$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233342e302f32342d3234203d3e20313534353230.roa File: 3135312e3135382e3233342e302f32342d3234203d3e20313534353230.roa (raw, json) Hash identifier: iMci771EdbngNC3JqCB+18eXRv37Op5CXUs80U5K+Yc= Subject key identifier: 3D:B6:A2:62:14:45:E2:28:EA:D7:72:84:BD:8D:B4:51:67:C4:41:F7 Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 3D7E7E59FBCFEE62D45D07C8FCDF9045747C33DE Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233342e302f32342d3234203d3e20313534353230.roa Signing time: Sat 02 May 2026 09:23:37 +0000 ROA not before: Sat 02 May 2026 09:18:37 +0000 ROA not after: Sat 01 May 2027 09:23:37 +0000 asID: 154520 IP address blocks: 151.158.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:7e:7e:59:fb:cf:ee:62:d4:5d:07:c8:fc:df:90:45:74:7c:33:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:37 2026 GMT Not After : May 1 09:23:37 2027 GMT Subject: CN=3DB6A2621445E228EAD77284BD8DB45167C441F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0d:86:36:f1:e0:65:d3:d6:94:96:34:04:80: a3:d4:ff:41:26:d6:31:15:ee:81:a3:6a:cd:79:6a: 48:2f:d1:84:61:6d:46:53:ba:3d:1e:2f:b1:48:8a: d3:48:3c:51:11:cb:83:0a:50:5c:af:be:19:6e:7c: 63:a6:57:39:89:f4:f1:27:4e:27:32:bf:91:1c:39: 4f:8d:92:f5:67:37:c6:f8:a4:03:fd:1a:e1:6c:7b: 1b:9c:eb:29:07:87:32:30:1f:50:36:82:3b:a3:77: dd:3f:58:ed:02:60:7f:bd:54:de:8a:fb:4a:7b:77: 94:68:56:74:92:c9:52:48:aa:96:4f:18:fb:6d:82: e0:ba:7c:51:7d:2e:69:6a:a5:24:f8:d1:bd:d2:a5: 3d:6e:54:e4:0b:89:7b:3f:8a:75:3b:f2:c9:a6:99: 5c:2c:2a:95:6b:29:51:10:75:ba:20:76:19:62:28: 93:06:55:5e:4b:10:29:c6:d6:12:20:47:4d:7f:04: 48:8a:f9:c7:ca:5b:98:e2:ed:6b:54:11:02:a8:aa: 84:65:34:56:b5:ec:c5:fd:a6:71:09:c1:8f:43:05: 21:9c:d3:89:bc:7e:50:54:96:1f:d0:2b:1f:67:0f: 95:cc:05:e1:96:04:43:2c:da:52:df:71:03:2b:4b: ea:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B6:A2:62:14:45:E2:28:EA:D7:72:84:BD:8D:B4:51:67:C4:41:F7 X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233342e302f32342d3234203d3e20313534353230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.234.0/24 Signature Algorithm: sha256WithRSAEncryption 07:88:be:29:62:ad:7e:f0:54:ec:c2:98:59:2f:e7:ae:1e:14: 67:20:91:84:b0:b0:f9:56:76:b6:58:c7:7b:e3:6b:e0:d4:3a: 6b:89:05:b0:d9:07:32:91:34:12:55:c2:0f:4a:09:b9:08:cd: e8:cb:ad:a0:ea:8c:d9:c9:df:ea:25:3d:1d:51:3b:bf:53:db: ad:e6:3d:14:f7:dc:0f:8c:fd:80:99:2e:1c:76:48:dc:7d:5d: a2:b5:31:ba:cb:a7:a1:89:e7:b9:a0:2a:cd:8e:7c:ff:c6:b6: 98:b0:37:5c:26:32:60:ac:25:47:24:94:80:f8:e9:4c:0d:49: 76:ea:0b:c5:ed:59:fe:ae:e2:15:8e:38:97:dd:9a:17:e5:3d: 55:40:ba:b0:6c:64:a4:7d:1a:ca:e3:9c:6e:96:56:5b:22:35: 76:ee:5a:09:e9:15:49:f8:87:80:49:fc:f3:33:0d:2f:1c:3e: ba:a7:7f:6e:55:bc:40:84:48:d2:31:da:25:94:d1:78:09:d3: 8a:1f:2b:3d:c6:39:f1:86:cc:51:66:08:d8:c8:09:b1:01:af: 71:75:d7:69:e6:d6:40:91:8e:6a:0d:70:9e:74:60:90:38:ed: c3:9a:a5:bf:01:64:de:eb:f5:06:70:0e:0f:e1:a7:31:b7:33: d0:e2:3c:cf -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUPX5+WfvP7mLUXQfI/N+QRXR8M94wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzN1oX DTI3MDUwMTA5MjMzN1owMzExMC8GA1UEAxMoM0RCNkEyNjIxNDQ1RTIyOEVBRDc3 Mjg0QkQ4REI0NTE2N0M0NDFGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcNhjbx4GXT1pSWNASAo9T/QSbWMRXugaNqzXlqSC/RhGFtRlO6PR4vsUiK 00g8URHLgwpQXK++GW58Y6ZXOYn08SdOJzK/kRw5T42S9Wc3xvikA/0a4Wx7G5zr KQeHMjAfUDaCO6N33T9Y7QJgf71U3or7Snt3lGhWdJLJUkiqlk8Y+22C4Lp8UX0u aWqlJPjRvdKlPW5U5AuJez+KdTvyyaaZXCwqlWspURB1uiB2GWIokwZVXksQKcbW EiBHTX8ESIr5x8pbmOLta1QRAqiqhGU0VrXsxf2mcQnBj0MFIZzTibx+UFSWH9Ar H2cPlcwF4ZYEQyzaUt9xAytL6n0CAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQ9tqJi FEXiKOrXcoS9jbRRZ8RB9zAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzIzMzM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNTM0MzUzMjMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAl57qMA0GCSqGSIb3DQEBCwUAA4IBAQAHiL4pYq1+8FTswphZL+eu HhRnIJGEsLD5Vna2WMd742vg1DpriQWw2QcykTQSVcIPSgm5CM3oy62g6ozZyd/q JT0dUTu/U9ut5j0U99wPjP2AmS4cdkjcfV2itTG6y6ehiee5oCrNjnz/xraYsDdc JjJgrCVHJJSA+OlMDUl26gvF7Vn+ruIVjjiX3ZoX5T1VQLqwbGSkfRrK45xullZb IjV27loJ6RVJ+IeASfzzMw0vHD66p39uVbxAhEjSMdollNF4CdOKHys9xjnxhsxR ZgjYyAmxAa9xdddp5tZAkY5qDXCedGCQOO3DmqW/AWTe6/UGcA4P4acxtzPQ4jzP -----END CERTIFICATE-----Generated at Tue May 5 14:55:33 2026 by rpki-client