$ rpki-client -vvf repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa File: 3135372e36362e342e302f32332d3233203d3e20313336383633.roa (raw, json) Hash identifier: S8PeiYq+sNMV4GT9BdQ5QdX2kgnaTXk8Ia+DPJXGQoA= Subject key identifier: 24:D2:52:A9:CA:D0:F7:ED:BE:AE:EE:6B:1F:90:82:DD:76:51:FE:B1 Certificate issuer: /CN=676E12EDA912B67493E88316A428CFDBCAB51941 Certificate serial: 53E502FF399627EB708C2AF7EF93D7C65EBE6A9C Authority key identifier: 67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa Signing time: Sat 04 Apr 2026 04:00:03 +0000 ROA not before: Sat 04 Apr 2026 03:55:03 +0000 ROA not after: Sat 03 Apr 2027 04:00:03 +0000 asID: 136863 IP address blocks: 157.66.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 02:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e5:02:ff:39:96:27:eb:70:8c:2a:f7:ef:93:d7:c6:5e:be:6a:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=676E12EDA912B67493E88316A428CFDBCAB51941 Validity Not Before: Apr 4 03:55:03 2026 GMT Not After : Apr 3 04:00:03 2027 GMT Subject: CN=24D252A9CAD0F7EDBEAEEE6B1F9082DD7651FEB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:be:ae:41:0d:ea:93:db:cc:3c:24:d4:be:6b: d2:95:7a:a7:b8:3f:44:8f:dd:72:1c:b8:53:31:7c: f8:fe:b5:1f:f4:8c:91:b1:bc:ab:5e:0e:7e:da:3f: e2:f1:68:dd:8b:fe:89:6a:25:d5:ce:91:c1:a1:78: 53:23:85:48:42:c0:14:65:67:45:04:2e:47:5f:6f: 3d:54:68:84:9a:bf:32:85:c6:44:fe:de:2a:28:a3: e3:36:2a:24:2f:af:d7:0c:80:f6:a1:9d:66:d1:cc: ef:df:aa:ed:8a:a1:6f:74:2c:7e:dc:51:69:76:fd: f7:40:09:4a:63:a8:f3:c3:7c:f0:71:e3:45:86:72: 03:b6:f1:41:18:07:4d:e9:10:93:39:b8:22:1b:90: 60:f1:fc:e5:50:ad:9a:2f:05:3c:05:58:be:e6:71: ed:cb:67:27:95:48:26:d4:5d:22:af:d1:0c:e5:44: e2:f8:38:9b:f5:8d:f8:36:c9:41:34:54:73:f4:19: e6:83:6c:c2:c6:76:64:aa:94:3a:09:13:a5:4e:cb: b6:67:c6:4a:0e:f8:ae:f3:11:81:5e:93:2c:65:1d: c7:73:49:0a:e4:63:0e:6f:be:a6:d1:97:fd:56:54: 1f:3b:b9:18:31:3c:77:e6:23:8a:de:ed:fb:91:b5: 86:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D2:52:A9:CA:D0:F7:ED:BE:AE:EE:6B:1F:90:82:DD:76:51:FE:B1 X509v3 Authority Key Identifier: keyid:67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.4.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:98:bb:77:6f:f6:e5:2c:30:04:aa:f6:d8:91:bb:93:3b:ca: 6d:e5:8b:7e:8a:a6:34:db:cf:d7:e7:12:63:35:e7:3b:8f:68: 46:70:17:fc:ce:45:ca:a3:16:4c:fa:ee:c4:b0:13:d5:bb:92: f4:39:df:68:af:66:f5:2e:08:61:83:5a:b5:21:98:2c:ac:52: b9:47:8a:ca:21:78:bc:aa:79:33:9e:1c:45:78:f0:7d:99:c7: 7b:0f:68:06:fb:5a:81:5a:e2:4c:29:28:72:bf:ea:a2:4e:d7: 21:3c:e1:e5:63:74:ae:0e:56:b3:0e:20:01:db:60:3c:d2:0b: 4c:5c:78:09:fa:d7:5e:12:ee:a5:25:b8:3f:ff:44:c7:a4:05: 29:61:e0:86:b3:6e:3a:6f:1e:a2:3e:79:1a:7e:c1:60:cd:ec: 50:b2:49:63:bd:c0:6c:eb:4d:97:05:32:cd:58:7c:df:6e:60: 0b:61:46:33:9d:22:6c:7f:dc:39:f9:fd:70:8b:01:dd:f2:ae: b3:0b:44:16:67:44:de:a2:d5:d8:ab:b0:71:9f:98:98:de:bf: 90:5f:cf:ab:12:82:3d:07:8e:c0:6e:53:78:8e:44:d1:c4:59: a9:5f:8b:7b:82:07:a3:1c:b4:23:68:34:de:74:65:65:73:de: de:cd:a0:10 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUU+UC/zmWJ+twjCr375PXxl6+apwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJD QUI1MTk0MTAeFw0yNjA0MDQwMzU1MDNaFw0yNzA0MDMwNDAwMDNaMDMxMTAvBgNV BAMTKDI0RDI1MkE5Q0FEMEY3RURCRUFFRUU2QjFGOTA4MkRENzY1MUZFQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtvq5BDeqT28w8JNS+a9KVeqe4 P0SP3XIcuFMxfPj+tR/0jJGxvKteDn7aP+LxaN2L/olqJdXOkcGheFMjhUhCwBRl Z0UELkdfbz1UaISavzKFxkT+3iooo+M2KiQvr9cMgPahnWbRzO/fqu2KoW90LH7c UWl2/fdACUpjqPPDfPBx40WGcgO28UEYB03pEJM5uCIbkGDx/OVQrZovBTwFWL7m ce3LZyeVSCbUXSKv0QzlROL4OJv1jfg2yUE0VHP0GeaDbMLGdmSqlDoJE6VOy7Zn xkoO+K7zEYFekyxlHcdzSQrkYw5vvqbRl/1WVB87uRgxPHfmI4re7fuRtYanAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJNJSqcrQ9+2+ru5rH5CC3XZR/rEwHwYDVR0j BBgwFoAUZ24S7akStnST6IMWpCjP28q1GUEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjY0YmZiMi1kNDFkLTQzMTctYjkyZC1iYjk0NDFmZDBkY2YvMC82NzZFMTJFREE5 MTJCNjc0OTNFODgzMTZBNDI4Q0ZEQkNBQjUxOTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJDQUI1 MTk0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzQyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgQwDQYJKoZIhvcN AQELBQADggEBAJ6Yu3dv9uUsMASq9tiRu5M7ym3li36KpjTbz9fnEmM15zuPaEZw F/zORcqjFkz67sSwE9W7kvQ532ivZvUuCGGDWrUhmCysUrlHisoheLyqeTOeHEV4 8H2Zx3sPaAb7WoFa4kwpKHK/6qJO1yE84eVjdK4OVrMOIAHbYDzSC0xceAn6114S 7qUluD//RMekBSlh4IazbjpvHqI+eRp+wWDN7FCySWO9wGzrTZcFMs1YfN9uYAth RjOdImx/3Dn5/XCLAd3yrrMLRBZnRN6i1dirsHGfmJjev5Bfz6sSgj0HjsBuU3iO RNHEWalfi3uCB6MctCNoNN50ZWVz3t7NoBA= -----END CERTIFICATE-----Generated at Sat Apr 18 08:54:20 2026 by rpki-client