$ rpki-client -vvf repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa File: 3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa (raw, json) Hash identifier: OOjJfYQzXEKhK2PsvdUi53OrQVdbEHySPQl3Ehl0Q8g= Subject key identifier: 69:5A:C5:0A:13:72:87:FE:37:96:74:D8:D3:B0:B2:F7:18:90:49:C0 Certificate issuer: /CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Certificate serial: 4A04FA2C75FA9ECB5CE76092138442FD525BF1FA Authority key identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa Signing time: Wed 15 Apr 2026 05:00:03 +0000 ROA not before: Wed 15 Apr 2026 04:55:03 +0000 ROA not after: Wed 14 Apr 2027 05:00:03 +0000 asID: 152437 IP address blocks: 157.20.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 16:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:04:fa:2c:75:fa:9e:cb:5c:e7:60:92:13:84:42:fd:52:5b:f1:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Validity Not Before: Apr 15 04:55:03 2026 GMT Not After : Apr 14 05:00:03 2027 GMT Subject: CN=695AC50A137287FE379674D8D3B0B2F7189049C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:5e:ac:6c:0b:78:20:37:54:7a:3c:7c:7d:c6: c0:45:7f:cf:66:a3:22:97:bd:48:56:94:1a:f3:40: ae:e4:f8:af:85:fd:16:b9:6d:b3:da:27:f2:65:49: 8d:fa:8c:f8:46:02:11:fe:8d:c8:54:67:39:19:4a: 0e:2a:f0:62:94:83:eb:1e:a9:ea:71:f9:ba:c3:7a: fb:53:cd:f1:bc:a4:40:a3:e6:0e:33:ce:f5:43:eb: cd:35:f1:53:00:bc:25:d1:37:79:10:91:dd:6f:a0: 65:3e:94:a5:fe:ae:3a:ca:b5:c0:5c:bc:11:73:6a: 99:5f:51:fb:21:bc:55:08:2d:7e:89:8b:b4:cf:51: c0:dd:78:00:16:a6:55:12:8c:92:6a:a8:d8:10:93: 8a:07:58:da:1f:c8:98:74:e1:3e:d6:bc:71:ab:c0: 32:e9:8b:4c:a6:cf:ec:80:cd:1c:01:e5:14:29:60: d1:7e:10:e2:78:5e:85:cd:3f:bb:9e:80:88:4c:33: d2:ce:80:b4:f6:ca:25:64:78:a9:3c:e4:2b:79:65: 9c:10:55:ae:d1:ce:19:0d:49:18:ff:29:20:3f:5b: 42:c9:cb:0c:a5:c5:45:9b:fe:4e:4e:c1:be:66:1d: 40:8c:69:5c:a5:ac:aa:c5:02:7a:81:6b:1a:8f:9c: bc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5A:C5:0A:13:72:87:FE:37:96:74:D8:D3:B0:B2:F7:18:90:49:C0 X509v3 Authority Key Identifier: keyid:FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.222.0/24 Signature Algorithm: sha256WithRSAEncryption 14:b5:75:71:49:40:fd:7a:c7:a9:0e:b6:9d:c3:5c:5d:c4:5d: 4f:ed:1d:24:10:5d:9d:d8:c8:e9:85:4e:f6:14:86:26:7d:46: 91:ef:7a:ea:0c:5c:b0:a0:9c:67:93:b0:25:38:88:f2:4c:7a: 43:05:eb:b3:ce:f7:3d:b4:3c:be:e2:39:cf:f3:b1:43:be:16: 7a:6b:88:94:92:6f:37:1c:0a:aa:78:af:4a:22:00:b5:a5:e3: bd:7b:76:ba:2d:8b:5e:12:c9:eb:d7:61:42:98:d4:d6:2b:ed: 34:8b:f7:1f:d2:6a:4d:d6:cb:aa:8d:84:b5:25:23:42:6a:f6: f8:b5:e5:c4:76:7c:7c:15:90:69:d7:32:cb:e7:25:b9:cb:76: 1e:e4:bc:26:67:27:03:dc:a8:f6:4d:11:56:1d:3c:ea:29:3b: 64:88:62:96:38:68:ee:af:d7:cf:5d:b2:65:1f:bf:eb:af:68: d9:97:a6:ec:37:e6:77:6e:97:ec:99:8b:55:a3:f0:f3:6c:0d: 59:99:27:78:12:41:30:48:5f:25:fc:1c:91:c3:1e:af:e3:ec: 19:f5:92:19:a7:fd:4a:d7:84:99:52:7c:f3:75:18:8b:8e:98: 7d:f8:76:9c:03:e1:61:46:84:47:a1:c2:67:4a:aa:dc:dd:23: 78:96:2a:43 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSgT6LHX6nstc52CSE4RC/VJb8fowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4 MDlEMDczOTAeFw0yNjA0MTUwNDU1MDNaFw0yNzA0MTQwNTAwMDNaMDMxMTAvBgNV BAMTKDY5NUFDNTBBMTM3Mjg3RkUzNzk2NzREOEQzQjBCMkY3MTg5MDQ5QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVXqxsC3ggN1R6PHx9xsBFf89m oyKXvUhWlBrzQK7k+K+F/Ra5bbPaJ/JlSY36jPhGAhH+jchUZzkZSg4q8GKUg+se qepx+brDevtTzfG8pECj5g4zzvVD68018VMAvCXRN3kQkd1voGU+lKX+rjrKtcBc vBFzaplfUfshvFUILX6Ji7TPUcDdeAAWplUSjJJqqNgQk4oHWNofyJh04T7WvHGr wDLpi0ymz+yAzRwB5RQpYNF+EOJ4XoXNP7uegIhMM9LOgLT2yiVkeKk85Ct5ZZwQ Va7RzhkNSRj/KSA/W0LJywylxUWb/k5Owb5mHUCMaVylrKrFAnqBaxqPnLzhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaVrFChNyh/43lnTY07Cy9xiQScAwHwYDVR0j BBgwFoAU/nnlbL6Zx3PNch33qw5cooCdBzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MWYxNWExZC01ZGFjLTRjYzktODExYS1lNDljYjRlN2JjZTEvMC9GRTc5RTU2Q0JF OTlDNzczQ0Q3MjFERjdBQjBFNUNBMjgwOUQwNzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4MDlE MDczOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZjE1YTFkLTVkYWMtNGNjOS04 MTFhLWU0OWNiNGU3YmNlMS8wLzMxMzUzNzJlMzIzMDJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTeMA0GCSqG SIb3DQEBCwUAA4IBAQAUtXVxSUD9esepDradw1xdxF1P7R0kEF2d2MjphU72FIYm fUaR73rqDFywoJxnk7AlOIjyTHpDBeuzzvc9tDy+4jnP87FDvhZ6a4iUkm83HAqq eK9KIgC1peO9e3a6LYteEsnr12FCmNTWK+00i/cf0mpN1suqjYS1JSNCavb4teXE dnx8FZBp1zLL5yW5y3Ye5LwmZycD3Kj2TRFWHTzqKTtkiGKWOGjur9fPXbJlH7/r r2jZl6bsN+Z3bpfsmYtVo/DzbA1ZmSd4EkEwSF8l/ByRwx6v4+wZ9ZIZp/1K14SZ UnzzdRiLjph9+HacA+FhRoRHocJnSqrc3SN4lipD -----END CERTIFICATE-----Generated at Fri Apr 17 15:17:14 2026 by rpki-client