$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e31302e302f32332d3234203d3e20313331303735.roa File: 3135312e3135382e31302e302f32332d3234203d3e20313331303735.roa (raw, json) Hash identifier: yeV3c4+JX/2U+NVSQ5ggFfmzlSf0IlAdryc4tm9JKAU= Subject key identifier: C0:0E:EE:86:33:99:1E:02:FA:9D:14:F2:C7:0B:06:54:F9:60:22:60 Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 0F978683E77EC05DC21071B61DD4CA61271A8463 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e31302e302f32332d3234203d3e20313331303735.roa Signing time: Sat 02 May 2026 08:37:24 +0000 ROA not before: Sat 02 May 2026 08:32:24 +0000 ROA not after: Sat 01 May 2027 08:37:24 +0000 asID: 131075 IP address blocks: 151.158.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:97:86:83:e7:7e:c0:5d:c2:10:71:b6:1d:d4:ca:61:27:1a:84:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 08:32:24 2026 GMT Not After : May 1 08:37:24 2027 GMT Subject: CN=C00EEE8633991E02FA9D14F2C70B0654F9602260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fb:58:98:52:0d:b9:a8:50:e7:60:04:b9:5c: 4e:2b:2f:8b:9f:ef:fc:52:c0:40:b3:b5:e9:3e:86: 0c:e2:91:e7:6d:f0:8f:ed:90:8d:85:e8:96:f9:1e: 51:f3:6d:15:ed:3e:18:7c:fe:61:ad:4b:85:48:b8: 9b:ab:c4:f4:b3:b5:c5:0a:87:47:33:20:ce:f9:a0: 59:47:8e:2f:a3:c7:e9:74:e2:af:59:f0:7f:80:58: 02:a3:e5:59:e9:d0:a6:ff:4d:5e:e4:56:2e:f1:d2: 06:1d:a2:c7:9c:77:a5:cc:37:73:ef:d6:2d:40:4a: a7:41:fa:dc:f4:ce:9e:cb:77:8e:59:74:76:9a:fe: 3c:2d:38:fb:14:97:df:f5:e6:f0:d9:40:db:da:dd: ea:c3:c2:1b:65:a6:67:f8:a4:d1:a2:00:02:8a:05: 61:ac:e4:70:a3:b7:9b:1f:be:90:90:46:37:3a:9f: 24:38:d9:ac:70:b7:4e:99:a3:1e:79:33:7a:b4:98: fd:6c:a0:e3:81:25:58:41:e1:d3:cc:5c:cd:14:29: e4:f4:6e:74:a9:0b:8a:3d:7c:c3:88:85:06:0b:c3: 42:dd:ee:5b:08:12:07:b6:d4:22:b8:b0:70:c8:30: 23:8e:b1:f3:fa:fc:58:ca:87:8e:60:d5:44:81:e5: d5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0E:EE:86:33:99:1E:02:FA:9D:14:F2:C7:0B:06:54:F9:60:22:60 X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e31302e302f32332d3234203d3e20313331303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.10.0/23 Signature Algorithm: sha256WithRSAEncryption 48:6e:88:5f:8a:46:65:cc:c9:e3:0b:eb:78:5a:49:a8:ee:37: f2:bf:02:a9:f7:25:0e:c1:35:cc:22:52:8e:4e:61:38:d7:e6: bb:0c:4f:97:f3:bc:30:e5:b4:c9:93:97:19:6f:44:60:b8:39: bd:91:45:1a:b4:12:a2:3d:33:15:c5:54:21:72:15:40:7b:9d: cb:5a:68:f0:ac:f4:a2:48:70:dd:3f:3f:d3:8e:e1:0c:8e:7c: 10:f7:46:b4:d4:8c:3a:cc:c0:45:a9:a6:99:89:e4:24:bd:6d: 41:86:5f:35:68:98:fd:48:59:91:c1:e0:33:fa:ce:34:b7:71: 0a:54:9a:63:1a:7b:16:5f:da:81:8c:38:13:4c:83:48:11:30: f9:84:64:8d:e8:ba:0a:42:ff:1e:af:6d:d8:30:d4:e4:5a:1f: 99:fa:8a:f3:23:66:1c:27:56:f1:67:d0:21:62:73:be:92:82: 7b:d6:82:80:a5:5b:fc:4e:bf:12:7e:93:78:18:e9:59:67:84: 3d:96:08:fe:3c:e5:ca:27:d4:40:f7:bd:65:61:5e:8e:39:68: d3:dd:a4:d9:73:ab:8c:f3:18:89:a4:3c:ad:8e:16:d2:ad:b6: 04:e8:c0:bb:5e:c0:d6:bd:0d:b6:cb:0b:33:d4:bd:b5:f0:fc: bf:a8:ec:f8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUD5eGg+d+wF3CEHG2HdTKYScahGMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA4MzIyNFoX DTI3MDUwMTA4MzcyNFowMzExMC8GA1UEAxMoQzAwRUVFODYzMzk5MUUwMkZBOUQx NEYyQzcwQjA2NTRGOTYwMjI2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKz7WJhSDbmoUOdgBLlcTisvi5/v/FLAQLO16T6GDOKR523wj+2QjYXolvke UfNtFe0+GHz+Ya1LhUi4m6vE9LO1xQqHRzMgzvmgWUeOL6PH6XTir1nwf4BYAqPl WenQpv9NXuRWLvHSBh2ix5x3pcw3c+/WLUBKp0H63PTOnst3jll0dpr+PC04+xSX 3/Xm8NlA29rd6sPCG2WmZ/ik0aIAAooFYazkcKO3mx++kJBGNzqfJDjZrHC3Tpmj HnkzerSY/Wyg44ElWEHh08xczRQp5PRudKkLij18w4iFBgvDQt3uWwgSB7bUIriw cMgwI46x8/r8WMqHjmDVRIHl1QECAwEAAaOCAf0wggH5MB0GA1UdDgQWBBTADu6G M5keAvqdFPLHCwZU+WAiYDAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzEzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzMTMwMzczNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZeeCjANBgkqhkiG9w0BAQsFAAOCAQEASG6IX4pGZczJ4wvreFpJqO43 8r8CqfclDsE1zCJSjk5hONfmuwxPl/O8MOW0yZOXGW9EYLg5vZFFGrQSoj0zFcVU IXIVQHudy1po8Kz0okhw3T8/047hDI58EPdGtNSMOszARammmYnkJL1tQYZfNWiY /UhZkcHgM/rONLdxClSaYxp7Fl/agYw4E0yDSBEw+YRkjei6CkL/Hq9t2DDU5Fof mfqK8yNmHCdW8WfQIWJzvpKCe9aCgKVb/E6/En6TeBjpWWeEPZYI/jzlyifUQPe9 ZWFejjlo092k2XOrjPMYiaQ8rY4W0q22BOjAu17A1r0NtssLM9S9tfD8v6js+A== -----END CERTIFICATE-----Generated at Tue May 5 14:56:02 2026 by rpki-client