$ rpki-client -vvf repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa File: 3135372e36362e33382e302f32332d3234203d3e203633383635.roa (raw, json) Hash identifier: UUiIY0Q2nGP1X9XTM8Ol1qvBVgXy6sNa6+HVcf3gt20= Subject key identifier: 79:91:4C:C9:39:FE:00:1B:25:54:44:0B:F0:C0:52:4F:E1:9E:C8:77 Certificate issuer: /CN=C4FCDC424C5B4B2A563F0D072573A5492ACF8E36 Certificate serial: 68465486039725B68719EC221CF86F9AF24E9484 Authority key identifier: C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa Signing time: Tue 17 Mar 2026 10:02:47 +0000 ROA not before: Tue 17 Mar 2026 09:57:47 +0000 ROA not after: Tue 16 Mar 2027 10:02:47 +0000 asID: 63865 IP address blocks: 157.66.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.crl rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 03:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:46:54:86:03:97:25:b6:87:19:ec:22:1c:f8:6f:9a:f2:4e:94:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4FCDC424C5B4B2A563F0D072573A5492ACF8E36 Validity Not Before: Mar 17 09:57:47 2026 GMT Not After : Mar 16 10:02:47 2027 GMT Subject: CN=79914CC939FE001B2554440BF0C0524FE19EC877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:ec:a4:61:08:95:61:b0:1a:e0:c9:77:ea: bd:4d:f4:4c:87:de:84:15:b6:59:62:2e:f6:9e:ad: 19:71:3e:d9:c2:62:df:30:f4:0b:1c:f5:3e:6f:c9: 5b:6a:67:a7:53:92:fa:44:d4:3f:58:c3:4e:25:d0: ff:7b:2b:23:30:ee:b4:de:16:2c:49:d8:ab:fc:8f: a5:ce:cb:68:fd:28:c2:43:ba:87:a0:43:d5:c6:40: 9f:f2:ec:ae:24:8a:e0:9d:79:fb:04:5c:b4:02:81: 48:63:1a:d9:ae:ee:c4:3b:28:10:9c:ca:53:db:d3: 05:71:98:0a:9b:a2:6f:16:da:2b:57:ce:b5:6a:cb: d3:65:93:4a:72:18:9e:d8:cb:30:7a:ed:28:0c:06: f1:16:5a:50:dc:83:a6:a7:eb:10:2d:b1:db:9f:03: 10:c7:ba:ed:d2:bd:45:cf:cb:09:21:79:31:04:e2: 6d:8b:0d:9f:9f:96:58:22:34:c0:1e:4a:f7:d4:2b: 4c:7f:2d:70:91:72:b4:6b:88:50:7c:ee:84:a5:18: 65:6e:aa:6a:74:4c:0c:d3:6a:06:6e:a6:98:b0:55: b6:98:4f:75:2a:1a:b2:50:2b:05:1e:27:23:61:66: f7:9d:50:5c:78:9a:1e:d7:11:de:66:28:f9:ff:5d: 1b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:91:4C:C9:39:FE:00:1B:25:54:44:0B:F0:C0:52:4F:E1:9E:C8:77 X509v3 Authority Key Identifier: keyid:C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.38.0/23 Signature Algorithm: sha256WithRSAEncryption e2:91:f0:96:ba:86:13:cd:aa:23:c3:69:52:e6:5d:ef:cc:5f: 96:66:3a:88:02:5c:69:5a:8a:8d:b2:ea:54:09:02:8c:68:71: 4a:cd:53:bd:c5:2c:74:68:ce:d5:b8:c0:26:8e:dc:ae:93:62: 