$ rpki-client -vvf repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa File: 3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa (raw, json) Hash identifier: IVmWA0sjnzoOPblA5LQxkIVu3A/hMUXTdT7CieN07mY= Subject key identifier: 62:61:46:FC:54:68:0B:70:00:A2:CD:70:6D:87:31:69:7E:71:67:EE Certificate issuer: /CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Certificate serial: 0684C1131F62976249E259FDF2ECBD35A59B829E Authority key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa Signing time: Mon 02 Mar 2026 06:00:01 +0000 ROA not before: Mon 02 Mar 2026 05:55:01 +0000 ROA not after: Mon 01 Mar 2027 06:00:01 +0000 asID: 152376 IP address blocks: 157.15.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:84:c1:13:1f:62:97:62:49:e2:59:fd:f2:ec:bd:35:a5:9b:82:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Validity Not Before: Mar 2 05:55:01 2026 GMT Not After : Mar 1 06:00:01 2027 GMT Subject: CN=626146FC54680B7000A2CD706D8731697E7167EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:48:4b:be:f2:15:0b:52:10:22:00:c6:db:3d: d8:68:a9:92:9f:77:4e:9d:d9:40:53:c6:b3:10:d7: 41:7d:a6:66:0b:c7:ba:9e:00:a4:1f:58:ba:77:1a: ff:e0:74:93:c2:33:12:a7:e9:8b:b0:a6:61:02:87: d1:54:33:ca:c5:bf:5f:88:2a:0b:46:41:88:74:3c: 82:6e:75:3d:8b:6c:13:3c:ec:61:05:b8:9c:ff:fb: e2:51:13:39:ea:b7:56:a7:1a:ed:04:3f:0e:0a:71: 70:98:74:78:8e:d9:fb:fd:8f:6b:a1:97:04:6a:22: a9:4f:5b:4a:46:13:76:0b:86:8f:19:96:52:af:f9: 46:bf:e6:27:91:ec:94:4b:30:ea:1d:f9:ac:9b:1a: 9f:e6:a6:73:86:61:4f:e1:1b:01:14:7b:49:2a:e1: df:eb:35:9a:ce:51:66:73:c3:63:df:d8:bc:fd:37: 12:d4:ba:cc:a4:9d:ef:c6:12:27:d0:ec:f1:e2:63: e8:93:07:e3:50:02:22:7b:fc:c4:cd:8a:ab:4a:80: 98:c4:38:7d:ba:ea:62:71:a1:77:95:ed:c3:db:fc: 42:71:c3:ef:96:77:d2:c0:0e:0b:de:e7:77:c8:a3: 2b:a9:05:a7:ed:8b:97:a5:fe:de:af:40:95:47:86: a1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:61:46:FC:54:68:0B:70:00:A2:CD:70:6D:87:31:69:7E:71:67:EE X509v3 Authority Key Identifier: keyid:22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.144.0/23 Signature Algorithm: sha256WithRSAEncryption 02:41:39:6f:97:e8:5a:4a:97:e0:a3:a8:f9:92:bf:36:27:22: 13:de:53:81:47:a2:e4:04:10:b3:78:2b:f6:6e:60:46:88:de: 19:72:84:b5:ce:78:af:66:26:84:a6:5c:45:91:15:54:e6:f2: 79:84:a0:ec:ad:5b:9c:9b:7e:29:9d:14:88:b4:b7:52:de:56: 7a:7c:1a:46:81:01:b1:36:f0:76:68:41:49:5d:4b:3d:44:66: ff:76:e6:5f:85:f5:ce:52:05:70:62:2a:e6:a2:8c:6f:bd:93: a1:18:eb:73:da:1e:e1:ee:a2:d0:19:4b:63:dc:47:a6:d8:ff: c8:00:75:fa:96:af:88:6d:ae:bb:2b:f9:00:72:69:d2:b8:7c: 1a:e3:bc:00:d9:d5:32:2b:41:7f:03:f4:e7:97:31:79:ff:97: 0a:1c:b2:1d:cf:8c:5e:6c:2a:83:d0:2b:3e:39:c4:02:df:0a: 89:cc:d7:6c:f1:50:4c:01:96:0b:d0:bc:6d:10:11:dc:e4:93: c5:48:14:fc:9c:72:cf:cb:7e:13:df:ef:d9:c6:1e:56:d5:36: f2:e6:33:09:ea:65:be:de:34:41:99:2f:c5:6c:dc:f3:6e:d6: 9f:8e:d4:f1:28:98:04:cb:41:bb:13:7d:b8:78:c6:0f:42:13: f4:10:f6:19 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBoTBEx9il2JJ4ln98uy9NaWbgp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1 RkE1RTczRjAeFw0yNjAzMDIwNTU1MDFaFw0yNzAzMDEwNjAwMDFaMDMxMTAvBgNV BAMTKDYyNjE0NkZDNTQ2ODBCNzAwMEEyQ0Q3MDZEODczMTY5N0U3MTY3RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChSEu+8hULUhAiAMbbPdhoqZKf d06d2UBTxrMQ10F9pmYLx7qeAKQfWLp3Gv/gdJPCMxKn6YuwpmECh9FUM8rFv1+I KgtGQYh0PIJudT2LbBM87GEFuJz/++JREznqt1anGu0EPw4KcXCYdHiO2fv9j2uh lwRqIqlPW0pGE3YLho8ZllKv+Ua/5ieR7JRLMOod+aybGp/mpnOGYU/hGwEUe0kq 4d/rNZrOUWZzw2Pf2Lz9NxLUusykne/GEifQ7PHiY+iTB+NQAiJ7/MTNiqtKgJjE OH266mJxoXeV7cPb/EJxw++Wd9LADgve53fIoyupBafti5el/t6vQJVHhqGVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYmFG/FRoC3AAos1wbYcxaX5xZ+4wHwYDVR0j BBgwFoAUIkYBX/8vxV/vucRKitQWtV+l5z8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMC8yMjQ2MDE1RkZG MkZDNTVGRUZCOUM0NEE4QUQ0MTZCNTVGQTVFNzNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1RkE1 RTczRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQ+QMA0GCSqG SIb3DQEBCwUAA4IBAQACQTlvl+haSpfgo6j5kr82JyIT3lOBR6LkBBCzeCv2bmBG iN4ZcoS1znivZiaEplxFkRVU5vJ5hKDsrVucm34pnRSItLdS3lZ6fBpGgQGxNvB2 aEFJXUs9RGb/duZfhfXOUgVwYirmooxvvZOhGOtz2h7h7qLQGUtj3Eem2P/IAHX6 lq+Iba67K/kAcmnSuHwa47wA2dUyK0F/A/TnlzF5/5cKHLIdz4xebCqD0Cs+OcQC 3wqJzNds8VBMAZYL0LxtEBHc5JPFSBT8nHLPy34T3+/Zxh5W1Tby5jMJ6mW+3jRB mS/FbNzzbtafjtTxKJgEy0G7E324eMYPQhP0EPYZ -----END CERTIFICATE-----Generated at Mon Mar 2 20:14:51 2026 by rpki-client