$ rpki-client -vvf repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132312e302f32342d3234203d3e20313534343130.roa File: 3135372e32302e3132312e302f32342d3234203d3e20313534343130.roa (raw, json) Hash identifier: esrMCJUxCJv07GSY+ByORyNcBz/84VLcd99qgdERooU= Subject key identifier: 75:82:25:9B:9E:B9:D7:96:93:49:DD:A9:46:E7:3E:D8:26:D7:D1:BA Certificate issuer: /CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Certificate serial: 8A2E9ECA7E5D9277D3AC5DC15C6E0AC591DDED Authority key identifier: D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132312e302f32342d3234203d3e20313534343130.roa Signing time: Wed 18 Mar 2026 23:29:06 +0000 ROA not before: Wed 18 Mar 2026 23:24:06 +0000 ROA not after: Wed 17 Mar 2027 23:29:06 +0000 asID: 154410 IP address blocks: 157.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 18:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8a:2e:9e:ca:7e:5d:92:77:d3:ac:5d:c1:5c:6e:0a:c5:91:dd:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Validity Not Before: Mar 18 23:24:06 2026 GMT Not After : Mar 17 23:29:06 2027 GMT Subject: CN=7582259B9EB9D7969349DDA946E73ED826D7D1BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6c:4d:a7:ae:26:1d:77:d4:4f:43:8e:d2:a1: 79:7a:b1:3b:af:25:4a:f5:1c:db:f8:84:1c:7f:52: a0:c2:80:9e:7f:c2:c4:15:ec:62:74:64:4c:46:9f: 37:c5:56:2b:da:11:cb:d4:b2:e1:2c:7f:59:f7:fa: 1f:07:8b:30:1b:f2:f0:8b:1e:01:8f:e0:63:03:74: 8b:01:8d:3a:3c:16:65:54:08:01:4a:2a:33:42:b2: 5d:36:71:1f:e7:60:83:e3:9f:61:b3:03:ff:9e:4d: 0f:19:37:3b:cd:83:a9:ee:1f:a5:3a:4c:8c:76:25: 96:07:ad:b6:e6:3e:27:05:d8:33:a0:ce:e2:9c:ac: 10:67:93:19:46:10:f5:8c:de:90:40:cc:68:ce:28: 4d:b6:2f:51:7f:07:76:86:9d:be:27:95:37:2d:22: 77:54:ad:c0:7b:e7:09:d6:2b:b4:da:ec:25:7d:c6: b1:a8:fe:5a:50:bf:11:e9:02:b1:e8:df:cb:0f:1e: 95:2e:8b:bf:64:aa:47:4e:33:e6:9b:fb:d5:0a:a5: 1d:ab:1f:95:98:ff:47:b5:67:2d:0f:4f:03:01:59: 1a:c1:58:b1:71:e8:eb:e0:4e:83:b3:88:4b:22:39: a0:ab:67:aa:64:e2:37:9b:4a:a2:a2:cc:55:67:a2: 97:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:82:25:9B:9E:B9:D7:96:93:49:DD:A9:46:E7:3E:D8:26:D7:D1:BA X509v3 Authority Key Identifier: keyid:D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132312e302f32342d3234203d3e20313534343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption 64:41:71:39:25:e6:59:a0:cd:4c:6d:a1:d5:79:6c:ee:a3:db: 69:c7:09:3f:a5:31:fa:66:14:ce:f2:00:33:20:94:2b:3c:40: