$ rpki-client -vvf repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa File: 3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa (raw, json) Hash identifier: JrpOhdiy+mBFESSL7rD9ukXYen5fXGnMpvaEHRT8ihU= Subject key identifier: 0F:0A:59:82:94:34:33:13:2F:F3:2E:FE:AC:03:6D:79:26:F6:41:39 Certificate issuer: /CN=41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4 Certificate serial: 6A00FA819D5B9EEDE7CB27386AA32DBB7A10CF6C Authority key identifier: 41:A4:79:AD:6B:97:4B:50:B9:9A:0D:FC:BE:24:FF:8A:AC:44:18:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa Signing time: Thu 22 Jan 2026 15:00:01 +0000 ROA not before: Thu 22 Jan 2026 14:55:01 +0000 ROA not after: Thu 21 Jan 2027 15:00:01 +0000 asID: 152426 IP address blocks: 157.20.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.crl rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:00:fa:81:9d:5b:9e:ed:e7:cb:27:38:6a:a3:2d:bb:7a:10:cf:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4 Validity Not Before: Jan 22 14:55:01 2026 GMT Not After : Jan 21 15:00:01 2027 GMT Subject: CN=0F0A5982943433132FF32EFEAC036D7926F64139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fc:45:9b:49:62:df:fe:32:a4:aa:c2:3f:bd: 3b:b1:ad:08:37:a5:70:00:4f:a0:bf:e8:93:b5:32: de:c1:24:e4:5e:49:8b:f8:75:40:d2:3c:fe:20:12: 2b:cc:60:5a:1b:ad:a0:0d:6e:cf:5f:2c:dc:eb:d6: 9f:6a:a0:71:3b:c3:d7:02:11:41:4b:ed:94:f3:6d: 5e:79:63:aa:e1:b9:94:a0:1f:71:6b:f2:18:47:d0: 5e:64:46:b0:95:03:e1:72:21:02:e8:06:89:87:a5: ae:71:ce:cd:67:26:58:9a:a5:a1:97:5b:22:ee:19: 2b:3b:ac:95:98:7a:83:45:32:29:8b:d9:b0:8e:e2: a9:ef:bf:65:8e:89:24:bb:1c:62:d0:84:8d:8b:38: 7c:38:35:bc:85:8a:45:f5:bc:d3:16:9b:48:4c:c8: 74:27:cb:24:71:70:6c:7d:a5:ca:c0:db:8d:7f:86: a7:34:1e:1a:81:65:82:9a:0c:b9:f2:d0:5b:31:db: a7:67:6e:9a:cf:45:8e:2d:09:e4:af:eb:88:18:76: 2b:9c:4c:7f:89:be:92:d1:80:f6:5f:fe:18:9d:b6: f6:42:eb:f4:1e:08:20:06:28:d6:73:16:c0:58:b4: 61:fc:31:b5:1e:10:9b:8c:82:3c:81:f6:73:2c:06: a7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:0A:59:82:94:34:33:13:2F:F3:2E:FE:AC:03:6D:79:26:F6:41:39 X509v3 Authority Key Identifier: keyid:41:A4:79:AD:6B:97:4B:50:B9:9A:0D:FC:BE:24:FF:8A:AC:44:18:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/41A479AD6B974B50B99A0DFCBE24FF8AAC4418D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.221.0/24 Signature Algorithm: sha256WithRSAEncryption 62:09:bb:02:f4:92:f3:f0:8d:d2:49:38:1d:10:36:98:ef:0e: 