$ rpki-client -vvf repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa File: 3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa (raw, json) Hash identifier: RowmG35PUWlTBVXWCWFnv7EvaYbGN8PKQsduBtyMpF4= Subject key identifier: 18:0A:45:62:72:20:BD:1F:CB:EF:4C:5F:A0:7E:3C:4D:80:93:87:51 Certificate issuer: /CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Certificate serial: 3EED9B5A56661E65236D3C3347B3615C15E31BA1 Authority key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa Signing time: Mon 02 Mar 2026 06:00:01 +0000 ROA not before: Mon 02 Mar 2026 05:55:01 +0000 ROA not after: Mon 01 Mar 2027 06:00:01 +0000 asID: 152376 IP address blocks: 157.15.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 09:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ed:9b:5a:56:66:1e:65:23:6d:3c:33:47:b3:61:5c:15:e3:1b:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Validity Not Before: Mar 2 05:55:01 2026 GMT Not After : Mar 1 06:00:01 2027 GMT Subject: CN=180A45627220BD1FCBEF4C5FA07E3C4D80938751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:78:03:91:02:05:84:b8:4b:e9:34:fa:a8:a9: e5:a4:d7:d6:4d:0c:c9:dd:d6:40:a7:3d:c6:e9:71: 2a:47:bc:a3:cb:c7:7b:61:74:13:59:1b:94:61:87: 7a:b7:c2:ec:bf:c0:5d:ac:c0:bd:ef:b0:db:cd:18: 19:55:23:af:75:0a:3e:aa:ee:68:7d:37:9f:c8:ce: f3:93:05:95:3b:7d:76:d3:90:f9:e7:0c:9f:70:bf: c6:20:b8:d4:ba:34:66:51:7c:20:ac:d1:de:90:e9: 9e:4b:47:ff:de:d7:c4:8f:1c:73:19:99:72:ff:9c: 00:43:9d:fb:f8:c7:a3:7c:56:63:e8:04:72:44:e7: 98:7e:ac:c6:91:12:a2:73:88:e7:bd:f6:1b:3c:f4: 55:e3:6a:65:2b:9f:74:c5:29:66:ab:d2:da:65:72: d8:ca:6f:6b:8e:d6:2e:cc:b2:fe:f4:7a:07:fb:b7: 99:68:c0:ca:d1:cc:9e:9c:d3:1b:54:ec:06:ca:ff: e3:82:ab:77:e1:c7:3a:cf:f2:a9:f1:fd:96:6f:30: 2a:75:15:40:f1:37:63:c5:e6:7f:d5:85:a1:ac:50: 15:c1:05:3d:95:f1:ed:2d:9e:da:62:85:a2:d5:c3: 1b:d7:a6:13:ad:0d:76:ca:0c:32:4c:bc:95:a0:19: 2e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:0A:45:62:72:20:BD:1F:CB:EF:4C:5F:A0:7E:3C:4D:80:93:87:51 X509v3 Authority Key Identifier: keyid:22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.144.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:3a:10:0e:68:61:30:f4:91:6f:8a:16:65:ff:f0:ef:9f:15: a9:a8:4a:09:be:27:ef:c4:b6:35:49:8a:1c:ce:42:94:57:5b: b7:b0:cd:9b:4d:12:c0:f3:66:9c:dc:dd:f0:a9:45:33:62:54: be:cb:fe:be:bc:e1:90:60:e3:e8:9c:05:d5:9d:42:5d:80:44: 79:ed:eb:7b:87:fb:38:da:8b:01:44:9f:13:0f:96:7c:8c:87: 1e:96:93:0f:b6:d4:8c:27:58:b8:ae:92:41:35:57:e1:69:a7: 02:75:03:12:53:74:fd:62:5b:60:57:7c:54:b2:7e:c6:90:ef: c7:c4:db:1e:5f:02:c7:4a:74:77:5e:44:0e:4a:2d:54:cc:91: f0:08:53:fd:ef:03:41:27:5a:40:89:c3:0b:10:a6:24:ba:56: ad:27:57:08:18:02:9f:2a:11:d2:9e:6f:15:25:1c:e6:e7:9b: d5:67:7f:0c:40:cc:98:f3:31:58:7a:3e:d0:d8:17:ea:c0:ae: 2f:ae:a2:fa:3f:d4:51:d2:c0:3d:e4:7d:22:25:e7:e5:1d:7f: b9:0f:1e:f4:90:04:6a:f2:07:2c:01:14:66:b5:ea:9b:67:85: c2:32:42:9d:6f:80:3c:20:51:d1:63:4e:4c:22:3d:ce:1f:c8: 40:90:3f:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPu2bWlZmHmUjbTwzR7NhXBXjG6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1 RkE1RTczRjAeFw0yNjAzMDIwNTU1MDFaFw0yNzAzMDEwNjAwMDFaMDMxMTAvBgNV BAMTKDE4MEE0NTYyNzIyMEJEMUZDQkVGNEM1RkEwN0UzQzREODA5Mzg3NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOeAORAgWEuEvpNPqoqeWk19ZN DMnd1kCnPcbpcSpHvKPLx3thdBNZG5Rhh3q3wuy/wF2swL3vsNvNGBlVI691Cj6q 7mh9N5/IzvOTBZU7fXbTkPnnDJ9wv8YguNS6NGZRfCCs0d6Q6Z5LR//e18SPHHMZ mXL/nABDnfv4x6N8VmPoBHJE55h+rMaREqJziOe99hs89FXjamUrn3TFKWar0tpl ctjKb2uO1i7Msv70egf7t5lowMrRzJ6c0xtU7AbK/+OCq3fhxzrP8qnx/ZZvMCp1 FUDxN2PF5n/VhaGsUBXBBT2V8e0tntpihaLVwxvXphOtDXbKDDJMvJWgGS4XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGApFYnIgvR/L70xfoH48TYCTh1EwHwYDVR0j BBgwFoAUIkYBX/8vxV/vucRKitQWtV+l5z8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMC8yMjQ2MDE1RkZG MkZDNTVGRUZCOUM0NEE4QUQ0MTZCNTVGQTVFNzNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1RkE1 RTczRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+QMA0GCSqG SIb3DQEBCwUAA4IBAQAvOhAOaGEw9JFvihZl//DvnxWpqEoJvifvxLY1SYoczkKU V1u3sM2bTRLA82ac3N3wqUUzYlS+y/6+vOGQYOPonAXVnUJdgER57et7h/s42osB RJ8TD5Z8jIcelpMPttSMJ1i4rpJBNVfhaacCdQMSU3T9YltgV3xUsn7GkO/HxNse XwLHSnR3XkQOSi1UzJHwCFP97wNBJ1pAicMLEKYkulatJ1cIGAKfKhHSnm8VJRzm 55vVZ38MQMyY8zFYej7Q2BfqwK4vrqL6P9RR0sA95H0iJeflHX+5Dx70kARq8gcs ARRmteqbZ4XCMkKdb4A8IFHRY05MIj3OH8hAkD+9 -----END CERTIFICATE-----Generated at Tue Mar 3 01:14:59 2026 by rpki-client