$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e33362e302f32332d3234203d3e20313432323330.roa File: 3135312e3135382e33362e302f32332d3234203d3e20313432323330.roa (raw, json) Hash identifier: 5mcrPh9MHfGIi1I+qEwVVt+3mqWDmCqBeWepTQidito= Subject key identifier: EC:F6:47:07:A9:41:3C:2E:19:D2:85:1E:76:19:3B:C8:7C:ED:B2:5D Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 6B521C3A6EBFEF8DE32F5B7F6B82B0D0D3B78B0D Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e33362e302f32332d3234203d3e20313432323330.roa Signing time: Sat 02 May 2026 09:23:35 +0000 ROA not before: Sat 02 May 2026 09:18:35 +0000 ROA not after: Sat 01 May 2027 09:23:35 +0000 asID: 142230 IP address blocks: 151.158.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:52:1c:3a:6e:bf:ef:8d:e3:2f:5b:7f:6b:82:b0:d0:d3:b7:8b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:35 2026 GMT Not After : May 1 09:23:35 2027 GMT Subject: CN=ECF64707A9413C2E19D2851E76193BC87CEDB25D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:40:27:ee:e8:8d:cc:96:a7:2e:70:d0:77:67: 83:51:76:24:ed:1d:6e:b0:4f:bf:c0:71:49:c4:f2: 00:b3:5d:3a:44:39:1e:1d:ee:b0:b3:15:f8:65:7a: 6a:73:d6:2f:3c:1c:2c:e6:4d:53:02:8c:4d:95:32: 55:5e:a1:ee:e5:c0:50:59:3b:50:09:3f:b2:da:91: 01:77:c8:d6:c5:9b:1a:dd:32:f3:e5:04:5e:eb:9c: b8:d0:b9:1d:ec:5d:11:fe:f2:9c:0f:95:77:ab:d5: 81:0a:43:e9:04:76:c4:bb:d2:8b:f6:27:e9:6c:17: 29:a2:86:93:00:55:a2:63:c5:44:de:52:ac:bf:c3: aa:ad:1f:92:bf:1a:e5:0d:c4:86:08:b9:a4:ab:f4: d4:a1:72:96:4d:e1:1b:0f:f9:70:ef:c5:96:cf:19: 31:18:b6:04:1c:59:80:9f:9b:f4:a4:7b:bd:73:1a: a0:1b:4e:50:38:bd:a4:bd:7c:b6:ed:99:9e:2b:32: 96:4e:dd:1c:68:20:e9:d7:33:5b:82:fe:18:f9:e6: 40:70:08:03:b1:8a:09:88:f2:1f:7e:41:5a:d8:ef: 2f:4d:91:ce:22:c1:9a:e2:2d:43:71:de:4e:bc:f6: 72:6a:09:f4:9d:55:45:e2:fb:e7:9c:87:97:c4:e2: 4e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F6:47:07:A9:41:3C:2E:19:D2:85:1E:76:19:3B:C8:7C:ED:B2:5D X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e33362e302f32332d3234203d3e20313432323330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.36.0/23 Signature Algorithm: sha256WithRSAEncryption 66:72:ea:a6:e8:07:8e:e2:bf:8e:0f:8e:6d:ff:2c:6d:1a:09: 50:0d:38:78:92:48:b5:af:13:9b:0c:7e:73:fd:6e:89:7c:83: b0:4b:70:77:4d:fb:e0:ad:fa:ae:fa:0e:0e:79:bb:06:1e:92: 1a:d2:81:05:81:c8:ba:c9:a1:03:30:2e:3d:10:fb:f6:e1:dc: c7:c5:bf:0b:20:eb:f8:81:c2:cd:1d:01:f3:27:60:39:31:40: 31:61:d2:c0:58:14:6e:e8:0b:98:e0:8d:f2:72:d9:3d:a5:99: ca:1c:2f:c8:78:55:23:33:04:a0:26:a1:f9:7c:4f:31:2a:95: 5e:b4:1f:e1:2b:75:9f:f4:e5:ce:b4:63:99:33:ae:67:1b:56: ed:5b:12:df:b2:61:02:b6:82:85:3c:8a:bf:5e:68:55:b6:4b: 7e:14:d7:59:a0:f0:e0:eb:59:41:f2:ff:f8:41:4b:4d:c3:5b: f2:0a:ba:91:c3:fa:26:0c:04:e0:eb:ee:9f:f8:2c:6c:0f:d5: e2:3c:96:9b:fc:04:62:53:cc:99:65:31:67:6b:e7:95:51:0e: 0b:91:9a:98:35:42:db:be:4d:5e:04:be:79:d4:94:79:42:ef: fe:8b:e7:74:22:19:9d:88:50:6a:77:4d:a5:6b:cf:83:f1:f9: 66:e5:06:7f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUa1IcOm6/743jL1t/a4Kw0NO3iw0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzNVoX DTI3MDUwMTA5MjMzNVowMzExMC8GA1UEAxMoRUNGNjQ3MDdBOTQxM0MyRTE5RDI4 NTFFNzYxOTNCQzg3Q0VEQjI1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANhAJ+7ojcyWpy5w0Hdng1F2JO0dbrBPv8BxScTyALNdOkQ5Hh3usLMV+GV6 anPWLzwcLOZNUwKMTZUyVV6h7uXAUFk7UAk/stqRAXfI1sWbGt0y8+UEXuucuNC5 HexdEf7ynA+Vd6vVgQpD6QR2xLvSi/Yn6WwXKaKGkwBVomPFRN5SrL/Dqq0fkr8a 5Q3Ehgi5pKv01KFylk3hGw/5cO/Fls8ZMRi2BBxZgJ+b9KR7vXMaoBtOUDi9pL18 tu2Znisylk7dHGgg6dczW4L+GPnmQHAIA7GKCYjyH35BWtjvL02RziLBmuItQ3He Trz2cmoJ9J1VReL755yHl8TiTi8CAwEAAaOCAf0wggH5MB0GA1UdDgQWBBTs9kcH qUE8LhnShR52GTvIfO2yXTAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzMzNjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzQzMjMyMzMzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZeeJDANBgkqhkiG9w0BAQsFAAOCAQEAZnLqpugHjuK/jg+Obf8sbRoJ UA04eJJIta8Tmwx+c/1uiXyDsEtwd0374K36rvoODnm7Bh6SGtKBBYHIusmhAzAu PRD79uHcx8W/CyDr+IHCzR0B8ydgOTFAMWHSwFgUbugLmOCN8nLZPaWZyhwvyHhV IzMEoCah+XxPMSqVXrQf4St1n/TlzrRjmTOuZxtW7VsS37JhAraChTyKv15oVbZL fhTXWaDw4OtZQfL/+EFLTcNb8gq6kcP6JgwE4Ovun/gsbA/V4jyWm/wEYlPMmWUx Z2vnlVEOC5GamDVC275NXgS+edSUeULv/ovndCIZnYhQandNpWvPg/H5ZuUGfw== -----END CERTIFICATE-----Generated at Tue May 5 14:56:01 2026 by rpki-client