$ rpki-client -vvf repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa File: 3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa (raw, json) Hash identifier: XPXFi+CrXb0szqqz/lxrVfC4rUp40i81Qh+YMvkij4E= Subject key identifier: 7B:28:33:83:9B:E5:D6:DE:C2:7D:84:9A:24:0C:89:DD:A0:BB:59:50 Certificate issuer: /CN=394BCC5C0310DB0117DDC1DC1A176026DB421D88 Certificate serial: 43E8FC7D3674123F378FBE8637AC9A38F09F76F7 Authority key identifier: 39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer Subject info access: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa Signing time: Sat 11 Apr 2026 15:00:00 +0000 ROA not before: Sat 11 Apr 2026 14:55:00 +0000 ROA not after: Sat 10 Apr 2027 15:00:00 +0000 asID: 152753 IP address blocks: 157.66.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.crl rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 03:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e8:fc:7d:36:74:12:3f:37:8f:be:86:37:ac:9a:38:f0:9f:76:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=394BCC5C0310DB0117DDC1DC1A176026DB421D88 Validity Not Before: Apr 11 14:55:00 2026 GMT Not After : Apr 10 15:00:00 2027 GMT Subject: CN=7B2833839BE5D6DEC27D849A240C89DDA0BB5950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:71:ef:43:23:56:00:24:8b:32:9e:98:f1:04: 34:52:43:3d:07:c9:3c:7f:5c:d7:4b:d8:9b:82:60: 25:3a:5d:97:05:bd:58:e9:83:62:9d:0c:b7:dc:a4: e5:5e:80:29:7b:62:49:01:c0:88:d6:1d:2f:c3:dd: ba:cc:a6:e4:3e:7d:e1:66:4f:f4:8e:6a:7d:e0:cc: 85:c1:75:bd:9c:17:f5:a3:96:f1:e2:f7:5c:ba:c2: c8:4d:ff:b8:f9:0c:93:b2:74:d2:67:e0:27:96:fe: 5d:6a:b8:df:92:a0:6d:b0:4f:0c:3a:6b:cd:d2:f5: 8a:d9:64:ae:a4:fd:a5:ea:9b:e9:2a:59:d6:50:dd: 4d:81:a0:c9:30:c5:46:59:b9:c6:6e:56:a0:3a:65: 77:17:cf:bf:c9:4f:2c:09:45:f6:67:6c:a0:a9:8d: 2b:5b:62:f9:2e:72:b1:c6:b1:d6:17:ae:4f:78:c7: 76:00:41:a9:e2:28:27:3c:1c:36:89:cc:df:f7:9f: c1:f3:43:4b:a6:e3:d1:2e:91:3a:d1:9f:88:d9:f8: c5:a5:9c:50:23:f5:44:c2:0b:bb:64:30:c1:b0:8c: 5c:8d:65:79:80:f6:32:a0:10:98:6d:fa:72:e1:26: 2d:32:f7:4d:3d:45:06:dc:d0:45:06:19:02:92:13: a5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:28:33:83:9B:E5:D6:DE:C2:7D:84:9A:24:0C:89:DD:A0:BB:59:50 X509v3 Authority Key Identifier: keyid:39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.190.