$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa File: 3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa (raw, json) Hash identifier: HOZT2Ynqka+xtNavl4KWOoX/MgQf9aLmuSZguGcd2u4= Subject key identifier: F7:55:72:8A:1E:2D:39:DF:E3:02:9F:5C:52:E4:D7:49:81:B0:77:38 Certificate issuer: /CN=A91862140000/serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Certificate serial: 43BD0847E75210602BBF6D3AAB826D51AE7DE5AC Authority key identifier: 12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa Signing time: Thu 12 Mar 2026 03:56:16 +0000 ROA not before: Thu 12 Mar 2026 03:51:16 +0000 ROA not after: Thu 11 Mar 2027 03:56:16 +0000 asID: 154495 IP address blocks: 151.158.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 06:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:bd:08:47:e7:52:10:60:2b:bf:6d:3a:ab:82:6d:51:ae:7d:e5:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Validity Not Before: Mar 12 03:51:16 2026 GMT Not After : Mar 11 03:56:16 2027 GMT Subject: CN=F755728A1E2D39DFE3029F5C52E4D74981B07738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:74:4e:65:a1:25:b5:51:01:66:63:f0:44:49: d9:05:ae:02:b2:99:e4:9d:09:d8:69:da:77:1c:bb: 45:80:8f:f1:9d:14:3a:5c:54:ae:80:c2:17:8b:4a: 6d:5d:15:ac:3a:61:63:01:1e:71:29:c0:de:47:c8: 87:42:3e:bc:05:57:a8:6e:8d:d8:ed:7d:08:99:f7: 64:2b:c6:53:2a:28:a2:85:29:57:47:6d:fc:2e:02: 93:82:3f:5a:37:fc:bd:76:89:b7:e2:a6:9a:d2:78: 32:d5:db:7e:25:31:22:72:9e:0a:85:8d:26:a5:bc: 45:51:f0:d5:a2:d6:95:77:3b:f4:ed:96:fa:f6:8b: b3:63:02:8a:40:12:f3:a7:8a:72:87:63:cd:33:65: 2b:93:f4:3f:0c:10:e3:70:1c:ec:b9:37:6c:11:f4: ae:08:1c:38:d4:42:bc:fe:31:2d:d1:0e:32:86:2d: 00:50:fb:f4:8b:dd:d0:2e:35:1f:b8:65:f4:be:26: 4c:fa:8e:3f:52:a5:c1:48:22:c3:d8:75:1b:88:d7: 28:c9:b0:10:a1:fe:08:f8:8e:54:b9:ea:6e:a4:7b: 63:71:e2:1f:50:52:b8:75:16:ef:f5:cd:c7:68:f5: e8:42:17:87:44:6e:29:98:b1:8c:65:e3:1a:8b:97: 71:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:55:72:8A:1E:2D:39:DF:E3:02:9F:5C:52:E4:D7:49:81:B0:77:38 X509v3 Authority Key Identifier: keyid:12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.42.0/23 Signature Algorithm: sha256WithRSAEncryption 53:b1:f0:2a:ee:6d:4f:14:08:60:f9:ec:35:7e:30:5e:30:64: 18:4f:0f:f3:2d:39:97:4f:ef:8f:05:0e:e6:e2:95:8e:10:6c: eb:4b:b9:05:9e:bd:51:01:19:e2:67:c8:32:7e:fc:66:e1:7f: 2e:6c:e5:c9:7a:17:aa:31:e9:99:5a:2b:e3:36:77:5b:fe:85: 6c:2d:f4:2b:ed:a9:57:5d:8a:31:27:29:45:dc:f5:96:c5:d3: 34:61:b7:2e:af:6e:dc:e5:f6:73:f2:69:b4:5c:8a:cf:e6:59: cc:70:d0:6d:9a:e5:14:f6:dd:3c:a5:0a:4c:2c:e7:1f:f7:6a: b8:96:fd:eb:97:a8:35:34:b4:65:9c:f8:8e:b2:38:51:ba:4e: 1b:f1:29:38:47:fc:d3:c6:ba:33:00:31:21:21:4f:8f:89:81: 7d:45:f6:9e:90:34:36:e3:02:98:c4:cf:79:37:7d:5f:08:7e: fd:02:94:f8:2b:6d:75:1f:e3:86:c1:3a:30:21:c4:0d:b0:18: 4f:79:04:54:02:86:6b:f8:f6:b9:fe:fc:a5:5e:68:19:e3:60: 6d:bd:e0:f0:2e:10:cc:7c:5e:bc:36:df:a5:4e:53:97:a1:07: 1e:be:a1:cd:9a:63:8b:b5:3d:b8:7f:42:5f:de:c9:ca:76:f4: 27:bb:dd:d4 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUQ70IR+dSEGArv206q4JtUa595awwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEygxMjM0NUYxMTVB QzRCNjJBNTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBMB4XDTI2MDMxMjAzNTExNloX DTI3MDMxMTAzNTYxNlowMzExMC8GA1UEAxMoRjc1NTcyOEExRTJEMzlERkUzMDI5 RjVDNTJFNEQ3NDk4MUIwNzczODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL50TmWhJbVRAWZj8ERJ2QWuArKZ5J0J2Gnadxy7RYCP8Z0UOlxUroDCF4tK bV0VrDphYwEecSnA3kfIh0I+vAVXqG6N2O19CJn3ZCvGUyooooUpV0dt/C4Ck4I/ Wjf8vXaJt+KmmtJ4MtXbfiUxInKeCoWNJqW8RVHw1aLWlXc79O2W+vaLs2MCikAS 86eKcodjzTNlK5P0PwwQ43Ac7Lk3bBH0rggcONRCvP4xLdEOMoYtAFD79Ivd0C41 H7hl9L4mTPqOP1KlwUgiw9h1G4jXKMmwEKH+CPiOVLnqbqR7Y3HiH1BSuHUW7/XN x2j16EIXh0RuKZixjGXjGouXcfcCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBT3VXKK Hi053+MCn1xS5NdJgbB3ODAfBgNVHSMEGDAWgBQSNF8RWsS2KlH1J0xUyB6GRjvQ ujAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMC8xMjM0NUYxMTVBQzRCNjJB NTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CMzIy QTVGNDFENjYxMUUyQTNGMjdGN0M3MkZEMUZGMi9FalJmRVZyRXRpcFI5U2RNVk1n ZWhrWTcwTG8uY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzAvMzEzNTMxMmUz MTM1MzgyZTM0MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzQzNDM5MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAGXniowDQYJKoZIhvcNAQELBQADggEBAFOx8CrubU8UCGD57DV+ MF4wZBhPD/MtOZdP748FDubilY4QbOtLuQWevVEBGeJnyDJ+/Gbhfy5s5cl6F6ox 6ZlaK+M2d1v+hWwt9CvtqVddijEnKUXc9ZbF0zRhty6vbtzl9nPyabRcis/mWcxw 0G2a5RT23TylCkws5x/3ariW/euXqDU0tGWc+I6yOFG6ThvxKThH/NPGujMAMSEh T4+JgX1F9p6QNDbjApjEz3k3fV8Ifv0ClPgrbXUf44bBOjAhxA2wGE95BFQChmv4 9rn+/KVeaBnjYG294PAuEMx8Xrw236VOU5ehBx6+oc2aY4u1Pbh/Ql/eycp29Ce7 3dQ= -----END CERTIFICATE-----Generated at Thu Mar 19 10:50:37 2026 by rpki-client