$ rpki-client -vvf repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa File: 3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa (raw, json) Hash identifier: EGoAWeYOzKbfduhwyAgCeaaXls51T+6E5vcysGiLR90= Subject key identifier: 19:22:D8:23:65:96:53:6F:6E:EE:C1:0E:43:D6:CC:CE:F7:DA:98:07 Certificate issuer: /CN=969449FF3E24842B0CECC61AB398E88F83709FC1 Certificate serial: 5E7CA7F9A650500BD5C2C89C67FF580D8A256BC2 Authority key identifier: 96:94:49:FF:3E:24:84:2B:0C:EC:C6:1A:B3:98:E8:8F:83:70:9F:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa Signing time: Thu 29 Jan 2026 04:02:36 +0000 ROA not before: Thu 29 Jan 2026 03:57:36 +0000 ROA not after: Thu 28 Jan 2027 04:02:36 +0000 asID: 152421 IP address blocks: 157.20.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.crl rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 23:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:7c:a7:f9:a6:50:50:0b:d5:c2:c8:9c:67:ff:58:0d:8a:25:6b:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=969449FF3E24842B0CECC61AB398E88F83709FC1 Validity Not Before: Jan 29 03:57:36 2026 GMT Not After : Jan 28 04:02:36 2027 GMT Subject: CN=1922D8236596536F6EEEC10E43D6CCCEF7DA9807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d2:e5:0a:ad:0c:26:7d:95:d0:2c:88:cd:d8: 4d:31:15:0b:61:05:e9:8e:06:af:84:0d:85:b8:4b: 71:7b:9a:80:0e:07:9f:79:30:2c:3f:8f:bc:9f:6d: 57:fc:ab:8d:7b:32:34:c1:c2:dd:61:78:02:b2:7a: f4:48:10:ce:a4:0b:59:fe:79:6d:af:dc:84:3e:71: e7:36:d4:9f:54:94:a0:d9:6e:8f:70:2b:eb:38:32: 15:bb:83:c1:e6:50:d1:0d:5c:ff:7e:08:0e:2d:b5: c0:95:bf:b1:cd:71:df:79:50:45:7c:a7:7f:6a:74: 99:19:96:12:8c:8a:2c:95:ba:a9:ed:25:d7:e6:99: c6:94:68:c7:7f:cc:be:78:23:e4:16:ad:bd:54:3e: 10:c0:cf:2f:ad:53:eb:7f:45:31:07:c7:3f:10:1d: 3c:e1:70:f1:88:7c:4b:2e:dc:8d:ff:6f:da:3e:79: b0:a1:92:01:de:2f:0a:f0:f1:a5:80:a5:3c:1d:b7: 7e:cc:00:85:4d:47:e5:09:e5:b0:58:a7:df:3b:69: b1:fc:c8:bf:35:23:33:aa:18:b2:73:ff:54:65:fc: 41:21:49:d8:d3:d0:b0:1d:7b:b0:70:65:b1:99:59: eb:9c:ea:4e:54:d2:9e:ce:7a:25:b2:02:96:1d:a7: f3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:22:D8:23:65:96:53:6F:6E:EE:C1:0E:43:D6:CC:CE:F7:DA:98:07 X509v3 Authority Key Identifier: keyid:96:94:49:FF:3E:24:84:2B:0C:EC:C6:1A:B3:98:E8:8F:83:70:9F:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/969449FF3E24842B0CECC61AB398E88F83709FC1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/969449FF3E24842B0CECC61AB398E88F83709FC1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/0/3135372e32302e3134352e302f32342d3234203d3e20313532343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.145.