$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3133322e302f32332d3234203d3e20313334373238.roa File: 3135312e3135382e3133322e302f32332d3234203d3e20313334373238.roa (raw, json) Hash identifier: LPNPknC2NFYPKlKq/f2QVV/gjvYW791z3reDy4x4Tto= Subject key identifier: 95:23:74:42:D4:46:82:2C:DF:8C:86:2E:8C:C1:20:6F:3B:C7:FE:FC Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 2C8593B42664813F52F1AC18B3732643AB8B34EA Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3133322e302f32332d3234203d3e20313334373238.roa Signing time: Sat 02 May 2026 08:37:24 +0000 ROA not before: Sat 02 May 2026 08:32:24 +0000 ROA not after: Sat 01 May 2027 08:37:24 +0000 asID: 134728 IP address blocks: 151.158.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:85:93:b4:26:64:81:3f:52:f1:ac:18:b3:73:26:43:ab:8b:34:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 08:32:24 2026 GMT Not After : May 1 08:37:24 2027 GMT Subject: CN=95237442D446822CDF8C862E8CC1206F3BC7FEFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:63:a9:85:b9:18:8c:5a:14:1b:7e:1e:1b:2f: fe:d0:40:80:04:8d:8a:93:37:c9:63:a8:81:b8:4e: cd:62:81:b7:a4:a7:85:b4:d2:cb:36:da:65:c2:70: 4e:b4:6e:1e:77:b1:a7:eb:35:84:9f:20:c8:46:62: 98:ff:0e:1a:07:c8:2d:fe:d3:ff:b3:9d:08:cb:53: 54:0a:a5:b9:84:f9:47:f1:15:0f:05:94:6a:b7:c8: 35:08:b0:0d:ff:9f:cc:7f:f8:d4:81:27:6c:83:b3: 13:21:8a:58:70:53:87:41:f4:8e:1f:61:ae:88:92: 2a:8d:92:d6:2b:f7:36:42:c9:ab:37:b7:fb:b7:cd: f0:6e:bd:13:a6:11:bc:14:89:ab:1c:a5:70:ca:92: 4a:70:74:f9:28:46:7b:9d:e9:b9:d1:2b:84:3b:f7: 90:28:d2:7d:7e:d4:93:36:a8:cf:45:24:5d:51:52: cb:19:39:e8:06:21:90:d6:51:26:92:9a:08:53:02: 02:7c:31:f5:eb:b4:e0:44:05:e0:cb:d6:9b:d2:35: 47:fe:a8:0c:e6:39:bd:1a:40:32:b7:b8:74:5a:a5: c7:68:7d:0b:d2:44:c8:d1:5f:1e:cd:83:52:52:c2: 57:11:8b:0f:d1:b5:b2:dd:78:15:44:e7:1a:64:0c: 2d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:23:74:42:D4:46:82:2C:DF:8C:86:2E:8C:C1:20:6F:3B:C7:FE:FC X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3133322e302f32332d3234203d3e20313334373238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.132.0/23 Signature Algorithm: sha256WithRSAEncryption 24:e8:0c:fd:81:8b:26:42:ac:a9:78:c4:03:76:b5:8b:de:81: f1:f6:f3:4a:c9:fb:77:a0:39:e4:85:04:ec:a1:d7:1c:58:ae: af:2f:bd:85:6f:68:21:f3:31:40:62:08:fe:85:e9:47:82:1d: df:07:23:38:87:18:a4:1e:20:b2:47:16:e2:73:2f:f4:80:12: 49:54:d1:61:5e:38:e9:4f:a8:48:9e:33:2d:53:91:b6:b2:54: 0f:03:54:59:1e:f6:7b:52:e0:06:0b:27:ed:d7:5e:df:f6:70: 46:c2:23:0c:89:ba:5a:94:a9:ea:7b:4a:4e:92:a5:7f:ec:19: 57:7a:00:72:a8:77:1b:cf:64:5a:43:b9:04:ff:e2:4a:4e:b9: 5e:36:56:2c:60:e8:0a:ed:3d:d8:63:24:37:a9:d9:03:3d:bc: fa:98:67:55:27:83:a5:8e:eb:c3:cd:42:4d:e5:75:73:f7:f7: 69:83:4a:a3:b4:b2:14:71:4a:84:86:08:b4:74:3e:2d:f6:9f: 83:74:44:0e:de:6d:7d:8c:bd:fe:5b:38:d8:3d:cf:ba:ac:cb: cf:01:36:b5:1d:a0:f0:98:9d:fa:86:2e:de:17:41:9b:a5:9e: 1e:f6:72:f5:b9:78:53:37:2b:36:2e:6a:06:11:6b:2d:f5:b2: 58:0b:8e:57 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIULIWTtCZkgT9S8awYs3MmQ6uLNOowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA4MzIyNFoX DTI3MDUwMTA4MzcyNFowMzExMC8GA1UEAxMoOTUyMzc0NDJENDQ2ODIyQ0RGOEM4 NjJFOENDMTIwNkYzQkM3RkVGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ9jqYW5GIxaFBt+Hhsv/tBAgASNipM3yWOogbhOzWKBt6SnhbTSyzbaZcJw TrRuHnexp+s1hJ8gyEZimP8OGgfILf7T/7OdCMtTVAqluYT5R/EVDwWUarfINQiw Df+fzH/41IEnbIOzEyGKWHBTh0H0jh9hroiSKo2S1iv3NkLJqze3+7fN8G69E6YR vBSJqxylcMqSSnB0+ShGe53pudErhDv3kCjSfX7Ukzaoz0UkXVFSyxk56AYhkNZR JpKaCFMCAnwx9eu04EQF4MvWm9I1R/6oDOY5vRpAMre4dFqlx2h9C9JEyNFfHs2D UlLCVxGLD9G1st14FUTnGmQMLa8CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBSVI3RC 1EaCLN+Mhi6MwSBvO8f+/DAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzEzMzMyMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzM0MzczMjM4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBl56EMA0GCSqGSIb3DQEBCwUAA4IBAQAk6Az9gYsmQqypeMQDdrWL 3oHx9vNKyft3oDnkhQTsodccWK6vL72Fb2gh8zFAYgj+helHgh3fByM4hxikHiCy Rxbicy/0gBJJVNFhXjjpT6hInjMtU5G2slQPA1RZHvZ7UuAGCyft117f9nBGwiMM ibpalKnqe0pOkqV/7BlXegByqHcbz2RaQ7kE/+JKTrleNlYsYOgK7T3YYyQ3qdkD Pbz6mGdVJ4OljuvDzUJN5XVz9/dpg0qjtLIUcUqEhgi0dD4t9p+DdEQO3m19jL3+ WzjYPc+6rMvPATa1HaDwmJ36hi7eF0GbpZ4e9nL1uXhTNys2LmoGEWst9bJYC45X -----END CERTIFICATE-----Generated at Tue May 5 14:56:41 2026 by rpki-client