$ rpki-client -vvf repo-rpki.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/3135372e32302e33382e302f32332d3234203d3e20313532333838.roa File: 3135372e32302e33382e302f32332d3234203d3e20313532333838.roa (raw, json) Hash identifier: Jr4I+2nMOU5YBEHpKNRi0fdn809WUPtVu/P9ZQGKbWQ= Subject key identifier: 3D:E3:2D:BA:C8:94:1B:38:03:31:F9:E3:9C:AA:59:7A:B3:F3:E2:E4 Certificate issuer: /CN=170979C0E31958FA76259F360B8405233C40BA7A Certificate serial: 715C3B5B3A13F7E1DD1D9E72AF81175A0084E568 Authority key identifier: 17:09:79:C0:E3:19:58:FA:76:25:9F:36:0B:84:05:23:3C:40:BA:7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/170979C0E31958FA76259F360B8405233C40BA7A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/3135372e32302e33382e302f32332d3234203d3e20313532333838.roa Signing time: Thu 09 Apr 2026 06:00:01 +0000 ROA not before: Thu 09 Apr 2026 05:55:01 +0000 ROA not after: Thu 08 Apr 2027 06:00:01 +0000 asID: 152388 IP address blocks: 157.20.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/170979C0E31958FA76259F360B8405233C40BA7A.crl rsync://repo-rpki.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/170979C0E31958FA76259F360B8405233C40BA7A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/170979C0E31958FA76259F360B8405233C40BA7A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 10:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5c:3b:5b:3a:13:f7:e1:dd:1d:9e:72:af:81:17:5a:00:84:e5:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=170979C0E31958FA76259F360B8405233C40BA7A Validity Not Before: Apr 9 05:55:01 2026 GMT Not After : Apr 8 06:00:01 2027 GMT Subject: CN=3DE32DBAC8941B380331F9E39CAA597AB3F3E2E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:38:68:e8:fe:17:0c:59:31:7c:fc:c5:a7:05: 0e:9b:ec:4e:c0:1b:f0:7f:10:2c:bc:89:1a:3a:43: 8f:ae:19:dd:0e:c2:d5:e3:aa:94:db:af:c4:94:fb: e5:7f:4d:35:20:dc:9e:d9:aa:b6:17:53:05:61:de: 14:b3:ec:d3:bd:0f:c1:dc:6b:7f:55:98:19:74:6f: b7:d9:47:5b:5b:b8:5c:86:e9:a9:78:1a:2a:80:a7: 33:f5:cf:1b:d2:8f:69:c0:c8:51:ca:46:a3:d2:b4: 55:68:2c:05:78:57:f2:5f:10:3f:a1:f0:dc:6a:38: 87:b1:be:79:7d:45:58:2c:70:72:b9:3d:3d:43:4f: 8a:54:66:4d:59:1a:ba:74:f6:db:89:dd:d5:78:ff: d2:fb:5f:37:d7:88:bb:68:9b:65:3b:61:1d:cb:1f: 88:a7:2f:de:03:af:a7:74:c8:17:cc:d1:91:54:2b: 07:b7:44:90:e1:79:da:21:0a:01:86:b3:0e:94:a8: 48:a0:1d:4b:63:98:62:8c:33:93:51:93:8f:ec:26: be:c7:ad:93:cb:2a:df:cc:0d:d5:0e:99:70:10:a9: 39:8a:1b:c3:4b:c1:c6:ac:93:ff:fe:6a:50:4a:12: 47:0c:f2:5a:9f:8a:7d:e5:14:8f:33:8f:6a:33:7a: f5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E3:2D:BA:C8:94:1B:38:03:31:F9:E3:9C:AA:59:7A:B3:F3:E2:E4 X509v3 Authority Key Identifier: keyid:17:09:79:C0:E3:19:58:FA:76:25:9F:36:0B:84:05:23:3C:40:BA:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/170979C0E31958FA76259F360B8405233C40BA7A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/170979C0E31958FA76259F360B8405233C40BA7A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/3135372e32302e33382e302f32332d3234203d3e20313532333838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.38.