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:67:22:10:fb:29:8f:48:7a:60:20:0c:9f:99:08:2e:6d:41: ef:d7:78:5e:05:b3:11:a3:ae:3b:15:be:df:29:65:ff:7c:d5: f8:c3:68:1f:1f:ab:07:e2:05:c5:1b:53:7e:f7:6a:32:d6:a3: 04:e2:b0:9f:2b:c0:8f:d3:44:42:37:95:cb:0f:b2:ea:08:68: b9:02:81:74:81:bc:e0:1d:ce:9e:4c:77:90:05:87:d7:2c:be: 86:8b:e6:7c:ab:36:1e:e8:19:1d:a3:43:91:76:49:23:b7:e2: 4c:3e:72:12:ea:af:3c:f8:cb:e6:57:b9:9f:ef:4c:51:e7:e6: 86:b2:80:df:65:42:f5:e7:df:00:c0:9e:ee:85:a8:29:f5:d6: 82:7e:b1:9c:d4:e1:10:cf:73:62:ae:3d:06:df:06:01:7d:4f: 2e:0b:00:5b:17:91:a0:a8:ab:d7:6b:5f:51:60:7e:d2:fa:4c: d8:3c:95:32:a0:a4:16:de:14:e8:29:ff:0d:b2:c2:84:9b:99: ae:14:b8:11:24:aa:dc:b9:1b:87:dd:dd:75:ed:ea:15:74:e8: cd:ad:0f:2b:0c:6d:e0:7f:78:39:e1:2f:95:87:88:8b:ce:2a: 25:45:1c:13:4f:38:3a:bc:1d:7c:11:b7:05:65:6b:fb:52:6d: 55:09:cd:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXnyn+aZQUAvVwsicZ/9YDYola8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY5NDQ5RkYzRTI0ODQyQjBDRUNDNjFBQjM5OEU4OEY4 MzcwOUZDMTAeFw0yNjAxMjkwMzU3MzZaFw0yNzAxMjgwNDAyMzZaMDMxMTAvBgNV BAMTKDE5MjJEODIzNjU5NjUzNkY2RUVFQzEwRTQzRDZDQ0NFRjdEQTk4MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC10uUKrQwmfZXQLIjN2E0xFQth BemOBq+EDYW4S3F7moAOB595MCw/j7yfbVf8q417MjTBwt1heAKyevRIEM6kC1n+ eW2v3IQ+cec21J9UlKDZbo9wK+s4MhW7g8HmUNENXP9+CA4ttcCVv7HNcd95UEV8 p39qdJkZlhKMiiyVuqntJdfmmcaUaMd/zL54I+QWrb1UPhDAzy+tU+t/RTEHxz8Q HTzhcPGIfEsu3I3/b9o+ebChkgHeLwrw8aWApTwdt37MAIVNR+UJ5bBYp987abH8 yL81IzOqGLJz/1Rl/EEhSdjT0LAde7BwZbGZWeuc6k5U0p7OeiWyApYdp/MRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGSLYI2WWU29u7sEOQ9bMzvfamAcwHwYDVR0j BBgwFoAUlpRJ/z4khCsM7MYas5joj4Nwn8EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTRmNzkzNC1jZGM3LTQwODItODNmYi1kZjdkNGY4MjE5YWYvMC85Njk0NDlGRjNF MjQ4NDJCMENFQ0M2MUFCMzk4RTg4RjgzNzA5RkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTY5NDQ5RkYzRTI0ODQyQjBDRUNDNjFBQjM5OEU4OEY4Mzcw OUZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNGY3OTM0LWNkYzctNDA4Mi04 M2ZiLWRmN2Q0ZjgyMTlhZi8wLzMxMzUzNzJlMzIzMDJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSRMA0GCSqG SIb3DQEBCwUAA4IBAQBbZyIQ+ymPSHpgIAyfmQgubUHv13heBbMRo647Fb7fKWX/ fNX4w2gfH6sH4gXFG1N+92oy1qME4rCfK8CP00RCN5XLD7LqCGi5AoF0gbzgHc6e THeQBYfXLL6Gi+Z8qzYe6Bkdo0ORdkkjt+JMPnIS6q88+MvmV7mf70xR5+aGsoDf ZUL1598AwJ7uhagp9daCfrGc1OEQz3Nirj0G3wYBfU8uCwBbF5GgqKvXa19RYH7S +kzYPJUyoKQW3hToKf8NssKEm5muFLgRJKrcuRuH3d117eoVdOjNrQ8rDG3gf3g5 4S+Vh4iLziolRRwTTzg6vB18EbcFZWv7Um1VCc1I -----END CERTIFICATE-----Generated at Mon Mar 2 17:07:35 2026 by rpki-client