$ rpki-client -vvf repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa File: 3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa (raw, json) Hash identifier: Dh7Q0KdQgEwX0SKcvgNoQWpZTQuD5KQF6b2UdxNzWBk= Subject key identifier: 25:5E:FD:47:C3:B1:9E:5B:34:F5:4F:1E:3D:1E:23:AF:B8:4A:BA:83 Certificate issuer: /CN=1A43B9C67646D3B8444E277C64D1FD489A45E536 Certificate serial: 47DAD238425C2D100083E0BCE776AF41C842071D Authority key identifier: 1A:43:B9:C6:76:46:D3:B8:44:4E:27:7C:64:D1:FD:48:9A:45:E5:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa Signing time: Sun 19 Apr 2026 18:00:02 +0000 ROA not before: Sun 19 Apr 2026 17:55:02 +0000 ROA not after: Sun 18 Apr 2027 18:00:02 +0000 asID: 152772 IP address blocks: 157.66.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.crl rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 13:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:da:d2:38:42:5c:2d:10:00:83:e0:bc:e7:76:af:41:c8:42:07:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A43B9C67646D3B8444E277C64D1FD489A45E536 Validity Not Before: Apr 19 17:55:02 2026 GMT Not After : Apr 18 18:00:02 2027 GMT Subject: CN=255EFD47C3B19E5B34F54F1E3D1E23AFB84ABA83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ff:3c:a2:fa:5f:94:83:37:e3:cb:37:2a:c9: b3:d1:08:20:ab:fc:f6:ab:ab:16:7e:18:21:e6:9e: a6:a3:bb:62:46:ad:35:fc:a4:fc:d7:05:8f:93:5c: fa:20:32:e3:b8:29:88:22:d6:a2:14:f0:04:6c:e3: 22:0a:c6:f4:7b:05:1d:f2:f8:97:7a:ae:cc:1c:23: 84:0e:70:52:8b:9a:70:1c:1c:88:1c:02:8a:cc:3e: bd:99:67:e9:e2:64:6c:f9:07:19:69:05:84:7b:0b: 22:47:06:62:18:71:9d:d1:0c:96:df:99:9f:fa:5b: 31:d3:b8:9b:58:44:ec:6e:f6:02:36:74:77:49:87: e3:91:93:7b:71:a9:07:76:75:84:4a:e4:ca:27:ee: 95:f5:f6:0a:1a:2f:07:b5:7c:72:ca:65:62:e2:99: 2d:ed:ba:15:c5:f8:36:80:02:49:a1:36:bc:99:94: 87:c9:aa:37:34:e6:2d:b9:ec:fa:7d:59:33:bb:e2: 9c:82:fb:69:6b:a0:6b:7e:b7:ff:c2:8b:6f:d3:e5: 8a:b3:cf:19:3e:4f:9f:49:c5:2a:13:b7:7d:ed:78: 84:5d:4e:06:7c:0b:a3:58:78:3e:cd:f0:50:d4:8e: 63:c1:86:47:ee:b1:b1:6c:4b:80:40:75:67:56:ce: b1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:5E:FD:47:C3:B1:9E:5B:34:F5:4F:1E:3D:1E:23:AF:B8:4A:BA:83 X509v3 Authority Key Identifier: keyid:1A:43:B9:C6:76:46:D3:B8:44:4E:27:7C:64:D1:FD:48:9A:45:E5:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/1A43B9C67646D3B8444E277C64D1FD489A45E536.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1A43B9C67646D3B8444E277C64D1FD489A45E536.