$ rpki-client -vvf repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32342d3234203d3e20313336383633.roa File: 3135372e36362e342e302f32342d3234203d3e20313336383633.roa (raw, json) Hash identifier: dMrGdN3jz8zMFZFmBytqEtO63mjKB2uQPhY+tz5vgrM= Subject key identifier: 25:10:04:A9:94:9D:3E:E7:13:53:99:63:33:9D:FB:48:1C:07:F3:8D Certificate issuer: /CN=676E12EDA912B67493E88316A428CFDBCAB51941 Certificate serial: 0167E5EBA177ED19F369263490A3CEE2673912B2 Authority key identifier: 67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32342d3234203d3e20313336383633.roa Signing time: Sat 04 Apr 2026 04:00:02 +0000 ROA not before: Sat 04 Apr 2026 03:55:02 +0000 ROA not after: Sat 03 Apr 2027 04:00:02 +0000 asID: 136863 IP address blocks: 157.66.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 02:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:67:e5:eb:a1:77:ed:19:f3:69:26:34:90:a3:ce:e2:67:39:12:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=676E12EDA912B67493E88316A428CFDBCAB51941 Validity Not Before: Apr 4 03:55:02 2026 GMT Not After : Apr 3 04:00:02 2027 GMT Subject: CN=251004A9949D3EE713539963339DFB481C07F38D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1a:55:5b:7c:e6:f2:ad:de:b4:a0:5c:f6:a0: a0:3d:48:4f:e1:df:3e:de:1e:6a:60:5e:ed:3e:af: d5:0a:3e:07:fd:e9:e2:8f:f2:25:7a:41:6f:ac:d8: 57:8c:a1:0f:db:c3:c8:ba:b2:da:d5:16:f7:2e:fc: b3:f5:6f:a1:d9:34:a6:c4:e9:37:6b:f8:2c:6b:f4: cb:85:0b:76:b7:56:4d:36:04:95:2f:6b:2a:fe:78: 88:bb:2c:c6:d3:76:a0:b8:a5:d0:6a:27:50:ce:c9: ca:d5:91:30:c6:89:ed:14:72:9b:c2:cb:ec:19:e8: fd:84:f9:45:fc:60:8c:0d:a2:98:27:89:b4:72:92: 01:68:ba:06:dc:e7:01:43:17:7c:65:3f:a4:48:0b: cf:23:bc:ea:8e:47:2b:21:8b:80:dd:2b:89:8c:dd: 11:3e:82:d2:60:2f:f2:5d:f2:1b:45:67:e8:fd:51: d1:db:dd:83:8d:cd:16:fa:9a:0e:59:85:cb:5c:a5: ac:29:30:13:7d:02:73:68:04:95:49:44:8f:72:1f: 03:b2:ce:28:c2:b9:e7:0d:86:50:59:f3:81:b5:72: 77:48:f7:60:30:e5:40:36:94:d5:60:ec:00:3c:e5: 37:92:7f:d8:d3:84:76:c8:85:11:c9:ae:93:fa:d3: 7f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:10:04:A9:94:9D:3E:E7:13:53:99:63:33:9D:FB:48:1C:07:F3:8D X509v3 Authority Key Identifier: keyid:67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32342d3234203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.4.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:ad:dd:e5:b7:a0:e5:a6:9c:a0:6e:4f:96:4d:66:bc:dd:0c: 7a:b6:ba:f3:6c:9e:e3:88:e2:7a:e7:7a:8d:24:2f:03:85:91: 04:2f:39:74:71:73:cb:70:0d:17:24:0f:8f:45:58:1c:c3:70: 1e:f8:ee:a3:89:c6:69:9d:71:71:12:0a:d7:68:5b:be:cd:60: 6a:77:44:4d:26:9d:89:ab:61:73:3f:73:31:12:40:e6:45:23: 00:2e:89:b6:7f:44:5a:a8:a7:b7:d8:37:ab:5f:5d:e5:d8:14: 22:e4:76:b3:9a:54:e9:13:be:9a:36:21:18:76:38:82:fc:c9: 9a:d6:72:0c:e9:1a:39:fa:0c:1a:0e:cc:7d:b4:b3:22:6d:9d: d9:15:3e:66:f2:df:0c:93:fc:44:90:c6:32:2c:ca:bb:4a:1b: 2d:ae:e6:10:22:a0:ee:ad:22:3b:92:b7:19:fc:89:e2:c0:22: 3f:5d:ea:0f:d0:c0:d1:8f:27:b0:05:6a:31:ac:89:9a:95:09: 73:8d:ef:76:1e:74:17:e3:7c:1a:94:7c:27:02:7c:ec:ac:c1: dc:20:08:c1:ed:89:59:95:f3:12:1c:59:bf:f6:be:ad:e3:0f: 1f:1c:98:23:91:d9:b6:fe:4d:ca:32:64:62:c3:1c:75:fd:0c: 58:b6:6c:a5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAWfl66F37RnzaSY0kKPO4mc5ErIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJD QUI1MTk0MTAeFw0yNjA0MDQwMzU1MDJaFw0yNzA0MDMwNDAwMDJaMDMxMTAvBgNV BAMTKDI1MTAwNEE5OTQ5RDNFRTcxMzUzOTk2MzMzOURGQjQ4MUMwN0YzOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIGlVbfObyrd60oFz2oKA9SE/h 3z7eHmpgXu0+r9UKPgf96eKP8iV6QW+s2FeMoQ/bw8i6strVFvcu/LP1b6HZNKbE 6Tdr+Cxr9MuFC3a3Vk02BJUvayr+eIi7LMbTdqC4pdBqJ1DOycrVkTDGie0UcpvC y+wZ6P2E+UX8YIwNopgnibRykgFougbc5wFDF3xlP6RIC88jvOqORyshi4DdK4mM 3RE+gtJgL/Jd8htFZ+j9UdHb3YONzRb6mg5ZhctcpawpMBN9AnNoBJVJRI9yHwOy zijCuecNhlBZ84G1cndI92Aw5UA2lNVg7AA85TeSf9jThHbIhRHJrpP6038RAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJRAEqZSdPucTU5ljM537SBwH840wHwYDVR0j BBgwFoAUZ24S7akStnST6IMWpCjP28q1GUEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjY0YmZiMi1kNDFkLTQzMTctYjkyZC1iYjk0NDFmZDBkY2YvMC82NzZFMTJFREE5 MTJCNjc0OTNFODgzMTZBNDI4Q0ZEQkNBQjUxOTQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjc2RTEyRURBOTEyQjY3NDkzRTg4MzE2QTQyOENGREJDQUI1 MTk0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgQwDQYJKoZIhvcN AQELBQADggEBAB+t3eW3oOWmnKBuT5ZNZrzdDHq2uvNsnuOI4nrneo0kLwOFkQQv OXRxc8twDRckD49FWBzDcB747qOJxmmdcXESCtdoW77NYGp3RE0mnYmrYXM/czES QOZFIwAuibZ/RFqop7fYN6tfXeXYFCLkdrOaVOkTvpo2IRh2OIL8yZrWcgzpGjn6 DBoOzH20syJtndkVPmby3wyT/ESQxjIsyrtKGy2u5hAioO6tIjuStxn8ieLAIj9d 6g/QwNGPJ7AFajGsiZqVCXON73YedBfjfBqUfCcCfOyswdwgCMHtiVmV8xIcWb/2 vq3jDx8cmCOR2bb+TcoyZGLDHHX9DFi2bKU= -----END CERTIFICATE-----Generated at Sat Apr 18 08:54:18 2026 by rpki-client