$ rpki-client -vvf repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa File: 3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa (raw, json) Hash identifier: 4HEnURFX1hQSuRbmCKioRMn9cXm7KyCSSOCdtNL81nA= Subject key identifier: 5A:F9:7E:C3:F6:DE:28:96:81:8F:78:84:03:5C:D9:FD:92:9A:91:A9 Certificate issuer: /CN=260881823F2804BCA7A65AC93BD3DC9A7EE1730A Certificate serial: 2DC88174EC613B1E9E200076833D89AFF72688F7 Authority key identifier: 26:08:81:82:3F:28:04:BC:A7:A6:5A:C9:3B:D3:DC:9A:7E:E1:73:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa Signing time: Tue 17 Feb 2026 12:00:03 +0000 ROA not before: Tue 17 Feb 2026 11:55:03 +0000 ROA not after: Tue 16 Feb 2027 12:00:03 +0000 asID: 152422 IP address blocks: 157.20.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.crl rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 19:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:c8:81:74:ec:61:3b:1e:9e:20:00:76:83:3d:89:af:f7:26:88:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=260881823F2804BCA7A65AC93BD3DC9A7EE1730A Validity Not Before: Feb 17 11:55:03 2026 GMT Not After : Feb 16 12:00:03 2027 GMT Subject: CN=5AF97EC3F6DE2896818F7884035CD9FD929A91A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9f:f6:8e:1c:55:99:5e:f7:c3:cd:0e:42:31: 18:d8:1b:48:55:b6:92:a0:e0:dd:84:b2:86:5f:42: 9d:72:86:39:73:33:04:e5:4f:a3:f7:e5:97:9c:8a: cd:b9:65:26:4f:49:cb:58:30:02:aa:7b:29:c5:15: cf:c4:20:88:c4:f2:7e:df:e0:d0:bd:f0:3c:c2:6f: 25:15:85:15:37:a0:9f:05:18:83:66:ae:2b:0d:8e: 70:07:39:4a:88:95:ef:bd:2a:cd:2e:3e:9a:51:3c: e3:68:c2:2c:99:a4:c5:9f:eb:85:6e:9e:f3:60:fb: 9d:0c:ce:37:7e:62:b1:7c:88:3e:c0:88:3f:21:4f: fe:3b:ec:d5:b5:b3:94:26:18:8c:19:75:d8:fc:0a: 1f:5c:66:97:ad:4b:6c:43:ae:99:e2:35:f3:1e:1a: 6c:b3:22:91:8d:ea:72:37:39:cd:f8:c8:1b:13:31: 99:a0:0b:48:cd:09:44:c7:f5:83:ab:55:ec:e5:1b: 51:93:6a:f1:42:d3:fc:b0:2a:d7:39:9d:c6:9e:2e: 25:72:46:4a:d5:e4:b0:6d:7e:96:fb:bb:f3:ca:6c: 5b:33:d2:5c:22:5c:cb:d9:2c:04:76:07:34:3c:73: 17:3e:1d:9d:4f:8e:20:49:c6:16:e6:e0:07:ed:95: 67:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F9:7E:C3:F6:DE:28:96:81:8F:78:84:03:5C:D9:FD:92:9A:91:A9 X509v3 Authority Key Identifier: keyid:26:08:81:82:3F:28:04:BC:A7:A6:5A:C9:3B:D3:DC:9A:7E:E1:73:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/260881823F2804BCA7A65AC93BD3DC9A7EE1730A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/01368ae3-dd12-4aa3-8948-546de04c51e4/0/3135372e32302e3138382e302f32332d3234203d3e20313532343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.188.0/23 Signature