$ rpki-client -vvf repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa File: 3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa (raw, json) Hash identifier: +5XEFa5Q5a8ev++uImNUVz8f1Hioijw3UOVtIFPuX9A= Subject key identifier: 51:88:2A:57:24:E5:9E:0A:B7:7A:1E:0D:68:FF:B5:74:C6:DD:DD:D1 Certificate issuer: /CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Certificate serial: 2E01FF8FDCC6CDFE8C0B9BAC65D096A70D05E5EA Authority key identifier: 3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa Signing time: Wed 04 Feb 2026 03:00:01 +0000 ROA not before: Wed 04 Feb 2026 02:55:01 +0000 ROA not after: Wed 03 Feb 2027 03:00:01 +0000 asID: 141120 IP address blocks: 157.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:01:ff:8f:dc:c6:cd:fe:8c:0b:9b:ac:65:d0:96:a7:0d:05:e5:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C6D7485D61AD54226152E5D8A813D70E34D29AB Validity Not Before: Feb 4 02:55:01 2026 GMT Not After : Feb 3 03:00:01 2027 GMT Subject: CN=51882A5724E59E0AB77A1E0D68FFB574C6DDDDD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:56:ce:06:3b:f4:f1:1c:2f:68:19:af:56:0b: 99:15:c9:79:d5:f3:ee:76:eb:9d:0f:c5:2c:ec:f5: 3a:4a:fa:c1:14:88:04:63:ed:7b:bf:be:0e:8e:a4: 5a:38:6f:2e:52:c1:cd:79:5d:53:3d:96:d7:b5:cd: dd:2e:66:f1:89:14:30:04:eb:69:33:23:61:32:cf: c9:eb:e2:a7:0a:2e:b2:3f:ce:d9:6f:03:67:a1:d3: 23:62:70:6b:fe:2b:db:cd:49:c0:f8:d9:fb:70:c8: 9c:8f:ec:92:b6:74:26:da:07:35:85:03:7d:8e:3d: e0:6f:3a:8d:e7:78:83:0e:a0:2f:30:6c:86:6f:ed: 76:c1:3d:96:36:31:ae:9b:f4:a4:d8:25:ac:32:40: f8:8e:c7:44:d7:22:93:ed:b0:56:8c:d4:5f:f1:77: 36:da:2c:47:e4:8a:21:c8:3f:11:28:59:c2:84:d5: 7f:25:e6:d8:9b:0e:2b:9b:94:08:3a:7e:8e:d8:9d: c0:76:3e:5b:fd:b8:bc:ab:c9:d7:03:19:ee:44:aa: a8:f1:ea:5d:b2:ae:73:da:bd:5d:7c:a3:2d:52:ae: ff:7a:80:6e:08:f1:e5:66:bb:5a:a2:d3:46:fe:46: 86:24:3f:23:fb:f0:8b:c2:c7:8f:ba:0b:31:95:d7: ad:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:88:2A:57:24:E5:9E:0A:B7:7A:1E:0D:68:FF:B5:74:C6:DD:DD:D1 X509v3 Authority Key Identifier: keyid:3C:6D:74:85:D6:1A:D5:42:26:15:2E:5D:8A:81:3D:70:E3:4D:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3C6D7485D61AD54226152E5D8A813D70E34D29AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3C6D7485D61AD54226152E5D8A813D70E34D29AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.158.0/24 Signature Algorithm: sha256WithRSAEncryption 23:90:2b:42:c8:08:da:3b:ab:51:65:6e:69:95:81:cc:4a:15: 