$ rpki-client -vvf repo-rpki.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/3139382e31352e31362e302f32342d3234203d3e20313432363339.roa File: 3139382e31352e31362e302f32342d3234203d3e20313432363339.roa (raw, json) Hash identifier: uQHIImYmptjCUQ/bftz22qTLuZl56mNDlhYd4jLzdhA= Subject key identifier: 2D:EF:F9:D5:3E:32:E1:AA:4B:91:DB:D7:16:35:D3:18:53:98:FE:D2 Certificate issuer: /CN=C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31 Certificate serial: 49534EB1A33BFADDF5BA961BBF56DBB9B216ABCE Authority key identifier: C9:CE:3F:80:07:B3:79:17:27:FA:A3:B4:F2:00:E4:B1:9F:8E:EE:31 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/3139382e31352e31362e302f32342d3234203d3e20313432363339.roa Signing time: Fri 20 Feb 2026 06:34:35 +0000 ROA not before: Fri 20 Feb 2026 06:29:35 +0000 ROA not after: Fri 19 Feb 2027 06:34:35 +0000 asID: 142639 IP address blocks: 198.15.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31.crl rsync://repo-rpki.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 03:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:53:4e:b1:a3:3b:fa:dd:f5:ba:96:1b:bf:56:db:b9:b2:16:ab:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31 Validity Not Before: Feb 20 06:29:35 2026 GMT Not After : Feb 19 06:34:35 2027 GMT Subject: CN=2DEFF9D53E32E1AA4B91DBD71635D3185398FED2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:10:f4:91:d7:76:76:11:5a:fa:ae:9b:76:7f: 4e:04:c2:0b:26:0d:0b:c9:cc:c8:34:05:b9:6d:97: 83:46:7e:f3:6f:d1:94:31:88:af:81:4e:9a:c7:e0: 6d:aa:2b:48:30:dd:07:3b:a3:c5:57:d9:2b:ce:75: c3:b2:10:83:f7:92:50:27:f5:4f:f0:85:86:54:59: 1b:be:8c:8a:fe:76:e8:f8:88:ee:db:fc:27:b0:46: 42:e6:a7:16:27:ba:47:bf:51:c7:ef:bb:1d:34:2d: c8:f5:7b:cb:a8:46:03:2d:94:8e:87:6d:9a:2b:cb: e0:a4:c8:02:1c:97:0e:80:2e:2a:48:38:b6:ba:c2: 29:3e:5d:27:77:27:8d:86:29:fe:67:db:3a:58:b1: b4:85:02:0c:cf:ff:c3:38:ba:27:bf:7f:7f:9d:b5: fc:0a:69:91:cb:d2:0b:3c:49:ec:0c:ec:8a:e1:94: 00:2c:44:2d:8f:6b:a0:65:f3:da:d8:e4:5b:2c:19: 6b:36:fe:8d:b2:2a:fc:89:71:2e:89:72:f4:0c:c7: 7c:ec:39:67:60:30:3c:11:c1:40:77:44:07:31:27: 9d:a2:af:8f:a8:5e:13:e0:24:fe:a0:e4:15:97:a0: 77:c3:29:82:bd:55:74:4d:25:aa:7c:1c:57:83:0b: 79:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EF:F9:D5:3E:32:E1:AA:4B:91:DB:D7:16:35:D3:18:53:98:FE:D2 X509v3 Authority Key Identifier: keyid:C9:CE:3F:80:07:B3:79:17:27:FA:A3:B4:F2:00:E4:B1:9F:8E:EE:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C9CE3F8007B3791727FAA3B4F200E4B19F8EEE31.