$ rpki-client -vvf repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa File: 3135372e31302e302e302f32332d3233203d3e20313532303739.roa (raw, json) Hash identifier: c4rjc7ofNNmyZRUSVo5AMDmJDSE543ooVHV0iFLdEdk= Subject key identifier: 31:F9:35:33:42:1E:73:86:D3:E3:52:4B:AE:34:6C:4F:63:92:14:E5 Certificate issuer: /CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Certificate serial: 396091645FE29FCE072A1B158837F71E010ED3CA Authority key identifier: FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa Signing time: Wed 31 Dec 2025 15:00:01 +0000 ROA not before: Wed 31 Dec 2025 14:55:01 +0000 ROA not after: Wed 30 Dec 2026 15:00:01 +0000 asID: 152079 IP address blocks: 157.10.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:60:91:64:5f:e2:9f:ce:07:2a:1b:15:88:37:f7:1e:01:0e:d3:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Validity Not Before: Dec 31 14:55:01 2025 GMT Not After : Dec 30 15:00:01 2026 GMT Subject: CN=31F93533421E7386D3E3524BAE346C4F639214E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ed:0d:99:e4:d6:df:2c:b5:ac:44:d2:e5:d6: 7e:75:c8:b9:c6:53:00:2e:ae:2d:6f:db:86:81:6c: 01:49:74:a9:a8:a8:48:5e:1a:86:4e:63:d0:09:c4: 74:a1:c9:df:d2:46:ec:f1:dc:6b:0c:85:c1:a3:fa: 53:a0:82:ad:84:9e:40:23:e9:78:b1:74:b7:bb:13: fd:98:14:cf:a8:92:17:9b:3c:07:6f:7e:90:35:2c: ce:23:12:22:9b:1f:f9:27:c4:7f:de:e9:14:38:27: 33:b2:97:39:93:a1:b0:3f:3c:6e:e5:67:da:ce:6d: c0:ad:cc:d7:56:7b:3e:11:21:69:21:96:3e:2e:64: e9:df:38:8d:1e:35:ea:85:08:31:0e:9e:92:3d:4e: b0:8a:76:6b:ea:d6:e3:ea:79:7d:1e:2a:ec:b8:86: 02:74:2b:8f:ab:38:c7:8e:1f:1c:26:c0:de:85:69: 93:ae:09:15:b7:37:ff:36:89:dd:d3:cf:5f:90:99: fa:2a:9f:39:33:38:78:54:dd:11:f7:ee:ca:6d:b0: 6d:c6:7c:45:d9:ea:f9:29:b1:41:c0:ae:13:1b:f3: 1b:d5:fc:a5:30:63:ec:02:41:e8:53:70:c2:94:f5: e1:15:3f:d0:ab:bf:60:c1:80:7b:a1:db:b7:25:7b: 5c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F9:35:33:42:1E:73:86:D3:E3:52:4B:AE:34:6C:4F:63:92:14:E5 X509v3 Authority Key Identifier: keyid:FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32332d3233203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/23 Signature Algorithm: sha256WithRSAEncryption 90:68:c7:b3:57:7e:97:79:8f:d2:08:f1:9a:b1:d4:52:00:eb: 3d:69:61:3f:e5:93:49:d3:ab:74:e8:ce:75:97:0b:f8:24:81: 05:b9:e6:19:7b:86:ca:ce:78:23:b6:ef:03:d7:d1:c9:39:00: 79:d2:07:ff:27:02:d8:b0:ac:68:96:b0:91:ce:8d:ed:11:75: f4:71:7f:62:22:b4:04:1e:e8:22:72:70:99:e8:ac:aa:47:67: b7:6a:02:67:8d:e0:99:2c:7e:7a:60:28:4d:16:f0:98:82:81: 31:0a:ff:2e:0f:a7:96:e4:32:6b:f5:1a:ef:f3:63:fc:e1:0a: ce:0d:db:51:4e:3a:73:a9:56:94:73:39:1c:b1:0c:fd:9d:77: 8d:c6:6e:53:e2:f2:8a:25:15:97:95:1d:fe:77:b1:8d:0f:12: a6:91:d1:38:3d:5c:43:6f:9c:f4:50:46:86:ed:29:99:e2:6d: 63:53:5a:8d:82:e2:16:4b:9f:f8:f3:be:90:d4:e5:92:a6:f1: 3a:2d:8b:00:6e:be:ed:28:75:c6:59:43:96:bd:f7:92:8a:cb: cc:ad:0f:1e:45:9f:a9:43:fb:eb:19:16:7e:53:73:65:c3:e4: 59:c3:65:96:35:2f:f5:81:9b:c8:4d:18:13:f7:fb:3c:36:dc: a5:e2:65:d8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOWCRZF/in84HKhsViDf3HgEO08owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIy MjBGNDhDRDAeFw0yNTEyMzExNDU1MDFaFw0yNjEyMzAxNTAwMDFaMDMxMTAvBgNV BAMTKDMxRjkzNTMzNDIxRTczODZEM0UzNTI0QkFFMzQ2QzRGNjM5MjE0RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh7Q2Z5NbfLLWsRNLl1n51yLnG UwAuri1v24aBbAFJdKmoqEheGoZOY9AJxHShyd/SRuzx3GsMhcGj+lOggq2EnkAj 6XixdLe7E/2YFM+okhebPAdvfpA1LM4jEiKbH/knxH/e6RQ4JzOylzmTobA/PG7l Z9rObcCtzNdWez4RIWkhlj4uZOnfOI0eNeqFCDEOnpI9TrCKdmvq1uPqeX0eKuy4 hgJ0K4+rOMeOHxwmwN6FaZOuCRW3N/82id3Tz1+QmfoqnzkzOHhU3RH37sptsG3G fEXZ6vkpsUHArhMb8xvV/KUwY+wCQehTcMKU9eEVP9Crv2DBgHuh27cle1w3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMfk1M0Iec4bT41JLrjRsT2OSFOUwHwYDVR0j BBgwFoAU+rCB/NhqsPgdQcnl+5w9MiIPSM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRkMWY2Mi04NDg4LTQwODYtOGQ0Yy1mMmRlNWM3NmRhM2QvMC9GQUIwODFGQ0Q4 NkFCMEY4MUQ0MUM5RTVGQjlDM0QzMjIyMEY0OENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIyMjBG NDhDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzAyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdCgAwDQYJKoZIhvcN AQELBQADggEBAJBox7NXfpd5j9II8Zqx1FIA6z1pYT/lk0nTq3ToznWXC/gkgQW5 5hl7hsrOeCO27wPX0ck5AHnSB/8nAtiwrGiWsJHOje0RdfRxf2IitAQe6CJycJno rKpHZ7dqAmeN4JksfnpgKE0W8JiCgTEK/y4Pp5bkMmv1Gu/zY/zhCs4N21FOOnOp VpRzORyxDP2dd43GblPi8oolFZeVHf53sY0PEqaR0Tg9XENvnPRQRobtKZnibWNT Wo2C4hZLn/jzvpDU5ZKm8TotiwBuvu0odcZZQ5a995KKy8ytDx5Fn6lD++sZFn5T c2XD5FnDZZY1L/WBm8hNGBP3+zw23KXiZdg= -----END CERTIFICATE-----Generated at Mon Mar 2 20:16:22 2026 by rpki-client