$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3230342e302f32332d3234203d3e20313534353232.roa File: 3135312e3135382e3230342e302f32332d3234203d3e20313534353232.roa (raw, json) Hash identifier: 6Rb9zk4c8mH3/Ntw2KBKvfo60D8HuKArZgXhAaeD3xM= Subject key identifier: B6:D2:BF:68:FE:1A:E7:E9:04:4B:A5:DB:FA:B7:A0:60:64:BB:8C:5B Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 78ECB9E1C26745824557404ED7E72A37C0597340 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3230342e302f32332d3234203d3e20313534353232.roa Signing time: Sat 02 May 2026 09:23:35 +0000 ROA not before: Sat 02 May 2026 09:18:35 +0000 ROA not after: Sat 01 May 2027 09:23:35 +0000 asID: 154522 IP address blocks: 151.158.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ec:b9:e1:c2:67:45:82:45:57:40:4e:d7:e7:2a:37:c0:59:73:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:35 2026 GMT Not After : May 1 09:23:35 2027 GMT Subject: CN=B6D2BF68FE1AE7E9044BA5DBFAB7A06064BB8C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:29:21:43:d9:97:5c:35:ca:1b:11:89:03:b5: 49:c8:d5:0f:ef:4d:7b:ee:9d:d2:58:88:d5:87:06: 30:7b:d2:3f:33:71:94:54:64:4d:81:8a:1a:05:e6: 3f:91:87:f7:b1:d8:d7:37:5e:91:36:2e:09:1e:b5: 18:4d:69:e3:fb:bc:54:d6:28:39:4c:a0:f9:b5:d8: 7a:a0:f2:eb:31:7e:37:b3:ef:d8:74:83:14:25:11: e7:6a:0e:3a:98:f5:ae:21:6e:dd:42:2f:41:dd:49: 23:f0:bd:af:65:cd:35:ff:29:e7:d5:f3:48:13:67: 52:0d:7a:6d:2a:04:57:12:42:82:6c:a2:c3:79:a6: 96:41:8f:76:03:a8:20:58:3b:0e:1f:e3:91:b5:4e: 0d:b8:0b:f0:28:42:58:a9:3c:30:f6:71:3a:a5:a6: c1:e4:b8:77:05:e8:71:96:15:90:1a:03:e9:29:2f: 2e:ac:7a:c0:05:83:e6:1c:67:b9:cd:84:97:4d:84: 80:eb:b0:b6:d6:e4:9a:7b:2e:91:76:39:7b:13:97: 32:ed:7b:cf:74:19:9e:44:74:2b:71:9f:ae:1d:c7: 58:90:6a:38:b3:e5:30:f0:74:87:99:58:3b:6c:a6: bb:86:d1:de:4d:41:5a:eb:00:4e:1e:3c:9d:69:91: d9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D2:BF:68:FE:1A:E7:E9:04:4B:A5:DB:FA:B7:A0:60:64:BB:8C:5B X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3230342e302f32332d3234203d3e20313534353232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.204.0/23 Signature Algorithm: sha256WithRSAEncryption 65:52:56:0e:7a:b1:77:92:9a:35:cc:94:5f:a1:41:bf:1a:b9: 11:25:94:eb:3d:20:29:10:01:ea:87:19:3d:f8:23:c1:0e:ab: ed:ea:8d:91:6d:e4:0b:b8:68:4f:ed:e4:24:16:0d:c6:2f:0c: 73:0d:3b:dc:b7:b7:8f:cc:49:37:f9:5e:24:a6:78:2d:20:c0: 8a:e1:11:58:ad:b1:f0:75:fd:d2:52:47:55:d4:8f:cc:96:90: d8:6e:44:ee:6f:b0:72:64:28:7c:3d:99:8a:77:0a:6b:bd:6e: c6:5a:a6:b5:a9:67:dd:ab:f0:21:50:5b:e5:3f:41:54:a4:57: 87:86:3a:70:71:11:e0:15:c3:10:ef:02:b5:da:ae:e4:13:be: e2:98:ad:34:0d:4c:be:03:40:ef:57:95:c3:0c:cb:43:0d:8e: 7c:da:42:19:a5:a4:8c:ae:6f:5c:23:33:06:7b:ea:c0:dc:36: 56:9e:17:41:89:70:49:b2:86:7e:e5:53:66:ad:0b:d2:dd:85: c1:0a:d7:38:13:02:89:0e:76:59:83:81:eb:f0:21:37:a9:ce: 5f:b3:60:f1:4c:ae:c4:56:e6:cf:79:31:29:76:79:b5:c7:96: 9b:73:25:44:93:5b:96:31:36:d7:5c:a6:e0:aa:96:9c:70:f0: fb:0d:ae:de -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUeOy54cJnRYJFV0BO1+cqN8BZc0AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzNVoX DTI3MDUwMTA5MjMzNVowMzExMC8GA1UEAxMoQjZEMkJGNjhGRTFBRTdFOTA0NEJB NURCRkFCN0EwNjA2NEJCOEM1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8pIUPZl1w1yhsRiQO1ScjVD+9Ne+6d0liI1YcGMHvSPzNxlFRkTYGKGgXm P5GH97HY1zdekTYuCR61GE1p4/u8VNYoOUyg+bXYeqDy6zF+N7Pv2HSDFCUR52oO Opj1riFu3UIvQd1JI/C9r2XNNf8p59XzSBNnUg16bSoEVxJCgmyiw3mmlkGPdgOo IFg7Dh/jkbVODbgL8ChCWKk8MPZxOqWmweS4dwXocZYVkBoD6SkvLqx6wAWD5hxn uc2El02EgOuwttbkmnsukXY5exOXMu17z3QZnkR0K3Gfrh3HWJBqOLPlMPB0h5lY O2ymu4bR3k1BWusATh48nWmR2fECAwEAAaOCAf8wggH7MB0GA1UdDgQWBBS20r9o /hrn6QRLpdv6t6BgZLuMWzAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzIzMDM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTM0MzUzMjMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBl57MMA0GCSqGSIb3DQEBCwUAA4IBAQBlUlYOerF3kpo1zJRfoUG/ GrkRJZTrPSApEAHqhxk9+CPBDqvt6o2RbeQLuGhP7eQkFg3GLwxzDTvct7ePzEk3 +V4kpngtIMCK4RFYrbHwdf3SUkdV1I/MlpDYbkTub7ByZCh8PZmKdwprvW7GWqa1 qWfdq/AhUFvlP0FUpFeHhjpwcRHgFcMQ7wK12q7kE77imK00DUy+A0DvV5XDDMtD DY582kIZpaSMrm9cIzMGe+rA3DZWnhdBiXBJsoZ+5VNmrQvS3YXBCtc4EwKJDnZZ g4Hr8CE3qc5fs2DxTK7EVubPeTEpdnm1x5abcyVEk1uWMTbXXKbgqpaccPD7Da7e -----END CERTIFICATE-----Generated at Tue May 5 14:55:43 2026 by rpki-client