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:b9:36:cf:f7:94:c6:48:b7:06:83:95:d5:78:06:54:dc:e2: 4b:dd:6a:8f:47:b5:7e:e4:9d:99:80:3e:32:95:d0:9e:11:31: 91:0f:f1:61:3b:a1:6d:d0:2f:5c:25:4c:b0:b9:2c:f9:96:2e: 67:e0:63:4c:a6:03:cd:d9:4a:02:c2:95:7f:4b:95:30:13:bd: f0:1d:74:36:59:f8:8b:0d:45:f1:63:34:0b:ec:b5:b4:87:10: b4:bf:26:80:b1:99:39:75:a5:f3:34:0e:e1:d7:e1:3d:11:74: 32:69:bd:01:7f:b8:a2:f2:77:0d:29:23:07:dd:a3:01:ec:7d: 12:69:9d:bc:3b:0c:ce:6e:76:64:11:55:59:f3:eb:c8:6c:6b: 86:d2:68:96:56:d6:ed:45:12:7c:cd:78:0a:59:3b:32:9c:4e: 0d:cc:fd:4d:03:b1:e1:2e:d5:01:89:01:e1:f5:bf:f7:6e:62: c6:1e:6c:cc:78:4b:a2:98:87:03:45:97:cb:a2:74:f0:54:6b: 87:05:01:f8:1f:5a:d8:1f:2d:61:8f:2c:31:58:a1:15:0d:4e: 86:bc:ad:2e:77:9e:22:ce:ac:e6:b9:fe:40:f5:f0:6f:98:ca: ab:de:bf:fd:62:31:c4:07:bd:a4:9b:e7:07:0a:dd:50:28:24: a4:40:a8:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcVw7WzoT9+HdHZ5yr4EXWgCE5WgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTcwOTc5QzBFMzE5NThGQTc2MjU5RjM2MEI4NDA1MjMz QzQwQkE3QTAeFw0yNjA0MDkwNTU1MDFaFw0yNzA0MDgwNjAwMDFaMDMxMTAvBgNV BAMTKDNERTMyREJBQzg5NDFCMzgwMzMxRjlFMzlDQUE1OTdBQjNGM0UyRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUOGjo/hcMWTF8/MWnBQ6b7E7A G/B/ECy8iRo6Q4+uGd0OwtXjqpTbr8SU++V/TTUg3J7ZqrYXUwVh3hSz7NO9D8Hc a39VmBl0b7fZR1tbuFyG6al4GiqApzP1zxvSj2nAyFHKRqPStFVoLAV4V/JfED+h 8NxqOIexvnl9RVgscHK5PT1DT4pUZk1ZGrp09tuJ3dV4/9L7XzfXiLtom2U7YR3L H4inL94Dr6d0yBfM0ZFUKwe3RJDhedohCgGGsw6UqEigHUtjmGKMM5NRk4/sJr7H rZPLKt/MDdUOmXAQqTmKG8NLwcask//+alBKEkcM8lqfin3lFI8zj2ozevXlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPeMtusiUGzgDMfnjnKpZerPz4uQwHwYDVR0j BBgwFoAUFwl5wOMZWPp2JZ82C4QFIzxAunowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OTkyYmYyNi1jOGU2LTRhODYtOWIzMy1lYTNhMmFmNTU3ZjAvMC8xNzA5NzlDMEUz MTk1OEZBNzYyNTlGMzYwQjg0MDUyMzNDNDBCQTdBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTcwOTc5QzBFMzE5NThGQTc2MjU5RjM2MEI4NDA1MjMzQzQw QkE3QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5OTJiZjI2LWM4ZTYtNGE4Ni05 YjMzLWVhM2EyYWY1NTdmMC8wLzMxMzUzNzJlMzIzMDJlMzMzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UJjANBgkqhkiG 9w0BAQsFAAOCAQEALrk2z/eUxki3BoOV1XgGVNziS91qj0e1fuSdmYA+MpXQnhEx kQ/xYTuhbdAvXCVMsLks+ZYuZ+BjTKYDzdlKAsKVf0uVMBO98B10Nln4iw1F8WM0 C+y1tIcQtL8mgLGZOXWl8zQO4dfhPRF0Mmm9AX+4ovJ3DSkjB92jAex9EmmdvDsM zm52ZBFVWfPryGxrhtJollbW7UUSfM14Clk7MpxODcz9TQOx4S7VAYkB4fW/925i xh5szHhLopiHA0WXy6J08FRrhwUB+B9a2B8tYY8sMVihFQ1OhrytLneeIs6s5rn+ QPXwb5jKq96//WIxxAe9pJvnBwrdUCgkpECoQA== -----END CERTIFICATE-----Generated at Sat Apr 18 01:34:54 2026 by rpki-client