ee:d3:27:d9:f0:2b:57:b6:67:bd:dd:87:13:35:e8:2d:9d:79: 1b:9a:1c:28:bf:1f:de:e3:e4:32:93:af:9d:2f:ce:e4:a3:ad: bb:09:6d:a5:d0:73:cb:01:53:3e:3c:5b:c6:ea:f4:38:1d:50: 36:92:2d:10:26:86:d4:9e:a8:ad:54:88:f7:37:08:d6:0d:e5: 23:a6:79:04:b3:6f:fa:76:50:f7:3f:e0:69:60:f9:62:34:9f: b3:ba:a6:db:c9:4d:4c:ce:8e:bd:97:b2:f0:aa:4b:ec:cc:6c: 04:37:91:eb:96:9f:d0:a0:2c:2c:8a:bc:4b:d0:df:d9:f8:d2: 81:aa:80:d0:79:fa:70:3f:87:d7:dc:05:2e:7d:d9:71:a3:77: ea:fd:bd:ec:75:5c:78:75:8b:87:d6:12:70:7a:6b:9e:f8:3d: 08:34:46:be:05:e0:37:46:11:cc:39:06:67:fb:63:56:5b:ca: 78:25:fe:16:a8:7c:db:0f:d9:4a:eb:52:23:3d:6d:f3:57:5b: 19:e6:db:a1:c3:b0:c6:01:59:52:67:70:e6:d3:b5:1f:c4:91: b9:fd:0a:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAIounsp+XZJ306xdwVxuCsWR3e0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVB Q0YzMjM2ODAeFw0yNjAzMTgyMzI0MDZaFw0yNzAzMTcyMzI5MDZaMDMxMTAvBgNV BAMTKDc1ODIyNTlCOUVCOUQ3OTY5MzQ5RERBOTQ2RTczRUQ4MjZEN0QxQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVbE2nriYdd9RPQ47SoXl6sTuv JUr1HNv4hBx/UqDCgJ5/wsQV7GJ0ZExGnzfFVivaEcvUsuEsf1n3+h8HizAb8vCL HgGP4GMDdIsBjTo8FmVUCAFKKjNCsl02cR/nYIPjn2GzA/+eTQ8ZNzvNg6nuH6U6 TIx2JZYHrbbmPicF2DOgzuKcrBBnkxlGEPWM3pBAzGjOKE22L1F/B3aGnb4nlTct IndUrcB75wnWK7Ta7CV9xrGo/lpQvxHpArHo38sPHpUui79kqkdOM+ab+9UKpR2r H5WY/0e1Zy0PTwMBWRrBWLFx6OvgToOziEsiOaCrZ6pk4jebSqKizFVnopdLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdYIlm56515aTSd2pRuc+2CbX0bowHwYDVR0j BBgwFoAU14/lrocO8iH9lXdc/q/q1azzI2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjQ0MjYzYS04ZWUyLTRlZWMtYTgxMC01NzMzY2NhZjUxZTMvMC9ENzhGRTVBRTg3 MEVGMjIxRkQ5NTc3NUNGRUFGRUFENUFDRjMyMzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVBQ0Yz MjM2OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2NDQyNjNhLThlZTItNGVlYy1h ODEwLTU3MzNjY2FmNTFlMy8wLzMxMzUzNzJlMzIzMDJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTM0MzQzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRR5MA0GCSqG SIb3DQEBCwUAA4IBAQBkQXE5JeZZoM1MbaHVeWzuo9tpxwk/pTH6ZhTO8gAzIJQr PEDu0yfZ8CtXtme93YcTNegtnXkbmhwovx/e4+Qyk6+dL87ko627CW2l0HPLAVM+ PFvG6vQ4HVA2ki0QJobUnqitVIj3NwjWDeUjpnkEs2/6dlD3P+BpYPliNJ+zuqbb yU1Mzo69l7LwqkvszGwEN5Hrlp/QoCwsirxL0N/Z+NKBqoDQefpwP4fX3AUufdlx o3fq/b3sdVx4dYuH1hJwemue+D0INEa+BeA3RhHMOQZn+2NWW8p4Jf4WqHzbD9lK 61IjPW3zV1sZ5tuhw7DGAVlSZ3Dm07UfxJG5/Qop -----END CERTIFICATE-----Generated at Wed Mar 25 05:33:54 2026 by rpki-client