$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/3135372e36362e33342e302f32332d3234203d3e203535363838.roa File: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: XHVllAX/UXDKrZwLLYWAgUneaiPswSM3kgLSE6ruL6s= Subject key identifier: DC:07:8F:8D:F5:B9:E4:A8:14:98:94:7A:12:A3:B5:D0:6B:45:F3:D7 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 2CF42EE917D14884F86B999B47C3EC774603BC11 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/3135372e36362e33342e302f32332d3234203d3e203535363838.roa Signing time: Mon 02 Mar 2026 10:00:01 +0000 ROA not before: Mon 02 Mar 2026 09:55:01 +0000 ROA not after: Mon 01 Mar 2027 10:00:01 +0000 asID: 55688 IP address blocks: 157.66.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f4:2e:e9:17:d1:48:84:f8:6b:99:9b:47:c3:ec:77:46:03:bc:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Mar 2 09:55:01 2026 GMT Not After : Mar 1 10:00:01 2027 GMT Subject: CN=DC078F8DF5B9E4A81498947A12A3B5D06B45F3D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:46:3d:bc:2d:45:7d:af:ff:42:5c:4d:50:d7: a4:ee:c2:e6:94:e4:f1:83:c1:1a:87:b7:2d:cc:40: eb:41:da:13:c0:a1:4b:0c:92:06:ab:85:76:12:e5: f8:fd:db:0e:55:36:67:ae:fe:8b:3f:bc:81:79:b4: f8:2e:a4:62:ce:52:ed:eb:6f:01:51:74:a9:3d:62: 01:9a:84:d2:77:87:40:ca:4f:48:ff:02:6f:3e:d9: 79:61:c0:fd:c4:0c:36:70:9e:8a:4a:8c:de:bb:d3: 3b:6a:34:ba:60:94:8d:34:91:1e:7e:84:91:d8:30: 16:da:6a:d1:06:70:bb:7d:57:15:f7:ca:84:f3:06: 11:88:a6:64:52:0a:f6:89:11:39:d1:12:63:f6:e0: 38:ce:9e:3b:d5:75:28:48:46:5f:21:ff:79:a1:46: 95:1b:7d:20:dc:aa:19:50:a1:41:8d:26:ba:ae:4c: 4e:d6:03:e4:47:b6:5b:c6:a1:22:ed:d0:12:37:92: 94:8f:f9:55:15:01:75:54:c0:d6:be:3a:af:45:74: 6c:51:b5:21:8f:bd:cd:88:d6:1f:23:04:2e:75:f1: 4d:16:f1:44:a0:4c:d7:7c:b1:56:d5:34:6c:5f:99: 67:a2:97:67:8d:ac:2e:77:4d:e6:77:ec:76:c8:38: f8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:07:8F:8D:F5:B9:E4:A8:14:98:94:7A:12:A3:B5:D0:6B:45:F3:D7 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/3135372e36362e33342e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.34.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:e9:e7:4a:63:59:fd:91:01:27:50:e3:9c:2a:9f:71:07:b7: eb:2f:12:f9:79:64:df:77:73:f8:ba:19:71:c5:0f:8b:16:dd: ef:ad:51:2e:06:4e:ff:88:bc:99:e0:5d:67:9f:b6:19:e5:c8: dc:28:9c:94:51:6e:a6:c6:0f:82:86:f2:0a:a6:a9:d8:8a:9e: 3a:00:da:13:d4:ec:30:86:63:a0:eb:88:61:7a:29:12:da:3d: 09:b6:44:b7:d1:c6:06:eb:14:80:41:15:c8:8d:b3:f3:1d:4d: 6d:ab:f2:45:ff:ec:bb:68:55:24:00:2f:91:6b:19:21:b2:75: 6d:60:f1:af:c4:3b:e0:e2:d8:ba:3b:b1:31:75:e9:93:9d:a3: 45:89:3e:89:69:48:6b:88:d9:f0:28:59:90:06:c6:f4:dd:ec: 14:28:c2:a8:01:fc:20:94:4e:51:b1:10:1d:de:30:3b:88:89: b3:7e:9a:d2:6f:24:02:4c:90:a6:33:12:d7:f4:05:29:88:6d: fd:7a:ab:7f:56:a6:f1:c7:62:02:79:4c:0b:8a:bf:2b:22:51: 75:d8:89:ef:43:5c:ab:e1:2e:72:27:af:91:e5:af:b5:ce:dc: df:1e:0b:db:2c:12:d2:b5:38:e1:99:6d:f5:0b:14:60:f9:81: a9:09:7c:2a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULPQu6RfRSIT4a5mbR8Psd0YDvBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNjAzMDIwOTU1MDFaFw0yNzAzMDExMDAwMDFaMDMxMTAvBgNV BAMTKERDMDc4RjhERjVCOUU0QTgxNDk4OTQ3QTEyQTNCNUQwNkI0NUYzRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbRj28LUV9r/9CXE1Q16TuwuaU 5PGDwRqHty3MQOtB2hPAoUsMkgarhXYS5fj92w5VNmeu/os/vIF5tPgupGLOUu3r bwFRdKk9YgGahNJ3h0DKT0j/Am8+2XlhwP3EDDZwnopKjN670ztqNLpglI00kR5+ hJHYMBbaatEGcLt9VxX3yoTzBhGIpmRSCvaJETnREmP24DjOnjvVdShIRl8h/3mh RpUbfSDcqhlQoUGNJrquTE7WA+RHtlvGoSLt0BI3kpSP+VUVAXVUwNa+Oq9FdGxR tSGPvc2I1h8jBC518U0W8USgTNd8sVbVNGxfmWeil2eNrC53TeZ37HbIOPhnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3AePjfW55KgUmJR6EqO10GtF89cwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjM2U2OGJkLWIwNGMtNGQzNS04 MDIwLTAyOTM2MzQyZmIxZC8wLzMxMzUzNzJlMzYzNjJlMzMzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzUzNjM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQiIwDQYJKoZIhvcN AQELBQADggEBAFzp50pjWf2RASdQ45wqn3EHt+svEvl5ZN93c/i6GXHFD4sW3e+t US4GTv+IvJngXWefthnlyNwonJRRbqbGD4KG8gqmqdiKnjoA2hPU7DCGY6DriGF6 KRLaPQm2RLfRxgbrFIBBFciNs/MdTW2r8kX/7LtoVSQAL5FrGSGydW1g8a/EO+Di 2Lo7sTF16ZOdo0WJPolpSGuI2fAoWZAGxvTd7BQowqgB/CCUTlGxEB3eMDuIibN+ mtJvJAJMkKYzEtf0BSmIbf16q39WpvHHYgJ5TAuKvysiUXXYie9DXKvhLnInr5Hl r7XO3N8eC9ssEtK1OOGZbfULFGD5gakJfCo= -----END CERTIFICATE-----Generated at Sat Mar 7 19:35:54 2026 by rpki-client