$ rpki-client -vvf repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa File: 3135372e31352e34362e302f32342d3234203d3e20313532333936.roa (raw, json) Hash identifier: tNNCYWCbEdiPKfhICvbEu1ERGWQQfGZS5vvTiRz7UTA= Subject key identifier: 8B:88:D6:21:99:A4:28:BB:2C:7B:D3:D1:A3:FC:22:0B:95:CB:7C:DE Certificate issuer: /CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Certificate serial: 0FADEA64C787552DAC654BB9C2AA5A90374ACC59 Authority key identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa Signing time: Wed 24 Dec 2025 05:00:02 +0000 ROA not before: Wed 24 Dec 2025 04:55:02 +0000 ROA not after: Wed 23 Dec 2026 05:00:02 +0000 asID: 152396 IP address blocks: 157.15.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ad:ea:64:c7:87:55:2d:ac:65:4b:b9:c2:aa:5a:90:37:4a:cc:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Validity Not Before: Dec 24 04:55:02 2025 GMT Not After : Dec 23 05:00:02 2026 GMT Subject: CN=8B88D62199A428BB2C7BD3D1A3FC220B95CB7CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f1:60:b5:e3:89:85:79:e7:96:1e:44:b5:0d: 08:cd:b9:8e:f1:fb:d5:1f:d7:78:64:ea:eb:b1:9e: 33:9f:86:44:94:07:21:a7:2c:96:7a:77:1b:e5:1a: f0:ab:48:e2:4c:02:5f:a9:9e:48:c9:32:16:7b:f3: d2:8e:06:4b:ce:14:51:f3:ca:80:41:a1:4a:09:08: 24:70:3b:e0:21:4b:4b:5b:ff:2c:cb:9c:5d:18:44: de:0f:d9:f6:24:3e:71:a6:36:1e:3f:95:36:4f:0f: ef:99:de:26:3f:b8:36:b5:a8:90:7f:16:b5:8f:55: cb:77:4c:5b:dd:4a:81:06:42:e3:f8:db:c3:d6:50: 3f:f9:31:37:67:39:61:e1:8a:25:84:35:5c:0c:9f: e8:67:16:94:e5:1a:f9:32:f8:7d:4a:7a:34:c7:ab: 6c:12:69:01:68:df:14:18:93:28:ac:0b:f4:cc:8c: 61:d4:11:17:10:a8:13:9c:b6:3c:3c:ad:b5:58:86: 85:ba:cf:83:a8:f1:4f:d8:65:92:50:b1:99:aa:99: e4:cc:16:fd:f6:2c:6e:6c:21:03:15:a1:36:be:4c: ea:91:04:03:ce:e3:73:10:c0:40:87:f3:b9:96:cb: 58:10:41:82:89:1f:7f:b1:ce:6f:b6:7e:b4:63:32: 85:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:88:D6:21:99:A4:28:BB:2C:7B:D3:D1:A3:FC:22:0B:95:CB:7C:DE X509v3 Authority Key Identifier: keyid:30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3135372e31352e34362e302f32342d3234203d3e20313532333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.46.0/24 Signature Algorithm: sha256WithRSAEncryption 69:c4:34:36:4e:3a:ca:56:d1:3c:6f:8a:db:52:80:8e:1b:6a: ba:00:00:4a:46:34:17:85:6b:b6:50:9f:10:3a:18:d3:29:a3: 05:2a:fc:67:5b:0e:08:cf:6c:58:d4:78:49:30:c6:a4:3d:63: 