$ rpki-client -vvf repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235312e302f32342d3234203d3e20313532373635.roa File: 3135372e36362e3235312e302f32342d3234203d3e20313532373635.roa (raw, json) Hash identifier: 8Vg70sDR83+R4h61BM4oF6HfBSYpvZjABNGi/+A+V20= Subject key identifier: 10:98:34:44:70:87:DB:3F:C8:81:E6:A0:56:F0:B4:ED:36:D5:F3:D5 Certificate issuer: /CN=D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85 Certificate serial: 2696E31730E338FFECF893DF2C80CE5726071FD2 Authority key identifier: D0:DD:54:04:78:1A:BE:E3:CF:6A:74:AD:A8:E9:3F:41:ED:4B:5F:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235312e302f32342d3234203d3e20313532373635.roa Signing time: Fri 27 Feb 2026 03:14:22 +0000 ROA not before: Fri 27 Feb 2026 03:09:22 +0000 ROA not after: Fri 26 Feb 2027 03:14:22 +0000 asID: 152765 IP address blocks: 157.66.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.crl rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 12:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:96:e3:17:30:e3:38:ff:ec:f8:93:df:2c:80:ce:57:26:07:1f:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85 Validity Not Before: Feb 27 03:09:22 2026 GMT Not After : Feb 26 03:14:22 2027 GMT Subject: CN=109834447087DB3FC881E6A056F0B4ED36D5F3D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:22:98:de:0a:d1:b5:58:d2:5b:ea:c6:47:dc: 66:ce:3f:9b:ad:fa:1b:16:15:d0:ac:90:92:b5:e1: 5d:37:bf:3a:dd:46:6e:d4:72:44:d4:e0:79:bc:ab: d9:62:93:cb:31:84:e6:ff:4b:0c:65:44:31:7f:f0: f1:34:9f:17:25:1b:bd:3e:f9:97:82:8b:3e:30:c4: 50:e8:48:bc:61:21:f9:a4:be:2b:3e:a2:f9:2e:ef: a3:7c:2a:d6:6e:6d:a4:2f:5e:b5:20:74:2c:5d:2b: 83:35:36:13:ec:a2:89:34:9f:bf:7f:c9:0f:a2:9e: 24:1a:21:f3:54:11:2c:9c:ee:86:fa:d7:f2:22:b4: e4:d3:d3:ae:1b:0e:3b:5a:b1:6d:00:f3:50:b1:06: 05:c1:a7:c0:c8:19:ea:a7:7b:14:31:fe:aa:40:ee: 2a:1f:db:a8:02:7f:0f:ec:d1:44:d7:3d:1f:f3:a6: a7:e1:05:4f:f4:f4:0f:be:38:cc:1d:f9:fb:40:1a: 07:69:8b:f8:59:57:34:6f:fb:64:25:70:86:e1:30: aa:90:86:db:44:6a:73:90:f4:7c:b0:ef:95:a9:cf: 64:95:8a:95:8a:f6:ad:eb:8d:59:8d:e1:f6:15:79: 3e:ee:b7:13:47:4b:16:1b:0a:f0:3d:a9:6c:c4:22: f2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:98:34:44:70:87:DB:3F:C8:81:E6:A0:56:F0:B4:ED:36:D5:F3:D5 X509v3 Authority Key Identifier: keyid:D0:DD:54:04:78:1A:BE:E3:CF:6A:74:AD:A8:E9:3F:41:ED:4B:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D0DD5404781ABEE3CF6A74ADA8E93F41ED4B5F85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235312e302f32342d3234203d3e20313532373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.251.0/24 