$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa File: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (raw, json) Hash identifier: Qnnyi7gDeduqFHoOxDm0ej6IIeZV5kqDiu4+i5De3ZI= Subject key identifier: 10:49:1F:85:66:AA:FD:9A:07:FB:2D:23:6F:9D:D9:99:DC:0A:E3:65 Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 6BAF9FE9CF0A0AAF02B72E90D1D5502FD04463D0 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa Signing time: Thu 02 Apr 2026 13:00:01 +0000 ROA not before: Thu 02 Apr 2026 12:55:01 +0000 ROA not after: Thu 01 Apr 2027 13:00:01 +0000 asID: 152418 IP address blocks: 157.20.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 04:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:af:9f:e9:cf:0a:0a:af:02:b7:2e:90:d1:d5:50:2f:d0:44:63:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: Apr 2 12:55:01 2026 GMT Not After : Apr 1 13:00:01 2027 GMT Subject: CN=10491F8566AAFD9A07FB2D236F9DD999DC0AE365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:37:0d:25:94:35:0c:cf:28:f6:e0:bc:44: 4b:a7:f1:0e:5a:96:1b:29:45:c7:a0:0e:b9:86:fa: 2a:88:43:ad:6a:e8:a8:ee:fd:84:3a:70:02:9f:de: f4:89:9d:78:35:06:89:ba:a2:79:0b:ff:e8:ac:de: 16:14:a9:5e:ef:77:6d:88:e5:be:5d:89:7b:41:86: 91:e4:f1:fd:50:96:70:93:b4:80:13:4d:71:e0:8d: c6:39:ec:03:54:3f:d9:f5:2e:14:df:c0:4c:43:2a: f9:8b:0e:fd:57:4e:75:6f:4c:1d:00:45:56:94:89: 11:e2:2c:ba:b3:1a:94:80:df:92:a9:e4:1a:c9:6f: 97:88:b1:ed:7e:23:5c:cb:f1:d9:7c:a9:a9:e8:0f: 77:71:4d:5e:6e:b5:3d:e4:aa:18:9e:ab:fc:8f:e9: c5:11:5a:3a:4e:39:6b:59:e4:1b:eb:bf:fb:6b:f7: 0a:f8:e4:6d:b4:43:63:6c:c5:04:57:22:86:eb:dd: 19:ca:35:ab:ca:50:39:30:ce:82:6f:1a:ad:bc:48: 77:89:e7:e5:4c:6b:27:ad:fe:02:03:8d:f5:fc:e7: f5:be:71:e2:df:3b:70:cf:f6:21:74:24:99:4b:7f: d0:08:b3:4c:a8:98:31:e3:2c:df:a0:32:c7:53:c3: 75:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:49:1F:85:66:AA:FD:9A:07:FB:2D:23:6F:9D:D9:99:DC:0A:E3:65 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.178.0/23 Signature Algorithm: sha256WithRSAEncryption a4:47:2e:e0:aa:c6:be:bf:93:5c:f0:f0:3f:76:3e:35:ff:d5: 07:be:a5:d1:dd:79:4b:ff:30:cb:e5:23:48:ba:bc:08:9f:23: 11:df:96:c5:63:ff:66:0c:da:eb:db:93:c0:1e:91:76:35:7b: 56:10:cc:0a:e9:33:bb:c2:70:87:00:c2:b7:20:e8:c9:9f:c1: 3e:dc:56:19:99:e8:a0:52:f2:9f:00:82:cb:6a:23:05:f7:96: 00:11:1b:3e:28:4d:71:3b:e1:82:e9:04:8d:a0:bc:81:c5:d0: 1d:0d:93:35:c4:4b:6f:fb:7f:86:7b:53:19:44:c7:ec:0a:37: c4:f4:31:ca:c5:1f:db:b7:f9:5b:13:e8:54:fb:2f:06:0a:74: 06:32:8e:4c:f1:06:1b:c8:2e:b7:5e:b5:1d:7a:8f:7b:27:a9: 56:2b:86:71:ad:27:66:06:71:7e:8d:5c:44:29:3b:ab:49:91: 5a:ea:97:58:96:6a:45:8b:be:0e:f2:48:2e:7a:a9:90:4a:52: f8:59:0b:29:4b:2f:09:4d:7d:66:64:c3:a6:ae:b8:6f:c1:be: f3:78:b6:de:2b:9c:c7:af:b2:54:a9:be:19:aa:15:9a:17:70: c3:cb:57:4e:6c:6c:23:6c:9b:56:1a:d2:36:18:69:a7:06:49: 67:1a:dc:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa6+f6c8KCq8Cty6Q0dVQL9BEY9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNjA0MDIxMjU1MDFaFw0yNzA0MDExMzAwMDFaMDMxMTAvBgNV BAMTKDEwNDkxRjg1NjZBQUZEOUEwN0ZCMkQyMzZGOUREOTk5REMwQUUzNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC79DcNJZQ1DM8o9uC8REun8Q5a lhspRcegDrmG+iqIQ61q6Kju/YQ6cAKf3vSJnXg1Bom6onkL/+is3hYUqV7vd22I 5b5diXtBhpHk8f1QlnCTtIATTXHgjcY57ANUP9n1LhTfwExDKvmLDv1XTnVvTB0A RVaUiRHiLLqzGpSA35Kp5BrJb5eIse1+I1zL8dl8qanoD3dxTV5utT3kqhieq/yP 6cURWjpOOWtZ5Bvrv/tr9wr45G20Q2NsxQRXIobr3RnKNavKUDkwzoJvGq28SHeJ 5+VMayet/gIDjfX85/W+ceLfO3DP9iF0JJlLf9AIs0yomDHjLN+gMsdTw3VHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEEkfhWaq/ZoH+y0jb53ZmdwK42UwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSyMA0GCSqG SIb3DQEBCwUAA4IBAQCkRy7gqsa+v5Nc8PA/dj41/9UHvqXR3XlL/zDL5SNIurwI nyMR35bFY/9mDNrr25PAHpF2NXtWEMwK6TO7wnCHAMK3IOjJn8E+3FYZmeigUvKf AILLaiMF95YAERs+KE1xO+GC6QSNoLyBxdAdDZM1xEtv+3+Ge1MZRMfsCjfE9DHK xR/bt/lbE+hU+y8GCnQGMo5M8QYbyC63XrUdeo97J6lWK4ZxrSdmBnF+jVxEKTur SZFa6pdYlmpFi74O8kgueqmQSlL4WQspSy8JTX1mZMOmrrhvwb7zeLbeK5zHr7JU qb4ZqhWaF3DDy1dObGwjbJtWGtI2GGmnBklnGtxh -----END CERTIFICATE-----Generated at Sat Apr 18 01:41:14 2026 by rpki-client