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.125.0/24 Signature Algorithm: sha256WithRSAEncryption 09:a0:ca:22:85:91:91:9e:d4:10:a1:96:2a:0b:30:b7:3e:44: 34:72:c0:69:8e:97:e4:a8:06:9c:5d:95:85:23:4e:ab:9e:c5: 26:15:ef:12:08:de:d1:b3:ff:2c:60:45:07:1b:55:9d:de:f8: 10:6a:5b:47:b9:cc:c7:a6:ba:ce:08:b7:26:13:60:cd:69:13: 62:33:b8:bb:6c:04:84:a2:1d:21:e5:d0:54:ff:97:85:e2:25: 6c:3f:42:72:ad:9a:46:cf:88:fb:f2:1e:c0:7b:c1:de:db:3b: 30:27:95:77:53:a6:2d:f9:66:a1:ba:99:23:00:e4:6c:23:a3: fb:d7:70:90:fe:1d:a4:f4:1a:5a:9c:d5:4f:4c:13:5b:8f:60: 83:16:0a:c2:e3:0e:ed:38:51:35:32:46:20:bd:47:84:98:33: 9f:cc:08:b9:67:29:5a:7e:ad:55:50:0f:a0:3a:43:af:c3:96: e9:c7:4a:3e:9b:1a:55:94:49:e7:2b:35:99:22:6c:7d:c9:61: 29:19:92:1a:64:e8:6c:72:6c:98:51:48:cb:f0:60:7c:4c:3f: 7a:35:50:8c:f2:0d:83:15:b4:bd:34:81:1c:7a:78:44:a5:d9: 70:95:32:0e:31:80:17:84:ca:39:a9:27:e3:4f:f0:5b:a5:49: 5e:26:35:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR9rSOEJcLRAAg+C853avQchCBx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0M0I5QzY3NjQ2RDNCODQ0NEUyNzdDNjREMUZENDg5 QTQ1RTUzNjAeFw0yNjA0MTkxNzU1MDJaFw0yNzA0MTgxODAwMDJaMDMxMTAvBgNV BAMTKDI1NUVGRDQ3QzNCMTlFNUIzNEY1NEYxRTNEMUUyM0FGQjg0QUJBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS/zyi+l+UgzfjyzcqybPRCCCr /ParqxZ+GCHmnqaju2JGrTX8pPzXBY+TXPogMuO4KYgi1qIU8ARs4yIKxvR7BR3y +Jd6rswcI4QOcFKLmnAcHIgcAorMPr2ZZ+niZGz5BxlpBYR7CyJHBmIYcZ3RDJbf mZ/6WzHTuJtYROxu9gI2dHdJh+ORk3txqQd2dYRK5Mon7pX19goaLwe1fHLKZWLi mS3tuhXF+DaAAkmhNryZlIfJqjc05i257Pp9WTO74pyC+2lroGt+t//Ci2/T5Yqz zxk+T59JxSoTt33teIRdTgZ8C6NYeD7N8FDUjmPBhkfusbFsS4BAdWdWzrG5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJV79R8Oxnls09U8ePR4jr7hKuoMwHwYDVR0j BBgwFoAUGkO5xnZG07hETid8ZNH9SJpF5TYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2YwMWVjNi04ZTg5LTQwMmEtOTBjNy01MGM2ZjE0Y2QyNDIvMC8xQTQzQjlDNjc2 NDZEM0I4NDQ0RTI3N0M2NEQxRkQ0ODlBNDVFNTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMUE0M0I5QzY3NjQ2RDNCODQ0NEUyNzdDNjREMUZENDg5QTQ1 RTUzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZjAxZWM2LThlODktNDAyYS05 MGM3LTUwYzZmMTRjZDI0Mi8wLzMxMzUzNzJlMzYzNjJlMzEzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUJ9MA0GCSqG SIb3DQEBCwUAA4IBAQAJoMoihZGRntQQoZYqCzC3PkQ0csBpjpfkqAacXZWFI06r nsUmFe8SCN7Rs/8sYEUHG1Wd3vgQaltHuczHprrOCLcmE2DNaRNiM7i7bASEoh0h 5dBU/5eF4iVsP0JyrZpGz4j78h7Ae8He2zswJ5V3U6Yt+WahupkjAORsI6P713CQ /h2k9BpanNVPTBNbj2CDFgrC4w7tOFE1MkYgvUeEmDOfzAi5Zylafq1VUA+gOkOv w5bpx0o+mxpVlEnnKzWZImx9yWEpGZIaZOhscmyYUUjL8GB8TD96NVCM8g2DFbS9 NIEcenhEpdlwlTIOMYAXhMo5qSfjT/BbpUleJjVH -----END CERTIFICATE-----Generated at Wed Apr 22 06:04:24 2026 by rpki-client