$ rpki-client -vvf repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa File: 3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa (raw, json) Hash identifier: 7VTB88vseP1qaXg78jeUQOCaADrxTcbc/a9UTrZD8c0= Subject key identifier: 2C:C1:D0:FB:F9:3A:A4:36:F4:C7:84:61:67:E3:41:6D:62:A3:E8:FB Certificate issuer: /CN=4ED16B9231905A1C7A353DF749BF99487E69E313 Certificate serial: 51BB068885993167B1A6E04C05240020438C1EE2 Authority key identifier: 4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa Signing time: Sat 28 Feb 2026 06:00:01 +0000 ROA not before: Sat 28 Feb 2026 05:55:01 +0000 ROA not after: Sat 27 Feb 2027 06:00:01 +0000 asID: 152425 IP address blocks: 157.20.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.crl rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:bb:06:88:85:99:31:67:b1:a6:e0:4c:05:24:00:20:43:8c:1e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ED16B9231905A1C7A353DF749BF99487E69E313 Validity Not Before: Feb 28 05:55:01 2026 GMT Not After : Feb 27 06:00:01 2027 GMT Subject: CN=2CC1D0FBF93AA436F4C7846167E3416D62A3E8FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:de:9d:2a:21:1a:a5:66:e4:ce:d7:4c:21:2e: 78:6f:db:f9:32:e1:96:83:63:9f:f8:0f:2d:0d:ee: d0:36:9d:d7:53:8b:5b:21:b1:a7:9d:7d:4f:1f:8c: 47:15:13:92:72:1c:dd:9d:28:ea:40:0a:b1:89:df: 6a:63:c4:0a:40:b7:35:52:92:6c:a8:37:35:15:ad: d6:b0:3f:a9:3e:8f:5b:a5:c4:9b:f0:7b:ee:e2:92: f8:6b:30:f4:7b:d4:b3:bb:44:45:f2:ef:04:2c:11: 97:94:16:ca:ca:53:ba:ec:85:6a:01:a0:36:4f:23: fc:9b:ac:f6:0c:20:e7:49:20:bd:0b:89:33:2a:75: 60:6f:43:db:b8:8e:47:bf:08:cb:bb:25:2d:cb:c0: 3c:9e:38:9c:0b:5f:93:1c:0a:44:ae:e8:9d:38:5e: 2a:db:57:d7:e5:b3:c5:22:eb:55:a0:1f:d2:b6:f1: af:a1:75:8c:97:ab:e6:76:88:3d:13:1d:73:e0:50: 2d:9c:8d:e6:01:89:ae:b2:b5:9c:39:90:2a:cb:50: c5:7a:97:03:5b:f5:4d:08:fa:f0:17:2e:74:70:a6: 98:51:97:51:6c:7b:04:e0:b7:82:95:fe:08:b4:94: d1:e4:12:7e:2b:2e:41:15:1c:3d:da:62:86:02:fb: 8b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C1:D0:FB:F9:3A:A4:36:F4:C7:84:61:67:E3:41:6D:62:A3:E8:FB X509v3 Authority Key Identifier: keyid:4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.100.0/24 Signature Algorithm: sha256WithRSAEncryption 87:a5:65:f4:cd:5a:95:23:ec:c8:84:c9:b2:93:c1:0d:5c:69: 61:ad:de:3a:25:f1:da:62:31:75:22:0f:41:1d:72:b7:3f:5a: 0c:54:c4:d9:80:79:c4:f2:36:b0:93:fe:83:3a:f8:e4:f3:e0: 