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/3139382e31352e31362e302f32342d3234203d3e20313432363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.15.16.0/24 Signature Algorithm: sha256WithRSAEncryption 52:b1:0d:3a:08:ec:68:45:3c:1b:1d:52:6c:67:4d:5f:30:3c: 50:79:27:c3:d3:37:d1:91:3e:d7:5f:91:29:ec:0f:33:a9:68: 98:aa:fc:c9:82:b0:13:e3:34:f3:5e:15:7a:df:99:d0:7a:9f: f9:6f:88:95:34:dd:2c:80:a6:27:7c:2e:b5:c3:1a:de:7b:b5: 10:28:92:41:54:0e:63:8d:1b:38:29:a0:63:14:c8:15:ce:81: 9f:73:fa:c8:69:4f:5c:ef:39:b6:33:52:0e:97:f9:91:7d:a4: cc:11:70:a5:c9:cc:00:e8:5f:c1:cd:5d:ed:f1:c3:cc:91:a4: 5a:3e:2a:20:69:e6:e9:f5:5c:46:0b:79:63:54:0e:fa:d0:1b: e0:67:89:6c:7b:81:c0:00:0e:f6:6c:85:e9:f4:34:a3:3b:51: 8d:de:5b:5d:9d:03:99:d4:4a:42:a0:88:7b:90:96:d9:cc:75: 0e:ed:1a:ee:b6:1e:90:74:93:c8:b0:ee:7d:62:de:58:82:aa: b5:08:5d:96:c8:48:16:7d:51:83:84:6e:2a:cf:7c:1b:bf:f0: 1d:6b:9c:ca:2c:4a:f5:b7:ad:27:10:ab:4f:1d:7d:48:bf:62: 83:d2:d6:6e:47:f0:c4:9a:13:d0:d6:d3:fc:70:12:44:2b:5c: 43:de:7e:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSVNOsaM7+t31upYbv1bbubIWq84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlDRTNGODAwN0IzNzkxNzI3RkFBM0I0RjIwMEU0QjE5 RjhFRUUzMTAeFw0yNjAyMjAwNjI5MzVaFw0yNzAyMTkwNjM0MzVaMDMxMTAvBgNV BAMTKDJERUZGOUQ1M0UzMkUxQUE0QjkxREJENzE2MzVEMzE4NTM5OEZFRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwEPSR13Z2EVr6rpt2f04Ewgsm DQvJzMg0Bbltl4NGfvNv0ZQxiK+BTprH4G2qK0gw3Qc7o8VX2SvOdcOyEIP3klAn 9U/whYZUWRu+jIr+duj4iO7b/CewRkLmpxYnuke/Ucfvux00Lcj1e8uoRgMtlI6H bZory+CkyAIclw6ALipIOLa6wik+XSd3J42GKf5n2zpYsbSFAgzP/8M4uie/f3+d tfwKaZHL0gs8SewM7IrhlAAsRC2Pa6Bl89rY5FssGWs2/o2yKvyJcS6JcvQMx3zs OWdgMDwRwUB3RAcxJ52ir4+oXhPgJP6g5BWXoHfDKYK9VXRNJap8HFeDC3kVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULe/51T4y4apLkdvXFjXTGFOY/tIwHwYDVR0j BBgwFoAUyc4/gAezeRcn+qO08gDksZ+O7jEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTljZDY2OC02Y2M1LTQ5YTYtOWZjZi1hZTMyYTg3ZmU2MzYvMS9DOUNFM0Y4MDA3 QjM3OTE3MjdGQUEzQjRGMjAwRTRCMTlGOEVFRTMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzlDRTNGODAwN0IzNzkxNzI3RkFBM0I0RjIwMEU0QjE5RjhF RUUzMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhOWNkNjY4LTZjYzUtNDlhNi05 ZmNmLWFlMzJhODdmZTYzNi8xLzMxMzkzODJlMzEzNTJlMzEzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMjM2MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMYPEDANBgkqhkiG 9w0BAQsFAAOCAQEAUrENOgjsaEU8Gx1SbGdNXzA8UHknw9M30ZE+11+RKewPM6lo mKr8yYKwE+M0814Vet+Z0Hqf+W+IlTTdLICmJ3wutcMa3nu1ECiSQVQOY40bOCmg YxTIFc6Bn3P6yGlPXO85tjNSDpf5kX2kzBFwpcnMAOhfwc1d7fHDzJGkWj4qIGnm 6fVcRgt5Y1QO+tAb4GeJbHuBwAAO9myF6fQ0oztRjd5bXZ0DmdRKQqCIe5CW2cx1 Du0a7rYekHSTyLDufWLeWIKqtQhdlshIFn1Rg4RuKs98G7/wHWucyixK9betJxCr Tx19SL9ig9LWbkfwxJoT0NbT/HASRCtcQ95+jQ== -----END CERTIFICATE-----Generated at Mon Mar 2 16:20:30 2026 by rpki-client