$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa File: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (raw, json) Hash identifier: JACumO3VAE1t5FuWuqXfdX1npziOW8EOlg7XX4OQbh8= Subject key identifier: 11:E6:1B:46:7B:78:4D:CC:57:5B:6B:30:89:1D:53:DA:D5:77:3E:8D Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: 12356A635A7243DC80DBBCA438B0FF05458CAB32 Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa Signing time: Thu 29 Jan 2026 04:02:34 +0000 ROA not before: Thu 29 Jan 2026 03:57:34 +0000 ROA not after: Thu 28 Jan 2027 04:02:34 +0000 asID: 152410 IP address blocks: 157.20.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 23:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:35:6a:63:5a:72:43:dc:80:db:bc:a4:38:b0:ff:05:45:8c:ab:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Jan 29 03:57:34 2026 GMT Not After : Jan 28 04:02:34 2027 GMT Subject: CN=11E61B467B784DCC575B6B30891D53DAD5773E8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:49:2b:b8:15:a4:f5:ba:58:91:98:08:b3:04: 70:a9:d2:77:76:41:e3:f5:c6:8e:e1:83:c5:73:16: e7:39:fe:f9:9b:8a:f0:7e:15:ee:f5:5f:e4:8c:06: 71:a0:ce:a8:87:bd:30:98:2c:50:27:ac:69:54:dc: 56:33:b0:39:e3:09:3a:00:62:79:32:28:3a:ef:59: cc:24:53:3b:5d:5f:06:ed:79:12:c4:38:d9:b5:25: 28:2b:eb:a1:a9:ed:7f:c1:8a:8d:98:f9:6a:4e:a5: 7e:a6:55:2e:70:e4:b7:ab:5a:4f:a4:4a:82:38:3e: a8:99:cb:a2:8e:eb:69:e2:ed:13:dc:a1:7b:12:c4: 22:8c:2b:94:18:e7:a4:0d:77:e5:cc:ab:fb:8e:5b: 23:c7:90:4c:e7:77:62:42:91:ad:87:e3:4a:d3:15: f0:3a:f8:20:be:a5:09:03:04:77:1c:21:1b:29:36: 7f:ee:42:05:ff:80:d2:d5:80:3b:0f:86:40:2e:c8: 2e:2a:11:57:04:5b:5a:85:60:b4:ad:78:27:0c:e9: 78:4f:f7:e1:b1:08:82:d7:b5:e8:c0:25:bd:f3:1d: ab:2f:f5:27:56:67:5c:d6:8f:3e:b6:d0:35:1c:b8: 1e:f6:c0:0c:86:f4:5a:e9:93:a2:df:2d:8b:e2:7a: 9a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E6:1B:46:7B:78:4D:CC:57:5B:6B:30:89:1D:53:DA:D5:77:3E:8D X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.126.0/23 Signature Algorithm: sha256WithRSAEncryption 94:9c:c2:ec:1d:f4:b0:1c:1d:60:88:a0:f1:b0:ae:e5:c7:a6: 2d:c5:7c:ff:7c:01:6f:9b:04:aa:0d:d2:42:e2:8c:e8:1c:07: c6:61:08:fb:d0:d9:6b:f5:20:59:dd:87:57:be:77:ed:c4:74: 24:79:41:18:fd:7f:90:ac:f3:d2:f5:0d:89:82:78:d1:83:65: ef:1d:2f:16:9d:75:cb:69:36:a6:08:be:ec:ba:e7:01:36:ca: e0:62:a9:59:a9:07:9f:54:90:fa:90:2a:d2:2c:fd:a8:29:61: d7:8b:e0:73:b9:e4:42:cb:36:3f:3c:0c:01:0c:ad:c6:fa:e0: c0:e1:a3:be:1f:80:17:a5:f6:23:28:36:1b:37:3d:1a:ba:1b: 77:ad:17:dd:17:a3:df:6c:85:0b:0a:b1:cb:b5:4b:99:34:a2: 5e:8b:54:1d:e1:5a:f6:39:fc:dc:6d:9e:c3:d7:e7:9b:2b:19: 48:09:81:2b:05:0d:ca:68:d2:da:ee:e2:6a:b1:68:82:76:2d: d8:5e:b8:8a:2d:4d:42:11:c0:1d:bc:cc:c7:84:30:73:e2:48: 47:b2:a5:38:32:cf:f3:43:35:66:b4:48:dc:da:f9:f8:5f:c0: c6:27:f6:19:98:a2:eb:bc:fd:2e:20:93:a4:ad:0d:4f:95:bf: 5f:88:e7:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEjVqY1pyQ9yA27ykOLD/BUWMqzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNjAxMjkwMzU3MzRaFw0yNzAxMjgwNDAyMzRaMDMxMTAvBgNV BAMTKDExRTYxQjQ2N0I3ODREQ0M1NzVCNkIzMDg5MUQ1M0RBRDU3NzNFOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDASSu4FaT1uliRmAizBHCp0nd2 QeP1xo7hg8VzFuc5/vmbivB+Fe71X+SMBnGgzqiHvTCYLFAnrGlU3FYzsDnjCToA YnkyKDrvWcwkUztdXwbteRLEONm1JSgr66Gp7X/Bio2Y+WpOpX6mVS5w5LerWk+k SoI4PqiZy6KO62ni7RPcoXsSxCKMK5QY56QNd+XMq/uOWyPHkEznd2JCka2H40rT FfA6+CC+pQkDBHccIRspNn/uQgX/gNLVgDsPhkAuyC4qEVcEW1qFYLSteCcM6XhP 9+GxCILXtejAJb3zHasv9SdWZ1zWjz620DUcuB72wAyG9Frpk6LfLYviepr9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEeYbRnt4TcxXW2swiR1T2tV3Po0wHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwZjc4YmQ0LWMxOWItNGQ0MC1h YTU0LWVkOGQ3YmM3NzJjYS8wLzMxMzUzNzJlMzIzMDJlMzEzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRR+MA0GCSqG SIb3DQEBCwUAA4IBAQCUnMLsHfSwHB1giKDxsK7lx6YtxXz/fAFvmwSqDdJC4ozo HAfGYQj70Nlr9SBZ3YdXvnftxHQkeUEY/X+QrPPS9Q2JgnjRg2XvHS8WnXXLaTam CL7suucBNsrgYqlZqQefVJD6kCrSLP2oKWHXi+BzueRCyzY/PAwBDK3G+uDA4aO+ H4AXpfYjKDYbNz0auht3rRfdF6PfbIULCrHLtUuZNKJei1Qd4Vr2OfzcbZ7D1+eb KxlICYErBQ3KaNLa7uJqsWiCdi3YXriKLU1CEcAdvMzHhDBz4khHsqU4Ms/zQzVm tEjc2vn4X8DGJ/YZmKLrvP0uIJOkrQ1Plb9fiOdX -----END CERTIFICATE-----Generated at Tue Mar 3 04:25:34 2026 by rpki-client