49:6d:49:3b:37:0c:e1:98:fe:0e:a2:b9:b2:4c:90:db:51:50: 8a:c5:9f:20:94:9c:e7:8c:70:2a:44:00:4c:a5:29:74:ae:5f: a8:39:1c:58:89:5c:f9:c1:5e:94:75:57:fd:28:b8:aa:37:2b: dc:58:1b:73:d0:2d:73:6f:16:89:5f:d5:c8:ca:6a:d2:cd:69: a5:7d:93:b9:cb:7c:9e:eb:07:d3:f2:0f:a1:35:78:32:fb:09: 4a:b3:9d:f4:a9:63:40:33:07:22:4f:64:4e:f6:ee:35:cd:66: 62:42:b2:05:8c:fa:0e:8e:3c:9f:ab:64:89:b4:15:43:05:0b: 8d:e9:51:6e:45:fe:0f:76:78:6d:79:cb:26:ce:9a:4c:3e:33: 25:af:22:83:42:ac:fa:f7:01:f9:fb:26:50:81:b7:f1:78:48: 85:c9:33:a0:05:e6:c8:6b:9d:b5:7c:b4:94:8d:89:43:65:ad: 32:8d:10:74:b4:20:13:6b:ba:d8:bc:38:5c:72:ea:ba:7a:35: df:f5:29:19:2e:2d:bd:9e:1d:fa:ec:aa:c8:91:40:58:df:ec: 50:f2:f2:8b:a1:e2:a7:26:a5:6e:1e:07:13:25:1e:53:ec:8d: 1a:53:2f:4f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULgH/j9zGzf6MC5usZdCWpw0F5eowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBF MzREMjlBQjAeFw0yNjAyMDQwMjU1MDFaFw0yNzAyMDMwMzAwMDFaMDMxMTAvBgNV BAMTKDUxODgyQTU3MjRFNTlFMEFCNzdBMUUwRDY4RkZCNTc0QzZERERERDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjVs4GO/TxHC9oGa9WC5kVyXnV 8+52650PxSzs9TpK+sEUiARj7Xu/vg6OpFo4by5Swc15XVM9lte1zd0uZvGJFDAE 62kzI2Eyz8nr4qcKLrI/ztlvA2eh0yNicGv+K9vNScD42ftwyJyP7JK2dCbaBzWF A32OPeBvOo3neIMOoC8wbIZv7XbBPZY2Ma6b9KTYJawyQPiOx0TXIpPtsFaM1F/x dzbaLEfkiiHIPxEoWcKE1X8l5tibDiublAg6fo7YncB2Plv9uLyrydcDGe5Eqqjx 6l2yrnPavV18oy1Srv96gG4I8eVmu1qi00b+RoYkPyP78IvCx4+6CzGV163rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUYgqVyTlngq3eh4NaP+1dMbd3dEwHwYDVR0j BBgwFoAUPG10hdYa1UImFS5dioE9cONNKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTU5YTM2Mi05NTBjLTQ1YzItYWVjYy04MmIyMTRiY2U0NzQvMC8zQzZENzQ4NUQ2 MUFENTQyMjYxNTJFNUQ4QTgxM0Q3MEUzNEQyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvM0M2RDc0ODVENjFBRDU0MjI2MTUyRTVEOEE4MTNENzBFMzRE MjlBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNTlhMzYyLTk1MGMtNDVjMi1h ZWNjLTgyYjIxNGJjZTQ3NC8wLzMxMzUzNzJlMzIzMDJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSeMA0GCSqG SIb3DQEBCwUAA4IBAQAjkCtCyAjaO6tRZW5plYHMShVJbUk7NwzhmP4OormyTJDb UVCKxZ8glJznjHAqRABMpSl0rl+oORxYiVz5wV6UdVf9KLiqNyvcWBtz0C1zbxaJ X9XIymrSzWmlfZO5y3ye6wfT8g+hNXgy+wlKs530qWNAMwciT2RO9u41zWZiQrIF jPoOjjyfq2SJtBVDBQuN6VFuRf4PdnhtecsmzppMPjMlryKDQqz69wH5+yZQgbfx eEiFyTOgBebIa521fLSUjYlDZa0yjRB0tCATa7rYvDhccuq6ejXf9SkZLi29nh36 7KrIkUBY3+xQ8vKLoeKnJqVuHgcTJR5T7I0aUy9P -----END CERTIFICATE-----Generated at Mon Mar 2 15:38:47 2026 by rpki-client