$ rpki-client -vvf repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa File: 3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa (raw, json) Hash identifier: OlbNo2PbYWxzqpNzCCmjQp5Q+/kIyJ8AaRG/SrSE9NU= Subject key identifier: 30:95:E6:B4:A5:71:DA:AA:D0:C3:AB:A9:E2:8A:EC:18:84:2D:33:54 Certificate issuer: /CN=46F8E3AC44B2F2208037674979268378CA60B901 Certificate serial: 122658C694B48471757579C8EF35E0E27EE9D71C Authority key identifier: 46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa Signing time: Fri 13 Mar 2026 17:00:03 +0000 ROA not before: Fri 13 Mar 2026 16:55:03 +0000 ROA not after: Fri 12 Mar 2027 17:00:03 +0000 asID: 152423 IP address blocks: 157.20.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.crl rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 19:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:26:58:c6:94:b4:84:71:75:75:79:c8:ef:35:e0:e2:7e:e9:d7:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46F8E3AC44B2F2208037674979268378CA60B901 Validity Not Before: Mar 13 16:55:03 2026 GMT Not After : Mar 12 17:00:03 2027 GMT Subject: CN=3095E6B4A571DAAAD0C3ABA9E28AEC18842D3354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f4:ed:3c:7f:c9:e1:9f:d7:de:82:d5:06:1c: b3:34:5c:ea:62:3b:3b:33:cc:eb:6e:9d:9c:4d:b4: a8:bd:c1:2b:ec:d9:d6:dc:aa:2e:53:78:75:48:d9: 6c:b0:90:26:6d:b9:45:99:e1:76:0d:5e:86:9f:ff: 9c:2b:05:76:9a:0a:7d:2b:6b:49:c7:63:ff:1a:46: 6c:23:3e:86:a7:6a:cc:fc:1c:24:3b:33:67:b1:88: 5d:a4:3b:9e:8e:5d:6d:7b:04:02:28:b9:0d:f4:44: ff:4a:9a:31:16:8f:54:95:fd:10:bb:44:bc:33:76: 46:ea:7f:94:6f:1d:35:7e:fc:19:57:64:79:ac:48: 66:1a:49:b6:40:d2:d9:09:d2:e0:79:74:da:ad:f4: 45:f5:89:2d:cb:31:f7:8f:19:22:1f:76:eb:0f:7c: 25:85:1e:26:b4:78:d4:ae:5b:38:b6:21:fe:d9:0c: c3:f4:c7:a4:59:ea:ed:0d:15:43:29:56:e0:3d:2a: b0:21:dc:5f:af:5b:1f:3d:d8:3d:20:4e:59:68:a7: 41:79:65:b2:aa:5d:e6:51:6b:07:9d:53:0e:65:b6: f9:1e:a5:c0:d3:86:31:64:e5:5a:ad:7f:a0:01:34: 8e:a5:90:ec:a6:8a:48:4a:11:08:5c:89:77:45:68: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:95:E6:B4:A5:71:DA:AA:D0:C3:AB:A9:E2:8A:EC:18:84:2D:33:54 X509v3 Authority Key Identifier: keyid:46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.219.