$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa File: 3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa (raw, json) Hash identifier: UsQcK7u4ovVqhPl6ugCIkTgy2rqWQpA+Gb6/heR8fMQ= Subject key identifier: 87:FD:00:18:91:41:73:67:00:3E:4E:EC:B8:BB:13:AF:4E:73:71:4C Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 38B033717A95EC3DBCEC32AD6DDC9C89250D6857 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa Signing time: Sat 02 May 2026 08:36:21 +0000 ROA not before: Sat 02 May 2026 08:31:21 +0000 ROA not after: Sat 01 May 2027 08:36:21 +0000 asID: 154495 IP address blocks: 151.158.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b0:33:71:7a:95:ec:3d:bc:ec:32:ad:6d:dc:9c:89:25:0d:68:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 08:31:21 2026 GMT Not After : May 1 08:36:21 2027 GMT Subject: CN=87FD001891417367003E4EECB8BB13AF4E73714C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b5:2f:18:38:d2:82:f7:b3:ac:e7:7e:08:02: aa:75:39:f8:a4:2f:07:d8:18:8f:9f:6b:7d:af:6f: 8e:ba:da:15:61:10:0d:8c:39:1a:ab:cc:61:39:66: df:f9:b0:64:6b:7d:28:4c:88:72:18:19:f9:04:16: a1:9f:0d:77:c4:8d:42:7d:98:12:09:f4:85:8c:99: 02:fb:ef:a4:95:a7:5b:50:87:e9:6f:4e:7b:66:89: c6:14:bb:95:f3:0f:18:f4:dd:59:c7:84:01:41:02: 76:0f:70:ef:e1:cd:0d:a3:32:52:c8:6a:06:db:09: 82:7b:47:6b:cd:0a:51:ad:17:68:c5:67:6a:d4:04: 43:4b:a9:14:2f:ba:47:51:3a:73:ab:8f:35:23:ea: 92:e3:98:3e:d6:4f:f4:64:04:9e:52:e7:60:45:21: 0b:0b:0b:e4:af:dd:0c:0e:c3:55:34:40:12:6b:5d: 98:22:92:25:80:aa:6b:ad:d9:15:89:45:a5:28:9d: c8:6c:d5:79:45:0f:bc:33:18:0c:0f:b1:c8:5e:51: 63:a3:a2:4d:9b:2b:d2:eb:5c:f3:f2:44:9a:7a:11: 93:36:fb:b2:20:3e:a9:2f:c4:9d:e2:5a:1a:68:6f: d7:22:7d:d4:5d:9e:76:bb:bb:3e:11:40:ee:e2:73: 20:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:FD:00:18:91:41:73:67:00:3E:4E:EC:B8:BB:13:AF:4E:73:71:4C X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e34322e302f32332d3234203d3e20313534343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.42.0/23 Signature Algorithm: sha256WithRSAEncryption 66:eb:fa:28:6f:11:a2:c9:c1:e9:63:c6:2c:0d:87:b6:dd:d6: c3:cc:ac:06:92:07:85:bf:b2:5b:b9:2f:aa:df:1f:d9:5a:15: 61:ed:cb:60:21:73:4c:e7:d4:56:fa:8b:7a:af:12:2f:67:de: b4:ea:db:ab:e0:9d:b7:cf:88:e8:7b:d8:30:5a:b0:ab:71:ef: f4:3a:59:25:1b:8d:03:b8:fe:4e:40:cf:94:39:77:4d:e6:07: 9a:fb:78:8d:cc:1a:45:71:06:09:7b:1e:6e:1a:c2:27:e3:4a: 31:c0:24:f2:4a:67:11:df:2b:7b:df:24:8b:48:e1:54:61:40: 5c:3f:96:f2:ae:45:ca:e5:80:94:6f:bf:2d:d7:27:cd:29:6b: 20:06:33:f7:52:34:a7:db:ab:0c:c3:71:1c:de:19:ba:cc:81: 98:7a:42:aa:7d:d2:70:ef:dd:0a:05:75:23:23:51:a3:4e:ea: 2f:06:d6:4e:12:c4:93:20:14:b1:64:a9:17:65:e5:10:14:e8: a5:e6:64:9d:46:17:3f:17:d4:45:89:33:18:38:4f:50:db:fd: 64:9e:73:a7:82:f5:d0:d7:ab:9a:17:d8:b1:ef:3c:6c:0d:34: 70:eb:3b:89:2a:aa:ea:32:63:f5:8e:ad:f4:51:04:8a:9e:b4: 9f:40:07:c4 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOLAzcXqV7D287DKtbdyciSUNaFcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA4MzEyMVoX DTI3MDUwMTA4MzYyMVowMzExMC8GA1UEAxMoODdGRDAwMTg5MTQxNzM2NzAwM0U0 RUVDQjhCQjEzQUY0RTczNzE0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMu1Lxg40oL3s6znfggCqnU5+KQvB9gYj59rfa9vjrraFWEQDYw5GqvMYTlm 3/mwZGt9KEyIchgZ+QQWoZ8Nd8SNQn2YEgn0hYyZAvvvpJWnW1CH6W9Oe2aJxhS7 lfMPGPTdWceEAUECdg9w7+HNDaMyUshqBtsJgntHa80KUa0XaMVnatQEQ0upFC+6 R1E6c6uPNSPqkuOYPtZP9GQEnlLnYEUhCwsL5K/dDA7DVTRAEmtdmCKSJYCqa63Z FYlFpSidyGzVeUUPvDMYDA+xyF5RY6OiTZsr0utc8/JEmnoRkzb7siA+qS/EneJa Gmhv1yJ91F2edru7PhFA7uJzIKkCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBSH/QAY kUFzZwA+Tuy4uxOvTnNxTDAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzQzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzNDM0MzkzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZeeKjANBgkqhkiG9w0BAQsFAAOCAQEAZuv6KG8RosnB6WPGLA2Htt3W w8ysBpIHhb+yW7kvqt8f2VoVYe3LYCFzTOfUVvqLeq8SL2fetOrbq+Cdt8+I6HvY MFqwq3Hv9DpZJRuNA7j+TkDPlDl3TeYHmvt4jcwaRXEGCXsebhrCJ+NKMcAk8kpn Ed8re98ki0jhVGFAXD+W8q5FyuWAlG+/LdcnzSlrIAYz91I0p9urDMNxHN4ZusyB mHpCqn3ScO/dCgV1IyNRo07qLwbWThLEkyAUsWSpF2XlEBTopeZknUYXPxfURYkz GDhPUNv9ZJ5zp4L10NermhfYse88bA00cOs7iSqq6jJj9Y6t9FEEip60n0AHxA== -----END CERTIFICATE-----Generated at Tue May 5 14:56:14 2026 by rpki-client