$ rpki-client -vvf repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa File: 3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa (raw, json) Hash identifier: oaGKSe8JVRVzK0Nu05QTTqIcQUaDRBiTc2piICJ18a4= Subject key identifier: 46:98:82:76:4B:EB:5D:88:F9:1D:92:E4:45:03:56:93:40:1B:20:A7 Certificate issuer: /CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Certificate serial: 49916329086E8ECB6CD2D6D14FB55ECF31B3C621 Authority key identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa Signing time: Sun 22 Mar 2026 08:01:32 +0000 ROA not before: Sun 22 Mar 2026 07:56:32 +0000 ROA not after: Sun 21 Mar 2027 08:01:32 +0000 asID: 152416 IP address blocks: 157.20.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 22:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:91:63:29:08:6e:8e:cb:6c:d2:d6:d1:4f:b5:5e:cf:31:b3:c6:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Validity Not Before: Mar 22 07:56:32 2026 GMT Not After : Mar 21 08:01:32 2027 GMT Subject: CN=469882764BEB5D88F91D92E445035693401B20A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a0:fd:2c:bc:f7:97:09:63:06:69:75:59:e4: 07:f8:84:7f:98:3a:41:5a:b4:89:62:43:c6:4c:ee: 12:ec:b8:fa:c3:80:09:48:75:d9:fa:eb:64:87:38: d9:05:2c:7d:70:f9:41:17:51:15:de:d5:11:f9:a9: 1c:b4:bb:44:2f:24:03:d7:a3:e9:d5:ae:81:07:c0: 95:72:72:4d:90:a0:42:e7:e8:06:fe:2c:7b:63:84: f8:2d:a2:15:ca:d2:7b:08:e2:20:50:c1:a8:71:90: 26:42:ad:e6:e7:e0:4c:cf:18:7a:5f:6d:f2:d6:6d: aa:b3:5b:46:eb:93:63:bd:fa:71:62:9e:7a:78:48: 16:65:e9:b3:e7:db:f6:a3:22:be:57:4c:b1:80:0c: 6c:1f:c5:0f:8a:fb:cd:48:18:0f:9e:30:60:f6:fc: 42:ad:cc:f8:8c:d8:c5:88:fa:82:56:be:33:f3:97: 29:90:d3:cc:7f:bd:9b:c5:40:e9:94:06:94:3b:21: c8:c1:d7:b8:80:27:86:4d:df:eb:bd:e4:14:98:87: b4:1d:7a:15:df:57:06:3c:36:bb:3c:f2:56:7c:93: 3a:aa:23:2e:89:fd:c8:7b:2b:90:9a:72:6f:0a:25: 45:aa:a2:b5:37:8b:7e:c1:9b:b3:38:07:8d:e1:9f: 9f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:98:82:76:4B:EB:5D:88:F9:1D:92:E4:45:03:56:93:40:1B:20:A7 X509v3 Authority Key Identifier: keyid:C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.209.0/24 Signature Algorithm: sha256WithRSAEncryption 93:89:1a:13:67:e0:04:aa:ab:91:37:15:64:df:6a:5b:66:60: b2:73:1d:ea:fe:14:bd:eb:e8:d9:de:41:c6:f0:19:ef:07:71: 10:7f:55:1f:76:7d:88:39:9c:f8:c0:1c:d5:5f:34:19:c8:35: 60:18:4b:71:75:6e:6f:14:0c:de:79:ca:5d:62:47:b9:49:08: 3c:1c:33:cb:cc:7e:3e:58:40:ce:eb:7b:11:a8:c2:1c:d2:9c: 2e:83:bb:82:40:74:54:f0:de:63:4b:fc:9e:80:82:44:2a:a4: 05:6e:31:db:c7:1e:86:7e:01:a6:c3:62:e1:f8:96:94:aa:d6: 02:a3:04:0b:4a:4f:f7:f6:dd:70:bc:cf:00:3a:17:7c:89:01: 3a:08:f8:9b:01:0d:c7:42:d6:19:86:d8:31:02:95:61:33:c4: 9a:9a:06:48:e1:54:0e:ac:b1:1f:d1:d9:94:72:e0:df:ff:5b: 5f:fe:9d:49:77:6c:a8:87:95:a1:45:30:95:7c:c6:1e:a9:b9: bf:81:e9:f8:12:19:71:49:dd:fe:88:13:d3:5c:88:4a:5f:e4: db:d2:20:f9:fd:90:f8:01:38:09:96:f7:6a:3a:fc:47:7e:35: e0:6f:d9:d0:80:a6:28:2b:c6:db:58:40:4f:8b:20:f6:26:8d: 82:4f:66:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSZFjKQhujsts0tbRT7VezzGzxiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3 NkFEMDJFQzAeFw0yNjAzMjIwNzU2MzJaFw0yNzAzMjEwODAxMzJaMDMxMTAvBgNV BAMTKDQ2OTg4Mjc2NEJFQjVEODhGOTFEOTJFNDQ1MDM1NjkzNDAxQjIwQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzoP0svPeXCWMGaXVZ5Af4hH+Y OkFatIliQ8ZM7hLsuPrDgAlIddn662SHONkFLH1w+UEXURXe1RH5qRy0u0QvJAPX o+nVroEHwJVyck2QoELn6Ab+LHtjhPgtohXK0nsI4iBQwahxkCZCrebn4EzPGHpf bfLWbaqzW0brk2O9+nFinnp4SBZl6bPn2/ajIr5XTLGADGwfxQ+K+81IGA+eMGD2 /EKtzPiM2MWI+oJWvjPzlymQ08x/vZvFQOmUBpQ7IcjB17iAJ4ZN3+u95BSYh7Qd ehXfVwY8Nrs88lZ8kzqqIy6J/ch7K5Cacm8KJUWqorU3i37Bm7M4B43hn5+TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURpiCdkvrXYj5HZLkRQNWk0AbIKcwHwYDVR0j BBgwFoAUxFNjDxq+X/mS+UinXbRYd3atAuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzQwOTRkMi1lMThkLTQ4NDAtODRmYS1jNTc1N2FmNTgwZjEvMC9DNDUzNjMwRjFB QkU1RkY5OTJGOTQ4QTc1REI0NTg3Nzc2QUQwMkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3NkFE MDJFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQyLWUxOGQtNDg0MC04 NGZhLWM1NzU3YWY1ODBmMS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTRMA0GCSqG SIb3DQEBCwUAA4IBAQCTiRoTZ+AEqquRNxVk32pbZmCycx3q/hS96+jZ3kHG8Bnv B3EQf1Ufdn2IOZz4wBzVXzQZyDVgGEtxdW5vFAzeecpdYke5SQg8HDPLzH4+WEDO 63sRqMIc0pwug7uCQHRU8N5jS/yegIJEKqQFbjHbxx6GfgGmw2Lh+JaUqtYCowQL Sk/39t1wvM8AOhd8iQE6CPibAQ3HQtYZhtgxApVhM8SamgZI4VQOrLEf0dmUcuDf /1tf/p1Jd2yoh5WhRTCVfMYeqbm/gen4EhlxSd3+iBPTXIhKX+Tb0iD5/ZD4ATgJ lvdqOvxHfjXgb9nQgKYoK8bbWEBPiyD2Jo2CT2Yu -----END CERTIFICATE-----Generated at Fri Mar 27 00:35:48 2026 by rpki-client