$ rpki-client -vvf repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa File: 3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa (raw, json) Hash identifier: b9/eaMWjy2vKRrDC1ZqHXCTzkaUl6nUCiifmyR0bhv0= Subject key identifier: 23:7C:27:6B:EE:2F:56:D1:83:92:19:44:D0:77:54:D1:9E:71:40:64 Certificate issuer: /CN=62F71C75A752B45AE4B51A4E7010124979820A90 Certificate serial: 68D9A9030289B499A26B9C8CC7E67BDFC6FB68F3 Authority key identifier: 62:F7:1C:75:A7:52:B4:5A:E4:B5:1A:4E:70:10:12:49:79:82:0A:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/62F71C75A752B45AE4B51A4E7010124979820A90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa Signing time: Mon 13 Apr 2026 08:03:34 +0000 ROA not before: Mon 13 Apr 2026 07:58:34 +0000 ROA not after: Mon 12 Apr 2027 08:03:34 +0000 asID: 152770 IP address blocks: 157.66.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.crl rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/62F71C75A752B45AE4B51A4E7010124979820A90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 19:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d9:a9:03:02:89:b4:99:a2:6b:9c:8c:c7:e6:7b:df:c6:fb:68:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62F71C75A752B45AE4B51A4E7010124979820A90 Validity Not Before: Apr 13 07:58:34 2026 GMT Not After : Apr 12 08:03:34 2027 GMT Subject: CN=237C276BEE2F56D183921944D07754D19E714064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d7:02:17:0b:33:8e:a4:92:61:8e:fd:a5:9d: 49:1f:3e:9b:0f:7f:a4:d8:f1:3d:d2:e9:d0:83:e0: 7c:9a:68:c7:be:19:57:6a:f2:58:93:c6:82:85:73: 8e:f1:08:85:bd:47:bd:6a:04:4d:82:2e:6d:36:00: bd:7b:7a:33:39:de:09:86:00:91:6f:a9:09:84:8a: c4:ea:41:78:fc:b0:ec:67:b1:e7:6c:bd:c3:0d:e4: 81:62:2c:b6:3e:bf:ae:46:ca:d4:9b:3f:ec:9a:45: 42:48:d6:04:58:8a:1a:f7:c6:2c:35:ef:60:e0:10: 3b:32:b3:5b:c1:9b:91:50:08:a8:79:3d:1f:e1:0f: 03:68:3f:09:85:59:3d:a9:db:36:b3:0b:cf:9f:6d: dc:e9:be:e7:9c:83:b9:6c:87:9b:1b:ae:db:a8:bf: 0d:2e:d7:27:ec:d0:6e:77:dc:16:75:de:26:1c:61: 4e:6f:c2:bd:85:56:6b:89:46:89:a6:d6:f6:9c:b8: e1:ee:c6:e6:89:d1:13:77:9d:ef:3f:19:f3:f4:85: 3a:6c:c3:c1:99:54:e7:65:72:cd:28:e5:42:e0:61: 41:30:1f:aa:2a:f2:1a:d8:38:bb:18:17:31:6d:cb: 9a:b6:e6:bf:27:f0:53:bb:a1:60:8c:f5:bd:f5:f8: 2f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7C:27:6B:EE:2F:56:D1:83:92:19:44:D0:77:54:D1:9E:71:40:64 X509v3 Authority Key Identifier: keyid:62:F7:1C:75:A7:52:B4:5A:E4:B5:1A:4E:70:10:12:49:79:82:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/62F71C75A752B45AE4B51A4E7010124979820A90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.192.