$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa File: 3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa (raw, json) Hash identifier: iuAv/UaFFKrVUGSGL5PWp9D2W6/vC4UW88o2fSNFOM4= Subject key identifier: 6F:9A:06:26:D1:30:BE:45:8E:51:F2:D9:0E:7D:E7:0F:41:CF:D3:81 Certificate issuer: /CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Certificate serial: 4818058D4C8181752C933AB8FE678B3F0C09AE85 Authority key identifier: D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa Signing time: Fri 27 Mar 2026 18:02:49 +0000 ROA not before: Fri 27 Mar 2026 17:57:49 +0000 ROA not after: Fri 26 Mar 2027 18:02:49 +0000 asID: 152756 IP address blocks: 157.66.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:18:05:8d:4c:81:81:75:2c:93:3a:b8:fe:67:8b:3f:0c:09:ae:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Validity Not Before: Mar 27 17:57:49 2026 GMT Not After : Mar 26 18:02:49 2027 GMT Subject: CN=6F9A0626D130BE458E51F2D90E7DE70F41CFD381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:07:1c:c6:98:8c:1a:98:f3:51:2f:69:84: 80:1d:2e:15:1c:a0:bc:57:73:8a:3b:ed:46:e2:b3: b7:17:9a:e1:81:40:74:da:e3:1d:f7:d8:c9:f3:ed: c5:3f:22:ce:0e:51:68:71:8f:6e:8f:ef:50:2a:98: 4f:94:16:44:04:05:f2:17:18:62:33:af:0b:81:a2: 56:08:4e:3d:7e:00:2f:a1:da:fa:85:de:18:c5:87: 10:40:53:ed:2b:90:45:b2:38:c0:d0:c3:b8:46:24: 99:6e:76:a0:56:70:ad:62:c9:7d:74:da:a9:1d:be: 11:b9:57:bf:c3:ed:7a:cf:d7:3c:b4:99:16:64:8f: 64:c3:66:39:c6:5b:4a:62:bd:69:f2:05:9e:35:c1: b3:76:83:fe:df:2c:2e:c4:d1:2a:83:10:a9:f5:c7: 43:7b:89:b2:36:8e:4e:09:e0:4a:5c:db:24:8a:34: c4:4f:33:58:a6:c7:7f:48:76:7c:00:9b:0c:de:4a: 21:c1:f2:ee:7c:c9:95:e1:6c:3a:ce:6a:2b:a7:c5: d7:c7:3a:8d:9b:ef:8c:39:ca:af:22:3d:0f:53:84: 40:4b:d9:bc:94:db:06:f8:46:88:c8:76:87:55:83: df:7a:f3:d9:af:e2:f3:bd:86:a1:1c:ee:9e:77:04: 2d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9A:06:26:D1:30:BE:45:8E:51:F2:D9:0E:7D:E7:0F:41:CF:D3:81 X509v3 Authority Key Identifier: keyid:D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.176.0/24 Signature Algorithm: sha256WithRSAEncryption 11:2c:66:f6:cc:ef:10:d8:7e:eb:2a:e5:2f:5d:88:fa:c8:82: 62:f3:bb:4b:69:bc:9f:c8:f6:ca:b4:cd:ce:09:60:70:88:d5: 12:5d:4c:a8:cc:f1:77:cf:2a:55:5d:82:aa:50:0d:4a:75:2f: 81:bc:35:40:3b:4a:59:bc:6b:0a:f9:45:ee:7d:dc:b8:71:a1: ee:36:11:bc:75:d7:86:64:f9:bc:a3:4b:22:e3:66:c0:3e:45: 00:9a:0c:b7:41:07:6f:fd:fd:e9:ac:32:a2:65:3d:6c:98:ed: 8f:45:09:61:39:96:e1:21:6b:75:a6:eb:7b:ad:37:06:07:03: c4:2d:9c:52:b7:2d:b6:e6:6b:20:91:3e:bc:00:8b:11:86:e5: 48:d0:29:48:45:11:77:83:d2:a5:d8:34:95:a2:08:08:94:a4: 00:e5:8a:3a:36:58:7a:18:74:68:c8:f0:a3:3a:b4:62:cd:03: b5:2b:bc:40:7a:b5:99:0b:72:0d:07:eb:ce:d0:00:02:d8:bf: 57:d6:95:89:3e:1a:01:20:24:06:c3:66:a3:dd:c8:a8:0e:84: b3:f3:1f:0f:dd:11:af:f2:17:0c:2f:dc:f1:87:a3:ab:51:70: af:2b:ec:4a:37:3a:ff:a7:b4:e5:ef:7e:a8:b2:fc:ad:4f:d8: 71:04:a5:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSBgFjUyBgXUskzq4/meLPwwJroUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2 NzY5QzkwQjAeFw0yNjAzMjcxNzU3NDlaFw0yNzAzMjYxODAyNDlaMDMxMTAvBgNV BAMTKDZGOUEwNjI2RDEzMEJFNDU4RTUxRjJEOTBFN0RFNzBGNDFDRkQzODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFywccxpiMGpjzUS9phIAdLhUc oLxXc4o77Ubis7cXmuGBQHTa4x332Mnz7cU/Is4OUWhxj26P71AqmE+UFkQEBfIX GGIzrwuBolYITj1+AC+h2vqF3hjFhxBAU+0rkEWyOMDQw7hGJJludqBWcK1iyX10 2qkdvhG5V7/D7XrP1zy0mRZkj2TDZjnGW0pivWnyBZ41wbN2g/7fLC7E0SqDEKn1 x0N7ibI2jk4J4Epc2ySKNMRPM1imx39IdnwAmwzeSiHB8u58yZXhbDrOaiunxdfH Oo2b74w5yq8iPQ9ThEBL2byU2wb4RojIdodVg99689mv4vO9hqEc7p53BC0NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb5oGJtEwvkWOUfLZDn3nD0HP04EwHwYDVR0j BBgwFoAU0A9IvId5EP3Qt/8in9faUWdpyQswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMC9EMDBGNDhCQzg3 NzkxMEZERDBCN0ZGMjI5RkQ3REE1MTY3NjlDOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2NzY5 QzkwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKwMA0GCSqG SIb3DQEBCwUAA4IBAQARLGb2zO8Q2H7rKuUvXYj6yIJi87tLabyfyPbKtM3OCWBw iNUSXUyozPF3zypVXYKqUA1KdS+BvDVAO0pZvGsK+UXufdy4caHuNhG8ddeGZPm8 o0si42bAPkUAmgy3QQdv/f3prDKiZT1smO2PRQlhOZbhIWt1put7rTcGBwPELZxS ty225msgkT68AIsRhuVI0ClIRRF3g9Kl2DSVoggIlKQA5Yo6Nlh6GHRoyPCjOrRi zQO1K7xAerWZC3INB+vO0AAC2L9X1pWJPhoBICQGw2aj3cioDoSz8x8P3RGv8hcM L9zxh6OrUXCvK+xKNzr/p7Tl736osvytT9hxBKXx -----END CERTIFICATE-----Generated at Fri Apr 17 17:54:28 2026 by rpki-client