$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa File: 3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa (raw, json) Hash identifier: Z8QlcnGGWMb3mLI8mAjsnHX5gEeCYqOPhN++tvo/LoA= Subject key identifier: D3:B5:5E:74:5B:A2:34:F1:03:86:8C:47:71:09:69:7D:D6:CD:E2:8B Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 50B26BB4441EE39095D4B07C4ED37BBF3FAD2C5E Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa Signing time: Sat 02 May 2026 09:23:36 +0000 ROA not before: Sat 02 May 2026 09:18:36 +0000 ROA not after: Sat 01 May 2027 09:23:36 +0000 asID: 154509 IP address blocks: 151.158.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:b2:6b:b4:44:1e:e3:90:95:d4:b0:7c:4e:d3:7b:bf:3f:ad:2c:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:36 2026 GMT Not After : May 1 09:23:36 2027 GMT Subject: CN=D3B55E745BA234F103868C477109697DD6CDE28B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:d5:f9:0a:80:1a:22:c0:71:ee:7d:8e:a0: 9e:72:c1:d7:be:1a:ec:c8:06:5c:44:0f:a9:ec:bc: 8e:f9:65:99:86:4b:6c:f2:11:65:4e:33:83:3f:08: 78:25:f4:1c:d6:0c:3c:d6:e5:3f:69:9e:61:4a:ed: 7e:01:da:f6:19:9d:f8:ad:3d:25:73:cd:84:d3:f4: 4a:02:e9:d6:c9:b8:31:ca:68:66:2d:42:ed:b7:5f: 21:f2:06:2f:52:43:65:cc:0c:f8:b6:ec:e4:5e:07: 91:3f:a1:5b:ba:2e:1b:6c:04:28:01:05:ad:16:1a: b7:28:dd:74:c7:6c:c7:0f:e2:8d:28:d1:fe:dc:74: e1:3a:50:ab:34:30:71:f5:86:c5:1b:68:ab:51:00: 9b:cf:fc:55:0a:93:7d:96:6a:da:bb:a1:ac:aa:e5: 28:cd:49:cd:95:37:74:b8:48:79:fe:f9:6b:46:bd: 41:9b:e0:9e:45:5d:99:fa:d9:7c:50:6e:5c:00:ff: 55:f6:f9:d9:48:96:55:4a:7f:19:b6:27:96:e7:c4: 5f:28:7c:5e:c1:9e:5d:0d:bb:9c:b9:94:86:80:64: a3:de:37:e1:23:5e:38:35:af:36:f7:ca:fe:5f:54: d9:3b:97:05:58:98:8c:5c:ee:c8:fa:f5:7c:c6:ce: 31:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B5:5E:74:5B:A2:34:F1:03:86:8C:47:71:09:69:7D:D6:CD:E2:8B X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3137362e302f32342d3234203d3e20313534353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.176.0/24 Signature Algorithm: sha256WithRSAEncryption 82:89:da:ea:21:4e:fc:6a:44:69:56:53:c5:31:bd:74:99:a2: 34:0f:72:24:ba:23:60:a3:7d:3a:58:79:30:6f:ad:68:86:38: 58:1d:09:90:16:88:99:a2:c8:96:b0:1b:9d:93:77:1f:45:27: 1e:f4:1f:f7:0e:74:07:e6:e9:ec:1f:38:7f:9a:0e:f3:25:38: 4c:05:5e:a9:78:9d:21:cc:53:6c:59:7d:7e:23:90:ba:15:32: cb:ea:bc:04:7c:d5:99:eb:71:d0:f6:f7:90:51:b5:cd:b1:bf: 7f:35:e3:bf:b2:58:9e:b9:68:d5:1c:e4:8b:05:7c:6a:6e:f7: 36:69:e7:c1:89:df:23:8f:cf:58:f1:10:97:e7:76:c2:07:1b: 27:19:16:df:bd:a3:0b:98:7a:b2:96:9b:c3:83:24:96:9f:33: 37:99:4c:4d:7e:6c:a7:79:47:9e:f0:9a:c2:eb:d0:74:c9:58: ad:f5:6b:ea:d1:89:ab:ae:5b:35:01:e0:d9:c4:1f:b4:af:fc: ec:93:56:e4:d7:4f:18:bb:b9:0a:76:d0:03:b3:61:f6:9b:ee: d7:f8:d8:bf:df:66:bf:2b:f7:13:4d:ae:73:a1:76:06:06:17: b1:35:b7:60:70:b4:ec:a8:1b:d0:a5:9f:d1:58:47:f1:98:4f: 6c:4a:ac:30 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUULJrtEQe45CV1LB8TtN7vz+tLF4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzNloX DTI3MDUwMTA5MjMzNlowMzExMC8GA1UEAxMoRDNCNTVFNzQ1QkEyMzRGMTAzODY4 QzQ3NzEwOTY5N0RENkNERTI4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYz1fkKgBoiwHHufY6gnnLB174a7MgGXEQPqey8jvllmYZLbPIRZU4zgz8I eCX0HNYMPNblP2meYUrtfgHa9hmd+K09JXPNhNP0SgLp1sm4McpoZi1C7bdfIfIG L1JDZcwM+Lbs5F4HkT+hW7ouG2wEKAEFrRYatyjddMdsxw/ijSjR/tx04TpQqzQw cfWGxRtoq1EAm8/8VQqTfZZq2ruhrKrlKM1JzZU3dLhIef75a0a9QZvgnkVdmfrZ fFBuXAD/Vfb52UiWVUp/GbYnlufEXyh8XsGeXQ27nLmUhoBko9434SNeODWvNvfK /l9U2TuXBViYjFzuyPr1fMbOMXkCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBTTtV50 W6I08QOGjEdxCWl91s3iizAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzEzNzM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNTM0MzUzMDM5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAl56wMA0GCSqGSIb3DQEBCwUAA4IBAQCCidrqIU78akRpVlPFMb10 maI0D3IkuiNgo306WHkwb61ohjhYHQmQFoiZosiWsBudk3cfRSce9B/3DnQH5uns Hzh/mg7zJThMBV6peJ0hzFNsWX1+I5C6FTLL6rwEfNWZ63HQ9veQUbXNsb9/NeO/ slieuWjVHOSLBXxqbvc2aefBid8jj89Y8RCX53bCBxsnGRbfvaMLmHqylpvDgySW nzM3mUxNfmyneUee8JrC69B0yVit9Wvq0Ymrrls1AeDZxB+0r/zsk1bk108Yu7kK dtADs2H2m+7X+Ni/32a/K/cTTa5zoXYGBhexNbdgcLTsqBvQpZ/RWEfxmE9sSqww -----END CERTIFICATE-----Generated at Tue May 5 14:57:14 2026 by rpki-client