$ rpki-client -vvf repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa File: 3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa (raw, json) Hash identifier: K+j/wv1b5Szhnh+2okk5Vxs9kLlA5xCgxCi5XaZj4vs= Subject key identifier: DB:0B:8A:7E:9A:0B:17:60:E0:2F:D2:62:2B:44:AE:22:20:60:2C:49 Certificate issuer: /CN=EC1B9BE63137230F6756E222019318C640EBE42E Certificate serial: 0F4D150CDE2DC1958A2B887DF543C43ED7BB6941 Authority key identifier: EC:1B:9B:E6:31:37:23:0F:67:56:E2:22:01:93:18:C6:40:EB:E4:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa Signing time: Tue 23 Dec 2025 02:00:00 +0000 ROA not before: Tue 23 Dec 2025 01:55:00 +0000 ROA not after: Tue 22 Dec 2026 02:00:00 +0000 asID: 152382 IP address blocks: 157.15.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.crl rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 19:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:4d:15:0c:de:2d:c1:95:8a:2b:88:7d:f5:43:c4:3e:d7:bb:69:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC1B9BE63137230F6756E222019318C640EBE42E Validity Not Before: Dec 23 01:55:00 2025 GMT Not After : Dec 22 02:00:00 2026 GMT Subject: CN=DB0B8A7E9A0B1760E02FD2622B44AE2220602C49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:89:a1:8a:b2:f1:d1:91:85:ae:84:2e:8c:61: fe:a3:b5:63:2d:18:8f:ba:51:5c:75:2a:3d:f0:4f: b7:3e:73:cd:90:0a:29:4f:7c:2e:e8:68:5e:6e:65: b9:9b:94:55:52:a7:4e:8d:06:a2:5e:e6:59:5d:9d: 35:8a:04:87:86:3c:94:46:af:13:50:32:2f:08:e5: 7e:25:f5:fb:04:86:8c:87:c8:68:f7:13:d0:00:00: 77:c5:eb:91:3f:b8:67:91:a6:86:56:b4:91:69:5d: f4:96:c5:4c:a5:bb:1e:f2:f8:cf:7f:40:46:19:50: e6:60:64:ea:e2:1e:af:de:b7:7a:50:cf:ed:43:08: 2e:26:a3:41:75:e9:c0:e6:f9:58:24:05:45:06:a6: e2:0e:e3:32:ba:6a:13:19:d9:c3:81:1f:5f:f0:44: b5:b6:f9:50:96:c3:ff:09:7f:67:c3:12:a4:4f:d8: d7:83:3a:d8:89:bd:ab:81:58:8f:dd:3a:04:af:ce: 0b:4c:32:38:3d:db:9b:a1:32:c8:82:6a:51:a2:62: 61:62:f4:94:46:65:6e:7a:01:9e:c1:16:87:a3:ee: 77:8a:c3:c2:23:f5:37:41:7b:73:6d:8e:bc:85:cb: 22:3f:c0:d8:76:08:6e:ae:23:5e:93:53:a2:0a:e7: ad:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:0B:8A:7E:9A:0B:17:60:E0:2F:D2:62:2B:44:AE:22:20:60:2C:49 X509v3 Authority Key Identifier: keyid:EC:1B:9B:E6:31:37:23:0F:67:56:E2:22:01:93:18:C6:40:EB:E4:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/EC1B9BE63137230F6756E222019318C640EBE42E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EC1B9BE63137230F6756E222019318C640EBE42E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.166.0/24 Signature Algorithm: