$ rpki-client -vvf repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa File: 3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa (raw, json) Hash identifier: EPb75NjgC2nDZ3lIosWcg+cHCoOthdvxPMcDT36WMus= Subject key identifier: 64:E7:A3:93:AD:15:BE:93:29:C5:95:5A:C2:65:98:74:84:2A:17:2D Certificate issuer: /CN=1073C0AF2447C17B85643987B72701D1AE52823D Certificate serial: 1668E459D8F0C423B3C7554F71E2B3755EEC0EBA Authority key identifier: 10:73:C0:AF:24:47:C1:7B:85:64:39:87:B7:27:01:D1:AE:52:82:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa Signing time: Tue 21 Apr 2026 02:01:35 +0000 ROA not before: Tue 21 Apr 2026 01:56:35 +0000 ROA not after: Tue 20 Apr 2027 02:01:35 +0000 asID: 152397 IP address blocks: 157.15.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.crl rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 11:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:68:e4:59:d8:f0:c4:23:b3:c7:55:4f:71:e2:b3:75:5e:ec:0e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1073C0AF2447C17B85643987B72701D1AE52823D Validity Not Before: Apr 21 01:56:35 2026 GMT Not After : Apr 20 02:01:35 2027 GMT Subject: CN=64E7A393AD15BE9329C5955AC2659874842A172D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:74:19:63:1b:02:c8:2d:c1:24:01:e6:27:e5: b9:f6:c3:c6:e5:77:f0:41:9b:b1:5d:3b:da:da:19: 67:91:d3:2e:7f:c4:52:ad:bc:11:89:fc:20:46:16: f8:68:69:1b:a4:d8:e3:7f:1f:0e:90:5d:c5:13:d6: 79:48:42:89:2b:88:8f:52:f5:1d:25:34:92:39:9a: 3f:51:4b:05:02:71:5d:6b:05:ef:b1:5d:3c:f4:a4: 86:d0:62:62:95:ce:85:3f:24:4a:ec:21:76:2e:b6: 0a:cc:ee:a6:a0:9f:5d:7b:fd:7f:67:3a:e7:b3:a6: 46:68:1e:50:6f:a2:ec:ff:09:1c:fb:40:e2:fd:3d: 12:24:66:71:3a:03:6c:03:bb:16:67:61:d1:f8:3c: c9:cb:4f:29:1d:bd:7f:85:48:22:d7:0f:d6:b9:cb: 12:d5:37:35:99:40:fe:73:d5:28:a8:34:ca:53:a4: 38:82:28:ee:56:f7:8c:40:5b:61:29:8f:d1:ad:38: d6:ea:80:89:5d:3c:13:38:20:4d:da:3b:df:ae:fd: 25:75:e0:1a:00:dd:1a:ea:54:51:cb:da:f9:29:f4: 00:78:3f:ea:a5:b1:09:75:8c:30:af:ce:7c:ff:68: cf:49:1a:55:a7:7b:77:af:6c:b8:7c:4a:5d:00:24: fa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E7:A3:93:AD:15:BE:93:29:C5:95:5A:C2:65:98:74:84:2A:17:2D X509v3 Authority Key Identifier: keyid:10:73:C0:AF:24:47:C1:7B:85:64:39:87:B7:27:01:D1:AE:52:82:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/1073C0AF2447C17B85643987B72701D1AE52823D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1073C0AF2447C17B85643987B72701D1AE52823D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132332e302f32342d3234203d3e20313532333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.123.