$ rpki-client -vvf repo-rpki.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa File: 3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa (raw, json) Hash identifier: Szhkwi/uKROLQkqOgmk3Mb9/hNg3uAnK7L1sfdyDAhI= Subject key identifier: DD:86:B4:16:52:B5:95:57:EA:1B:35:F4:4E:D4:6E:E5:CF:ED:93:5E Certificate issuer: /CN=08683ED5C748B79A346EF705A2DCF809A31C75DF Certificate serial: 6B4118E30580C6B5A7E2B939563B5C0391BE0A9A Authority key identifier: 08:68:3E:D5:C7:48:B7:9A:34:6E:F7:05:A2:DC:F8:09:A3:1C:75:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/08683ED5C748B79A346EF705A2DCF809A31C75DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa Signing time: Wed 11 Mar 2026 10:00:00 +0000 ROA not before: Wed 11 Mar 2026 09:55:00 +0000 ROA not after: Wed 10 Mar 2027 10:00:00 +0000 asID: 152439 IP address blocks: 157.20.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/08683ED5C748B79A346EF705A2DCF809A31C75DF.crl rsync://repo-rpki.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/08683ED5C748B79A346EF705A2DCF809A31C75DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/08683ED5C748B79A346EF705A2DCF809A31C75DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 15:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:41:18:e3:05:80:c6:b5:a7:e2:b9:39:56:3b:5c:03:91:be:0a:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08683ED5C748B79A346EF705A2DCF809A31C75DF Validity Not Before: Mar 11 09:55:00 2026 GMT Not After : Mar 10 10:00:00 2027 GMT Subject: CN=DD86B41652B59557EA1B35F44ED46EE5CFED935E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7e:75:81:64:2b:81:ca:13:04:36:04:03:e4: d4:2e:04:85:aa:af:92:20:42:d4:37:7a:97:ad:55: b4:ff:65:80:04:7a:2f:41:d8:1e:e9:48:2a:05:d4: 0e:df:84:0f:ab:11:37:20:26:8e:fe:2e:08:66:f0: b4:ce:e2:f2:8f:ae:ac:95:9f:ed:2d:b7:fe:18:82: 02:84:5b:58:f0:ad:e2:f3:f9:51:73:0f:ee:00:39: 0e:46:d2:53:17:df:4e:e5:ba:ad:22:a2:93:4a:8d: 7f:2d:63:00:96:2e:36:44:cd:f0:80:55:2f:1b:9d: 38:7e:1b:1d:bf:43:f6:52:78:63:92:68:d1:3c:5f: fc:35:17:02:4e:25:b5:ad:22:15:65:fb:54:c3:c8: 45:ff:b5:8d:42:1b:64:61:81:df:d7:6a:77:76:6f: 59:e6:4c:6d:bd:d1:71:6d:c4:bd:d3:3a:b5:df:f2: 9d:a5:19:bc:00:d2:81:1c:53:a9:cb:84:7e:fe:b9: 92:08:7d:69:15:bc:5b:35:db:27:eb:7d:95:ef:4c: ac:ab:4a:cc:e4:cb:9b:b8:f3:07:a7:eb:bf:cf:1a: ee:ca:2b:36:4f:11:59:e3:2b:4d:63:47:bb:a8:de: 8c:61:01:b1:cc:31:90:08:d1:62:ec:1c:7c:56:36: 01:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:86:B4:16:52:B5:95:57:EA:1B:35:F4:4E:D4:6E:E5:CF:ED:93:5E X509v3 Authority Key Identifier: keyid:08:68:3E:D5:C7:48:B7:9A:34:6E:F7:05:A2:DC:F8:09:A3:1C:75:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/08683ED5C748B79A346EF705A2DCF809A31C75DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/08683ED5C748B79A346EF705A2DCF809A31C75DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.233.0/24 