sha256WithRSAEncryption bd:f9:f5:e9:41:50:68:0a:fd:83:ed:a4:7f:e3:87:01:3f:43: 25:b9:be:40:73:29:15:c8:3d:cc:7d:d5:9c:8e:ee:0e:f9:36: 60:91:3c:da:e9:ba:8a:32:12:ea:21:cf:e3:47:4b:21:1b:80: e9:21:91:b5:20:54:3f:4b:42:22:1c:45:c8:5b:f5:6a:ac:8d: e8:35:f1:03:e2:f7:b8:91:bf:e7:10:e3:d5:e3:3c:1f:6d:be: 29:9a:11:9f:38:f5:6e:7f:2b:0a:9b:b2:37:29:76:9f:bd:44: 71:d5:91:e5:42:05:27:3c:2d:40:0c:f7:67:c7:6e:74:8b:7c: 75:ae:ab:8d:12:a4:0d:57:b3:e1:0e:46:80:11:dd:55:55:d7: 71:f0:52:e0:69:34:4a:f6:00:40:76:5d:96:f9:12:5e:cf:8d: 57:d6:d6:96:1f:db:c6:1d:44:1f:83:f8:2a:ed:5d:49:3f:85: 08:4e:ab:12:20:d4:67:5f:f5:ca:6b:19:da:36:b9:7d:bd:ea: 10:27:66:d9:2d:e2:a9:5b:a1:7a:6a:28:0e:08:1d:63:4f:8e: 51:5a:a1:e9:ce:c5:d1:01:41:c8:80:01:1f:f7:84:a2:9e:88: 5f:5e:ba:1a:9e:61:be:08:4a:4b:6a:1a:cf:a3:85:88:c9:08: 8e:fe:5c:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD00VDN4twZWKK4h99UPEPte7aUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUMxQjlCRTYzMTM3MjMwRjY3NTZFMjIyMDE5MzE4QzY0 MEVCRTQyRTAeFw0yNTEyMjMwMTU1MDBaFw0yNjEyMjIwMjAwMDBaMDMxMTAvBgNV BAMTKERCMEI4QTdFOUEwQjE3NjBFMDJGRDI2MjJCNDRBRTIyMjA2MDJDNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYiaGKsvHRkYWuhC6MYf6jtWMt GI+6UVx1Kj3wT7c+c82QCilPfC7oaF5uZbmblFVSp06NBqJe5lldnTWKBIeGPJRG rxNQMi8I5X4l9fsEhoyHyGj3E9AAAHfF65E/uGeRpoZWtJFpXfSWxUylux7y+M9/ QEYZUOZgZOriHq/et3pQz+1DCC4mo0F16cDm+VgkBUUGpuIO4zK6ahMZ2cOBH1/w RLW2+VCWw/8Jf2fDEqRP2NeDOtiJvauBWI/dOgSvzgtMMjg925uhMsiCalGiYmFi 9JRGZW56AZ7BFoej7neKw8Ij9TdBe3NtjryFyyI/wNh2CG6uI16TU6IK560vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2wuKfpoLF2DgL9JiK0SuIiBgLEkwHwYDVR0j BBgwFoAU7Bub5jE3Iw9nVuIiAZMYxkDr5C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTNhYzY2Ny00ZDllLTQ4ZDctYWZkNi04MmU5OGZhNzZjMWUvMC9FQzFCOUJFNjMx MzcyMzBGNjc1NkUyMjIwMTkzMThDNjQwRUJFNDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUMxQjlCRTYzMTM3MjMwRjY3NTZFMjIyMDE5MzE4QzY0MEVC RTQyRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1M2FjNjY3LTRkOWUtNDhkNy1h ZmQ2LTgyZTk4ZmE3NmMxZS8wLzMxMzUzNzJlMzEzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+mMA0GCSqG SIb3DQEBCwUAA4IBAQC9+fXpQVBoCv2D7aR/44cBP0Mlub5AcykVyD3MfdWcju4O +TZgkTza6bqKMhLqIc/jR0shG4DpIZG1IFQ/S0IiHEXIW/VqrI3oNfED4ve4kb/n EOPV4zwfbb4pmhGfOPVufysKm7I3KXafvURx1ZHlQgUnPC1ADPdnx250i3x1rquN EqQNV7PhDkaAEd1VVddx8FLgaTRK9gBAdl2W+RJez41X1taWH9vGHUQfg/gq7V1J P4UITqsSINRnX/XKaxnaNrl9veoQJ2bZLeKpW6F6aigOCB1jT45RWqHpzsXRAUHI gAEf94SinohfXroanmG+CEpLahrPo4WIyQiO/lxX -----END CERTIFICATE-----Generated at Mon Mar 2 22:35:14 2026 by rpki-client