$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233392e302f32342d3234203d3e20313534353238.roa File: 3135312e3135382e3233392e302f32342d3234203d3e20313534353238.roa (raw, json) Hash identifier: rsgLkVZ7ASQkDorSMSGJsm/yhf9qJ/kLL4PzZ1Ecuew= Subject key identifier: F5:65:AF:A6:8C:A4:D2:FD:03:79:61:41:71:6F:E0:83:9F:5E:2C:BF Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 49F1512004ABF97B6CA4CB5D270ED5F1C1F133F8 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233392e302f32342d3234203d3e20313534353238.roa Signing time: Sat 02 May 2026 08:36:21 +0000 ROA not before: Sat 02 May 2026 08:31:21 +0000 ROA not after: Sat 01 May 2027 08:36:21 +0000 asID: 154528 IP address blocks: 151.158.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f1:51:20:04:ab:f9:7b:6c:a4:cb:5d:27:0e:d5:f1:c1:f1:33:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 08:31:21 2026 GMT Not After : May 1 08:36:21 2027 GMT Subject: CN=F565AFA68CA4D2FD03796141716FE0839F5E2CBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e1:f6:2c:95:3e:c2:21:56:ae:bd:3c:a6:4c: f0:9d:0e:c7:ba:3c:5a:f9:e8:57:e7:b8:28:c7:51: a2:b4:f1:0c:a0:c0:39:8a:d4:ce:46:66:33:44:93: 15:6e:d6:41:f1:81:1d:a0:50:cd:a5:23:c1:3a:6a: b4:d6:d5:bb:90:55:65:07:9d:12:61:52:d2:37:52: fe:91:ad:d1:19:f9:a2:1b:a6:4b:53:b9:7d:c1:8f: 71:78:d9:77:f7:3a:42:2f:1c:91:32:e2:f2:3c:cf: cc:77:04:7a:18:f7:85:87:23:bf:9c:18:55:78:d8: 7f:d9:54:4f:6b:23:d6:3b:62:82:21:0b:d2:48:cd: bc:0f:e1:f5:1d:28:75:a0:c6:49:03:ce:a8:0b:40: 24:3c:a0:a4:81:78:0f:4e:14:e2:67:0c:9c:06:df: ef:f5:70:09:63:09:b6:5f:b4:df:ce:c1:5d:e7:b4: 13:3a:71:d5:45:7d:cf:58:e7:27:38:fb:bf:e4:34: 44:29:2a:4a:29:5a:cc:27:f6:a2:3e:d7:21:d1:f4: 25:bd:d8:08:92:31:9f:47:74:11:c7:c8:eb:9c:58: 15:da:f2:db:2a:56:a2:32:3e:fe:c0:95:6b:30:2b: e2:44:17:ac:3c:1a:a9:8f:ee:59:a8:dc:fc:ab:62: 48:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:65:AF:A6:8C:A4:D2:FD:03:79:61:41:71:6F:E0:83:9F:5E:2C:BF X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3233392e302f32342d3234203d3e20313534353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.239.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:7b:c4:7e:53:f1:73:dc:49:49:20:5e:ac:68:d3:34:46:3a: 30:b1:80:00:96:7e:ce:73:79:8e:1a:b1:71:98:b4:23:6d:86: f1:24:72:ce:b2:d0:5e:b3:b7:3c:88:87:8f:9b:12:83:48:2b: 51:ba:4c:d8:44:3b:0a:ef:13:b1:c6:a6:83:c8:34:54:b8:d3: 3e:3c:35:65:fa:40:d6:20:ed:69:05:af:8b:b4:a0:ea:33:8c: e3:e1:62:5f:75:58:20:22:a8:f1:a5:f6:a6:98:a5:a9:fe:2d: f4:6b:ff:b9:84:86:f2:c0:13:d5:aa:23:35:3a:45:1c:67:ae: c2:e7:03:16:b1:21:a3:6b:26:74:93:09:24:df:a0:03:e3:d9: 78:8b:c4:2f:e1:06:aa:b2:a5:07:37:6e:cb:71:12:d6:58:d9: 07:bc:ad:0b:1c:58:85:b9:97:a8:1c:09:d6:c1:9d:39:2c:fc: e3:64:9d:16:d7:37:d9:13:cf:2c:7b:28:fa:ff:c5:d1:80:a9: f9:9a:a0:33:ce:64:dd:ce:6b:37:3a:42:ad:85:31:32:ba:c3: 04:68:67:f1:de:ab:b6:9a:7b:f4:03:ec:6d:b1:c7:1d:c0:66: 77:4e:91:cf:b6:ee:35:14:78:63:f7:ae:b6:52:ee:9e:77:12: ce:4c:d9:0f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUSfFRIASr+XtspMtdJw7V8cHxM/gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA4MzEyMVoX DTI3MDUwMTA4MzYyMVowMzExMC8GA1UEAxMoRjU2NUFGQTY4Q0E0RDJGRDAzNzk2 MTQxNzE2RkUwODM5RjVFMkNCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnh9iyVPsIhVq69PKZM8J0Ox7o8WvnoV+e4KMdRorTxDKDAOYrUzkZmM0ST FW7WQfGBHaBQzaUjwTpqtNbVu5BVZQedEmFS0jdS/pGt0Rn5ohumS1O5fcGPcXjZ d/c6Qi8ckTLi8jzPzHcEehj3hYcjv5wYVXjYf9lUT2sj1jtigiEL0kjNvA/h9R0o daDGSQPOqAtAJDygpIF4D04U4mcMnAbf7/VwCWMJtl+0387BXee0Ezpx1UV9z1jn Jzj7v+Q0RCkqSilazCf2oj7XIdH0Jb3YCJIxn0d0EcfI65xYFdry2ypWojI+/sCV azAr4kQXrDwaqY/uWajc/KtiSFsCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBT1Za+m jKTS/QN5YUFxb+CDn14svzAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzIzMzM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNTM0MzUzMjM4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAl57vMA0GCSqGSIb3DQEBCwUAA4IBAQAte8R+U/Fz3ElJIF6saNM0 RjowsYAAln7Oc3mOGrFxmLQjbYbxJHLOstBes7c8iIePmxKDSCtRukzYRDsK7xOx xqaDyDRUuNM+PDVl+kDWIO1pBa+LtKDqM4zj4WJfdVggIqjxpfammKWp/i30a/+5 hIbywBPVqiM1OkUcZ67C5wMWsSGjayZ0kwkk36AD49l4i8Qv4QaqsqUHN27LcRLW WNkHvK0LHFiFuZeoHAnWwZ05LPzjZJ0W1zfZE88seyj6/8XRgKn5mqAzzmTdzms3 OkKthTEyusMEaGfx3qu2mnv0A+xtsccdwGZ3TpHPtu41FHhj9662Uu6edxLOTNkP -----END CERTIFICATE-----Generated at Tue May 5 14:56:52 2026 by rpki-client