$ rpki-client -vvf repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa File: 3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa (raw, json) Hash identifier: j5xRnyx9ltTxdxtyDGq7eViM99V3PYzjmvt9btMBjHc= Subject key identifier: 21:14:4D:3B:A1:71:8B:9F:30:C6:1C:AD:C2:2E:F2:D9:9D:2C:D2:C1 Certificate issuer: /CN=D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85 Certificate serial: 3C038AE394A9EDA5DA574A0BA686C7F90B49142B Authority key identifier: D0:DD:54:04:78:1A:BE:E3:CF:6A:74:AD:A8:E9:3F:41:ED:4B:5F:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa Signing time: Fri 27 Feb 2026 03:14:54 +0000 ROA not before: Fri 27 Feb 2026 03:09:54 +0000 ROA not after: Fri 26 Feb 2027 03:14:54 +0000 asID: 152765 IP address blocks: 157.66.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.crl rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 12:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:03:8a:e3:94:a9:ed:a5:da:57:4a:0b:a6:86:c7:f9:0b:49:14:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85 Validity Not Before: Feb 27 03:09:54 2026 GMT Not After : Feb 26 03:14:54 2027 GMT Subject: CN=21144D3BA1718B9F30C61CADC22EF2D99D2CD2C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ea:7c:bd:9e:16:56:a4:53:03:82:93:31:21: 05:dd:0b:0b:89:bf:10:7b:50:04:ac:0a:1c:5d:cb: 0a:a9:bb:18:3a:77:34:5f:e1:0e:c9:8d:4b:f1:31: 60:19:69:34:c3:e2:4b:85:a0:55:17:72:f9:dc:b2: 89:b5:46:36:d7:e2:bd:ce:a3:28:ee:b1:be:9c:1d: d4:5f:00:37:24:00:23:6d:a4:17:52:b3:68:6e:49: c9:b9:17:d7:de:aa:7a:5a:fa:39:eb:24:69:91:a2: d1:da:51:ef:34:7c:59:83:84:85:83:0a:8a:3d:91: e4:e7:74:2c:2a:81:41:bb:97:3f:05:25:4e:b7:ca: ba:fd:e4:f7:6e:d5:f0:47:ce:16:fc:bc:a3:2c:94: 61:08:76:69:56:de:5a:62:b3:bd:40:03:28:9c:d9: ed:8e:39:dd:ba:15:f6:74:cb:67:39:01:36:98:0e: 06:3f:be:23:20:3d:b1:11:b5:f1:68:ac:b2:99:b9: 9c:98:2f:8f:a0:90:e9:e8:9c:5f:5e:5e:31:31:f7: 3b:f9:90:26:6e:2e:6b:c0:ff:b8:ea:b4:e7:3b:39: d9:e6:95:dc:45:cf:b1:ac:68:99:05:c1:dd:34:74: 32:80:83:64:d3:b7:fc:bc:b5:2b:59:bf:9c:fd:11: a7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:14:4D:3B:A1:71:8B:9F:30:C6:1C:AD:C2:2E:F2:D9:9D:2C:D2:C1 X509v3 Authority Key Identifier: keyid:D0:DD:54:04:78:1A:BE:E3:CF:6A:74:AD:A8:E9:3F:41:ED:4B:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.250.