$ rpki-client -vvf repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa File: 3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa (raw, json) Hash identifier: aIHodB1nz1DhifH6iuPw3Hsr0XqaD481RG1+0C9lrxQ= Subject key identifier: 73:87:79:29:1C:FA:2E:FC:91:A5:E5:57:77:93:8D:B2:70:B7:C6:38 Certificate issuer: /CN=41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4 Certificate serial: 09E58F489CDD6F84F3E36600B52EE35F6E10BD49 Authority key identifier: 41:A4:79:AD:6B:97:4B:50:B9:9A:0D:FC:BE:24:FF:8A:AC:44:18:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa Signing time: Thu 22 Jan 2026 15:00:01 +0000 ROA not before: Thu 22 Jan 2026 14:55:01 +0000 ROA not after: Thu 21 Jan 2027 15:00:01 +0000 asID: 152426 IP address blocks: 157.20.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.crl rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 03:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e5:8f:48:9c:dd:6f:84:f3:e3:66:00:b5:2e:e3:5f:6e:10:bd:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4 Validity Not Before: Jan 22 14:55:01 2026 GMT Not After : Jan 21 15:00:01 2027 GMT Subject: CN=738779291CFA2EFC91A5E55777938DB270B7C638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1f:fc:d6:93:74:06:21:b9:24:0f:06:f0:c0: bb:83:99:a1:d8:07:10:29:05:c2:b2:2a:59:56:c8: a6:b8:02:23:6c:57:02:1a:f2:5c:e3:24:78:2a:4d: 3e:ee:b2:b5:61:ac:e2:18:1f:38:87:f3:6d:22:05: 4b:0f:54:d1:a8:33:d1:68:4f:00:0f:2f:f0:f2:20: 69:2a:c4:ce:fc:cc:31:ed:55:96:3e:65:0a:40:f3: 11:bd:fe:95:71:0f:40:00:ff:e1:de:bc:c1:57:a8: 03:de:08:cb:9c:d4:43:ab:70:00:59:55:b0:d1:09: 37:cd:d6:14:e2:ee:2c:52:f4:c5:48:96:d3:ae:12: bb:8f:27:28:19:6a:4f:ca:2d:37:0b:1b:47:8e:4c: 28:a6:7a:77:e8:81:df:d7:b3:bf:62:10:fe:98:0f: d6:f1:01:6c:e7:84:3a:91:0b:da:82:8e:cd:27:e0: 2e:25:fb:f7:b6:c2:ae:71:c4:ca:08:2f:b5:c1:af: a0:08:56:dd:09:3b:27:35:2a:12:41:8d:00:1f:5a: a7:fa:61:5b:93:8f:d5:0c:68:7b:1c:e3:3a:5a:d1: 2c:5b:18:2d:08:39:f6:68:ca:5e:b1:c3:97:58:b1: 4a:c7:a7:20:c8:49:4c:c7:b6:37:07:7a:2d:09:f4: 98:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:87:79:29:1C:FA:2E:FC:91:A5:E5:57:77:93:8D:B2:70:B7:C6:38 X509v3 Authority Key Identifier: keyid:41:A4:79:AD:6B:97:4B:50:B9:9A:0D:FC:BE:24:FF:8A:AC:44:18:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32332d3233203d3e20313532343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.220.0/23 Signature Algorithm: sha256WithRSAEncryption 21:00:7b:44:31:ba:b1:30:77:40:6e:3e:72:59:45:49:c2:18: 