$ rpki-client -vvf repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa File: 3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa (raw, json) Hash identifier: eQaky8Oqg6zWWDS6nsYOWW+QdwQJL6ZWMvFeCi9tD5w= Subject key identifier: 6D:50:51:5A:DC:9A:78:85:7E:FD:BD:10:0A:57:13:C2:75:C4:76:48 Certificate issuer: /CN=7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793 Certificate serial: 328A2412FAD6964FF434CB505DED72F8D57D73AF Authority key identifier: 7C:4E:AC:B6:A8:C8:C7:27:6D:4C:EB:86:DC:DC:A3:E7:F4:68:A7:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa Signing time: Thu 05 Feb 2026 06:02:37 +0000 ROA not before: Thu 05 Feb 2026 05:57:37 +0000 ROA not after: Thu 04 Feb 2027 06:02:37 +0000 asID: 152415 IP address blocks: 157.20.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.crl rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 05:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:8a:24:12:fa:d6:96:4f:f4:34:cb:50:5d:ed:72:f8:d5:7d:73:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793 Validity Not Before: Feb 5 05:57:37 2026 GMT Not After : Feb 4 06:02:37 2027 GMT Subject: CN=6D50515ADC9A78857EFDBD100A5713C275C47648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:95:ce:9c:d9:c6:8f:1c:97:9a:70:51:7b:ba: bc:01:7e:c2:60:4c:b1:db:86:4d:c8:16:2a:e3:27: 34:e5:e6:eb:86:0d:65:1f:a2:4f:a8:8d:f2:cc:2b: 7a:25:b8:f9:2c:7d:d0:43:f0:0d:62:85:bc:81:08: 4e:55:61:37:9f:fc:fe:f1:f1:11:45:64:76:23:0e: c1:59:23:0b:5f:67:85:ee:af:8a:aa:6a:b1:c2:78: 17:b1:5f:c6:0e:d9:14:37:73:3e:f1:f6:8c:5f:d8: 1e:de:34:5a:aa:a9:13:c1:b6:cc:73:3c:84:b0:33: 7a:80:d7:c2:90:d5:e2:b8:a9:82:07:48:5c:13:c2: 9a:1e:8e:48:53:60:d9:02:cd:df:be:cb:aa:78:b5: 9a:23:b5:b9:a9:54:91:0c:f1:0d:e1:07:dd:bf:f4: 1e:b4:2d:15:64:01:af:86:66:7f:82:99:10:cc:85: 47:c5:8c:bd:2c:ed:ef:b5:bd:56:c7:e0:df:d0:96: bc:18:45:34:79:dd:1f:aa:33:a1:83:bc:88:02:2c: ac:db:e6:f0:f4:e1:6e:0f:2a:50:8a:c0:0c:41:60: 99:18:76:fd:23:a4:27:af:d9:85:2b:72:f4:e0:5f: ec:13:f7:2f:d7:75:56:85:9d:bd:d7:6e:b9:ea:9b: 8d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:50:51:5A:DC:9A:78:85:7E:FD:BD:10:0A:57:13:C2:75:C4:76:48 X509v3 Authority Key Identifier: keyid:7C:4E:AC:B6:A8:C8:C7:27:6D:4C:EB:86:DC:DC:A3:E7:F4:68:A7:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4EACB6A8C8C7276D4CEB86DCDCA3E7F468A793.