$ rpki-client -vvf repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa File: 3135372e31302e36332e302f32342d3234203d3e20313532303835.roa (raw, json) Hash identifier: L5i/E5G2yR4p96EaiaxVuLqhNScyIzpSwsnYjpL8mEM= Subject key identifier: D9:A9:79:5D:0A:8B:06:72:5D:82:66:C3:82:B5:A8:57:7C:F7:C8:4E Certificate issuer: /CN=4A37764CC80D1B8A6819E0F0F145466E0BE52CBD Certificate serial: 3ABB56F9CE915DE94E4DC8640B27131564649F6F Authority key identifier: 4A:37:76:4C:C8:0D:1B:8A:68:19:E0:F0:F1:45:46:6E:0B:E5:2C:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa Signing time: Tue 03 Feb 2026 10:00:00 +0000 ROA not before: Tue 03 Feb 2026 09:55:00 +0000 ROA not after: Tue 02 Feb 2027 10:00:00 +0000 asID: 152085 IP address blocks: 157.10.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.crl rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bb:56:f9:ce:91:5d:e9:4e:4d:c8:64:0b:27:13:15:64:64:9f:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A37764CC80D1B8A6819E0F0F145466E0BE52CBD Validity Not Before: Feb 3 09:55:00 2026 GMT Not After : Feb 2 10:00:00 2027 GMT Subject: CN=D9A9795D0A8B06725D8266C382B5A8577CF7C84E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:07:b0:9a:44:e7:5d:71:b4:de:90:12:58:2b: f3:b6:41:ad:27:51:af:34:80:9d:c8:1e:ef:d2:cf: 16:bb:45:ef:92:36:6e:51:fa:14:ab:91:d0:49:aa: e2:d3:59:11:85:23:f2:31:20:94:46:8d:03:86:52: b7:d3:7f:7b:b4:2e:13:a4:a4:e8:e0:d2:78:0d:08: 23:a1:7e:76:de:4e:be:cf:b8:f9:47:72:f5:4b:fb: ed:90:2a:e0:cc:f2:a2:19:65:60:ce:50:98:01:d9: 76:d5:d8:a0:4f:be:92:ef:da:a6:08:e7:db:80:71: 3a:1e:6b:7d:50:7e:1f:18:8a:04:19:ef:73:f9:a1: db:fb:e3:63:04:bf:0b:96:96:0b:b0:62:96:f7:a4: 86:1b:3f:8b:88:47:d1:1a:ec:3f:34:25:a0:d3:62: c6:70:ee:4c:e1:f9:6f:e2:88:0e:7e:0d:fa:63:a0: 1c:9f:82:fa:97:60:f0:90:3b:ba:c4:d8:1d:36:fc: 93:67:ca:d1:e1:c0:8d:d8:5d:4e:84:14:23:f2:73: e9:91:4b:a3:be:4e:45:5e:81:ce:92:67:55:e5:15: a6:8b:ac:5b:6b:5a:2e:c9:e0:3a:53:89:82:de:0d: 0a:47:46:12:cc:b1:c8:f1:07:72:d4:ad:8f:11:fc: 92:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A9:79:5D:0A:8B:06:72:5D:82:66:C3:82:B5:A8:57:7C:F7:C8:4E X509v3 Authority Key Identifier: keyid:4A:37:76:4C:C8:0D:1B:8A:68:19:E0:F0:F1:45:46:6E:0B:E5:2C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4A37764CC80D1B8A6819E0F0F145466E0BE52CBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.63.0/24 Signature Algorithm: sha256WithRSAEncryption 78:44:c0:43:8f:76:5b:e4:3d:a6:a6:34:50:20:c6:25:44:6c: 