$ rpki-client -vvf repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa File: 3135372e31302e302e302f32342d3234203d3e20313532303739.roa (raw, json) Hash identifier: xoCkaz5i4P6iyUaFm6z1IavkyQCxOdN9JzTfIbqv1G0= Subject key identifier: 4E:FC:34:FA:B7:5B:A3:78:D4:CE:E1:7E:2C:D0:9B:84:D0:8A:77:14 Certificate issuer: /CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Certificate serial: 720CFBB4E951FE2768FF3E895ACF30E819A6AC1F Authority key identifier: FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa Signing time: Wed 31 Dec 2025 15:00:01 +0000 ROA not before: Wed 31 Dec 2025 14:55:01 +0000 ROA not after: Wed 30 Dec 2026 15:00:01 +0000 asID: 152079 IP address blocks: 157.10.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:0c:fb:b4:e9:51:fe:27:68:ff:3e:89:5a:cf:30:e8:19:a6:ac:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD Validity Not Before: Dec 31 14:55:01 2025 GMT Not After : Dec 30 15:00:01 2026 GMT Subject: CN=4EFC34FAB75BA378D4CEE17E2CD09B84D08A7714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:92:f0:ab:49:68:37:87:b7:60:aa:08:0e: a6:20:ed:ec:c8:d6:eb:f7:fc:e8:3c:31:00:2e:a4: 96:c1:6e:64:9b:5f:92:91:97:97:a6:27:8a:d7:b9: 1e:65:99:6d:78:16:f3:14:f8:26:9c:93:b3:69:ca: 38:2e:99:b5:3c:3f:71:61:ed:05:8f:99:77:a0:df: 17:33:19:ed:53:77:2e:88:3f:cc:d4:1f:e6:7a:74: c8:99:27:4d:02:ac:62:a6:71:f7:28:fe:6d:cc:7e: b7:5f:7c:3b:4f:ca:ba:82:48:75:5c:31:7a:3a:c9: f5:22:26:56:fa:a1:79:41:6a:93:92:a1:63:31:fd: c7:bc:1e:2e:26:e0:5a:9c:36:c7:57:3a:00:81:e1: 4e:ec:3e:14:01:0d:5e:37:ba:0c:98:db:8c:ff:eb: 69:93:9c:95:fd:8f:09:b8:9c:64:16:52:9c:39:78: e0:b9:24:4e:8c:9a:92:18:fd:ff:a8:7d:40:96:52: 4b:90:30:59:38:97:05:7e:bf:9b:62:3f:c9:08:b9: ce:48:fa:84:98:a0:93:81:10:76:f9:4d:eb:24:b4: a2:53:19:6f:0c:3d:26:96:d6:08:50:2b:96:19:31: 6c:2f:e7:fe:2e:3f:ce:bd:8f:81:0d:0f:9e:1e:7f: 3d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:FC:34:FA:B7:5B:A3:78:D4:CE:E1:7E:2C:D0:9B:84:D0:8A:77:14 X509v3 Authority Key Identifier: keyid:FA:B0:81:FC:D8:6A:B0:F8:1D:41:C9:E5:FB:9C:3D:32:22:0F:48:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FAB081FCD86AB0F81D41C9E5FB9C3D32220F48CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/24 Signature Algorithm: sha256WithRSAEncryption 27:5a:de:e6:96:61:58:97:53:89:08:e3:5d:d3:fa:45:79:25: 18:12:b6:7d:be:10:f0:dd:3d:30:98:fb:9e:06:88:00:d7:05: e1:32:4e:ce:11:5d:9c:59:59:1f:34:6a:01:8d:11:d1:30:c1: 11:2b:32:3c:e8:b8:d1:d4:97:40:16:fd:70:33:83:36:a1:0a: d2:31:81:de:f7:3c:55:2d:f4:78:85:cc:70:d0:10:06:ab:21: 5c:12:35:7c:61:a0:7d:d9:1a:75:91:e6:10:78:89:cb:79:b7: 07:1d:b5:d3:f1:dd:05:12:7d:07:42:ee:49:5e:1b:57:e4:7a: 54:0d:97:8b:75:02:b5:d3:c5:73:b4:a1:07:ac:bd:42:32:5d: 22:5d:e2:25:4d:85:73:5f:59:1c:90:46:9e:88:cb:15:ae:80: fa:97:fe:64:14:05:84:67:09:5d:f1:5f:1b:3b:60:4b:eb:98: 1e:df:93:ea:ab:92:b2:d9:6f:f9:83:5f:27:86:2a:f4:e9:60: 4b:91:7e:38:8a:35:7f:35:ad:39:a1:bf:52:75:6c:76:7c:00: 11:d4:4d:1e:e9:20:88:3a:fd:b0:15:71:60:42:e4:bc:25:e9: e2:01:e5:6f:f2:94:db:b8:b0:fe:33:fb:f5:0d:51:f3:1e:75: 06:40:56:8b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcgz7tOlR/ido/z6JWs8w6BmmrB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIy MjBGNDhDRDAeFw0yNTEyMzExNDU1MDFaFw0yNjEyMzAxNTAwMDFaMDMxMTAvBgNV BAMTKDRFRkMzNEZBQjc1QkEzNzhENENFRTE3RTJDRDA5Qjg0RDA4QTc3MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0HJLwq0loN4e3YKoIDqYg7ezI 1uv3/Og8MQAupJbBbmSbX5KRl5emJ4rXuR5lmW14FvMU+Cack7NpyjgumbU8P3Fh 7QWPmXeg3xczGe1Tdy6IP8zUH+Z6dMiZJ00CrGKmcfco/m3MfrdffDtPyrqCSHVc MXo6yfUiJlb6oXlBapOSoWMx/ce8Hi4m4FqcNsdXOgCB4U7sPhQBDV43ugyY24z/ 62mTnJX9jwm4nGQWUpw5eOC5JE6MmpIY/f+ofUCWUkuQMFk4lwV+v5tiP8kIuc5I +oSYoJOBEHb5TesktKJTGW8MPSaW1ghQK5YZMWwv5/4uP869j4END54efz3JAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUTvw0+rdbo3jUzuF+LNCbhNCKdxQwHwYDVR0j BBgwFoAU+rCB/NhqsPgdQcnl+5w9MiIPSM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRkMWY2Mi04NDg4LTQwODYtOGQ0Yy1mMmRlNWM3NmRhM2QvMC9GQUIwODFGQ0Q4 NkFCMEY4MUQ0MUM5RTVGQjlDM0QzMjIyMEY0OENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkFCMDgxRkNEODZBQjBGODFENDFDOUU1RkI5QzNEMzIyMjBG NDhDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCgAwDQYJKoZIhvcN AQELBQADggEBACda3uaWYViXU4kI413T+kV5JRgStn2+EPDdPTCY+54GiADXBeEy Ts4RXZxZWR80agGNEdEwwRErMjzouNHUl0AW/XAzgzahCtIxgd73PFUt9HiFzHDQ EAarIVwSNXxhoH3ZGnWR5hB4ict5twcdtdPx3QUSfQdC7kleG1fkelQNl4t1ArXT xXO0oQesvUIyXSJd4iVNhXNfWRyQRp6IyxWugPqX/mQUBYRnCV3xXxs7YEvrmB7f k+qrkrLZb/mDXyeGKvTpYEuRfjiKNX81rTmhv1J1bHZ8ABHUTR7pIIg6/bAVcWBC 5Lwl6eIB5W/ylNu4sP4z+/UNUfMedQZAVos= -----END CERTIFICATE-----Generated at Mon Mar 2 18:30:28 2026 by rpki-client