$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa File: 3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa (raw, json) Hash identifier: MiCuVN4SxcxFJUJwH2xFaeavryVuebxNjnAGwlD3h5w= Subject key identifier: 16:78:97:CA:F2:E4:29:04:BC:EC:17:F1:92:71:8D:26:92:75:C4:43 Certificate issuer: /CN=FC4AE05C1547B778063F91C4687D12E8D6978309 Certificate serial: 3782E5EF6686DB84DB35A8B43DBA5284DD90AA5C Authority key identifier: FC:4A:E0:5C:15:47:B7:78:06:3F:91:C4:68:7D:12:E8:D6:97:83:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC4AE05C1547B778063F91C4687D12E8D6978309.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa Signing time: Mon 02 Mar 2026 09:00:02 +0000 ROA not before: Mon 02 Mar 2026 08:55:02 +0000 ROA not after: Mon 01 Mar 2027 09:00:02 +0000 asID: 152431 IP address blocks: 157.20.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/FC4AE05C1547B778063F91C4687D12E8D6978309.crl rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/FC4AE05C1547B778063F91C4687D12E8D6978309.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC4AE05C1547B778063F91C4687D12E8D6978309.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 18:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:82:e5:ef:66:86:db:84:db:35:a8:b4:3d:ba:52:84:dd:90:aa:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4AE05C1547B778063F91C4687D12E8D6978309 Validity Not Before: Mar 2 08:55:02 2026 GMT Not After : Mar 1 09:00:02 2027 GMT Subject: CN=167897CAF2E42904BCEC17F192718D269275C443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:23:c3:42:fa:6d:f4:9e:e5:ed:5f:84:93:89: 7e:77:70:ae:be:13:48:d0:81:fe:20:65:23:3c:ae: 33:f9:17:b0:f3:22:87:f7:3b:55:3e:f6:51:1d:2e: 0a:5d:64:21:de:82:98:28:bb:91:01:f6:91:9a:6d: 16:e2:2c:57:b7:2b:14:6a:47:2a:5e:ac:b7:42:dd: da:d9:12:fd:f7:28:4a:de:f1:19:ad:4b:4b:57:78: 93:be:29:04:0f:9d:c1:a7:f0:ae:ff:41:89:11:d6: 1b:eb:6b:8e:25:14:d2:58:cd:bd:88:6d:22:cd:a7: c3:ba:2e:75:18:40:c6:40:f4:9c:b1:dd:75:93:21: c2:e2:93:57:05:a9:44:9a:28:53:7c:92:7b:56:59: 2a:a6:ef:38:ea:b6:33:60:ba:2e:9a:5e:b6:30:30: a0:3c:35:ba:80:e6:aa:18:16:93:77:9c:87:28:c6: 6e:d0:82:bd:f9:c4:86:c0:44:d5:c7:9c:c2:bb:a5: a3:5b:c1:6b:a7:8d:71:04:1c:c6:e6:de:03:4a:c5: 06:ef:bb:57:18:3e:93:df:89:7c:1c:83:40:71:a1: cd:a4:35:91:63:36:97:63:c9:0b:15:fe:b0:4b:16: dd:2b:33:65:7e:01:fc:b6:f1:fc:c0:cc:09:96:15: 52:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:78:97:CA:F2:E4:29:04:BC:EC:17:F1:92:71:8D:26:92:75:C4:43 X509v3 Authority Key Identifier: keyid:FC:4A:E0:5C:15:47:B7:78:06:3F:91:C4:68:7D:12:E8:D6:97:83:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/FC4AE05C1547B778063F91C4687D12E8D6978309.