$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e35362e302f32332d3234203d3e20313432323538.roa File: 3135312e3135382e35362e302f32332d3234203d3e20313432323538.roa (raw, json) Hash identifier: EUF8wkkH1dA0Jks3/L6nFJjsS984Dy7zYvHKOYevBQw= Subject key identifier: FB:68:80:9B:59:F4:2E:22:7A:1B:BF:76:58:63:52:D0:4A:0C:87:2C Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 60E4D402449CE8AD6BFBC32D73A2C9DA8D109F8C Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e35362e302f32332d3234203d3e20313432323538.roa Signing time: Sat 02 May 2026 09:23:35 +0000 ROA not before: Sat 02 May 2026 09:18:35 +0000 ROA not after: Sat 01 May 2027 09:23:35 +0000 asID: 142258 IP address blocks: 151.158.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:e4:d4:02:44:9c:e8:ad:6b:fb:c3:2d:73:a2:c9:da:8d:10:9f:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:35 2026 GMT Not After : May 1 09:23:35 2027 GMT Subject: CN=FB68809B59F42E227A1BBF76586352D04A0C872C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d4:21:7b:a0:fb:3e:39:ce:52:5b:6f:ac:38: 34:e9:ff:d2:76:00:62:ad:41:98:f4:fc:8d:12:43: b7:1c:6c:5b:ef:65:d7:1c:b9:e3:e6:c1:0a:5a:c3: ec:35:6b:26:de:db:6f:97:fd:6e:88:f2:c0:db:30: 87:19:aa:b7:36:3f:f1:cf:51:75:99:27:ed:91:bd: de:04:65:a2:74:c0:df:39:a1:4a:d3:99:50:b8:bd: 82:65:cc:9f:b1:2f:85:fb:f8:f3:17:8d:18:23:85: d0:3b:eb:71:fb:d0:a3:81:59:79:21:1c:d1:aa:21: 5f:5c:ef:b5:0c:5f:b0:21:72:cf:db:4e:85:0b:34: 7a:4c:23:dd:cb:e0:25:28:47:51:18:a1:77:7c:77: 98:73:e8:3f:ce:42:1f:f2:47:c7:0c:ca:50:bc:fd: e0:a2:0a:9e:5d:1b:86:5d:2a:f1:3c:94:7d:75:79: 1f:24:47:b2:83:3c:42:d4:1b:be:96:99:98:69:43: 26:b3:de:0a:8d:ae:34:95:9d:f1:7f:fa:ad:0d:3a: ea:c1:c3:eb:db:71:06:51:40:69:de:2d:9a:0e:d6: 73:ec:73:c0:35:0a:6e:67:f3:32:e3:ca:b7:4f:91: 46:c0:13:28:7c:82:e0:d4:59:d1:c0:58:bc:39:b4: a7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:68:80:9B:59:F4:2E:22:7A:1B:BF:76:58:63:52:D0:4A:0C:87:2C X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e35362e302f32332d3234203d3e20313432323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.56.0/23 Signature Algorithm: sha256WithRSAEncryption 01:fc:cd:9c:07:cc:18:f4:18:75:84:71:db:53:09:20:30:00: 44:44:83:4f:b7:f3:35:8d:df:05:3b:04:6c:5b:3c:f0:b4:e1: 52:0e:22:fe:63:61:8d:2a:58:6b:1b:f8:c8:85:67:82:ef:86: 68:09:9e:f8:7b:e7:26:34:04:5e:be:a8:74:4e:20:28:e3:90: 8b:1f:c1:15:26:32:0c:7f:bb:c3:68:6b:10:b4:4e:84:47:7d: c2:1b:e6:d1:48:6a:7e:9e:19:27:be:1d:4a:f0:a4:f9:1d:9f: 46:0d:74:91:99:57:c0:0d:4e:55:04:c1:87:f8:cf:ff:d3:a2: 29:d0:d4:af:d9:fd:14:12:c3:f8:de:16:e2:a9:ae:7d:9a:18: 8e:61:2b:a8:46:f8:c5:9a:5b:36:c0:bb:79:72:34:b0:80:9b: de:29:67:bd:07:56:07:e0:8b:35:fe:5d:9f:a9:e5:8f:7d:aa: 91:d5:da:4d:1b:40:95:0e:78:a1:79:74:bd:fe:c2:01:98:fa: 26:01:61:cb:47:c0:61:ab:b9:6e:c8:45:5b:92:48:c4:e5:c5: 1b:79:1b:4e:16:5b:1e:a9:47:e8:93:82:81:fd:55:f9:93:7c: 92:b7:39:8e:e9:54:74:3d:df:e5:4b:c7:44:ec:18:83:56:dd: 26:7c:67:cf -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYOTUAkSc6K1r+8Mtc6LJ2o0Qn4wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzNVoX DTI3MDUwMTA5MjMzNVowMzExMC8GA1UEAxMoRkI2ODgwOUI1OUY0MkUyMjdBMUJC Rjc2NTg2MzUyRDA0QTBDODcyQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzUIXug+z45zlJbb6w4NOn/0nYAYq1BmPT8jRJDtxxsW+9l1xy54+bBClrD 7DVrJt7bb5f9bojywNswhxmqtzY/8c9RdZkn7ZG93gRlonTA3zmhStOZULi9gmXM n7Evhfv48xeNGCOF0DvrcfvQo4FZeSEc0aohX1zvtQxfsCFyz9tOhQs0ekwj3cvg JShHURihd3x3mHPoP85CH/JHxwzKULz94KIKnl0bhl0q8TyUfXV5HyRHsoM8QtQb vpaZmGlDJrPeCo2uNJWd8X/6rQ066sHD69txBlFAad4tmg7Wc+xzwDUKbmfzMuPK t0+RRsATKHyC4NRZ0cBYvDm0p1MCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBT7aICb WfQuInobv3ZYY1LQSgyHLDAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzUzNjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzQzMjMyMzUzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZeeODANBgkqhkiG9w0BAQsFAAOCAQEAAfzNnAfMGPQYdYRx21MJIDAA RESDT7fzNY3fBTsEbFs88LThUg4i/mNhjSpYaxv4yIVngu+GaAme+HvnJjQEXr6o dE4gKOOQix/BFSYyDH+7w2hrELROhEd9whvm0Uhqfp4ZJ74dSvCk+R2fRg10kZlX wA1OVQTBh/jP/9OiKdDUr9n9FBLD+N4W4qmufZoYjmErqEb4xZpbNsC7eXI0sICb 3ilnvQdWB+CLNf5dn6nlj32qkdXaTRtAlQ54oXl0vf7CAZj6JgFhy0fAYau5bshF W5JIxOXFG3kbThZbHqlH6JOCgf1V+ZN8krc5julUdD3f5UvHROwYg1bdJnxnzw== -----END CERTIFICATE-----Generated at Tue May 5 14:56:15 2026 by rpki-client