$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa File: 3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa (raw, json) Hash identifier: SiMvC9el0feR4cYI97OulC2Z+HjKvIlRUfDrhRxMhs8= Subject key identifier: A9:F3:AB:DA:08:B6:02:39:6A:18:94:D4:BB:5F:90:7C:EA:E9:CF:4C Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 100D990E92466BD7FF2BE06CA48B9448F98A3E1E Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa Signing time: Sat 02 May 2026 09:23:32 +0000 ROA not before: Sat 02 May 2026 09:18:32 +0000 ROA not after: Sat 01 May 2027 09:23:32 +0000 asID: 154523 IP address blocks: 151.158.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:0d:99:0e:92:46:6b:d7:ff:2b:e0:6c:a4:8b:94:48:f9:8a:3e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:32 2026 GMT Not After : May 1 09:23:32 2027 GMT Subject: CN=A9F3ABDA08B602396A1894D4BB5F907CEAE9CF4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8c:56:ea:d5:ba:e6:cd:c3:ef:4a:fb:8d:07: 3e:ba:05:d1:94:4a:f8:42:fc:78:41:03:f4:34:23: 53:33:3d:2d:be:0d:80:14:44:9d:71:6a:72:bc:fd: 03:45:c6:52:02:fd:e3:27:ce:d8:66:04:01:47:6f: 21:8b:d5:c4:ce:22:de:5c:4f:bf:42:a6:bb:9d:fe: 07:48:c7:50:14:fb:c5:5d:b5:e5:43:9c:46:2a:cb: ff:aa:71:df:7f:34:8c:fa:ef:f2:94:ab:67:a6:44: a3:3a:88:73:fc:7f:a1:c0:a2:de:ba:96:54:e2:14: 1c:4c:22:58:f0:45:df:46:54:12:81:fe:a5:f1:6c: 9b:7b:ce:9d:0c:a9:a1:b5:2b:f6:9e:c9:81:af:5d: 3a:24:2b:e7:97:15:88:15:38:00:9d:fb:ff:9c:7f: ab:4c:63:41:46:9d:f6:ca:3c:3f:86:9c:db:29:48: d1:ee:0e:c4:b4:4e:fe:8b:a4:05:8e:35:91:5f:69: 53:f2:3c:d1:f6:96:95:da:02:4e:79:2d:73:80:2c: e8:75:ed:d8:77:a8:a3:c7:bf:49:6a:75:ae:f7:80: bf:bc:58:a6:a5:b3:64:cc:73:b2:4a:ad:d8:74:2b: 67:23:9d:e7:9b:8f:67:1b:66:ab:a0:09:5b:92:55: 88:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F3:AB:DA:08:B6:02:39:6A:18:94:D4:BB:5F:90:7C:EA:E9:CF:4C X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.236.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:e9:c2:74:5f:c9:7b:33:b9:b8:15:42:25:9f:30:a6:04:25: 03:2b:c4:52:e3:d3:95:fe:08:df:4d:9d:fb:8b:44:b7:0e:c0: b6:d8:ae:b8:2e:4a:8d:d7:39:33:0a:80:9f:26:83:30:ea:0e: e9:9f:df:fc:68:f9:c2:02:4c:f0:03:ed:c0:9c:42:0e:d7:3e: 52:96:c1:87:0e:00:a6:4f:b8:57:36:f7:09:0e:f8:0f:34:11: ae:82:65:5b:ab:46:01:b1:d5:19:e8:59:38:87:80:8f:10:73: 05:04:44:3e:2a:22:2a:83:b3:e3:3e:b5:aa:ad:cd:b1:36:28: a7:f4:06:19:cb:d0:00:2c:0f:32:59:d7:07:62:84:4c:e8:0e: 4c:0d:5a:4a:de:d0:ca:6d:2e:9e:17:e0:95:57:32:51:93:8e: 11:a3:43:ae:a9:67:20:81:59:e4:b4:1e:21:1c:71:85:94:eb: 69:3b:38:ab:e7:30:8d:c3:61:af:72:b5:9f:4d:88:40:d7:9a: b2:5f:47:1b:6d:be:86:8e:45:ea:14:9b:94:d6:7b:87:8d:63: a2:e9:f2:61:2e:e8:c5:2e:6e:f0:05:88:86:d2:b6:1b:f2:03: b0:65:c6:37:e2:e5:97:87:89:db:91:a4:2c:de:80:18:0c:5f: fd:6a:db:d1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUEA2ZDpJGa9f/K+BspIuUSPmKPh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzMloX DTI3MDUwMTA5MjMzMlowMzExMC8GA1UEAxMoQTlGM0FCREEwOEI2MDIzOTZBMTg5 NEQ0QkI1RjkwN0NFQUU5Q0Y0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJeMVurVuubNw+9K+40HProF0ZRK+EL8eEED9DQjUzM9Lb4NgBREnXFqcrz9 A0XGUgL94yfO2GYEAUdvIYvVxM4i3lxPv0Kmu53+B0jHUBT7xV215UOcRirL/6px 3380jPrv8pSrZ6ZEozqIc/x/ocCi3rqWVOIUHEwiWPBF30ZUEoH+pfFsm3vOnQyp obUr9p7Jga9dOiQr55cViBU4AJ37/5x/q0xjQUad9so8P4ac2ylI0e4OxLRO/ouk BY41kV9pU/I80faWldoCTnktc4As6HXt2Heoo8e/SWp1rveAv7xYpqWzZMxzskqt 2HQrZyOd55uPZxtmq6AJW5JViAECAwEAAaOCAf8wggH7MB0GA1UdDgQWBBSp86va CLYCOWoYlNS7X5B86unPTDAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzIzMzM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTM0MzUzMjMzLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBl57sMA0GCSqGSIb3DQEBCwUAA4IBAQBf6cJ0X8l7M7m4FUIlnzCm BCUDK8RS49OV/gjfTZ37i0S3DsC22K64LkqN1zkzCoCfJoMw6g7pn9/8aPnCAkzw A+3AnEIO1z5SlsGHDgCmT7hXNvcJDvgPNBGugmVbq0YBsdUZ6Fk4h4CPEHMFBEQ+ KiIqg7PjPrWqrc2xNiin9AYZy9AALA8yWdcHYoRM6A5MDVpK3tDKbS6eF+CVVzJR k44Ro0OuqWcggVnktB4hHHGFlOtpOzir5zCNw2GvcrWfTYhA15qyX0cbbb6GjkXq FJuU1nuHjWOi6fJhLujFLm7wBYiG0rYb8gOwZcY34uWXh4nbkaQs3oAYDF/9atvR -----END CERTIFICATE-----Generated at Tue May 5 14:56:14 2026 by rpki-client