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:72:1f:6b:0d:f1:c2:13:62:99:64:ed:28:69:21:d0:d0:74: 6b:03:a7:5c:cb:62:6a:b5:0f:7f:a4:9b:9a:f8:d3:ae:77:24: c0:c7:a7:d6:6a:44:45:39:9a:94:d0:a2:8b:d9:56:f7:a6:5c: 35:ea:a1:ec:f2:ff:e8:ee:af:fc:7d:64:10:ce:7e:36:56:ae: 5a:44:ee:6a:15:d4:ad:df:ec:34:f3:b5:2d:fc:54:47:2e:81: 22:8f:2d:d8:16:06:42:23:a7:07:b7:ea:01:51:d5:44:c4:7d: 99:35:15:07:26:29:19:ab:d0:25:c9:80:2c:ef:12:f1:4e:9d: af:18:d0:c8:82:cc:eb:ef:85:49:8a:33:c7:6c:f3:f2:aa:0a: 52:3f:7f:b9:b2:59:c5:a8:d5:31:9b:1b:bf:7c:e8:de:c0:13: d3:ed:6e:a1:00:c6:dd:eb:f9:a3:e9:60:5f:c2:ce:57:16:50: 27:66:2d:12:8e:4a:b5:41:7f:f7:a6:30:e7:be:60:9f:9e:ce: 06:fd:3d:b3:f4:2c:f4:89:9e:27:35:f7:ba:57:9d:09:95:93: 31:07:91:fb:28:6f:c8:04:79:ee:fb:46:7e:ca:d1:ac:2f:47: 23:15:c4:72:03:b8:a1:95:3c:11:e7:76:04:09:1a:68:c0:6b: 9c:97:f9:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFmjkWdjwxCOzx1VPceKzdV7sDrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA3M0MwQUYyNDQ3QzE3Qjg1NjQzOTg3QjcyNzAxRDFB RTUyODIzRDAeFw0yNjA0MjEwMTU2MzVaFw0yNzA0MjAwMjAxMzVaMDMxMTAvBgNV BAMTKDY0RTdBMzkzQUQxNUJFOTMyOUM1OTU1QUMyNjU5ODc0ODQyQTE3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCdBljGwLILcEkAeYn5bn2w8bl d/BBm7FdO9raGWeR0y5/xFKtvBGJ/CBGFvhoaRuk2ON/Hw6QXcUT1nlIQokriI9S 9R0lNJI5mj9RSwUCcV1rBe+xXTz0pIbQYmKVzoU/JErsIXYutgrM7qagn117/X9n OuezpkZoHlBvouz/CRz7QOL9PRIkZnE6A2wDuxZnYdH4PMnLTykdvX+FSCLXD9a5 yxLVNzWZQP5z1SioNMpTpDiCKO5W94xAW2Epj9GtONbqgIldPBM4IE3aO9+u/SV1 4BoA3RrqVFHL2vkp9AB4P+qlsQl1jDCvznz/aM9JGlWne3evbLh8Sl0AJPrFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZOejk60VvpMpxZVawmWYdIQqFy0wHwYDVR0j BBgwFoAUEHPAryRHwXuFZDmHtycB0a5Sgj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmRkMTVlMy05ZWU1LTRkNTItOWVlZS03MTJiYjNiN2JmZmIvMC8xMDczQzBBRjI0 NDdDMTdCODU2NDM5ODdCNzI3MDFEMUFFNTI4MjNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMTA3M0MwQUYyNDQ3QzE3Qjg1NjQzOTg3QjcyNzAxRDFBRTUy ODIzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2ZGQxNWUzLTllZTUtNGQ1Mi05 ZWVlLTcxMmJiM2I3YmZmYi8wLzMxMzUzNzJlMzEzNTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ97MA0GCSqG SIb3DQEBCwUAA4IBAQBbch9rDfHCE2KZZO0oaSHQ0HRrA6dcy2JqtQ9/pJua+NOu dyTAx6fWakRFOZqU0KKL2Vb3plw16qHs8v/o7q/8fWQQzn42Vq5aRO5qFdSt3+w0 87Ut/FRHLoEijy3YFgZCI6cHt+oBUdVExH2ZNRUHJikZq9AlyYAs7xLxTp2vGNDI gszr74VJijPHbPPyqgpSP3+5slnFqNUxmxu/fOjewBPT7W6hAMbd6/mj6WBfws5X FlAnZi0Sjkq1QX/3pjDnvmCfns4G/T2z9Cz0iZ4nNfe6V50JlZMxB5H7KG/IBHnu +0Z+ytGsL0cjFcRyA7ihlTwR53YECRpowGucl/lX -----END CERTIFICATE-----Generated at Wed Apr 22 06:04:24 2026 by rpki-client