$ rpki-client -vvf repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa File: 3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa (raw, json) Hash identifier: jwgg8IRJIDQmnbDrJO7DlfsBE1An9lAR0nLLubI5qII= Subject key identifier: AC:31:1C:12:42:F7:AB:B6:F1:D5:C9:9B:6D:BC:4A:EB:2F:DA:15:35 Certificate issuer: /CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Certificate serial: 7CAB0AA79DF608DBB686BE76D4BAC3C84534D584 Authority key identifier: 3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa Signing time: Wed 04 Feb 2026 04:02:36 +0000 ROA not before: Wed 04 Feb 2026 03:57:36 +0000 ROA not after: Wed 03 Feb 2027 04:02:36 +0000 asID: 141120 IP address blocks: 157.20.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ab:0a:a7:9d:f6:08:db:b6:86:be:76:d4:ba:c3:c8:45:34:d5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Validity Not Before: Feb 4 03:57:36 2026 GMT Not After : Feb 3 04:02:36 2027 GMT Subject: CN=AC311C1242F7ABB6F1D5C99B6DBC4AEB2FDA1535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:36:a5:59:aa:a6:b2:ea:78:d6:3d:a7:b1:15: 9a:7b:b4:38:f0:d0:3b:a0:ab:a7:d8:9d:7b:5f:1f: a9:5c:f3:ba:17:94:1e:18:fa:d9:a5:35:bf:99:45: 62:81:3f:32:4a:5b:d2:24:0a:04:3e:80:82:c3:7d: 54:e6:38:4e:4c:4f:b0:36:32:fd:f8:62:dd:7f:a0: ae:ef:f0:32:db:f4:70:eb:f4:04:a4:43:2b:14:a9: 21:0e:91:26:20:bc:1f:ac:41:e1:d9:67:91:bd:7d: 4e:4c:06:2c:37:35:63:4f:0c:2f:b0:57:08:cd:25: 47:b1:17:93:f7:a6:47:a2:40:91:83:1b:72:6c:77: 94:3f:f1:c6:bc:a8:bc:49:0d:d4:67:bb:61:68:3b: 37:a4:cf:c2:51:4b:ea:d3:63:f7:23:68:fa:7d:99: 47:8e:77:a3:5d:9d:b6:79:62:d1:8f:3f:e0:15:25: e9:f4:69:0b:c8:a3:93:3e:4f:b1:d3:a0:ef:49:80: 0f:ea:0b:8b:92:3c:6f:f8:1a:8c:a8:27:d6:d4:2b: 79:05:e4:b6:ad:76:a3:d1:0b:9c:62:26:06:b2:82: 70:3a:f1:25:3c:b3:51:9b:26:47:c6:d1:44:a0:b2: c6:98:70:e5:59:58:e5:81:6d:34:fd:03:47:60:ec: ca:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:31:1C:12:42:F7:AB:B6:F1:D5:C9:9B:6D:BC:4A:EB:2F:DA:15:35 X509v3 Authority Key Identifier: keyid:3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32332d3233203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.158.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:78:b8:eb:fe:99:4d:0c:48:5b:db:94:be:db:e2:6c:01:42: 9e:80:00:9c:c8:11:f7:ea:42:68:ba:87:5f:29:6f:ec:dc:bc: 06:f4:7f:23:e9:54:2d:39:84:12:af:0e:1d:ba:df:ee:18:33: 68:4f:47:2c:1c:18:32:65:b5:5d:27:83:69:4d:87:a5:bb:a1: ae:38:ca:71:91:20:bb:c0:55:ed:c4:1b:8e:b5:70:3b:ae:e4: 5f:fd:93:c5:35:b6:c0:02:2f:b7:bb:e4:35:81:0c:d4:96:db: 4a:d2:3a:a9:06:70:dc:16:76:fc:58:e0:05:36:ed:f8:78:fa: 38:81:0c:60:0c:fe:42:ae:69:2f:86:9b:65:29:ce:7e:8c:ea: 1f:d9:44:9b:f5:35:a6:49:98:5c:9c:07:f0:07:14:1a:2c:25: 97:18:ec:b1:93:00:42:ba:16:8a:2e:5a:33:a5:4d:09:d1:cc: 2d:fd:9d:a2:87:14:ad:2f:84:63:44:5d:78:76:80:4c:07:21: 32:50:76:02:6a:65:88:fa:d7:22:a0:fd:a5:82:32:90:8d:2b: 68:cc:fa:09:36:61:c8:bd:8e:31:fa:69:75:61:49:7a:06:fd: 32:38:3e:c6:02:c9:43:40:71:ea:11:c3:5c:ac:89:16:b3:00: d9:f8:02:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfKsKp532CNu2hr521LrDyEU01YQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBF MzREMjlBQjAeFw0yNjAyMDQwMzU3MzZaFw0yNzAyMDMwNDAyMzZaMDMxMTAvBgNV BAMTKEFDMzExQzEyNDJGN0FCQjZGMUQ1Qzk5QjZEQkM0QUVCMkZEQTE1MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJNqVZqqay6njWPaexFZp7tDjw 0Dugq6fYnXtfH6lc87oXlB4Y+tmlNb+ZRWKBPzJKW9IkCgQ+gILDfVTmOE5MT7A2 Mv34Yt1/oK7v8DLb9HDr9ASkQysUqSEOkSYgvB+sQeHZZ5G9fU5MBiw3NWNPDC+w VwjNJUexF5P3pkeiQJGDG3Jsd5Q/8ca8qLxJDdRnu2FoOzekz8JRS+rTY/cjaPp9 mUeOd6NdnbZ5YtGPP+AVJen0aQvIo5M+T7HToO9JgA/qC4uSPG/4GoyoJ9bUK3kF 5LatdqPRC5xiJgaygnA68SU8s1GbJkfG0USgssaYcOVZWOWBbTT9A0dg7MrFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrDEcEkL3q7bx1cmbbbxK6y/aFTUwHwYDVR0j BBgwFoAUPG10hdYa1UImFS5dioE9cONNKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTU5YTM2Mi05NTBjLTQ1YzItYWVjYy04MmIyMTRiY2U0NzQvMC8zQzZENzQ4NUQ2 MUFENTQyMjYxNTJFNUQ4QTgxM0Q3MEUzNEQyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBFMzRE MjlBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNTlhMzYyLTk1MGMtNDVjMi1h ZWNjLTgyYjIxNGJjZTQ3NC8wLzMxMzUzNzJlMzIzMDJlMzEzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSeMA0GCSqG SIb3DQEBCwUAA4IBAQBLeLjr/plNDEhb25S+2+JsAUKegACcyBH36kJouodfKW/s 3LwG9H8j6VQtOYQSrw4dut/uGDNoT0csHBgyZbVdJ4NpTYelu6GuOMpxkSC7wFXt xBuOtXA7ruRf/ZPFNbbAAi+3u+Q1gQzUlttK0jqpBnDcFnb8WOAFNu34ePo4gQxg DP5CrmkvhptlKc5+jOof2USb9TWmSZhcnAfwBxQaLCWXGOyxkwBCuhaKLlozpU0J 0cwt/Z2ihxStL4RjRF14doBMByEyUHYCamWI+tcioP2lgjKQjStozPoJNmHIvY4x +ml1YUl6Bv0yOD7GAslDQHHqEcNcrIkWswDZ+AKd -----END CERTIFICATE-----Generated at Mon Mar 2 14:43:29 2026 by rpki-client