91:9f:16:6a:99:1c:a7:1a:fd:9f:c5:2a:7c:8a:52:e7:b1:43: 01:c4:93:33:bc:31:5b:38:56:04:70:26:68:f3:b4:ee:cb:27: c1:7f:b2:99:65:68:9c:e1:70:e1:58:69:8b:1c:e7:22:10:22: 82:b8:6c:c7:b8:ca:19:84:a8:5f:e2:c7:92:31:ef:c0:94:c2: 13:54:a0:8c:1f:6e:04:55:f3:6a:5b:2a:e8:00:83:f3:b2:de: a8:2b:02:0a:fa:e8:7b:52:e0:11:ad:c3:54:1c:57:dc:55:36: c6:b1:6f:26:21:34:5c:2e:34:77:07:c3:4e:27:13:08:fe:9b: f5:48:b6:4c:7d:a6:5d:a6:ee:6e:03:61:c9:b9:e7:f2:b9:44: 62:d1:69:66:dc:8c:18:1a:a7:7d:b2:28:36:41:10:35:4f:c4: 7f:9e:f6:c5:f1:a4:12:90:8a:45:4e:8b:69:ad:8a:03:67:a5: ff:78:2e:fd:ec:f7:6f:7c:d1:0d:ea:bc:5c:c4:dd:1d:f8:4b: 68:78:3b:7e:de:6c:2b:80:27:04:d6:c1:f5:44:d1:b5:15:df: e8:b8:78:cd:81:70:69:d6:54:8f:94:b6:99:74:07:95:5a:19: 43:92:45:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUagD6gZ1bnu3nyyc4aqMtu3oQz2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFBNDc5QUQ2Qjk3NEI1MEI5OUEwREZDQkUyNEZGOEFB QzQ0MThENDAeFw0yNjAxMjIxNDU1MDFaFw0yNzAxMjExNTAwMDFaMDMxMTAvBgNV BAMTKDBGMEE1OTgyOTQzNDMzMTMyRkYzMkVGRUFDMDM2RDc5MjZGNjQxMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl/EWbSWLf/jKkqsI/vTuxrQg3 pXAAT6C/6JO1Mt7BJOReSYv4dUDSPP4gEivMYFobraANbs9fLNzr1p9qoHE7w9cC EUFL7ZTzbV55Y6rhuZSgH3Fr8hhH0F5kRrCVA+FyIQLoBomHpa5xzs1nJliapaGX WyLuGSs7rJWYeoNFMimL2bCO4qnvv2WOiSS7HGLQhI2LOHw4NbyFikX1vNMWm0hM yHQnyyRxcGx9pcrA241/hqc0HhqBZYKaDLny0Fsx26dnbprPRY4tCeSv64gYdiuc TH+JvpLRgPZf/hidtvZC6/QeCCAGKNZzFsBYtGH8MbUeEJuMgjyB9nMsBqeXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDwpZgpQ0MxMv8y7+rANteSb2QTkwHwYDVR0j BBgwFoAUQaR5rWuXS1C5mg38viT/iqxEGNQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWRkNGNjYi00MmUzLTRiNzItOTE5My1lOTE4ZTdiMzA2N2QvMC80MUE0NzlBRDZC OTc0QjUwQjk5QTBERkNCRTI0RkY4QUFDNDQxOEQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDFBNDc5QUQ2Qjk3NEI1MEI5OUEwREZDQkUyNEZGOEFBQzQ0 MThENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlZGQ0Y2NiLTQyZTMtNGI3Mi05 MTkzLWU5MThlN2IzMDY3ZC8wLzMxMzUzNzJlMzIzMDJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTdMA0GCSqG SIb3DQEBCwUAA4IBAQBiCbsC9JLz8I3SSTgdEDaY7w6RnxZqmRynGv2fxSp8ilLn sUMBxJMzvDFbOFYEcCZo87TuyyfBf7KZZWic4XDhWGmLHOciECKCuGzHuMoZhKhf 4seSMe/AlMITVKCMH24EVfNqWyroAIPzst6oKwIK+uh7UuARrcNUHFfcVTbGsW8m ITRcLjR3B8NOJxMI/pv1SLZMfaZdpu5uA2HJuefyuURi0Wlm3IwYGqd9sig2QRA1 T8R/nvbF8aQSkIpFTotprYoDZ6X/eC797PdvfNEN6rxcxN0d+EtoeDt+3mwrgCcE 1sH1RNG1Fd/ouHjNgXBp1lSPlLaZdAeVWhlDkkXR -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:29 2026 by rpki-client