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:e9:a6:8d:8d:43:62:4b:d3:ed:e9:59:5b:81:f5:a9:ce:21: 94:1c:9e:3b:b8:bc:4a:e1:17:c5:fc:a2:ac:ee:12:3b:8d:23: fd:63:1a:87:a2:69:e6:bf:5c:69:bd:41:29:e9:4d:3a:15:bc: 8f:25:c0:d9:e4:fb:bc:85:dd:23:50:0e:8f:9f:01:79:9c:7a: 08:48:5d:23:b6:93:b6:8d:4a:ad:2f:f0:49:32:5d:66:2b:fb: 9d:c9:7b:2c:ff:77:47:9a:ce:9a:fb:c5:6a:ad:66:3f:db:83: 86:af:e5:83:a3:ad:08:4a:8a:dc:7b:c0:17:43:c7:e3:50:ea: ba:dc:ab:66:ea:07:73:a6:6b:3c:b6:b6:26:7a:ab:11:09:1f: 35:1a:a2:fc:d2:92:0c:c9:22:9d:c1:ed:af:41:c0:86:03:e3: 38:14:ec:0c:d2:93:2d:a0:39:d6:a9:e3:36:49:51:11:cb:8d: 0a:b3:c1:81:05:22:a8:93:61:69:6e:d8:9b:c7:d4:76:47:20: 2e:5b:f3:b2:5d:7a:0d:81:7a:29:c3:b8:22:b7:4c:32:a9:93: 3d:93:06:de:25:18:c2:87:16:15:72:43:ef:20:ef:f8:2e:1b: 1a:5b:a1:67:67:86:91:b8:6c:8e:7b:5a:1d:2f:5d:0e:ed:90: 63:38:d3:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ+j8fTZ0Ej83j76GN6yaOPCfdvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk0QkNDNUMwMzEwREIwMTE3RERDMURDMUExNzYwMjZE QjQyMUQ4ODAeFw0yNjA0MTExNDU1MDBaFw0yNzA0MTAxNTAwMDBaMDMxMTAvBgNV BAMTKDdCMjgzMzgzOUJFNUQ2REVDMjdEODQ5QTI0MEM4OUREQTBCQjU5NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKce9DI1YAJIsynpjxBDRSQz0H yTx/XNdL2JuCYCU6XZcFvVjpg2KdDLfcpOVegCl7YkkBwIjWHS/D3brMpuQ+feFm T/SOan3gzIXBdb2cF/WjlvHi91y6wshN/7j5DJOydNJn4CeW/l1quN+SoG2wTww6 a83S9YrZZK6k/aXqm+kqWdZQ3U2BoMkwxUZZucZuVqA6ZXcXz7/JTywJRfZnbKCp jStbYvkucrHGsdYXrk94x3YAQaniKCc8HDaJzN/3n8HzQ0um49EukTrRn4jZ+MWl nFAj9UTCC7tkMMGwjFyNZXmA9jKgEJht+nLhJi0y9009RQbc0EUGGQKSE6WnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeygzg5vl1t7CfYSaJAyJ3aC7WVAwHwYDVR0j BBgwFoAUOUvMXAMQ2wEX3cHcGhdgJttCHYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NzEzNGYxOC0xMWUxLTQxYWUtYmIwNS05ZmJmNDgyMTJiN2QvMC8zOTRCQ0M1QzAz MTBEQjAxMTdEREMxREMxQTE3NjAyNkRCNDIxRDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzk0QkNDNUMwMzEwREIwMTE3RERDMURDMUExNzYwMjZEQjQy MUQ4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3MTM0ZjE4LTExZTEtNDFhZS1i YjA1LTlmYmY0ODIxMmI3ZC8wLzMxMzUzNzJlMzYzNjJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUK+MA0GCSqG SIb3DQEBCwUAA4IBAQAb6aaNjUNiS9Pt6VlbgfWpziGUHJ47uLxK4RfF/KKs7hI7 jSP9YxqHomnmv1xpvUEp6U06FbyPJcDZ5Pu8hd0jUA6PnwF5nHoISF0jtpO2jUqt L/BJMl1mK/udyXss/3dHms6a+8VqrWY/24OGr+WDo60ISorce8AXQ8fjUOq63Ktm 6gdzpms8trYmeqsRCR81GqL80pIMySKdwe2vQcCGA+M4FOwM0pMtoDnWqeM2SVER y40Ks8GBBSKok2Fpbtibx9R2RyAuW/OyXXoNgXopw7git0wyqZM9kwbeJRjChxYV ckPvIO/4LhsaW6FnZ4aRuGyOe1odL10O7ZBjONML -----END CERTIFICATE-----Generated at Fri Apr 17 21:36:01 2026 by rpki-client