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC4AE05C1547B778063F91C4687D12E8D6978309.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.230.0/23 Signature Algorithm: sha256WithRSAEncryption a1:57:84:d8:43:b4:20:7d:24:b7:a6:e5:be:1e:ce:b0:a7:23: 1a:f7:5c:c6:7a:26:9c:72:17:a9:a5:7e:e3:6e:f6:3e:2c:6b: 86:56:78:5d:69:8a:78:d6:90:ea:51:df:dd:5f:56:e8:e2:81: 78:a3:19:50:c6:de:28:e0:06:08:f3:82:4f:31:f8:61:5a:ef: d8:5a:1b:f8:8c:15:01:dc:35:e2:36:6e:0d:cb:56:9b:d7:28: d0:26:e9:ed:fe:61:b1:3d:50:96:09:0b:61:fa:60:b1:04:55: c8:e4:c7:5c:a0:56:4e:ce:59:b1:2c:57:f7:15:db:8f:dc:a2: 2f:f3:69:86:45:9d:ee:cf:47:ae:5a:8b:42:82:18:8c:a3:7f: aa:ec:e2:b0:cf:3c:ef:68:48:ec:b0:f4:38:b6:fc:08:55:20: 65:52:d1:ac:fa:b2:91:24:e6:a4:a7:1b:d5:f1:84:36:e9:42: b3:33:27:a0:e5:96:6e:e2:32:2f:8e:1a:24:be:ad:ae:1c:ff: ec:37:15:a3:aa:ef:3f:5e:0b:bb:9f:e5:9e:ff:d6:02:61:77: 9c:fa:b4:59:57:59:71:47:de:0f:a2:4e:bb:a4:cc:2b:ac:9c: a9:92:f5:55:2b:53:f4:81:6f:07:0f:f7:69:cf:3b:79:00:50: 52:a0:68:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN4Ll72aG24TbNai0PbpShN2QqlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM0QUUwNUMxNTQ3Qjc3ODA2M0Y5MUM0Njg3RDEyRThE Njk3ODMwOTAeFw0yNjAzMDIwODU1MDJaFw0yNzAzMDEwOTAwMDJaMDMxMTAvBgNV BAMTKDE2Nzg5N0NBRjJFNDI5MDRCQ0VDMTdGMTkyNzE4RDI2OTI3NUM0NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4I8NC+m30nuXtX4STiX53cK6+ E0jQgf4gZSM8rjP5F7DzIof3O1U+9lEdLgpdZCHegpgou5EB9pGabRbiLFe3KxRq RyperLdC3drZEv33KEre8RmtS0tXeJO+KQQPncGn8K7/QYkR1hvra44lFNJYzb2I bSLNp8O6LnUYQMZA9Jyx3XWTIcLik1cFqUSaKFN8kntWWSqm7zjqtjNgui6aXrYw MKA8NbqA5qoYFpN3nIcoxm7Qgr35xIbARNXHnMK7paNbwWunjXEEHMbm3gNKxQbv u1cYPpPfiXwcg0Bxoc2kNZFjNpdjyQsV/rBLFt0rM2V+Afy28fzAzAmWFVIjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFniXyvLkKQS87BfxknGNJpJ1xEMwHwYDVR0j BBgwFoAU/ErgXBVHt3gGP5HEaH0S6NaXgwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YwYTc3Yy0zOTI4LTQxMzAtYTA5OC1iNDM3NTcyZDcyMmMvMC9GQzRBRTA1QzE1 NDdCNzc4MDYzRjkxQzQ2ODdEMTJFOEQ2OTc4MzA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkM0QUUwNUMxNTQ3Qjc3ODA2M0Y5MUM0Njg3RDEyRThENjk3 ODMwOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZjBhNzdjLTM5MjgtNDEzMC1h MDk4LWI0Mzc1NzJkNzIyYy8wLzMxMzUzNzJlMzIzMDJlMzIzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTmMA0GCSqG SIb3DQEBCwUAA4IBAQChV4TYQ7QgfSS3puW+Hs6wpyMa91zGeiaccheppX7jbvY+ LGuGVnhdaYp41pDqUd/dX1bo4oF4oxlQxt4o4AYI84JPMfhhWu/YWhv4jBUB3DXi Nm4Ny1ab1yjQJunt/mGxPVCWCQth+mCxBFXI5MdcoFZOzlmxLFf3FduP3KIv82mG RZ3uz0euWotCghiMo3+q7OKwzzzvaEjssPQ4tvwIVSBlUtGs+rKRJOakpxvV8YQ2 6UKzMyeg5ZZu4jIvjhokvq2uHP/sNxWjqu8/Xgu7n+We/9YCYXec+rRZV1lxR94P ok67pMwrrJypkvVVK1P0gW8HD/dpzzt5AFBSoGjo -----END CERTIFICATE-----Generated at Mon Mar 2 23:10:11 2026 by rpki-client