12:04:89:44:69:26:2d:2a:13:ba:16:f3:5f:bb:7d:f1:43:b6: 07:e8:6d:11:84:83:f0:18:24:2c:e7:9c:94:48:6f:15:6c:2e: e1:55:43:1a:b4:f0:0e:a9:ef:89:bb:08:ce:e6:26:2a:0f:f6: 0b:9f:57:42:63:86:59:c3:b9:44:4d:3a:d1:30:94:ae:7e:d7: f0:ff:98:fa:60:d6:ea:eb:2b:2b:83:29:7f:68:5c:ff:0a:57: fd:65:bb:8b:3d:4f:a9:e1:bb:fb:0d:f8:55:3d:3c:77:d9:21: 6f:6a:1b:75:86:fa:ed:6d:39:00:02:b9:aa:7f:71:7c:3e:d6: e1:18:d2:20:1d:89:79:a5:65:30:a8:4b:41:03:8d:e0:c2:9b: 6a:fd:c9:3e:bc:74:03:d6:c2:81:3d:b0:fe:38:5b:e5:dc:30: 98:f4:47:a4:60:dc:aa:97:31:8a:e7:b4:da:58:e7:ce:ed:29: 0e:1d:e2:ca:8e:2d:38:04:18:94:40:2b:f2:ea:ac:9e:79:78: 75:89:ed:2a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaEZUhgOXJbaHGewiHPhvmvJOlIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzRGQ0RDNDI0QzVCNEIyQTU2M0YwRDA3MjU3M0E1NDky QUNGOEUzNjAeFw0yNjAzMTcwOTU3NDdaFw0yNzAzMTYxMDAyNDdaMDMxMTAvBgNV BAMTKDc5OTE0Q0M5MzlGRTAwMUIyNTU0NDQwQkYwQzA1MjRGRTE5RUM4NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4UuykYQiVYbAa4Ml36r1N9EyH 3oQVtlliLvaerRlxPtnCYt8w9Asc9T5vyVtqZ6dTkvpE1D9Yw04l0P97KyMw7rTe FixJ2Kv8j6XOy2j9KMJDuoegQ9XGQJ/y7K4kiuCdefsEXLQCgUhjGtmu7sQ7KBCc ylPb0wVxmAqbom8W2itXzrVqy9Nlk0pyGJ7YyzB67SgMBvEWWlDcg6an6xAtsduf AxDHuu3SvUXPywkheTEE4m2LDZ+fllgiNMAeSvfUK0x/LXCRcrRriFB87oSlGGVu qmp0TAzTagZuppiwVbaYT3UqGrJQKwUeJyNhZvedUFx4mh7XEd5mKPn/XRt3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUeZFMyTn+ABslVEQL8MBST+GeyHcwHwYDVR0j BBgwFoAUxPzcQkxbSypWPw0HJXOlSSrPjjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWIyNjdhNC01MDMwLTRhNGYtYmI4Ni03MWZkMjMwZjUzZDEvMC9DNEZDREM0MjRD NUI0QjJBNTYzRjBEMDcyNTczQTU0OTJBQ0Y4RTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzRGQ0RDNDI0QzVCNEIyQTU2M0YwRDA3MjU3M0E1NDkyQUNG OEUzNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYjI2N2E0LTUwMzAtNGE0Zi1i Yjg2LTcxZmQyMzBmNTNkMS8wLzMxMzUzNzJlMzYzNjJlMzMzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQiYwDQYJKoZIhvcN AQELBQADggEBAOKR8Ja6hhPNqiPDaVLmXe/MX5ZmOogCXGlaio2y6lQJAoxocUrN U73FLHRoztW4wCaO3K6TYhIEiURpJi0qE7oW81+7ffFDtgfobRGEg/AYJCznnJRI bxVsLuFVQxq08A6p74m7CM7mJioP9gufV0JjhlnDuURNOtEwlK5+1/D/mPpg1urr KyuDKX9oXP8KV/1lu4s9T6nhu/sN+FU9PHfZIW9qG3WG+u1tOQACuap/cXw+1uEY 0iAdiXmlZTCoS0EDjeDCm2r9yT68dAPWwoE9sP44W+XcMJj0R6Rg3KqXMYrntNpY 587tKQ4d4sqOLTgEGJRAK/LqrJ55eHWJ7So= -----END CERTIFICATE-----Generated at Fri Mar 27 05:01:26 2026 by rpki-client