$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3234302e302f32332d3234203d3e20313534353237.roa File: 3135312e3135382e3234302e302f32332d3234203d3e20313534353237.roa (raw, json) Hash identifier: +jxiZuVDvVJb0gZO08c6gVEhC1lfYEQPJlUGotAmVxk= Subject key identifier: 5D:D9:E3:F9:FC:39:8C:FF:68:92:11:3E:47:A0:B3:ED:21:8B:D1:45 Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 6D9CC6E70A2324E29B9983DCDBA93CF7D0DAF520 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3234302e302f32332d3234203d3e20313534353237.roa Signing time: Sat 02 May 2026 09:23:32 +0000 ROA not before: Sat 02 May 2026 09:18:32 +0000 ROA not after: Sat 01 May 2027 09:23:32 +0000 asID: 154527 IP address blocks: 151.158.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:9c:c6:e7:0a:23:24:e2:9b:99:83:dc:db:a9:3c:f7:d0:da:f5:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:32 2026 GMT Not After : May 1 09:23:32 2027 GMT Subject: CN=5DD9E3F9FC398CFF6892113E47A0B3ED218BD145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bb:23:a0:de:6a:a5:4e:d7:3e:11:3d:65:90: 3f:45:64:c6:a2:d2:e3:ea:14:6a:e3:c9:3a:da:d9: 62:18:19:92:ce:f7:34:c8:0e:93:24:1f:3f:b3:e7: 82:4e:bc:91:25:10:41:b6:90:9f:bd:f1:3f:7c:85: 27:69:ae:9d:16:72:7e:b3:93:cf:fc:6d:78:be:cb: 6b:bf:aa:c5:c9:31:2c:a4:95:95:b6:49:5f:b4:21: a0:37:40:fb:87:89:d3:65:00:42:e4:db:3f:a5:88: a8:66:de:3a:ea:3d:49:48:f6:44:cf:05:85:63:1c: be:61:3b:15:1d:2e:a4:a5:07:24:10:60:04:cb:c2: d5:8c:75:d3:e8:0d:5e:6e:a4:19:ea:11:67:be:eb: cb:c3:fa:dc:52:eb:34:9e:38:34:f4:b0:6e:3b:36: 69:06:92:fd:9d:f0:13:32:7a:8f:dd:81:33:ea:9a: ef:05:ca:61:f5:e3:a1:7d:90:1e:20:e2:5d:fc:c5: 1e:62:d1:1b:ad:ca:ab:39:5e:9b:96:19:d9:e5:52: 4d:cc:fb:c6:95:6f:dc:82:5d:72:72:e1:e7:df:d4: b9:c0:81:e7:d9:fe:d9:99:c4:28:b5:e3:66:40:cc: d6:c6:ac:7a:f2:b8:cf:a7:1d:30:5d:5c:b6:82:3a: dd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D9:E3:F9:FC:39:8C:FF:68:92:11:3E:47:A0:B3:ED:21:8B:D1:45 X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e3234302e302f32332d3234203d3e20313534353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.240.0/23 Signature Algorithm: sha256WithRSAEncryption 52:9d:0a:ae:50:72:01:a3:60:d0:46:47:78:a7:71:e8:e4:46: 52:b4:ee:b5:58:b2:31:a8:44:df:f9:0b:95:51:0b:d5:46:b3: 8a:6d:ff:61:31:f9:bd:21:71:55:3e:f6:fa:62:34:67:83:22: 78:f0:b0:f7:66:3f:a2:bb:f4:50:2c:0d:24:62:22:02:93:37: 44:c1:bf:52:59:d6:0f:45:98:bf:ab:1d:ca:99:6c:85:28:54: 93:d0:ed:14:82:d4:9e:8a:25:be:6e:34:6c:df:ce:bd:32:f8: 5b:59:80:47:bb:bb:98:91:1a:29:53:4e:cf:b7:27:b8:9f:d1: 62:7e:25:49:bf:9e:4f:76:df:be:cc:c4:7f:a8:6c:ac:0a:73: a1:f2:74:9a:ce:88:17:5c:da:7a:c3:62:07:59:18:ec:40:1e: f3:a4:6d:4f:e2:31:17:d8:b5:4c:ca:c1:fc:d9:f0:61:3e:a5: 52:b4:60:4e:d2:cb:6c:3f:47:5c:60:79:8f:bb:c2:d7:41:64: 06:6a:47:2b:9d:3f:1c:d1:0f:93:f5:43:34:d5:66:79:18:7d: ff:ca:e7:bb:cc:e5:5e:04:ae:12:c1:31:d7:d1:f1:e8:84:5d: a6:57:fa:68:41:54:be:69:2d:7c:5b:01:de:e2:b3:e5:68:a9: c5:e4:a4:34 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIUbZzG5wojJOKbmYPc26k899Da9SAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzMloX DTI3MDUwMTA5MjMzMlowMzExMC8GA1UEAxMoNUREOUUzRjlGQzM5OENGRjY4OTIx MTNFNDdBMEIzRUQyMThCRDE0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMa7I6DeaqVO1z4RPWWQP0VkxqLS4+oUauPJOtrZYhgZks73NMgOkyQfP7Pn gk68kSUQQbaQn73xP3yFJ2munRZyfrOTz/xteL7La7+qxckxLKSVlbZJX7QhoDdA +4eJ02UAQuTbP6WIqGbeOuo9SUj2RM8FhWMcvmE7FR0upKUHJBBgBMvC1Yx10+gN Xm6kGeoRZ77ry8P63FLrNJ44NPSwbjs2aQaS/Z3wEzJ6j92BM+qa7wXKYfXjoX2Q HiDiXfzFHmLRG63Kqzlem5YZ2eVSTcz7xpVv3IJdcnLh59/UucCB59n+2ZnEKLXj ZkDM1sasevK4z6cdMF1ctoI63fsCAwEAAaOCAf8wggH7MB0GA1UdDgQWBBRd2eP5 /DmM/2iSET5HoLPtIYvRRTAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzIzNDMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTM0MzUzMjM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBl57wMA0GCSqGSIb3DQEBCwUAA4IBAQBSnQquUHIBo2DQRkd4p3Ho 5EZStO61WLIxqETf+QuVUQvVRrOKbf9hMfm9IXFVPvb6YjRngyJ48LD3Zj+iu/RQ LA0kYiICkzdEwb9SWdYPRZi/qx3KmWyFKFST0O0UgtSeiiW+bjRs3869MvhbWYBH u7uYkRopU07Ptye4n9FifiVJv55Pdt++zMR/qGysCnOh8nSazogXXNp6w2IHWRjs QB7zpG1P4jEX2LVMysH82fBhPqVStGBO0stsP0dcYHmPu8LXQWQGakcrnT8c0Q+T 9UM01WZ5GH3/yue7zOVeBK4SwTHX0fHohF2mV/poQVS+aS18WwHe4rPlaKnF5KQ0 -----END CERTIFICATE-----Generated at Tue May 5 14:56:51 2026 by rpki-client