34:13:99:6f:7d:59:33:e7:92:d3:06:e7:3c:59:2d:c4:3f:57: ed:19:86:a2:7a:07:87:79:97:32:2c:46:ec:fb:fa:87:3d:2e: c1:15:13:64:96:7b:cb:58:ff:eb:77:b5:65:dd:a1:0e:82:01: df:8d:68:34:ac:d5:3f:7b:64:6d:86:0f:43:a9:6f:b8:19:78: aa:a0:90:19:48:43:88:b6:37:8f:d3:a7:60:c7:cb:fc:9c:aa: 52:93:6a:73:c4:12:89:af:06:1d:9b:1e:8a:84:6d:f9:0b:f0: 34:43:5f:db:a9:46:61:61:91:e4:af:47:26:66:c0:9c:65:55: 7e:8d:44:41:6e:0d:c0:9b:ab:48:8d:29:d1:77:f2:21:b3:60: fd:85:52:58:f6:69:50:7d:d3:16:61:01:18:04:32:be:77:bc: 2f:dd:94:b8:8a:f3:47:45:1a:73:20:9e:93:9f:6a:2a:17:32: dc:71:ca:c2:d9:5f:3f:0b:c9:a1:15:aa:f9:60:73:ca:14:14: de:41:43:da -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD63qZMeHVS2sZUu5wqpakDdKzFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgw MEQ1MkQ2NDAeFw0yNTEyMjQwNDU1MDJaFw0yNjEyMjMwNTAwMDJaMDMxMTAvBgNV BAMTKDhCODhENjIxOTlBNDI4QkIyQzdCRDNEMUEzRkMyMjBCOTVDQjdDREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs8WC144mFeeeWHkS1DQjNuY7x +9Uf13hk6uuxnjOfhkSUByGnLJZ6dxvlGvCrSOJMAl+pnkjJMhZ789KOBkvOFFHz yoBBoUoJCCRwO+AhS0tb/yzLnF0YRN4P2fYkPnGmNh4/lTZPD++Z3iY/uDa1qJB/ FrWPVct3TFvdSoEGQuP428PWUD/5MTdnOWHhiiWENVwMn+hnFpTlGvky+H1KejTH q2wSaQFo3xQYkyisC/TMjGHUERcQqBOctjw8rbVYhoW6z4Oo8U/YZZJQsZmqmeTM Fv32LG5sIQMVoTa+TOqRBAPO43MQwECH87mWy1gQQYKJH3+xzm+2frRjMoW9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUi4jWIZmkKLsse9PRo/wiC5XLfN4wHwYDVR0j BBgwFoAUMAivlIxHQqUlIB8/2n77GADVLWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzM0ZWVkOS0xODdlLTRmNDYtYTViYi0wZWE4ZjY2OWFlOTAvMC8zMDA4QUY5NDhD NDc0MkE1MjUyMDFGM0ZEQTdFRkIxODAwRDUyRDY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzAwOEFGOTQ4QzQ3NDJBNTI1MjAxRjNGREE3RUZCMTgwMEQ1 MkQ2NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMzRlZWQ5LTE4N2UtNGY0Ni1h NWJiLTBlYThmNjY5YWU5MC8wLzMxMzUzNzJlMzEzNTJlMzQzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PLjANBgkqhkiG 9w0BAQsFAAOCAQEAacQ0Nk46ylbRPG+K21KAjhtqugAASkY0F4VrtlCfEDoY0ymj BSr8Z1sOCM9sWNR4STDGpD1jNBOZb31ZM+eS0wbnPFktxD9X7RmGonoHh3mXMixG 7Pv6hz0uwRUTZJZ7y1j/63e1Zd2hDoIB341oNKzVP3tkbYYPQ6lvuBl4qqCQGUhD iLY3j9OnYMfL/JyqUpNqc8QSia8GHZseioRt+QvwNENf26lGYWGR5K9HJmbAnGVV fo1EQW4NwJurSI0p0XfyIbNg/YVSWPZpUH3TFmEBGAQyvne8L92UuIrzR0UacyCe k59qKhcy3HHKwtlfPwvJoRWq+WBzyhQU3kFD2g== -----END CERTIFICATE-----Generated at Mon Mar 2 17:11:16 2026 by rpki-client