$ rpki-client -vvf repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: YgsdLMT3Yt6jH21ofsKszlnSUGDMzJapWd6ICs+7gAY= Subject key identifier: F7:37:A8:A2:91:AB:8B:FC:9F:45:88:C3:31:BC:7F:F8:51:78:E5:D1 Certificate issuer: /CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Certificate serial: 205C741D8A08E5CE71D5E605F4195D6CA3559456 Authority key identifier: 7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa Signing time: Sat 18 Apr 2026 09:00:00 +0000 ROA not before: Sat 18 Apr 2026 08:55:00 +0000 ROA not after: Sat 17 Apr 2027 09:00:00 +0000 asID: 153123 IP address blocks: 160.187.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 13:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5c:74:1d:8a:08:e5:ce:71:d5:e6:05:f4:19:5d:6c:a3:55:94:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Validity Not Before: Apr 18 08:55:00 2026 GMT Not After : Apr 17 09:00:00 2027 GMT Subject: CN=F737A8A291AB8BFC9F4588C331BC7FF85178E5D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:54:cb:cf:d8:11:38:5c:dd:30:39:c5:ea:e1: 58:3d:10:03:bb:76:99:36:2b:98:1d:a2:29:2d:98: ee:9f:32:04:a9:eb:7a:c6:c9:c7:b1:68:64:dd:9e: eb:1b:f5:fd:8e:7b:dd:96:50:6a:99:23:0e:b8:50: 9a:b0:e2:73:4e:04:27:76:07:57:99:85:b2:90:2d: ea:cd:f8:6f:ec:bb:0f:0e:d7:bd:6c:2a:ce:61:1c: 60:76:c7:4f:ac:8e:30:b4:9c:b7:c8:5b:29:98:f1: 96:58:19:7b:0e:e0:4a:bb:8a:9c:3d:e9:9d:d5:6b: 47:29:5c:3a:08:9c:90:8c:e9:09:12:f1:6a:01:a6: 04:c8:83:8d:d6:e4:c6:6b:3d:0c:85:6b:5c:fc:8b: 3c:06:86:b4:35:32:38:5d:c3:c9:ce:74:bc:46:fd: ea:28:be:d0:d4:0f:55:51:62:84:8c:59:cd:aa:d1: 3f:97:ab:be:64:35:2b:2f:33:61:10:33:dc:c2:cd: ca:66:af:e8:6b:67:71:b9:43:1c:b2:ed:40:5e:1b: 7f:7d:73:62:0c:a7:c3:7d:eb:50:3e:98:aa:8c:de: 6e:e6:51:e4:ce:c2:3b:72:e0:c6:ab:6e:8e:7a:43: 93:ee:e0:da:e8:f3:53:4d:33:81:ca:b8:59:22:b3: a3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:37:A8:A2:91:AB:8B:FC:9F:45:88:C3:31:BC:7F:F8:51:78:E5:D1 X509v3 Authority Key Identifier: keyid:7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.137.0/24 Signature Algorithm: sha256WithRSAEncryption 05:44:d6:7a:38:fd:a9:4a:6d:54:75:90:9c:44:bb:58:18:b9: 48:64:3c:83:d5:d0:04:7f:4e:a7:49:1c:5a:bd:10:c2:03:0c: 51:00:43:13:08:16:9d:1b:78:09:fd:49:95:5b:08:88:5f:dd: 76:0b:19:02:26:4b:6b:48:5d:fc:04:7e:7c:5d:80:77:36:1a: 64:34:a9:93:31:a1:60:06:db:c6:5d:83:d5:12:41:9a:03:f3: d7:35:36:58:99:34:97:67:0f:3d:33:e7:12:6f:9a:d2:98:58: ac:14:a9:0a:4f:a2:5a:49:63:25:c9:73:5d:1d:e0:a9:22:c7: 07:f2:70:0d:59:5b:67:67:55:f5:cd:19:6f:0b:12:d2:50:e8: 7c:b1:f4:ca:b0:79:d9:32:9b:3e:73:b1:0b:ff:0f:4a:d0:e7: bc:c1:f3:c4:c8:ef:45:f8:40:b8:40:28:36:5b:97:86:8c:3a: 43:92:eb:08:e0:3f:5d:0a:3b:4b:dd:fc:7e:ff:39:81:34:91: cc:cc:f7:31:64:b4:b3:b2:ed:f9:c8:db:a5:31:10:1b:6b:4a: 08:57:5a:3e:30:c3:f8:2b:30:af:f1:81:a3:46:00:a0:82:bc: b1:c6:2f:01:cb:5b:d8:db:f6:7e:fc:6a:c7:a3:f5:18:90:a7: f6:88:85:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIFx0HYoI5c5x1eYF9BldbKNVlFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4 NDM5NDhEQzAeFw0yNjA0MTgwODU1MDBaFw0yNzA0MTcwOTAwMDBaMDMxMTAvBgNV BAMTKEY3MzdBOEEyOTFBQjhCRkM5RjQ1ODhDMzMxQkM3RkY4NTE3OEU1RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6VMvP2BE4XN0wOcXq4Vg9EAO7 dpk2K5gdoiktmO6fMgSp63rGycexaGTdnusb9f2Oe92WUGqZIw64UJqw4nNOBCd2 B1eZhbKQLerN+G/suw8O171sKs5hHGB2x0+sjjC0nLfIWymY8ZZYGXsO4Eq7ipw9 6Z3Va0cpXDoInJCM6QkS8WoBpgTIg43W5MZrPQyFa1z8izwGhrQ1Mjhdw8nOdLxG /eoovtDUD1VRYoSMWc2q0T+Xq75kNSsvM2EQM9zCzcpmr+hrZ3G5Qxyy7UBeG399 c2IMp8N961A+mKqM3m7mUeTOwjty4Marbo56Q5Pu4Nro81NNM4HKuFkis6OlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9zeoopGri/yfRYjDMbx/+FF45dEwHwYDVR0j BBgwFoAUfE39eJFNwfZhMPJWrmnZ+oQ5SNwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTkyMzM5Ny04Y2Y4LTRjZWYtODg1Ni0wZDI2OGQ3M2VkYjEvMC83QzRERkQ3ODkx NERDMUY2NjEzMEYyNTZBRTY5RDlGQTg0Mzk0OERDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4NDM5 NDhEQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4kwDQYJ KoZIhvcNAQELBQADggEBAAVE1no4/alKbVR1kJxEu1gYuUhkPIPV0AR/TqdJHFq9 EMIDDFEAQxMIFp0beAn9SZVbCIhf3XYLGQImS2tIXfwEfnxdgHc2GmQ0qZMxoWAG 28Zdg9USQZoD89c1NliZNJdnDz0z5xJvmtKYWKwUqQpPolpJYyXJc10d4Kkixwfy cA1ZW2dnVfXNGW8LEtJQ6Hyx9Mqwedkymz5zsQv/D0rQ57zB88TI70X4QLhAKDZb l4aMOkOS6wjgP10KO0vd/H7/OYE0kczM9zFktLOy7fnI26UxEBtrSghXWj4ww/gr MK/xgaNGAKCCvLHGLwHLW9jb9n78asej9RiQp/aIhcc= -----END CERTIFICATE-----Generated at Wed Apr 22 06:05:51 2026 by rpki-client