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:5c:be:ca:3b:83:d7:33:9e:e7:7a:61:d9:19:fa:5d:3e:4a: 8f:09:9e:c3:44:ed:06:fb:73:aa:e2:52:13:d0:c6:a8:dd:90: 81:62:80:d4:8d:a4:66:6e:c5:52:d7:18:fa:71:4c:70:c2:2c: df:9c:38:fa:37:26:8a:f1:63:99:d7:4b:d7:11:2b:0f:50:aa: 2d:08:6f:37:79:ac:0d:34:12:51:b5:50:62:de:be:8b:56:12: 98:71:1a:12:e9:fc:8c:ec:3c:b7:8b:3f:4b:d2:d4:53:dc:a9: e0:c7:ac:d3:3e:83:27:15:97:31:45:42:87:75:92:7e:4d:77: 51:93:b6:b5:e9:0c:a4:57:3d:69:d4:ad:de:f9:de:6f:c9:ae: 94:db:b8:2b:c4:ca:1d:c9:f2:a3:71:3b:a8:7f:ea:df:21:3f: 5a:d6:b9:a7:21:38:f8:92:32:5d:92:61:d5:98:f6:cc:2c:ab: d1:2f:db:fe:7e:d1:6b:ad:fb:48:37:3c:e1:89:85:fe:67:96: d2:31:6c:04:81:94:28:64:51:69:59:fd:ee:e5:9a:0b:b6:87: f7:1b:8a:fa:1b:50:37:d5:84:ec:4a:43:03:2d:4f:9b:19:5f: 58:27:69:22:20:76:2f:a9:3f:27:50:9b:c4:7c:f4:9b:18:19: 98:01:4f:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEiZYxpS0hHF1dXnI7zXg4n7p1xwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZGOEUzQUM0NEIyRjIyMDgwMzc2NzQ5NzkyNjgzNzhD QTYwQjkwMTAeFw0yNjAzMTMxNjU1MDNaFw0yNzAzMTIxNzAwMDNaMDMxMTAvBgNV BAMTKDMwOTVFNkI0QTU3MURBQUFEMEMzQUJBOUUyOEFFQzE4ODQyRDMzNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv9O08f8nhn9fegtUGHLM0XOpi OzszzOtunZxNtKi9wSvs2dbcqi5TeHVI2WywkCZtuUWZ4XYNXoaf/5wrBXaaCn0r a0nHY/8aRmwjPoanasz8HCQ7M2exiF2kO56OXW17BAIouQ30RP9KmjEWj1SV/RC7 RLwzdkbqf5RvHTV+/BlXZHmsSGYaSbZA0tkJ0uB5dNqt9EX1iS3LMfePGSIfdusP fCWFHia0eNSuWzi2If7ZDMP0x6RZ6u0NFUMpVuA9KrAh3F+vWx892D0gTllop0F5 ZbKqXeZRawedUw5ltvkepcDThjFk5Vqtf6ABNI6lkOymikhKEQhciXdFaOYvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMJXmtKVx2qrQw6up4orsGIQtM1QwHwYDVR0j BBgwFoAURvjjrESy8iCAN2dJeSaDeMpguQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmU4M2FmZS0zYmRjLTQ0YjItYTcwMi1iNDU1NWRhYTY1ZWEvMC80NkY4RTNBQzQ0 QjJGMjIwODAzNzY3NDk3OTI2ODM3OENBNjBCOTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDZGOEUzQUM0NEIyRjIyMDgwMzc2NzQ5NzkyNjgzNzhDQTYw QjkwMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZTgzYWZlLTNiZGMtNDRiMi1h NzAyLWI0NTU1ZGFhNjVlYS8wLzMxMzUzNzJlMzIzMDJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTbMA0GCSqG SIb3DQEBCwUAA4IBAQBOXL7KO4PXM57nemHZGfpdPkqPCZ7DRO0G+3Oq4lIT0Mao 3ZCBYoDUjaRmbsVS1xj6cUxwwizfnDj6NyaK8WOZ10vXESsPUKotCG83eawNNBJR tVBi3r6LVhKYcRoS6fyM7Dy3iz9L0tRT3Kngx6zTPoMnFZcxRUKHdZJ+TXdRk7a1 6QykVz1p1K3e+d5vya6U27grxModyfKjcTuof+rfIT9a1rmnITj4kjJdkmHVmPbM LKvRL9v+ftFrrftINzzhiYX+Z5bSMWwEgZQoZFFpWf3u5ZoLtof3G4r6G1A31YTs SkMDLU+bGV9YJ2kiIHYvqT8nUJvEfPSbGBmYAU/4 -----END CERTIFICATE-----Generated at Thu Mar 26 16:54:39 2026 by rpki-client