$ rpki-client -vvf repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa File: 3135372e36362e372e302f32342d3234203d3e20313338383239.roa (raw, json) Hash identifier: uWa3eBa3m0ZjHO1KSjQNzgzw8RBx0gUrmzXHFx4FbVs= Subject key identifier: 20:CA:EC:A9:8B:D7:64:45:2E:AC:46:C7:21:70:40:B9:4D:12:1F:D1 Certificate issuer: /CN=D90C7042B5DC18341DCC77CA5CF8F4CA210D886B Certificate serial: 5D7AF2A38DB6B1D15D861F070392251C29E62D40 Authority key identifier: D9:0C:70:42:B5:DC:18:34:1D:CC:77:CA:5C:F8:F4:CA:21:0D:88:6B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa Signing time: Sun 01 Feb 2026 05:00:01 +0000 ROA not before: Sun 01 Feb 2026 04:55:01 +0000 ROA not after: Sun 31 Jan 2027 05:00:01 +0000 asID: 138829 IP address blocks: 157.66.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.crl rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:7a:f2:a3:8d:b6:b1:d1:5d:86:1f:07:03:92:25:1c:29:e6:2d:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D90C7042B5DC18341DCC77CA5CF8F4CA210D886B Validity Not Before: Feb 1 04:55:01 2026 GMT Not After : Jan 31 05:00:01 2027 GMT Subject: CN=20CAECA98BD764452EAC46C7217040B94D121FD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:11:39:cc:62:9e:7d:b2:3c:4f:f4:dd:4c:a7: d7:ff:98:3a:d1:3d:30:ed:b1:f4:d1:8b:13:be:c9: 10:20:15:2b:44:16:26:e0:2c:87:b5:29:06:c5:c2: d5:69:8e:ff:c8:39:59:0a:82:b0:9f:5a:12:cf:3c: 84:e2:ed:49:e5:43:83:a6:22:9e:aa:e8:95:c1:b0: d6:37:87:ec:b5:99:4a:3c:b7:60:3c:37:f4:b4:aa: 71:f1:9c:ed:ac:8c:2d:c8:ee:bd:74:86:09:1d:d9: 60:21:89:49:de:78:8a:4d:2b:ed:6e:bb:f0:92:13: b7:7f:c9:01:63:51:26:e8:6c:ca:8b:36:50:f9:b6: 1b:1e:11:dd:cf:a4:97:14:24:72:30:d2:23:78:5b: 94:18:8a:ce:45:d1:ac:c4:c3:3e:47:00:1b:4b:30: d5:3b:ae:aa:80:60:88:5b:47:43:1d:69:a4:4c:9a: c7:8f:fa:07:0b:bc:a7:75:25:d0:0c:a1:98:5f:1d: 92:26:e0:c9:87:08:30:b0:21:9f:6f:81:54:47:be: a1:91:b9:ea:70:07:e3:34:82:77:a1:84:8a:16:f0: fe:b2:f2:1c:8c:59:f4:b1:79:39:0c:f6:28:38:32: 5d:4a:0d:15:45:7f:88:5d:42:7d:54:09:15:c1:2e: 54:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CA:EC:A9:8B:D7:64:45:2E:AC:46:C7:21:70:40:B9:4D:12:1F:D1 X509v3 Authority Key Identifier: keyid:D9:0C:70:42:B5:DC:18:34:1D:CC:77:CA:5C:F8:F4:CA:21:0D:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D90C7042B5DC18341DCC77CA5CF8F4CA210D886B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/0/3135372e36362e372e302f32342d3234203d3e20313338383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.7.0/24 Signature Algorithm: sha256WithRSAEncryption 09:be:64:15:82:66:ca:bf:e5:1b:08:61:1b:a6:c1:f8:17:b7: 