Algorithm: sha256WithRSAEncryption b2:53:2c:63:ea:60:80:8f:dc:59:d4:bf:6a:c1:8d:02:07:8f: ba:68:4b:14:d4:32:30:cb:a4:42:69:8c:18:7e:b3:ba:a4:5f: 30:70:cd:81:a7:1c:b4:47:37:87:36:82:25:61:a7:17:18:02: 2d:ef:7b:b9:fd:22:af:e5:e5:10:d4:82:f8:b0:56:5b:27:c3: 58:c3:be:61:55:9c:94:54:0e:4e:34:26:61:a5:2d:f2:fc:af: 81:7e:24:b2:dd:a5:a2:d4:14:af:ab:bd:fa:e3:99:81:d3:ce: 0b:e2:2e:ef:ce:f2:b6:e6:0a:64:0f:fd:52:c1:bd:29:77:44: a8:60:18:c9:9c:5d:ef:5d:be:78:34:d5:0e:be:f9:1d:b2:61: ff:b9:87:29:72:ab:ed:3e:87:26:06:73:6f:c3:a5:4a:0d:7e: c6:3a:83:64:81:0a:58:83:98:e0:9a:ec:c4:65:0f:52:67:68: 41:6d:76:9e:22:be:fc:25:a1:61:09:6d:6d:e7:bf:35:4b:23: 7c:be:1e:57:03:7f:31:31:3d:02:10:8e:98:73:be:7a:9a:04: 04:af:e0:b1:ee:6e:2b:29:23:cd:59:0d:12:5e:f9:2c:a5:5e: b1:67:fb:a8:a8:ab:8c:e5:c5:e6:96:9b:2e:e1:37:f4:b2:2b: 98:90:3b:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULciBdOxhOx6eIAB2gz2Jr/cmiPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjYwODgxODIzRjI4MDRCQ0E3QTY1QUM5M0JEM0RDOUE3 RUUxNzMwQTAeFw0yNjAyMTcxMTU1MDNaFw0yNzAyMTYxMjAwMDNaMDMxMTAvBgNV BAMTKDVBRjk3RUMzRjZERTI4OTY4MThGNzg4NDAzNUNEOUZEOTI5QTkxQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJn/aOHFWZXvfDzQ5CMRjYG0hV tpKg4N2EsoZfQp1yhjlzMwTlT6P35Zecis25ZSZPSctYMAKqeynFFc/EIIjE8n7f 4NC98DzCbyUVhRU3oJ8FGINmrisNjnAHOUqIle+9Ks0uPppRPONowiyZpMWf64Vu nvNg+50Mzjd+YrF8iD7AiD8hT/477NW1s5QmGIwZddj8Ch9cZpetS2xDrpniNfMe GmyzIpGN6nI3Oc34yBsTMZmgC0jNCUTH9YOrVezlG1GTavFC0/ywKtc5ncaeLiVy RkrV5LBtfpb7u/PKbFsz0lwiXMvZLAR2BzQ8cxc+HZ1PjiBJxhbm4AftlWfdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWvl+w/beKJaBj3iEA1zZ/ZKakakwHwYDVR0j BBgwFoAUJgiBgj8oBLynplrJO9Pcmn7hcwowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTM2OGFlMy1kZDEyLTRhYTMtODk0OC01NDZkZTA0YzUxZTQvMC8yNjA4ODE4MjNG MjgwNEJDQTdBNjVBQzkzQkQzREM5QTdFRTE3MzBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjYwODgxODIzRjI4MDRCQ0E3QTY1QUM5M0JEM0RDOUE3RUUx NzMwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxMzY4YWUzLWRkMTItNGFhMy04 OTQ4LTU0NmRlMDRjNTFlNC8wLzMxMzUzNzJlMzIzMDJlMzEzODM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRS8MA0GCSqG SIb3DQEBCwUAA4IBAQCyUyxj6mCAj9xZ1L9qwY0CB4+6aEsU1DIwy6RCaYwYfrO6 pF8wcM2Bpxy0RzeHNoIlYacXGAIt73u5/SKv5eUQ1IL4sFZbJ8NYw75hVZyUVA5O NCZhpS3y/K+BfiSy3aWi1BSvq73645mB084L4i7vzvK25gpkD/1Swb0pd0SoYBjJ nF3vXb54NNUOvvkdsmH/uYcpcqvtPocmBnNvw6VKDX7GOoNkgQpYg5jgmuzEZQ9S Z2hBbXaeIr78JaFhCW1t5781SyN8vh5XA38xMT0CEI6Yc756mgQEr+Cx7m4rKSPN WQ0SXvkspV6xZ/uoqKuM5cXmlpsu4Tf0siuYkDut -----END CERTIFICATE-----Generated at Mon Mar 2 16:50:18 2026 by rpki-client