$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e342e302f32332d3234203d3e20313432313938.roa File: 3135312e3135382e342e302f32332d3234203d3e20313432313938.roa (raw, json) Hash identifier: Yh3luDDzif39OPZq/ydXU15pZHfs9Yd5WxJV7KII49o= Subject key identifier: BF:58:D6:B0:56:70:F9:8F:E7:58:18:95:F7:BE:BB:B7:14:38:91:7D Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 2C28E1ABD8453F3EE5F846FDF38FFB7AED1BDFD2 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e342e302f32332d3234203d3e20313432313938.roa Signing time: Sat 02 May 2026 08:36:20 +0000 ROA not before: Sat 02 May 2026 08:31:20 +0000 ROA not after: Sat 01 May 2027 08:36:20 +0000 asID: 142198 IP address blocks: 151.158.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:28:e1:ab:d8:45:3f:3e:e5:f8:46:fd:f3:8f:fb:7a:ed:1b:df:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 08:31:20 2026 GMT Not After : May 1 08:36:20 2027 GMT Subject: CN=BF58D6B05670F98FE7581895F7BEBBB71438917D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:32:b6:00:b0:42:d7:20:25:92:35:a2:3d:3b: 09:e8:6c:90:01:b2:9d:12:11:bc:de:48:84:b9:c1: b8:1c:00:9c:18:a0:40:36:8c:5c:2b:67:81:14:ef: 57:09:ab:d4:e8:93:02:1b:7a:a8:b8:45:88:9c:c4: ed:d5:60:59:4d:4f:a3:6d:29:bd:d6:df:f9:66:43: 07:8b:51:7b:de:fc:b1:b1:d1:74:6f:d5:61:7a:66: 09:8e:30:74:c8:8a:05:71:fa:d7:b0:de:3d:e2:5f: aa:67:3b:5b:0d:3a:4b:66:5f:f4:3c:34:0c:8e:0a: ba:27:ed:2f:b0:d6:84:7b:90:6f:4d:24:bc:14:a2: a1:6d:d2:9d:1b:04:5f:5f:28:0b:64:1a:9f:30:4e: d8:55:76:f6:38:09:43:d4:95:74:09:2b:62:8f:20: f9:ba:35:99:a7:5a:fe:22:cb:34:23:70:5a:20:f5: 14:91:a4:a7:67:8b:98:25:d9:4e:da:80:1c:b9:7b: a2:1c:93:13:de:78:12:46:1c:af:7c:c4:09:26:47: 31:5c:15:03:40:f9:e6:53:e3:23:2a:89:f7:52:3c: b9:f9:16:c1:55:8d:79:d6:d9:bc:0f:7a:d1:40:0f: d8:8e:d7:06:dd:f2:15:e1:e7:e4:98:94:4d:2a:28: b5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:58:D6:B0:56:70:F9:8F:E7:58:18:95:F7:BE:BB:B7:14:38:91:7D X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e342e302f32332d3234203d3e20313432313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.4.0/23 Signature Algorithm: sha256WithRSAEncryption 89:79:13:95:44:a2:04:f5:2c:a0:b4:ac:1a:46:19:06:ce:14: 23:1d:96:aa:8e:93:9c:ac:a0:84:3c:69:cc:85:32:dd:b3:76: 08:05:f9:55:23:3f:2e:ea:b2:aa:06:c7:bb:f6:6b:40:5b:4d: d3:7b:f0:2d:8e:28:0f:66:7f:a9:12:a6:6c:93:9a:6e:67:57: f1:36:dd:2a:c4:ac:6f:8e:e6:a9:33:7f:4c:bf:ae:66:5e:6c: 14:16:de:5f:6a:a0:00:24:ab:7a:b1:f5:30:7b:66:43:07:2d: 74:cc:26:50:59:ff:9a:d0:72:20:60:26:3f:be:36:35:ab:c7: 47:c7:c6:98:f4:8d:5e:e1:6e:c7:e0:7f:29:0a:d8:4d:23:ea: 80:50:db:d5:1c:cd:78:bc:ab:36:51:1d:11:49:85:90:eb:90: ab:4f:fb:f0:e3:26:3c:09:8e:4e:ed:92:16:9a:97:03:b9:ee: 1a:23:8b:b0:05:5c:13:69:c7:a2:2c:da:97:d8:58:7e:6a:e5: ed:1f:25:c2:b8:2d:be:d9:25:d0:83:ad:1e:a5:8f:31:9b:91: 60:01:6f:0d:13:5f:34:83:60:3b:b6:e5:63:e5:8c:de:36:00: 3b:07:19:71:d1:91:83:ae:1e:24:58:64:1a:8a:9e:f1:31:9a: 43:c5:c6:cc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIULCjhq9hFPz7l+Eb984/7eu0b39IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA4MzEyMFoX DTI3MDUwMTA4MzYyMFowMzExMC8GA1UEAxMoQkY1OEQ2QjA1NjcwRjk4RkU3NTgx ODk1RjdCRUJCQjcxNDM4OTE3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0ytgCwQtcgJZI1oj07CehskAGynRIRvN5IhLnBuBwAnBigQDaMXCtngRTv Vwmr1OiTAht6qLhFiJzE7dVgWU1Po20pvdbf+WZDB4tRe978sbHRdG/VYXpmCY4w dMiKBXH617DePeJfqmc7Ww06S2Zf9Dw0DI4KuiftL7DWhHuQb00kvBSioW3SnRsE X18oC2QanzBO2FV29jgJQ9SVdAkrYo8g+bo1mada/iLLNCNwWiD1FJGkp2eLmCXZ TtqAHLl7ohyTE954EkYcr3zECSZHMVwVA0D55lPjIyqJ91I8ufkWwVWNedbZvA96 0UAP2I7XBt3yFeHn5JiUTSootbMCAwEAAaOCAfswggH3MB0GA1UdDgQWBBS/WNaw VnD5j+dYGJX3vru3FDiRfTAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBgAYIKwYBBQUHAQsEdDByMHAGCCsGAQUFBzALhmRyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMTM5Mzgucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGXngQwDQYJKoZIhvcNAQELBQADggEBAIl5E5VEogT1LKC0rBpGGQbOFCMd lqqOk5ysoIQ8acyFMt2zdggF+VUjPy7qsqoGx7v2a0BbTdN78C2OKA9mf6kSpmyT mm5nV/E23SrErG+O5qkzf0y/rmZebBQW3l9qoAAkq3qx9TB7ZkMHLXTMJlBZ/5rQ ciBgJj++NjWrx0fHxpj0jV7hbsfgfykK2E0j6oBQ29UczXi8qzZRHRFJhZDrkKtP +/DjJjwJjk7tkhaalwO57hoji7AFXBNpx6Is2pfYWH5q5e0fJcK4Lb7ZJdCDrR6l jzGbkWABbw0TXzSDYDu25WPljN42ADsHGXHRkYOuHiRYZBqKnvExmkPFxsw= -----END CERTIFICATE-----Generated at Tue May 5 14:55:44 2026 by rpki-client