$ rpki-client -vvf repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa File: 3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa (raw, json) Hash identifier: yE+USKMsb9lpbpjN38Yp2/xMu2avQMNjXPmfwu/UPEs= Subject key identifier: FE:38:17:1D:DF:A1:3E:6B:22:DB:61:2D:46:BA:41:09:39:D4:8C:51 Certificate issuer: /CN=F38B6752412BBA5BA6A00E0BD400D0920CA01E22 Certificate serial: 7D929EAEFC54E3573C25179511AE52F09E2A4858 Authority key identifier: F3:8B:67:52:41:2B:BA:5B:A6:A0:0E:0B:D4:00:D0:92:0C:A0:1E:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa Signing time: Tue 03 Feb 2026 14:00:02 +0000 ROA not before: Tue 03 Feb 2026 13:55:02 +0000 ROA not after: Tue 02 Feb 2027 14:00:02 +0000 asID: 152406 IP address blocks: 157.15.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.crl rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 01:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:92:9e:ae:fc:54:e3:57:3c:25:17:95:11:ae:52:f0:9e:2a:48:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38B6752412BBA5BA6A00E0BD400D0920CA01E22 Validity Not Before: Feb 3 13:55:02 2026 GMT Not After : Feb 2 14:00:02 2027 GMT Subject: CN=FE38171DDFA13E6B22DB612D46BA410939D48C51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:61:5b:34:b2:ce:07:45:e0:79:9d:74:07:00: be:88:97:e8:8f:3d:17:f0:e8:2f:f6:b8:d7:61:53: a4:c9:dd:07:70:65:fa:14:5e:c6:64:f2:4d:18:40: b2:e5:d0:80:1d:c4:5f:4c:44:99:8a:ae:63:36:97: 39:53:b5:3f:ed:63:41:b8:4a:fe:be:de:e5:ed:74: 50:0a:30:96:f7:20:c3:d3:f2:d3:24:ea:b2:ae:13: 18:c9:f8:6a:a3:39:33:37:a6:00:47:ed:85:10:97: bc:6a:80:55:fa:e1:e0:d2:19:5a:96:bc:84:cf:41: 27:58:4a:b4:e3:8c:cd:2b:1f:8d:03:5d:fc:5d:00: b4:90:13:07:24:12:bb:8a:f9:5a:3e:ac:3f:75:2b: b5:4f:df:f0:ea:b3:9f:ca:6a:f1:8f:96:35:75:c6: 5d:bc:e1:38:64:81:2c:62:fc:ca:bd:5a:5d:67:e1: f3:41:a6:d3:a3:55:2e:a1:ca:af:43:ae:cf:d1:c2: df:81:de:61:a4:27:d7:b2:40:f8:fe:0f:87:e2:1b: 2f:bb:94:3e:00:c0:b5:58:29:fe:af:ff:12:66:3b: 2e:91:fb:b0:0b:5a:51:4e:ea:56:a1:44:c7:c9:56: f1:2f:66:84:90:1b:0a:66:c5:61:a9:e4:bb:4e:65: c0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:38:17:1D:DF:A1:3E:6B:22:DB:61:2D:46:BA:41:09:39:D4:8C:51 X509v3 Authority Key Identifier: keyid:F3:8B:67:52:41:2B:BA:5B:A6:A0:0E:0B:D4:00:D0:92:0C:A0:1E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/3135372e31352e3231322e302f32342d3234203d3e20313532343036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.212.0/24 Signature Algorithm: sha256WithRSAEncryption 