2b:f5:f3:14:a2:b8:0d:3f:76:4c:75:28:42:90:1f:80:b1:7f: 51:d7:eb:38:e9:dd:35:1d:69:28:40:1e:05:60:c6:39:0e:37: 68:bd:15:43:6a:5a:d7:23:f0:c7:07:1d:ea:dd:8f:bd:b8:8e: 6c:78:7a:b3:c4:3e:ee:b1:58:c2:ad:41:71:70:7b:9d:c9:3a: 51:25:81:41:6f:e6:24:e8:9e:43:13:5d:b1:e3:1a:6e:f0:96: f6:d9:e4:c8:db:f4:7d:22:ef:a8:18:c2:bc:35:a2:17:de:e2: e6:9e:48:99:3c:86:ab:6f:79:36:40:ce:94:b7:34:f8:01:cd: 98:da:e4:42:25:53:1a:13:af:5e:54:69:85:d4:d6:50:8c:25: 7d:1b:73:5c:0e:a3:cf:5b:ee:36:69:6e:b7:f1:99:16:b5:14: fd:4e:cf:4d:dc:72:9a:84:92:58:fb:18:70:44:e7:89:40:68: c9:35:e9:09:0e:b8:3c:bb:ab:3b:f4:da:16:b7:21:83:96:ec: de:d6:bc:f2:9b:6b:4e:59:79:9c:e0:8e:1f:63:b6:d1:7b:10: c9:8b:e6:f7:33:25:b3:a7:ef:e7:fb:80:6f:22:2a:25:09:de: 85:53:5f:17 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXXryo422sdFdhh8HA5IlHCnmLUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDkwQzcwNDJCNURDMTgzNDFEQ0M3N0NBNUNGOEY0Q0Ey MTBEODg2QjAeFw0yNjAyMDEwNDU1MDFaFw0yNzAxMzEwNTAwMDFaMDMxMTAvBgNV BAMTKDIwQ0FFQ0E5OEJENzY0NDUyRUFDNDZDNzIxNzA0MEI5NEQxMjFGRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvETnMYp59sjxP9N1Mp9f/mDrR PTDtsfTRixO+yRAgFStEFibgLIe1KQbFwtVpjv/IOVkKgrCfWhLPPITi7UnlQ4Om Ip6q6JXBsNY3h+y1mUo8t2A8N/S0qnHxnO2sjC3I7r10hgkd2WAhiUneeIpNK+1u u/CSE7d/yQFjUSbobMqLNlD5thseEd3PpJcUJHIw0iN4W5QYis5F0azEwz5HABtL MNU7rqqAYIhbR0MdaaRMmseP+gcLvKd1JdAMoZhfHZIm4MmHCDCwIZ9vgVRHvqGR uepwB+M0gnehhIoW8P6y8hyMWfSxeTkM9ig4Ml1KDRVFf4hdQn1UCRXBLlQtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIMrsqYvXZEUurEbHIXBAuU0SH9EwHwYDVR0j BBgwFoAU2QxwQrXcGDQdzHfKXPj0yiENiGswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE2ZmVhYS02YjRmLTQ3Y2YtOWUzYy0wMGFlYWM2N2EzMmEvMC9EOTBDNzA0MkI1 REMxODM0MURDQzc3Q0E1Q0Y4RjRDQTIxMEQ4ODZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDkwQzcwNDJCNURDMTgzNDFEQ0M3N0NBNUNGOEY0Q0EyMTBE ODg2Qi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTZmZWFhLTZiNGYtNDdjZi05 ZTNjLTAwYWVhYzY3YTMyYS8wLzMxMzUzNzJlMzYzNjJlMzcyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzgzODMyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgcwDQYJKoZIhvcN AQELBQADggEBAAm+ZBWCZsq/5RsIYRumwfgXtyv18xSiuA0/dkx1KEKQH4Cxf1HX 6zjp3TUdaShAHgVgxjkON2i9FUNqWtcj8McHHerdj724jmx4erPEPu6xWMKtQXFw e53JOlElgUFv5iTonkMTXbHjGm7wlvbZ5Mjb9H0i76gYwrw1ohfe4uaeSJk8hqtv eTZAzpS3NPgBzZja5EIlUxoTr15UaYXU1lCMJX0bc1wOo89b7jZpbrfxmRa1FP1O z03ccpqEklj7GHBE54lAaMk16QkOuDy7qzv02ha3IYOW7N7WvPKba05ZeZzgjh9j ttF7EMmL5vczJbOn7+f7gG8iKiUJ3oVTXxc= -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:51 2026 by rpki-client