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3b47ab6-d1f1-4d2e-9cfc-8084a4bacf0b/0/3135372e32302e3231322e302f32332d3234203d3e20313532343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.212.0/23 Signature Algorithm: sha256WithRSAEncryption 56:37:a4:71:ce:74:2d:33:b7:6a:ca:c4:cb:a7:4b:db:69:2a: 65:d7:43:4c:d2:5c:a0:e8:7b:64:4d:95:c7:26:2e:1a:dc:e8: d4:c0:73:99:18:1d:1b:e7:0d:a3:b5:e4:da:04:cf:c2:d4:c8: 80:ab:c7:a4:39:23:c9:25:0d:25:4d:af:9a:91:b5:89:a3:f3: 57:66:33:3a:9f:5c:08:e2:3f:54:63:e4:7b:97:a1:29:d2:ba: af:21:6d:a3:43:ac:3e:15:d7:23:d6:db:5d:16:ac:3f:6b:09: 00:5d:eb:1c:1d:7f:3b:11:eb:76:28:03:8d:e6:e0:8c:2c:a3: 5c:cd:4e:ab:b3:4d:08:d2:14:ab:53:f7:8a:b2:26:31:1f:03: 27:2b:7b:d7:ee:e9:20:a1:38:01:0f:d5:ce:19:e8:c2:be:9d: ce:ea:b5:ae:82:82:a8:95:bb:48:1a:61:0c:1d:ce:47:7d:3a: 88:fb:c8:5c:d5:d9:80:f8:a9:dd:00:d3:9a:bf:99:75:49:91: b3:f0:b4:96:ee:be:31:ae:86:3a:82:ee:63:76:2c:b7:bf:d1: ef:b0:89:60:09:36:b8:5a:71:34:b5:09:98:76:98:1a:50:eb: 5c:e3:92:60:7c:3f:7d:3f:f5:52:d1:fb:17:7f:95:da:05:48: 1f:da:d1:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMookEvrWlk/0NMtQXe1y+NV9c68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0RUFDQjZBOEM4QzcyNzZENENFQjg2RENEQ0EzRTdG NDY4QTc5MzAeFw0yNjAyMDUwNTU3MzdaFw0yNzAyMDQwNjAyMzdaMDMxMTAvBgNV BAMTKDZENTA1MTVBREM5QTc4ODU3RUZEQkQxMDBBNTcxM0MyNzVDNDc2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzlc6c2caPHJeacFF7urwBfsJg TLHbhk3IFirjJzTl5uuGDWUfok+ojfLMK3oluPksfdBD8A1ihbyBCE5VYTef/P7x 8RFFZHYjDsFZIwtfZ4Xur4qqarHCeBexX8YO2RQ3cz7x9oxf2B7eNFqqqRPBtsxz PISwM3qA18KQ1eK4qYIHSFwTwpoejkhTYNkCzd++y6p4tZojtbmpVJEM8Q3hB92/ 9B60LRVkAa+GZn+CmRDMhUfFjL0s7e+1vVbH4N/QlrwYRTR53R+qM6GDvIgCLKzb 5vD04W4PKlCKwAxBYJkYdv0jpCev2YUrcvTgX+wT9y/XdVaFnb3Xbrnqm40NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbVBRWtyaeIV+/b0QClcTwnXEdkgwHwYDVR0j BBgwFoAUfE6stqjIxydtTOuG3Nyj5/Rop5MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2I0N2FiNi1kMWYxLTRkMmUtOWNmYy04MDg0YTRiYWNmMGIvMC83QzRFQUNCNkE4 QzhDNzI3NkQ0Q0VCODZEQ0RDQTNFN0Y0NjhBNzkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0RUFDQjZBOEM4QzcyNzZENENFQjg2RENEQ0EzRTdGNDY4 QTc5My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYjQ3YWI2LWQxZjEtNGQyZS05 Y2ZjLTgwODRhNGJhY2YwYi8wLzMxMzUzNzJlMzIzMDJlMzIzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTUMA0GCSqG SIb3DQEBCwUAA4IBAQBWN6RxznQtM7dqysTLp0vbaSpl10NM0lyg6HtkTZXHJi4a 3OjUwHOZGB0b5w2jteTaBM/C1MiAq8ekOSPJJQ0lTa+akbWJo/NXZjM6n1wI4j9U Y+R7l6Ep0rqvIW2jQ6w+Fdcj1ttdFqw/awkAXescHX87Eet2KAON5uCMLKNczU6r s00I0hSrU/eKsiYxHwMnK3vX7ukgoTgBD9XOGejCvp3O6rWugoKolbtIGmEMHc5H fTqI+8hc1dmA+KndANOav5l1SZGz8LSW7r4xroY6gu5jdiy3v9HvsIlgCTa4WnE0 tQmYdpgaUOtc45JgfD99P/VS0fsXf5XaBUgf2tGC -----END CERTIFICATE-----Generated at Mon Mar 2 23:58:29 2026 by rpki-client