$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa File: 3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa (raw, json) Hash identifier: 8TXKICwT8dIf+BWgcGR3HNuwgXa2m57AHbNnxJIYs1s= Subject key identifier: 54:FA:99:00:FE:78:48:6B:4F:36:A6:C3:E6:5F:8B:AB:B7:AE:B2:D7 Certificate issuer: /CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Certificate serial: 0883B439205D581420DA3B8F45437A835721F7EB Authority key identifier: D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa Signing time: Fri 27 Mar 2026 18:02:48 +0000 ROA not before: Fri 27 Mar 2026 17:57:48 +0000 ROA not after: Fri 26 Mar 2027 18:02:48 +0000 asID: 152756 IP address blocks: 157.66.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:83:b4:39:20:5d:58:14:20:da:3b:8f:45:43:7a:83:57:21:f7:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00F48BC877910FDD0B7FF229FD7DA516769C90B Validity Not Before: Mar 27 17:57:48 2026 GMT Not After : Mar 26 18:02:48 2027 GMT Subject: CN=54FA9900FE78486B4F36A6C3E65F8BABB7AEB2D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:b2:32:dd:df:c5:0d:2c:18:9a:f0:c5:5e: 3b:f5:08:66:0a:54:3a:9e:53:54:8d:ac:cc:4b:cb: e0:d1:cb:81:9d:60:7e:19:75:b8:e7:f6:43:9c:b1: fb:06:7e:f0:ab:9e:1b:c7:b9:ad:15:96:be:ea:a9: 72:8f:7c:4c:e8:8e:73:28:cc:dd:8d:6d:5a:81:ff: bd:63:7b:7f:26:70:0b:ac:ac:b3:b9:11:50:81:0a: 73:0a:95:95:52:32:0a:b1:95:e1:2c:db:a5:0b:c2: e9:3c:d2:aa:17:cf:15:43:1c:99:bf:d5:c0:5b:7e: c3:27:9f:71:80:b3:dc:93:d7:83:c0:1e:84:e5:dc: 2c:e6:18:ed:30:be:93:81:58:af:38:42:5d:3b:52: 99:52:d0:d5:f6:6f:0d:0f:51:56:03:cb:81:fc:fb: 88:9f:8b:02:7b:ce:09:20:0a:8e:21:c1:38:7d:60: d4:29:6d:5f:aa:93:9d:6e:0f:f2:45:fd:d2:ec:49: a8:c0:87:2a:12:f5:6c:7e:ed:0a:9a:bb:98:36:7f: 19:ea:6e:83:31:cc:91:d2:5a:44:1e:39:e5:38:a3: 27:19:bd:17:77:23:b8:ba:18:b6:af:77:d2:1d:4c: b9:ec:25:70:24:a9:bf:39:b6:00:79:9a:9f:36:42: 08:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:FA:99:00:FE:78:48:6B:4F:36:A6:C3:E6:5F:8B:AB:B7:AE:B2:D7 X509v3 Authority Key Identifier: keyid:D0:0F:48:BC:87:79:10:FD:D0:B7:FF:22:9F:D7:DA:51:67:69:C9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/D00F48BC877910FDD0B7FF229FD7DA516769C90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D00F48BC877910FDD0B7FF229FD7DA516769C90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.177.0/24 Signature Algorithm: sha256WithRSAEncryption 04:52:a8:a7:45:d7:e0:c6:48:ad:ad:aa:13:0e:83:c6:da:b0: 10:62:19:07:00:ea:63:6a:6b:4b:13:29:79:8f:94:55:73:ae: 4f:a0:04:3b:8b:85:37:84:45:35:95:bd:39:52:b6:db:69:d7: 2f:6f:ba:e8:2d:d6:03:33:43:bd:ae:0a:09:aa:0d:1e:db:b2: 28:20:5f:bf:05:16:77:5d:b0:7a:36:cf:d5:ac:90:7e:52:d1: 42:c5:67:b6:bd:a4:bf:a9:b4:3b:61:c0:46:89:77:a0:80:f8: 8a:3a:d3:e4:c3:b6:ea:72:8e:b6:10:a2:26:e1:c3:71:94:d9: 09:1c:25:bc:be:11:ec:95:1c:c4:5a:85:d4:b6:e1:b5:7d:67: 51:9a:94:3b:1b:41:4f:51:fe:41:20:04:33:65:c7:07:a6:02: df:11:25:ed:8d:05:7a:36:44:90:25:38:b2:77:fc:f8:01:dc: f5:59:1e:e8:26:fb:0b:6e:8d:c4:66:bb:75:63:04:9f:9a:32: fb:4e:2f:9e:22:9e:4d:e2:67:3b:99:35:cc:d5:c7:ee:79:cf: d4:ce:d2:0f:e2:a4:e3:6f:94:b3:e0:10:d2:5a:0c:04:98:5e: 63:60:83:77:27:1d:ab:ec:b8:6c:ec:13:6d:99:9a:5b:31:e5: 83:a8:ab:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCIO0OSBdWBQg2juPRUN6g1ch9+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2 NzY5QzkwQjAeFw0yNjAzMjcxNzU3NDhaFw0yNzAzMjYxODAyNDhaMDMxMTAvBgNV BAMTKDU0RkE5OTAwRkU3ODQ4NkI0RjM2QTZDM0U2NUY4QkFCQjdBRUIyRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEZrIy3d/FDSwYmvDFXjv1CGYK VDqeU1SNrMxLy+DRy4GdYH4Zdbjn9kOcsfsGfvCrnhvHua0Vlr7qqXKPfEzojnMo zN2NbVqB/71je38mcAusrLO5EVCBCnMKlZVSMgqxleEs26ULwuk80qoXzxVDHJm/ 1cBbfsMnn3GAs9yT14PAHoTl3CzmGO0wvpOBWK84Ql07UplS0NX2bw0PUVYDy4H8 +4ifiwJ7zgkgCo4hwTh9YNQpbV+qk51uD/JF/dLsSajAhyoS9Wx+7Qqau5g2fxnq boMxzJHSWkQeOeU4oycZvRd3I7i6GLavd9IdTLnsJXAkqb85tgB5mp82QggTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVPqZAP54SGtPNqbD5l+Lq7eustcwHwYDVR0j BBgwFoAU0A9IvId5EP3Qt/8in9faUWdpyQswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMC9EMDBGNDhCQzg3 NzkxMEZERDBCN0ZGMjI5RkQ3REE1MTY3NjlDOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDAwRjQ4QkM4Nzc5MTBGREQwQjdGRjIyOUZEN0RBNTE2NzY5 QzkwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKxMA0GCSqG SIb3DQEBCwUAA4IBAQAEUqinRdfgxkitraoTDoPG2rAQYhkHAOpjamtLEyl5j5RV c65PoAQ7i4U3hEU1lb05Urbbadcvb7roLdYDM0O9rgoJqg0e27IoIF+/BRZ3XbB6 Ns/VrJB+UtFCxWe2vaS/qbQ7YcBGiXeggPiKOtPkw7bqco62EKIm4cNxlNkJHCW8 vhHslRzEWoXUtuG1fWdRmpQ7G0FPUf5BIAQzZccHpgLfESXtjQV6NkSQJTiyd/z4 Adz1WR7oJvsLbo3EZrt1YwSfmjL7Ti+eIp5N4mc7mTXM1cfuec/UztIP4qTjb5Sz 4BDSWgwEmF5jYIN3Jx2r7Lhs7BNtmZpbMeWDqKsm -----END CERTIFICATE-----Generated at Fri Apr 17 17:10:50 2026 by rpki-client