34:53:ab:52:a2:71:ac:82:00:ab:93:34:4e:57:7a:02:e5:e3: eb:d1:46:a9:22:bf:ea:15:e8:10:72:90:43:2e:8e:fd:79:26: 64:b1:f6:55:9e:64:0c:88:4d:2e:1f:97:e6:b8:b0:b9:d6:50: 1d:eb:fc:3f:5e:71:14:42:cc:47:d2:27:f4:ae:14:0a:cd:f4: 77:74:b1:80:5d:e6:aa:56:3e:3e:33:f7:a8:00:8c:fe:cf:ee: af:0f:64:0a:4c:8a:a2:44:77:93:8c:96:93:dc:81:80:a1:50: 85:14:7a:5a:8d:69:89:a7:49:51:81:eb:51:c8:91:a5:3f:53: 07:3b:39:e9:a3:ee:c5:62:58:f9:bf:e8:e5:e3:be:5d:19:9b: 61:f5:01:77:8e:a4:cd:df:03:1b:17:bd:d2:45:89:ac:f1:37: 28:19:ee:8c:1d:a7:dc:01:6a:c5:17:95:a0:2a:a1:56:fd:e9: 4e:74:74:1f:88:8a:3a:85:4c:9a:f1:d1:be:9a:67:b9:1b:48: 05:bf:ba:3b:fe:12:8c:c2:11:18:ff:0b:9d:77:1c:ae:1b:bf: 16:32:20:bb:07:ef:55:e6:a4:06:50:be:88:67:7c:f7:60:fd: d5:ea:08:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOrtW+c6RXelOTchkCycTFWRkn28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEEzNzc2NENDODBEMUI4QTY4MTlFMEYwRjE0NTQ2NkUw QkU1MkNCRDAeFw0yNjAyMDMwOTU1MDBaFw0yNzAyMDIxMDAwMDBaMDMxMTAvBgNV BAMTKEQ5QTk3OTVEMEE4QjA2NzI1RDgyNjZDMzgyQjVBODU3N0NGN0M4NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgB7CaROddcbTekBJYK/O2Qa0n Ua80gJ3IHu/Szxa7Re+SNm5R+hSrkdBJquLTWRGFI/IxIJRGjQOGUrfTf3u0LhOk pOjg0ngNCCOhfnbeTr7PuPlHcvVL++2QKuDM8qIZZWDOUJgB2XbV2KBPvpLv2qYI 59uAcToea31Qfh8YigQZ73P5odv742MEvwuWlguwYpb3pIYbP4uIR9Ea7D80JaDT YsZw7kzh+W/iiA5+DfpjoByfgvqXYPCQO7rE2B02/JNnytHhwI3YXU6EFCPyc+mR S6O+TkVegc6SZ1XlFaaLrFtrWi7J4DpTiYLeDQpHRhLMscjxB3LUrY8R/JIBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2al5XQqLBnJdgmbDgrWoV3z3yE4wHwYDVR0j BBgwFoAUSjd2TMgNG4poGeDw8UVGbgvlLL0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDNhMmZkZi1iY2JhLTQ3NTctYjM2Ni1lMWEwYWQyZDM3NGEvMC80QTM3NzY0Q0M4 MEQxQjhBNjgxOUUwRjBGMTQ1NDY2RTBCRTUyQ0JELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNEEzNzc2NENDODBEMUI4QTY4MTlFMEYwRjE0NTQ2NkUwQkU1 MkNCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkM2EyZmRmLWJjYmEtNDc1Ny1i MzY2LWUxYTBhZDJkMzc0YS8wLzMxMzUzNzJlMzEzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KPzANBgkqhkiG 9w0BAQsFAAOCAQEAeETAQ492W+Q9pqY0UCDGJURsNFOrUqJxrIIAq5M0Tld6AuXj 69FGqSK/6hXoEHKQQy6O/XkmZLH2VZ5kDIhNLh+X5riwudZQHev8P15xFELMR9In 9K4UCs30d3SxgF3mqlY+PjP3qACM/s/urw9kCkyKokR3k4yWk9yBgKFQhRR6Wo1p iadJUYHrUciRpT9TBzs56aPuxWJY+b/o5eO+XRmbYfUBd46kzd8DGxe90kWJrPE3 KBnujB2n3AFqxReVoCqhVv3pTnR0H4iKOoVMmvHRvppnuRtIBb+6O/4SjMIRGP8L nXccrhu/FjIguwfvVeakBlC+iGd892D91eoI3A== -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:09 2026 by rpki-client