Signature Algorithm: sha256WithRSAEncryption 54:13:d3:86:13:b2:3f:ec:34:2f:c8:82:b7:e3:bf:51:60:dd: 39:53:94:76:d0:aa:0a:b5:eb:e1:ea:b3:cb:37:07:02:0e:c6: fc:c0:61:bf:c6:e0:3d:6f:1e:dd:6f:27:9d:35:08:f9:82:41: c4:60:42:e9:00:5c:da:e8:b4:cd:24:0b:89:7c:04:12:c2:35: 72:c8:e1:59:cc:dd:04:7f:12:84:17:48:e8:21:09:8f:d0:4d: 77:1a:75:ed:f9:f8:52:7e:71:de:c9:b2:42:e3:93:37:6d:7a: 8f:4d:b8:a8:03:62:63:19:5f:c5:45:10:1f:ee:0c:bf:e0:a4: 30:d9:24:70:b7:59:30:33:6b:a2:05:d9:4f:d4:93:fe:d2:6c: 22:c6:a8:f0:2f:1b:d1:30:5b:4f:bc:4f:96:89:59:8e:f4:ed: d0:15:93:1f:47:4b:6f:99:89:ab:bf:ee:72:39:57:e8:c8:78: 69:4d:38:97:0c:56:70:0e:bd:a4:53:2f:99:7f:93:e3:9c:13: 23:ca:31:12:2c:80:e3:55:8f:92:34:d7:23:0b:ca:67:84:e4: 38:30:e6:b8:8d:90:c7:ef:08:5f:d4:42:bb:e2:ea:d5:f1:37: c8:63:09:7d:c7:5a:7d:1d:f9:f3:f0:8c:40:4f:3d:e7:db:43: 2c:d7:b0:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa0EY4wWAxrWn4rk5VjtcA5G+CpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg2ODNFRDVDNzQ4Qjc5QTM0NkVGNzA1QTJEQ0Y4MDlB MzFDNzVERjAeFw0yNjAzMTEwOTU1MDBaFw0yNzAzMTAxMDAwMDBaMDMxMTAvBgNV BAMTKEREODZCNDE2NTJCNTk1NTdFQTFCMzVGNDRFRDQ2RUU1Q0ZFRDkzNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVfnWBZCuByhMENgQD5NQuBIWq r5IgQtQ3epetVbT/ZYAEei9B2B7pSCoF1A7fhA+rETcgJo7+Lghm8LTO4vKPrqyV n+0tt/4YggKEW1jwreLz+VFzD+4AOQ5G0lMX307luq0iopNKjX8tYwCWLjZEzfCA VS8bnTh+Gx2/Q/ZSeGOSaNE8X/w1FwJOJbWtIhVl+1TDyEX/tY1CG2Rhgd/Xand2 b1nmTG290XFtxL3TOrXf8p2lGbwA0oEcU6nLhH7+uZIIfWkVvFs12yfrfZXvTKyr Sszky5u48wen67/PGu7KKzZPEVnjK01jR7uo3oxhAbHMMZAI0WLsHHxWNgE5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3Ya0FlK1lVfqGzX0TtRu5c/tk14wHwYDVR0j BBgwFoAUCGg+1cdIt5o0bvcFotz4CaMcdd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OGNlZDE4ZC1hN2NjLTRiNDQtYWY0YS04NWYzMDRmOWViNmMvMC8wODY4M0VENUM3 NDhCNzlBMzQ2RUY3MDVBMkRDRjgwOUEzMUM3NURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMDg2ODNFRDVDNzQ4Qjc5QTM0NkVGNzA1QTJEQ0Y4MDlBMzFD NzVERi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4Y2VkMThkLWE3Y2MtNGI0NC1h ZjRhLTg1ZjMwNGY5ZWI2Yy8wLzMxMzUzNzJlMzIzMDJlMzIzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTpMA0GCSqG SIb3DQEBCwUAA4IBAQBUE9OGE7I/7DQvyIK3479RYN05U5R20KoKtevh6rPLNwcC Dsb8wGG/xuA9bx7dbyedNQj5gkHEYELpAFza6LTNJAuJfAQSwjVyyOFZzN0EfxKE F0joIQmP0E13GnXt+fhSfnHeybJC45M3bXqPTbioA2JjGV/FRRAf7gy/4KQw2SRw t1kwM2uiBdlP1JP+0mwixqjwLxvRMFtPvE+WiVmO9O3QFZMfR0tvmYmrv+5yOVfo yHhpTTiXDFZwDr2kUy+Zf5PjnBMjyjESLIDjVY+SNNcjC8pnhOQ4MOa4jZDH7whf 1EK74urV8TfIYwl9x1p9Hfnz8IxATz3n20Ms17BH -----END CERTIFICATE-----Generated at Fri Mar 27 00:54:56 2026 by rpki-client