13:1c:3f:8e:f8:b9:7d:a8:2a:02:e8:8c:12:9a:bc:83:47:fb: 8e:b3:53:99:0b:75:d2:92:11:7c:00:ed:14:86:03:58:0f:85: 19:b0:5a:93:ee:80:c1:67:85:a6:41:16:5e:79:b3:cf:74:e7: 9a:77:49:2d:3f:ba:19:39:81:c2:1f:d4:10:d7:4a:9a:15:7b: 09:78:86:36:28:84:ee:7b:d9:23:9e:bc:3e:4d:b9:1e:7b:cf: 43:73:43:8c:eb:ae:73:81:04:78:75:53:7b:0a:e9:7d:b9:41: 1c:76:a7:0e:d8:2c:8c:d7:a1:fc:87:0d:3e:02:cc:04:aa:53: 40:fe:5e:be:94:d4:60:42:f7:8f:b6:23:e6:93:10:ca:ac:38: 7a:15:7c:9f:85:cb:32:9c:19:5c:be:27:41:0d:d6:e9:6e:77: 67:ca:61:c6:78:f5:c3:c8:dc:49:55:fb:cf:e8:5b:f0:b1:be: a5:81:2f:21:27:96:20:0e:69:53:85:e0:fb:ad:f6:50:8a:c0: f2:f2:3b:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUbsGiIWZMWexpuBMBSQAIEOMHuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVEMTZCOTIzMTkwNUExQzdBMzUzREY3NDlCRjk5NDg3 RTY5RTMxMzAeFw0yNjAyMjgwNTU1MDFaFw0yNzAyMjcwNjAwMDFaMDMxMTAvBgNV BAMTKDJDQzFEMEZCRjkzQUE0MzZGNEM3ODQ2MTY3RTM0MTZENjJBM0U4RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy3p0qIRqlZuTO10whLnhv2/ky 4ZaDY5/4Dy0N7tA2nddTi1shsaedfU8fjEcVE5JyHN2dKOpACrGJ32pjxApAtzVS kmyoNzUVrdawP6k+j1ulxJvwe+7ikvhrMPR71LO7REXy7wQsEZeUFsrKU7rshWoB oDZPI/ybrPYMIOdJIL0LiTMqdWBvQ9u4jke/CMu7JS3LwDyeOJwLX5McCkSu6J04 XirbV9fls8Ui61WgH9K28a+hdYyXq+Z2iD0THXPgUC2cjeYBia6ytZw5kCrLUMV6 lwNb9U0I+vAXLnRwpphRl1FsewTgt4KV/gi0lNHkEn4rLkEVHD3aYoYC+4urAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULMHQ+/k6pDb0x4RhZ+NBbWKj6PswHwYDVR0j BBgwFoAUTtFrkjGQWhx6NT33Sb+ZSH5p4xMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Yjg4ZDJjYS0yMjliLTRhYWMtOWI1Yy00MmMxNTEwNWJiODIvMC80RUQxNkI5MjMx OTA1QTFDN0EzNTNERjc0OUJGOTk0ODdFNjlFMzEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNEVEMTZCOTIzMTkwNUExQzdBMzUzREY3NDlCRjk5NDg3RTY5 RTMxMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiODhkMmNhLTIyOWItNGFhYy05 YjVjLTQyYzE1MTA1YmI4Mi8wLzMxMzUzNzJlMzIzMDJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRRkMA0GCSqG SIb3DQEBCwUAA4IBAQCHpWX0zVqVI+zIhMmyk8ENXGlhrd46JfHaYjF1Ig9BHXK3 P1oMVMTZgHnE8jawk/6DOvjk8+ATHD+O+Ll9qCoC6IwSmryDR/uOs1OZC3XSkhF8 AO0UhgNYD4UZsFqT7oDBZ4WmQRZeebPPdOead0ktP7oZOYHCH9QQ10qaFXsJeIY2 KITue9kjnrw+Tbkee89Dc0OM665zgQR4dVN7Cul9uUEcdqcO2CyM16H8hw0+AswE qlNA/l6+lNRgQvePtiPmkxDKrDh6FXyfhcsynBlcvidBDdbpbndnymHGePXDyNxJ VfvP6Fvwsb6lgS8hJ5YgDmlTheD7rfZQisDy8jvv -----END CERTIFICATE-----Generated at Mon Mar 2 20:16:16 2026 by rpki-client