93:4c:2f:7f:1f:5b:d1:b2:04:91:12:3b:52:ee:2f:94:9e:f6: 82:06:5e:e5:52:b8:de:08:1d:61:ec:c7:a3:f8:27:19:93:d3: b8:53:1d:45:43:74:82:d7:63:d0:7f:cb:00:71:a0:83:70:59: 94:55:41:15:26:8e:31:f9:8b:10:cc:bd:06:a3:60:3a:a4:af: 8f:20:6d:42:e0:97:3d:5c:30:bc:29:c9:b2:ec:03:c8:c8:9c: 12:0d:6e:a5:91:30:b8:cc:53:58:dc:f6:25:a8:5e:88:18:c5: 4a:9c:c2:34:4b:03:73:5c:e4:08:24:d8:9d:84:0d:ff:cf:a0: 94:ec:53:45:ca:f3:41:79:6f:2a:5c:84:62:4b:51:a8:0f:90: 2e:ad:f0:14:6a:ad:b0:57:13:73:e6:a4:87:d6:2a:3a:f9:24: d7:29:ea:af:f1:40:5d:e2:31:71:08:6f:03:77:31:ce:1c:35: 46:f5:0e:59:0a:70:aa:70:a4:0b:04:be:16:58:c9:5b:62:0c: 1c:c4:7e:c0:1b:8b:75:8f:22:51:43:7a:64:04:ba:0a:ec:b1: aa:76:3d:57:eb:5f:14:d1:88:9d:50:90:cd:b8:d6:33:c4:71: e1:2e:65:a1:c2:b7:f7:7c:65:12:49:b8:3d:3a:4b:3a:fe:f8: b4:f1:f3:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfZKervxU41c8JReVEa5S8J4qSFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4QjY3NTI0MTJCQkE1QkE2QTAwRTBCRDQwMEQwOTIw Q0EwMUUyMjAeFw0yNjAyMDMxMzU1MDJaFw0yNzAyMDIxNDAwMDJaMDMxMTAvBgNV BAMTKEZFMzgxNzFEREZBMTNFNkIyMkRCNjEyRDQ2QkE0MTA5MzlENDhDNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4YVs0ss4HReB5nXQHAL6Il+iP PRfw6C/2uNdhU6TJ3QdwZfoUXsZk8k0YQLLl0IAdxF9MRJmKrmM2lzlTtT/tY0G4 Sv6+3uXtdFAKMJb3IMPT8tMk6rKuExjJ+GqjOTM3pgBH7YUQl7xqgFX64eDSGVqW vITPQSdYSrTjjM0rH40DXfxdALSQEwckEruK+Vo+rD91K7VP3/Dqs5/KavGPljV1 xl284ThkgSxi/Mq9Wl1n4fNBptOjVS6hyq9Drs/Rwt+B3mGkJ9eyQPj+D4fiGy+7 lD4AwLVYKf6v/xJmOy6R+7ALWlFO6lahRMfJVvEvZoSQGwpmxWGp5LtOZcC9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/jgXHd+hPmsi22EtRrpBCTnUjFEwHwYDVR0j BBgwFoAU84tnUkErulumoA4L1ADQkgygHiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDFmYzFhMi1lZTc3LTQwNWYtOWUzMS1hZGM2ZGZjOWI3NGMvMC9GMzhCNjc1MjQx MkJCQTVCQTZBMDBFMEJENDAwRDA5MjBDQTAxRTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjM4QjY3NTI0MTJCQkE1QkE2QTAwRTBCRDQwMEQwOTIwQ0Ew MUUyMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkMWZjMWEyLWVlNzctNDA1Zi05 ZTMxLWFkYzZkZmM5Yjc0Yy8wLzMxMzUzNzJlMzEzNTJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ/UMA0GCSqG SIb3DQEBCwUAA4IBAQCTTC9/H1vRsgSREjtS7i+UnvaCBl7lUrjeCB1h7Mej+CcZ k9O4Ux1FQ3SC12PQf8sAcaCDcFmUVUEVJo4x+YsQzL0Go2A6pK+PIG1C4Jc9XDC8 Kcmy7APIyJwSDW6lkTC4zFNY3PYlqF6IGMVKnMI0SwNzXOQIJNidhA3/z6CU7FNF yvNBeW8qXIRiS1GoD5AurfAUaq2wVxNz5qSH1io6+STXKeqv8UBd4jFxCG8DdzHO HDVG9Q5ZCnCqcKQLBL4WWMlbYgwcxH7AG4t1jyJRQ3pkBLoK7LGqdj1X618U0Yid UJDNuNYzxHHhLmWhwrf3fGUSSbg9Oks6/vi08fPd -----END CERTIFICATE-----Generated at Mon Mar 2 19:08:11 2026 by rpki-client