0:e1:7c:d3:c9:10:4c:de:03:83:58:21:76:eb: a3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CE:71:56:37:11:65:BF:F1:73:26:02:FE:CD:60:3B:03:FE:E9:A0 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e39372e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.97.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:fd:07:6c:60:d6:3d:d2:73:17:2f:79:cf:aa:68:48:e1:19: be:a8:de:29:71:99:82:e1:7f:3c:3e:e0:ea:f2:de:fc:3f:d6: 9c:91:b4:99:62:bf:b8:22:ef:31:8e:35:49:52:8e:12:af:56: d0:4c:e4:30:10:27:2e:55:8b:4f:24:cc:e0:6a:2e:f5:32:bc: 75:3d:9e:4c:e6:78:09:c2:da:c2:b9:13:98:ee:82:c2:4d:55: 8d:f6:a2:60:ce:c0:7d:cb:5c:ab:09:20:67:ae:44:18:ec:fe: 0e:1b:64:e0:3c:bb:be:57:8d:9e:9a:bb:1f:db:85:bc:91:ec: 7e:0e:82:95:67:2a:62:9e:93:53:89:33:4b:6f:fa:ec:5b:01: ea:6b:42:fe:6a:45:8a:5d:33:e4:c6:51:3a:93:6e:0c:22:4e: 2a:55:13:95:8d:a5:f9:ea:a9:d0:f5:33:f3:a7:48:b4:4a:04: 94:8c:84:a8:87:e7:4c:9b:b7:dc:47:35:6d:7a:c2:4d:2f:04: a0:dc:6f:3a:bc:27:53:7f:0c:b4:b0:bf:6b:fe:33:cd:fe:2d: a6:30:b0:18:cd:68:e3:68:62:16:ad:51:62:5a:da:54:dd:2b: 2a:db:b1:99:6f:8a:35:6a:be:f6:d3:8f:f3:9f:15:33:0b:68: 64:bf:64:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD9i+Aen6O0/+1K7T5KDYd7dkZpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNjA0MDQwOTU1MDNaFw0yNzA0MDMxMDAwMDNaMDMxMTAvBgNV BAMTKDc4Q0U3MTU2MzcxMTY1QkZGMTczMjYwMkZFQ0Q2MDNCMDNGRUU5QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Wb3DHPNMJ8XRnnZCjmlivCjK cdTlXAizl0cI7rOZUU1Q1rXfKQ1dj2Uoh/vvZ4a0Yhb5YM1nRRvpX5luRlyCGmKX ilhWaZbhht6SZnC9Kl8HWAm4kpPRquySAomwvs3a2dL872wXL1MFFykJUnb6W58D kJGOf8KPCXOpg8aZZC60CMe7xWh7xOKJ+szjJw+g3elfD+V3ADbjqZQWCE6Hfhec 5kAxjKilz10dSUvy5TrBDSXpXUfcUbX6734JlKJLjwfEdxY5+w0Y9NMFCuQB7DI6 KlyMNelcyd3wzLfdunGQQGgzYWgp9X55904k/Q6w4XzTyRBM3gODWCF266OrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeM5xVjcRZb/xcyYC/s1gOwP+6aAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHYTANBgkqhkiG 9w0BAQsFAAOCAQEAbv0HbGDWPdJzFy95z6poSOEZvqjeKXGZguF/PD7g6vLe/D/W nJG0mWK/uCLvMY41SVKOEq9W0EzkMBAnLlWLTyTM4Gou9TK8dT2eTOZ4CcLawrkT mO6Cwk1VjfaiYM7AfctcqwkgZ65EGOz+Dhtk4Dy7vleNnpq7H9uFvJHsfg6ClWcq Yp6TU4kzS2/67FsB6mtC/mpFil0z5MZROpNuDCJOKlUTlY2l+eqp0PUz86dItEoE lIyEqIfnTJu33Ec1bXrCTS8EoNxvOrwnU38MtLC/a/4zzf4tpjCwGM1o42hiFq1R YlraVN0rKtuxmW+KNWq+9tOP858VMwtoZL9kYg== -----END CERTIFICATE-----Generated at Sun Apr 19 13:03:21 2026 by rpki-client