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:c1:49:51:ca:21:18:c3:d8:b0:12:66:d7:de:32:d0:c1:26: 9f:78:77:89:ce:f9:d7:35:9e:4e:da:07:a4:84:97:06:80:10: 2c:27:bb:d5:e7:c2:72:fb:c8:5c:f8:2b:03:6c:52:ef:9f:b9: c8:1d:00:b3:b7:3a:2c:49:01:65:4b:db:e5:2b:c6:7a:01:60: 30:58:02:1b:2a:35:a0:95:b9:26:d3:7e:d9:35:e4:78:8b:b9: 5e:a5:ad:e5:d4:f0:ba:01:39:c5:d7:c5:41:b1:f4:79:41:f0: 71:e4:4e:e8:53:8b:46:2d:64:22:18:d0:66:ab:cd:b4:e4:03: 4b:cd:10:5c:f2:87:23:4b:c9:bc:4f:fd:7c:6d:81:07:76:04: 81:c2:fc:02:ef:aa:e6:be:74:96:56:ad:d3:5b:34:78:da:df: 05:ba:03:66:2a:d5:75:77:03:39:fb:89:33:66:49:80:ae:a8: 4a:b7:da:30:63:c4:85:c4:0c:9a:f5:b3:2b:b0:45:17:20:52: 62:67:de:c3:2c:0a:20:a1:63:a5:20:79:c2:7c:b8:9c:32:4f: c6:fb:fb:5d:70:3f:80:9b:87:78:6c:76:a0:7b:5d:97:d5:0b: 08:be:5f:6b:08:07:df:74:4e:d0:0e:9d:46:16:da:9a:c3:8b: c3:f1:50:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPAOK45Sp7aXaV0oLpobH+QtJFCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBERDU0MDQ3ODFBQkVFM0NGNkE3NEFEQThFOTNGNDFF RDRCNUY4NTAeFw0yNjAyMjcwMzA5NTRaFw0yNzAyMjYwMzE0NTRaMDMxMTAvBgNV BAMTKDIxMTQ0RDNCQTE3MThCOUYzMEM2MUNBREMyMkVGMkQ5OUQyQ0QyQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR6ny9nhZWpFMDgpMxIQXdCwuJ vxB7UASsChxdywqpuxg6dzRf4Q7JjUvxMWAZaTTD4kuFoFUXcvncsom1RjbX4r3O oyjusb6cHdRfADckACNtpBdSs2huScm5F9feqnpa+jnrJGmRotHaUe80fFmDhIWD Coo9keTndCwqgUG7lz8FJU63yrr95Pdu1fBHzhb8vKMslGEIdmlW3lpis71AAyic 2e2OOd26FfZ0y2c5ATaYDgY/viMgPbERtfForLKZuZyYL4+gkOnonF9eXjEx9zv5 kCZuLmvA/7jqtOc7OdnmldxFz7GsaJkFwd00dDKAg2TTt/y8tStZv5z9EafjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIRRNO6Fxi58wxhytwi7y2Z0s0sEwHwYDVR0j BBgwFoAU0N1UBHgavuPPanStqOk/Qe1LX4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTJiZjg2My1hMWYwLTQyZDAtOWUzYS0zZjlmZjY5YTJkMTUvMC9EMERENTQwNDc4 MUFCRUUzQ0Y2QTc0QURBOEU5M0Y0MUVENEI1Rjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDBERDU0MDQ3ODFBQkVFM0NGNkE3NEFEQThFOTNGNDFFRDRC NUY4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxMmJmODYzLWExZjAtNDJkMC05 ZTNhLTNmOWZmNjlhMmQxNS8wLzMxMzUzNzJlMzYzNjJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUL6MA0GCSqG SIb3DQEBCwUAA4IBAQAcwUlRyiEYw9iwEmbX3jLQwSafeHeJzvnXNZ5O2gekhJcG gBAsJ7vV58Jy+8hc+CsDbFLvn7nIHQCztzosSQFlS9vlK8Z6AWAwWAIbKjWglbkm 037ZNeR4i7lepa3l1PC6ATnF18VBsfR5QfBx5E7oU4tGLWQiGNBmq8205ANLzRBc 8ocjS8m8T/18bYEHdgSBwvwC76rmvnSWVq3TWzR42t8FugNmKtV1dwM5+4kzZkmA rqhKt9owY8SFxAya9bMrsEUXIFJiZ97DLAogoWOlIHnCfLicMk/G+/tdcD+Am4d4 bHage12X1QsIvl9rCAffdE7QDp1GFtqaw4vD8VBN -----END CERTIFICATE-----Generated at Mon Mar 2 13:14:02 2026 by rpki-client