$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa File: 3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa (raw, json) Hash identifier: sij2ghOb/bHaf6sAnwpAnK7H2xX31zIFc2+5Lb2x4RM= Subject key identifier: 48:1F:E7:50:87:9C:5D:59:E4:7B:11:6E:30:E0:DC:82:EC:31:6E:65 Certificate issuer: /CN=A91862140000/serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Certificate serial: 5A35DB724442B2BF5138B0731923980735A676BB Authority key identifier: 12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa Signing time: Fri 13 Mar 2026 04:33:01 +0000 ROA not before: Fri 13 Mar 2026 04:28:01 +0000 ROA not after: Fri 12 Mar 2027 04:33:01 +0000 asID: 154509 IP address blocks: 151.158.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 06:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:35:db:72:44:42:b2:bf:51:38:b0:73:19:23:98:07:35:a6:76:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Validity Not Before: Mar 13 04:28:01 2026 GMT Not After : Mar 12 04:33:01 2027 GMT Subject: CN=481FE750879C5D59E47B116E30E0DC82EC316E65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:8e:d9:84:39:52:eb:c7:a7:75:07:cb:6c: bf:b3:ee:48:6f:67:ee:ff:b3:2d:ae:6e:20:36:0f: 1b:da:d7:02:02:43:04:dd:14:1d:ea:f5:bc:cd:77: af:58:15:ce:0f:e0:b3:58:1d:b5:4e:5e:46:e6:8f: 35:bc:0b:7b:f6:e0:ee:06:e6:a5:47:6d:90:3c:62: b9:b0:d5:ce:c8:80:71:b1:f1:d6:fc:da:a5:d7:34: 9e:99:e1:70:14:87:46:f3:7f:f8:8a:9b:36:e6:cf: 7c:82:17:9f:7a:f9:34:9b:98:6e:1b:09:37:49:64: 0d:e2:a7:f8:b7:a3:ce:c6:b9:6c:20:7b:eb:3d:d9: 65:5b:b4:95:a8:44:21:d6:0b:d2:74:a2:21:ab:31: dc:ab:75:52:40:1d:d9:2a:b5:fe:9f:7e:a8:ba:d0: b5:49:98:82:ad:fe:b4:0e:f3:a2:d8:09:58:6a:ba: 58:7a:6a:53:3a:b5:6b:e2:06:6e:c9:37:b9:7b:f1: 07:f6:6d:b6:39:e8:7a:58:68:0b:21:a9:37:59:5c: 6b:c1:73:81:bc:7b:21:5f:7f:a4:12:25:06:6d:b7: 39:a5:95:ee:09:b8:81:b8:54:47:6d:f0:1b:65:cc: 49:95:3a:e0:84:ee:7d:42:e1:b5:b7:7a:2e:7b:66: 00:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1F:E7:50:87:9C:5D:59:E4:7B:11:6E:30:E0:DC:82:EC:31:6E:65 X509v3 Authority Key Identifier: keyid:12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.176.0/24 Signature Algorithm: sha256WithRSAEncryption d2:c0:ba:f4:82:12:9c:0a:05:c8:5b:c5:e5:48:3e:49:4f:17: 25:bc:e3:f5:f7:a8:5f:5e:1b:47:53:22:23:ef:29:32:4c:62: 74:dd:ea:6b:0a:fb:e1:c0:6e:31:ed:a8:22:51:d3:48:ec:7d: e8:b1:52:60:b0:f3:12:57:18:ca:f4:9f:eb:14:69:99:e7:67: 5c:1c:38:50:b9:68:fd:a5:5a:16:1e:69:49:73:40:68:d4:43: af:c0:a0:01:24:b9:ee:07:28:ed:c7:a7:5e:75:21:d5:34:a7: 9e:21:8e:1d:ca:89:0a:14:89:02:24:11:07:82:fc:49:3c:a3: 2d:37:69:26:0e:0e:60:94:77:e4:14:06:9a:eb:e8:04:c9:c3: 99:43:23:67:36:68:eb:1f:97:87:61:e2:90:dd:1a:86:99:57: 8d:34:9a:fa:9d:91:45:54:4d:46:67:47:c3:a3:1a:8e:08:49: ba:93:06:bb:ae:39:83:44:b0:3f:c5:02:2f:1f:cc:cb:3c:c5: e7:75:2c:25:c5:cb:25:63:fe:c0:cf:52:1f:d6:84:9c:f3:04: 7a:5f:78:13:53:a5:6c:26:d9:30:b9:4c:8e:48:bc:dd:b4:22: f0:20:66:ab:de:64:97:5a:c2:5f:1c:cd:75:ac:66:5f:7a:c5: 04:70:55:9a -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUWjXbckRCsr9ROLBzGSOYBzWmdrswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEygxMjM0NUYxMTVB QzRCNjJBNTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBMB4XDTI2MDMxMzA0MjgwMVoX DTI3MDMxMjA0MzMwMVowMzExMC8GA1UEAxMoNDgxRkU3NTA4NzlDNUQ1OUU0N0Ix MTZFMzBFMERDODJFQzMxNkU2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcLjtmEOVLrx6d1B8tsv7PuSG9n7v+zLa5uIDYPG9rXAgJDBN0UHer1vM13 r1gVzg/gs1gdtU5eRuaPNbwLe/bg7gbmpUdtkDxiubDVzsiAcbHx1vzapdc0npnh cBSHRvN/+IqbNubPfIIXn3r5NJuYbhsJN0lkDeKn+Lejzsa5bCB76z3ZZVu0lahE IdYL0nSiIasx3Kt1UkAd2Sq1/p9+qLrQtUmYgq3+tA7zotgJWGq6WHpqUzq1a+IG bsk3uXvxB/ZttjnoelhoCyGpN1lca8Fzgbx7IV9/pBIlBm23OaWV7gm4gbhUR23w G2XMSZU64ITufULhtbd6LntmAKUCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBRIH+dQ h5xdWeR7EW4w4NyC7DFuZTAfBgNVHSMEGDAWgBQSNF8RWsS2KlH1J0xUyB6GRjvQ ujAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMC8xMjM0NUYxMTVBQzRCNjJB NTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CMzIy QTVGNDFENjYxMUUyQTNGMjdGN0M3MkZEMUZGMi9FalJmRVZyRXRpcFI5U2RNVk1n ZWhrWTcwTG8uY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzAvMzEzNTMxMmUz MTM1MzgyZTMxMzczNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzNDM1MzAz OS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJeesDANBgkqhkiG9w0BAQsFAAOCAQEA0sC69IISnAoFyFvF 5Ug+SU8XJbzj9feoX14bR1MiI+8pMkxidN3qawr74cBuMe2oIlHTSOx96LFSYLDz ElcYyvSf6xRpmednXBw4ULlo/aVaFh5pSXNAaNRDr8CgASS57gco7cenXnUh1TSn niGOHcqJChSJAiQRB4L8STyjLTdpJg4OYJR35BQGmuvoBMnDmUMjZzZo6x+Xh2Hi kN0ahplXjTSa+p2RRVRNRmdHw6MajghJupMGu645g0SwP8UCLx/MyzzF53UsJcXL JWP+wM9SH9aEnPMEel94E1OlbCbZMLlMjki83bQi8CBmq95kl1rCXxzNdaxmX3rF BHBVmg== -----END CERTIFICATE-----Generated at Thu Mar 19 10:50:37 2026 by rpki-client