66:98:94:ab:0a:b9:98:0f:05:c9:a4:92:ec:9c:f6:c3:45:22: 67:13:49:e8:c3:ba:eb:bc:b2:39:25:2b:49:05:b5:b2:76:62: 71:83:2e:6e:ef:f7:ba:1e:85:9d:c7:bd:d4:e4:08:20:98:b6: 9a:23:02:1b:fe:09:1b:c9:20:72:8d:74:6b:2f:61:0b:39:cf: 92:84:a1:13:82:2c:cf:29:e1:ad:9e:6d:a4:ee:39:99:82:84: c1:6e:8a:2f:c0:36:00:1c:76:4a:96:55:c6:fd:b0:c8:9b:8d: 3f:f8:7e:6f:75:50:e0:e3:e2:c8:f9:b8:a8:e0:8d:76:fd:77: 79:a7:0f:07:05:b1:af:e0:aa:2b:0a:1b:04:5e:ef:91:d2:8e: 4c:f8:39:79:7c:63:b4:7d:79:3e:4a:7a:ee:33:e0:68:1c:8d: 3c:f6:cd:d2:85:ef:f3:2b:da:d3:f4:67:b9:a9:22:6a:57:20: 01:f4:88:0c:26:fe:08:3d:84:f3:7e:d1:3d:1c:6c:c2:7a:5a: d8:0c:8b:a4:bd:b9:36:62:75:23:dc:51:fb:e5:90:42:88:76: de:48:2f:67:27:16:9b:84:9b:48:14:14:77:3b:f7:a8:0a:74: 21:67:16:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCeWPSJzdb4Tz42YAtS7jX24QvUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFBNDc5QUQ2Qjk3NEI1MEI5OUEwREZDQkUyNEZGOEFB QzQ0MThENDAeFw0yNjAxMjIxNDU1MDFaFw0yNzAxMjExNTAwMDFaMDMxMTAvBgNV BAMTKDczODc3OTI5MUNGQTJFRkM5MUE1RTU1Nzc3OTM4REIyNzBCN0M2MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaH/zWk3QGIbkkDwbwwLuDmaHY BxApBcKyKllWyKa4AiNsVwIa8lzjJHgqTT7usrVhrOIYHziH820iBUsPVNGoM9Fo TwAPL/DyIGkqxM78zDHtVZY+ZQpA8xG9/pVxD0AA/+HevMFXqAPeCMuc1EOrcABZ VbDRCTfN1hTi7ixS9MVIltOuEruPJygZak/KLTcLG0eOTCimenfogd/Xs79iEP6Y D9bxAWznhDqRC9qCjs0n4C4l+/e2wq5xxMoIL7XBr6AIVt0JOyc1KhJBjQAfWqf6 YVuTj9UMaHsc4zpa0SxbGC0IOfZoyl6xw5dYsUrHpyDISUzHtjcHei0J9JgLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc4d5KRz6LvyRpeVXd5ONsnC3xjgwHwYDVR0j BBgwFoAUQaR5rWuXS1C5mg38viT/iqxEGNQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWRkNGNjYi00MmUzLTRiNzItOTE5My1lOTE4ZTdiMzA2N2QvMC80MUE0NzlBRDZC OTc0QjUwQjk5QTBERkNCRTI0RkY4QUFDNDQxOEQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDFBNDc5QUQ2Qjk3NEI1MEI5OUEwREZDQkUyNEZGOEFBQzQ0 MThENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlZGQ0Y2NiLTQyZTMtNGI3Mi05 MTkzLWU5MThlN2IzMDY3ZC8wLzMxMzUzNzJlMzIzMDJlMzIzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTcMA0GCSqG SIb3DQEBCwUAA4IBAQAhAHtEMbqxMHdAbj5yWUVJwhhmmJSrCrmYDwXJpJLsnPbD RSJnE0now7rrvLI5JStJBbWydmJxgy5u7/e6HoWdx73U5AggmLaaIwIb/gkbySBy jXRrL2ELOc+ShKETgizPKeGtnm2k7jmZgoTBboovwDYAHHZKllXG/bDIm40/+H5v dVDg4+LI+bio4I12/Xd5pw8HBbGv4KorChsEXu+R0o5M+Dl5fGO0fXk+SnruM+Bo HI089s3She/zK9rT9Ge5qSJqVyAB9IgMJv4IPYTzftE9HGzCelrYDIukvbk2YnUj 3FH75ZBCiHbeSC9nJxabhJtIFBR3O/eoCnQhZxbD -----END CERTIFICATE-----Generated at Mon Mar 2 03:26:59 2026 by rpki-client