$ rpki-client -vvf repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa File: 3135372e31352e38322e302f32332d3233203d3e20313532333633.roa (raw, json) Hash identifier: tjCEDGhTf9wmSOKlBozB/Eo2tA4qOdCJKD0rSKbbsgo= Subject key identifier: F7:CE:B9:E2:7E:30:FC:07:F5:DE:EE:99:CC:C7:39:33:08:38:26:88 Certificate issuer: /CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Certificate serial: 1A45964B810568D8175084C32FF66F5C348C8BA7 Authority key identifier: FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa Signing time: Thu 02 Apr 2026 16:00:05 +0000 ROA not before: Thu 02 Apr 2026 15:55:05 +0000 ROA not after: Thu 01 Apr 2027 16:00:05 +0000 asID: 152363 IP address blocks: 157.15.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:45:96:4b:81:05:68:d8:17:50:84:c3:2f:f6:6f:5c:34:8c:8b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8 Validity Not Before: Apr 2 15:55:05 2026 GMT Not After : Apr 1 16:00:05 2027 GMT Subject: CN=F7CEB9E27E30FC07F5DEEE99CCC7393308382688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f1:8a:c7:19:f6:03:92:39:c8:2c:ba:9c:66: b2:96:94:71:2a:d5:8d:ef:65:2b:c0:6a:32:21:64: 65:89:c1:31:a6:b0:84:8e:71:cc:c4:4b:8c:dc:68: 20:20:0f:d1:0c:5d:9f:07:8d:1e:8b:23:83:3c:15: 3a:17:07:d9:ea:00:7d:be:dc:b7:2f:06:72:eb:1d: 82:6a:83:a6:01:26:35:90:b3:ab:37:9f:78:78:c3: df:5f:47:23:2c:0b:60:5a:e3:62:95:cf:5f:1a:b4: ac:8a:f1:a3:34:3e:4a:be:c9:6b:8d:04:3b:91:b9: cc:e0:c9:7f:3f:60:2e:fe:f2:1a:4a:57:c2:fc:29: d8:f1:e2:a2:ae:36:98:3d:a1:32:5c:2c:b3:b5:59: da:de:71:ca:72:96:27:af:45:6c:a7:43:31:1c:92: 84:f3:7c:a5:10:0b:d8:30:f3:bc:58:9a:e7:68:ec: b4:4f:8d:a3:2a:66:82:53:05:31:1e:b6:89:42:8e: 1f:69:7c:8d:53:38:df:8b:e1:63:06:a2:2c:9b:da: 9c:d2:b1:0d:77:9f:4d:af:46:1b:d9:7c:79:22:76: 33:47:65:78:c7:d4:c2:89:63:17:f7:2f:92:78:57: 68:05:40:2b:00:55:34:94:13:f4:f9:f8:61:ea:b0: 7d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:CE:B9:E2:7E:30:FC:07:F5:DE:EE:99:CC:C7:39:33:08:38:26:88 X509v3 Authority Key Identifier: keyid:FF:3F:06:6A:5E:9A:B8:F9:88:B8:E1:7C:7A:56:DD:2E:00:A6:6A:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FF3F066A5E9AB8F988B8E17C7A56DD2E00A66AD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/3135372e31352e38322e302f32332d3233203d3e20313532333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.82.