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:4f:c1:b4:b8:d2:ed:38:00:26:06:39:35:78:dd:0a:71:e5: c4:81:ca:a9:1c:3e:0d:ff:da:eb:ca:6f:0f:42:aa:d6:e9:b2: a0:b1:0a:8c:66:d8:2f:eb:33:fe:c6:3e:1e:7c:c4:7a:1a:eb: 3b:26:5e:06:54:2b:3f:cf:22:f9:e7:0e:90:d5:09:33:0c:c8: 7e:e0:a7:33:25:65:70:a5:cd:27:d7:cb:49:10:c6:8e:eb:3f: 1a:94:68:7d:ae:1e:63:fe:d5:80:8b:f3:9e:ed:29:10:ce:26: 18:1c:e3:a6:c7:89:b7:74:f5:64:61:c3:81:56:5f:74:22:7a: d0:8f:8e:75:40:e1:80:10:71:51:34:41:3a:66:d5:90:07:22: 92:9d:12:fd:75:ad:05:03:a3:cd:53:57:91:3b:fc:d1:fe:cf: 06:7f:61:4d:10:5c:c0:16:17:53:06:f1:dc:49:54:0c:97:8b: 80:08:1f:03:c8:3a:f5:7f:0a:e9:11:4f:a2:e9:ba:4f:e3:de: fe:9d:43:96:9f:65:e3:36:24:fd:1a:28:1e:0f:a1:f6:63:eb: b2:c1:36:dd:a2:16:22:26:19:ad:e4:30:b3:10:19:2c:fa:9a: c6:ab:0e:19:48:54:10:ca:dc:78:88:95:31:9d:3b:2a:b2:06: 57:b4:60:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaNmpAwKJtJmia5yMx+Z738b7aPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJGNzFDNzVBNzUyQjQ1QUU0QjUxQTRFNzAxMDEyNDk3 OTgyMEE5MDAeFw0yNjA0MTMwNzU4MzRaFw0yNzA0MTIwODAzMzRaMDMxMTAvBgNV BAMTKDIzN0MyNzZCRUUyRjU2RDE4MzkyMTk0NEQwNzc1NEQxOUU3MTQwNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy1wIXCzOOpJJhjv2lnUkfPpsP f6TY8T3S6dCD4HyaaMe+GVdq8liTxoKFc47xCIW9R71qBE2CLm02AL17ejM53gmG AJFvqQmEisTqQXj8sOxnsedsvcMN5IFiLLY+v65GytSbP+yaRUJI1gRYihr3xiw1 72DgEDsys1vBm5FQCKh5PR/hDwNoPwmFWT2p2zazC8+fbdzpvuecg7lsh5sbrtuo vw0u1yfs0G533BZ13iYcYU5vwr2FVmuJRomm1vacuOHuxuaJ0RN3ne8/GfP0hTps w8GZVOdlcs0o5ULgYUEwH6oq8hrYOLsYFzFty5q25r8n8FO7oWCM9b31+C+fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI3wna+4vVtGDkhlE0HdU0Z5xQGQwHwYDVR0j BBgwFoAUYvccdadStFrktRpOcBASSXmCCpAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZGUyZDA5MC00NzY2LTQ3NWMtOWNlZi03YmViNTg1Y2YyNDEvMC82MkY3MUM3NUE3 NTJCNDVBRTRCNTFBNEU3MDEwMTI0OTc5ODIwQTkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjJGNzFDNzVBNzUyQjQ1QUU0QjUxQTRFNzAxMDEyNDk3OTgy MEE5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkwLTQ3NjYtNDc1Yy05 Y2VmLTdiZWI1ODVjZjI0MS8wLzMxMzUzNzJlMzYzNjJlMzEzOTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnULAMA0GCSqG SIb3DQEBCwUAA4IBAQCOT8G0uNLtOAAmBjk1eN0KceXEgcqpHD4N/9rrym8PQqrW 6bKgsQqMZtgv6zP+xj4efMR6Gus7Jl4GVCs/zyL55w6Q1QkzDMh+4KczJWVwpc0n 18tJEMaO6z8alGh9rh5j/tWAi/Oe7SkQziYYHOOmx4m3dPVkYcOBVl90InrQj451 QOGAEHFRNEE6ZtWQByKSnRL9da0FA6PNU1eRO/zR/s8Gf2FNEFzAFhdTBvHcSVQM l4uACB8DyDr1fwrpEU+i6bpP497+nUOWn2XjNiT9GigeD6H2Y+uywTbdohYiJhmt 5DCzEBks+prGqw4ZSFQQytx4iJUxnTsqsgZXtGBw -----END CERTIFICATE-----Generated at Fri Apr 17 19:13:41 2026 by rpki-client