$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa File: 3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa (raw, json) Hash identifier: JW2y4bSiPzDa57yfaBUJmXIx1LPnCEOpddrHM3xkrR0= Subject key identifier: 1E:2D:6A:B6:9C:1F:3E:2F:4F:47:03:0B:3F:F0:93:FF:7E:B8:33:E7 Certificate issuer: /CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Certificate serial: 42FF8C7E031326C95074A982FCEDED74126F6929 Authority key identifier: D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa Signing time: Fri 27 Mar 2026 18:02:49 +0000 ROA not before: Fri 27 Mar 2026 17:57:49 +0000 ROA not after: Fri 26 Mar 2027 18:02:49 +0000 asID: 152756 IP address blocks: 157.66.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ff:8c:7e:03:13:26:c9:50:74:a9:82:fc:ed:ed:74:12:6f:69:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Validity Not Before: Mar 27 17:57:49 2026 GMT Not After : Mar 26 18:02:49 2027 GMT Subject: CN=1E2D6AB69C1F3E2F4F47030B3FF093FF7EB833E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:aa:b7:54:be:03:d5:4b:48:31:94:ce:60:6e: 10:bc:56:af:fe:71:d5:39:1a:f1:5e:a7:62:e4:bb: 70:00:81:98:75:db:cf:78:08:a4:26:e0:75:c7:59: 63:76:b4:06:93:3d:eb:f4:0a:58:fd:4c:d1:3f:19: ad:49:bb:b1:78:52:09:5c:bc:7c:cf:10:65:1a:50: 5c:b6:7d:1d:28:9f:bc:5e:db:21:fb:32:f8:80:ca: b8:b5:e4:6e:c7:55:9d:e0:b6:f2:1a:2f:28:91:de: 12:58:ce:29:95:4c:7f:c5:0a:0d:e1:df:3d:9b:e6: 3c:38:4d:96:db:82:58:94:d9:11:3d:b1:af:fd:ca: cd:c7:ea:60:cd:e8:19:03:9a:df:fb:e2:64:b4:3d: 1d:9f:fb:77:2e:78:11:d6:8b:ba:34:f1:15:84:63: 96:05:05:86:75:da:da:6e:f1:9f:92:63:9f:2d:ca: cf:50:5d:c9:a0:7d:ce:fc:39:be:25:27:7c:20:28: c0:c3:4e:0f:1b:16:ae:f1:ba:58:1d:87:3b:dc:6e: 42:92:a6:6f:13:7c:c1:37:85:db:90:af:17:c8:ac: d9:ce:40:d0:a9:09:95:58:86:f2:28:ce:30:00:7f: ec:77:04:59:b8:46:0e:2d:f0:3f:88:5f:de:21:42: 01:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2D:6A:B6:9C:1F:3E:2F:4F:47:03:0B:3F:F0:93:FF:7E:B8:33:E7 X509v3 Authority Key Identifier: keyid:D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.176.0/23 Signature Algorithm: sha256WithRSAEncryption 62:a2:82:ac:43:3a:d7:85:6b:e7:8d:d2:ba:03:f9:2a:9f:18: bc:44:a3:77:58:3e:52:84:b1:30:e9:13:2b:9e:07:c7:9d:1c: ff:16:4a:80:0c:55:e1:45:ba:82:f8:07:2f:37:11:2b:55:6b: d5:c0:c1:51:3d:2c:bd:7c:5c:91:c2:76:cb:a5:ad:d1:3a:5b: 08:00:e5:ff:cb:20:6d:52:ba:b4:1b:d8:23:6c:00:57:ca:2b: 04:32:96:0c:d2:bb:a9:96:36:2a:db:27:9f:93:bd:ed:c5:44: cc:eb:b3:a4:65:09:86:2b:e1:83:f0:e8:85:c2:21:36:15:eb: 27:8f:64:07:90:30:5d:db:e9:ca:96:bb:f0:50:8f:9b:d3:34: 36:04:95:a8:4c:c8:87:64:4e:0a:a8:95:78:c6:6e:62:a1:cd: bf:b0:0f:df:06:55:04:ed:77:19:f3:33:4a:d9:2e:77:be:69: 21:11:7e:f6:67:5d:84:4b:57:0d:c2:55:64:4f:07:33:05:bf: 55:1e:56:a8:86:70:50:5f:5f:47:3b:2c:61:c2:24:9f:64:c7: c4:8f:52:b2:f5:2c:af:1d:89:6f:04:2d:13:3b:1a:c5:b4:d4: d2:03:6b:9c:37:7c:f2:f0:77:0f:b2:47:c3:7c:0b:54:73:98: dc:5d:3d:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQv+MfgMTJslQdKmC/O3tdBJvaSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2 NzY5QzkwQjAeFw0yNjAzMjcxNzU3NDlaFw0yNzAzMjYxODAyNDlaMDMxMTAvBgNV BAMTKDFFMkQ2QUI2OUMxRjNFMkY0RjQ3MDMwQjNGRjA5M0ZGN0VCODMzRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvqrdUvgPVS0gxlM5gbhC8Vq/+ cdU5GvFep2Lku3AAgZh12894CKQm4HXHWWN2tAaTPev0Clj9TNE/Ga1Ju7F4Uglc vHzPEGUaUFy2fR0on7xe2yH7MviAyri15G7HVZ3gtvIaLyiR3hJYzimVTH/FCg3h 3z2b5jw4TZbbgliU2RE9sa/9ys3H6mDN6BkDmt/74mS0PR2f+3cueBHWi7o08RWE Y5YFBYZ12tpu8Z+SY58tys9QXcmgfc78Ob4lJ3wgKMDDTg8bFq7xulgdhzvcbkKS pm8TfME3hduQrxfIrNnOQNCpCZVYhvIozjAAf+x3BFm4Rg4t8D+IX94hQgGhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHi1qtpwfPi9PRwMLP/CT/364M+cwHwYDVR0j BBgwFoAU0A9IvId5EP3Qt/8in9faUWdpyQswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMC9EMDBGNDhCQzg3 NzkxMEZERDBCN0ZGMjI5RkQ3REE1MTY3NjlDOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2NzY5 QzkwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKwMA0GCSqG SIb3DQEBCwUAA4IBAQBiooKsQzrXhWvnjdK6A/kqnxi8RKN3WD5ShLEw6RMrngfH nRz/FkqADFXhRbqC+AcvNxErVWvVwMFRPSy9fFyRwnbLpa3ROlsIAOX/yyBtUrq0 G9gjbABXyisEMpYM0rupljYq2yefk73txUTM67OkZQmGK+GD8OiFwiE2Fesnj2QH kDBd2+nKlrvwUI+b0zQ2BJWoTMiHZE4KqJV4xm5ioc2/sA/fBlUE7XcZ8zNK2S53 vmkhEX72Z12ES1cNwlVkTwczBb9VHlaohnBQX19HOyxhwiSfZMfEj1Ky9SyvHYlv BC0TOxrFtNTSA2ucN3zy8HcPskfDfAtUc5jcXT1U -----END CERTIFICATE-----Generated at Fri Apr 17 15:21:13 2026 by rpki-client