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:e0:9d:16:2b:11:01:85:7c:91:0b:e3:9e:9e:ec:19:b5:36: 4a:48:d7:82:ae:91:f2:ed:94:08:41:61:e4:7c:53:78:5b:bd: 6f:71:0a:e9:41:26:34:c2:71:82:42:5e:a4:c9:97:2a:7e:49: 32:8d:8b:7d:30:b9:4a:73:06:e8:09:23:3b:f1:fa:0f:ce:85: 84:e3:4b:fe:76:e0:cd:d9:bc:f1:24:ea:63:16:00:3d:5a:64: 7f:dd:6e:28:58:f7:65:95:96:c5:93:b1:5d:a3:41:7a:92:83: 2c:f2:44:0c:2c:8a:28:fc:e5:09:1f:54:7e:ae:8c:0c:36:4a: 71:6f:af:cb:1d:07:e8:e6:8c:e7:69:35:05:3e:f5:a9:62:4f: 79:5b:1b:dc:c8:32:6a:86:11:17:b0:c2:d5:da:38:5e:a8:20: 68:b0:21:84:38:df:9e:c3:52:98:e1:75:52:da:0a:44:08:a5: 82:17:f8:aa:09:a2:ad:8e:b6:20:26:f4:58:54:47:d1:0d:ae: fa:7c:32:ea:b4:a3:2b:16:80:a3:94:52:1d:11:30:88:3b:ee: 94:95:9d:a9:d8:ac:06:0e:f2:17:77:c3:6b:99:78:42:5d:47: f7:74:53:27:c5:e7:3b:a9:d1:e3:7e:0b:5f:07:4c:92:83:68: fd:2c:8c:b9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGkWWS4EFaNgXUITDL/ZvXDSMi6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUw MEE2NkFEODAeFw0yNjA0MDIxNTU1MDVaFw0yNzA0MDExNjAwMDVaMDMxMTAvBgNV BAMTKEY3Q0VCOUUyN0UzMEZDMDdGNURFRUU5OUNDQzczOTMzMDgzODI2ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC58YrHGfYDkjnILLqcZrKWlHEq 1Y3vZSvAajIhZGWJwTGmsISOcczES4zcaCAgD9EMXZ8HjR6LI4M8FToXB9nqAH2+ 3LcvBnLrHYJqg6YBJjWQs6s3n3h4w99fRyMsC2Ba42KVz18atKyK8aM0Pkq+yWuN BDuRuczgyX8/YC7+8hpKV8L8Kdjx4qKuNpg9oTJcLLO1WdreccpylievRWynQzEc koTzfKUQC9gw87xYmudo7LRPjaMqZoJTBTEetolCjh9pfI1TON+L4WMGoiyb2pzS sQ13n02vRhvZfHkidjNHZXjH1MKJYxf3L5J4V2gFQCsAVTSUE/T5+GHqsH0PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU98654n4w/Af13u6ZzMc5Mwg4JogwHwYDVR0j BBgwFoAU/z8Gal6auPmIuOF8elbdLgCmatgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZDAxMWExYy1hMGFkLTRkOTMtODZhZi0zZjBhYWRkOTY4NGYvMC9GRjNGMDY2QTVF OUFCOEY5ODhCOEUxN0M3QTU2REQyRTAwQTY2QUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkYzRjA2NkE1RTlBQjhGOTg4QjhFMTdDN0E1NkREMkUwMEE2 NkFEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkMDExYTFjLWEwYWQtNGQ5My04 NmFmLTNmMGFhZGQ5Njg0Zi8wLzMxMzUzNzJlMzEzNTJlMzgzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PUjANBgkqhkiG 9w0BAQsFAAOCAQEAbuCdFisRAYV8kQvjnp7sGbU2SkjXgq6R8u2UCEFh5HxTeFu9 b3EK6UEmNMJxgkJepMmXKn5JMo2LfTC5SnMG6AkjO/H6D86FhONL/nbgzdm88STq YxYAPVpkf91uKFj3ZZWWxZOxXaNBepKDLPJEDCyKKPzlCR9Ufq6MDDZKcW+vyx0H 6OaM52k1BT71qWJPeVsb3MgyaoYRF7DC1do4XqggaLAhhDjfnsNSmOF1UtoKRAil ghf4qgmirY62ICb0WFRH0Q2u+nwy6rSjKxaAo5RSHREwiDvulJWdqdisBg7yF3fD a5l4Ql1H93RTJ8XnO6nR434LXwdMkoNo/SyMuQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:12:41 2026 by rpki-client