Signature Algorithm: sha256WithRSAEncryption 95:2b:79:64:38:94:e9:c6:9f:f0:af:3f:ba:d6:78:f4:2b:47: 6b:46:30:72:83:30:e3:e7:63:79:6f:29:7c:b0:62:a3:6f:f5: a9:26:a1:c7:d4:99:5e:e4:9b:fb:b8:ab:5f:9f:64:f4:42:98: 40:32:84:23:64:e8:a9:ef:c5:11:c6:69:9c:9f:06:ec:22:e4: 2e:10:b1:ec:f9:9b:0d:5f:ec:6c:65:67:a6:e5:3e:37:51:ee: 0f:b4:b5:ba:d1:b2:9e:f9:0a:2b:79:8f:8d:84:a6:b6:71:be: 3a:a2:34:f7:5b:ca:fa:fb:dc:46:5e:4e:18:c4:d4:45:f8:4d: 48:d7:aa:3c:b1:ab:63:b9:57:a9:d6:13:58:d3:0d:8c:d9:90: 91:e7:c7:aa:af:96:7f:4e:7e:59:d4:cd:e7:f6:ef:5e:68:71: bd:d3:eb:c4:d4:4a:7e:62:a1:03:18:64:52:58:81:e9:2a:16: 4f:31:70:d7:9b:15:a0:90:b1:a5:9f:a0:03:bb:bc:f8:fd:7b: 35:1b:97:b4:bd:e8:66:ca:2a:00:55:62:66:33:d6:41:d6:30: a7:d3:01:de:fe:9b:9a:0d:78:ed:81:0a:c2:b0:14:78:25:d0: 2f:fd:8a:47:cb:6d:9c:d8:dc:b6:b4:a1:bc:6e:56:03:cb:35: 01:b8:9b:5b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJpbjFzDjOP/s+JPfLIDOVyYHH9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBERDU0MDQ3ODFBQkVFM0NGNkE3NEFEQThFOTNGNDFF RDRCNUY4NTAeFw0yNjAyMjcwMzA5MjJaFw0yNzAyMjYwMzE0MjJaMDMxMTAvBgNV BAMTKDEwOTgzNDQ0NzA4N0RCM0ZDODgxRTZBMDU2RjBCNEVEMzZENUYzRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnIpjeCtG1WNJb6sZH3GbOP5ut +hsWFdCskJK14V03vzrdRm7UckTU4Hm8q9lik8sxhOb/SwxlRDF/8PE0nxclG70+ +ZeCiz4wxFDoSLxhIfmkvis+ovku76N8KtZubaQvXrUgdCxdK4M1NhPsook0n79/ yQ+iniQaIfNUESyc7ob61/IitOTT064bDjtasW0A81CxBgXBp8DIGeqnexQx/qpA 7iof26gCfw/s0UTXPR/zpqfhBU/09A++OMwd+ftAGgdpi/hZVzRv+2QlcIbhMKqQ httEanOQ9Hyw75Wpz2SVipWK9q3rjVmN4fYVeT7utxNHSxYbCvA9qWzEIvLLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEJg0RHCH2z/IgeagVvC07TbV89UwHwYDVR0j BBgwFoAU0N1UBHgavuPPanStqOk/Qe1LX4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTJiZjg2My1hMWYwLTQyZDAtOWUzYS0zZjlmZjY5YTJkMTUvMC9EMERENTQwNDc4 MUFCRUUzQ0Y2QTc0QURBOEU5M0Y0MUVENEI1Rjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDBERDU0MDQ3ODFBQkVFM0NGNkE3NEFEQThFOTNGNDFFRDRC NUY4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxMmJmODYzLWExZjAtNDJkMC05 ZTNhLTNmOWZmNjlhMmQxNS8wLzMxMzUzNzJlMzYzNjJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUL7MA0GCSqG SIb3DQEBCwUAA4IBAQCVK3lkOJTpxp/wrz+61nj0K0drRjBygzDj52N5byl8sGKj b/WpJqHH1Jle5Jv7uKtfn2T0QphAMoQjZOip78URxmmcnwbsIuQuELHs+ZsNX+xs ZWem5T43Ue4PtLW60bKe+QoreY+NhKa2cb46ojT3W8r6+9xGXk4YxNRF+E1I16o8 satjuVep1hNY0w2M2ZCR58eqr5Z/Tn5Z1M3n9u9eaHG90+vE1Ep+YqEDGGRSWIHp KhZPMXDXmxWgkLGln6ADu7z4/Xs1G5e0vehmyioAVWJmM9ZB1jCn0wHe/puaDXjt gQrCsBR4JdAv/YpHy22c2Ny2tKG8blYDyzUBuJtb -----END CERTIFICATE-----Generated at Mon Mar 2 15:05:47 2026 by rpki-client