$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3138362e302f32342d3234203d3e20313338393930.roa File: 3135312e3135382e3138362e302f32342d3234203d3e20313338393930.roa (raw, json) Hash identifier: kBt8Kp4JwweDOsaFz3GmG+No73NBqLlS83Y0K9cNVes= Subject key identifier: DA:4F:0B:F1:66:37:58:BF:43:FC:EF:1C:E8:87:D7:2F:9E:56:52:F6 Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 24D736B3C4D7E325B5A1F90158787517F9DC4449 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3138362e302f32342d3234203d3e20313338393930.roa Signing time: Sat 02 May 2026 09:23:33 +0000 ROA not before: Sat 02 May 2026 09:18:33 +0000 ROA not after: Sat 01 May 2027 09:23:33 +0000 asID: 138990 IP address blocks: 151.158.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:d7:36:b3:c4:d7:e3:25:b5:a1:f9:01:58:78:75:17:f9:dc:44:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:33 2026 GMT Not After : May 1 09:23:33 2027 GMT Subject: CN=DA4F0BF1663758BF43FCEF1CE887D72F9E5652F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:15:15:9c:2e:fb:6e:dd:fa:e6:d6:6c:35:64: 5f:88:6b:d4:d3:0a:3a:3b:a2:0b:1f:0b:18:44:d4: 77:4e:96:85:11:d8:c5:f8:a9:68:ae:a0:e5:ab:7d: 28:b6:bd:2d:d8:c8:00:20:7c:bf:c6:3c:42:35:5a: e6:ce:92:32:18:49:ae:c2:73:4f:79:c0:d3:05:b9: d9:15:fc:18:f5:36:1a:99:ea:3d:75:69:60:8b:28: 52:70:3d:32:51:dd:0e:2b:a9:66:fc:be:ca:38:4f: 28:49:b4:6e:b7:a0:cd:79:ea:63:60:a8:8d:1e:2c: af:99:c2:ba:db:85:4a:0f:63:c2:74:1b:b3:9d:5d: 4e:81:9b:69:87:cc:cd:22:5c:80:72:d8:ce:b1:54: ef:35:23:07:cd:c0:40:e3:5e:7c:06:34:60:bc:48: 75:8c:c5:c3:ae:50:5c:0a:ad:be:79:d5:86:ff:3d: 7f:70:b7:dd:ce:6c:ae:d8:d6:49:c3:93:cd:0e:91: fe:5b:e8:0a:04:d3:09:dd:17:ba:c2:23:c6:c6:9e: 24:a7:8c:21:83:51:0c:64:6a:77:e3:bd:59:63:03: 59:35:39:28:4c:49:88:88:17:2f:1a:d8:4d:a8:4a: d1:cc:68:44:ff:16:79:38:ba:f2:dc:f1:ac:74:f2: 2a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:4F:0B:F1:66:37:58:BF:43:FC:EF:1C:E8:87:D7:2F:9E:56:52:F6 X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3138362e302f32342d3234203d3e20313338393930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.186.0/24 Signature Algorithm: sha256WithRSAEncryption 19:11:7f:06:f1:d5:da:4f:04:f9:bb:d2:c6:5d:58:09:a1:32: bf:c0:71:f5:8c:10:04:49:a9:93:46:52:c6:73:51:cd:5e:2d: fc:92:15:e1:8e:e1:1f:db:b5:fd:03:e0:80:46:58:41:a3:7a: 5b:c2:53:5d:45:6f:4d:c0:28:10:ad:c2:b1:76:d3:82:2b:af: 85:0b:a3:6d:67:ec:7f:66:93:54:e1:0c:d1:09:be:17:f8:c1: 17:f0:6c:0e:8b:a4:50:1b:37:b4:98:8a:60:e3:3d:cf:10:a0: 5d:59:65:4f:70:e4:38:56:55:58:0e:cf:7e:72:8a:68:74:db: ad:2e:eb:cb:df:1f:0b:7a:a1:d0:df:27:2d:6e:1f:4b:24:a9: 8d:8e:90:1b:b3:7e:9c:53:ed:b2:1c:b6:f3:cd:dc:d4:64:b0: df:dc:d5:9a:95:7b:7d:09:25:64:9f:07:d4:50:54:f3:8b:78: b6:fa:f0:29:a1:2b:25:0f:ac:bb:2b:b6:0e:8c:18:06:ca:b8: f8:f8:7d:bd:fe:2f:cb:39:68:a0:70:37:4b:2f:18:85:84:cf: 03:59:94:2b:9c:82:e2:63:d3:76:29:34:e5:c5:9e:58:49:71: ae:44:9f:16:59:7c:ac:a4:f5:40:55:8d:ca:9b:d6:56:f6:a5: 41:d9:b0:fa -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUJNc2s8TX4yW1ofkBWHh1F/ncREkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzM1oX DTI3MDUwMTA5MjMzM1owMzExMC8GA1UEAxMoREE0RjBCRjE2NjM3NThCRjQzRkNF RjFDRTg4N0Q3MkY5RTU2NTJGNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIMVFZwu+27d+ubWbDVkX4hr1NMKOjuiCx8LGETUd06WhRHYxfipaK6g5at9 KLa9LdjIACB8v8Y8QjVa5s6SMhhJrsJzT3nA0wW52RX8GPU2GpnqPXVpYIsoUnA9 MlHdDiupZvy+yjhPKEm0bregzXnqY2CojR4sr5nCutuFSg9jwnQbs51dToGbaYfM zSJcgHLYzrFU7zUjB83AQONefAY0YLxIdYzFw65QXAqtvnnVhv89f3C33c5srtjW ScOTzQ6R/lvoCgTTCd0XusIjxsaeJKeMIYNRDGRqd+O9WWMDWTU5KExJiIgXLxrY TahK0cxoRP8WeTi68tzxrHTyKh8CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBTaTwvx ZjdYv0P87xzoh9cvnlZS9jAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzEzODM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM4MzkzOTMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAl566MA0GCSqGSIb3DQEBCwUAA4IBAQAZEX8G8dXaTwT5u9LGXVgJ oTK/wHH1jBAESamTRlLGc1HNXi38khXhjuEf27X9A+CARlhBo3pbwlNdRW9NwCgQ rcKxdtOCK6+FC6NtZ+x/ZpNU4QzRCb4X+MEX8GwOi6RQGze0mIpg4z3PEKBdWWVP cOQ4VlVYDs9+copodNutLuvL3x8LeqHQ3yctbh9LJKmNjpAbs36cU+2yHLbzzdzU ZLDf3NWalXt9CSVknwfUUFTzi3i2+vApoSslD6y7K7YOjBgGyrj4+H29/i/LOWig cDdLLxiFhM8DWZQrnILiY9N2KTTlxZ5YSXGuRJ8WWXyspPVAVY3Km9ZW9qVB2bD6 -----END CERTIFICATE-----Generated at Tue May 5 14:57:14 2026 by rpki-client