$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e38342e302f32332d3234203d3e20313534343737.roa File: 3135312e3135382e38342e302f32332d3234203d3e20313534343737.roa (raw, json) Hash identifier: nFPAkE+svtsToofPAiO76tMWQzs3OJa8mWKyMX15gsc= Subject key identifier: A2:4B:BD:13:86:30:4B:DE:98:29:31:49:83:21:C3:1C:A0:43:81:33 Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 74B38F19D53A8FF253EFFE4DAF8D5C24AC2BEDD2 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e38342e302f32332d3234203d3e20313534343737.roa Signing time: Sat 02 May 2026 09:23:32 +0000 ROA not before: Sat 02 May 2026 09:18:32 +0000 ROA not after: Sat 01 May 2027 09:23:32 +0000 asID: 154477 IP address blocks: 151.158.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 14:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b3:8f:19:d5:3a:8f:f2:53:ef:fe:4d:af:8d:5c:24:ac:2b:ed:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 09:18:32 2026 GMT Not After : May 1 09:23:32 2027 GMT Subject: CN=A24BBD1386304BDE982931498321C31CA0438133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:36:1c:3b:c0:d3:74:18:1c:28:2b:58:3b:ad: 74:e5:85:3b:85:a7:56:ed:51:9c:75:d0:db:c3:62: d7:13:2b:22:eb:cd:4c:0b:40:2d:be:3e:11:3b:56: 9e:4f:33:39:14:73:8e:06:73:28:b0:0a:35:0f:51: f0:fe:c4:95:c5:f5:90:c2:e2:28:ec:e8:56:67:fb: 58:72:22:f8:ed:92:76:ca:da:0d:52:92:6b:f0:46: e7:cf:4b:b8:b6:a7:c4:6a:94:80:57:20:74:7f:e1: ea:8a:1f:2d:a3:e3:50:73:2b:83:c8:1e:9f:e2:a3: dc:e0:0c:d5:14:82:57:f4:93:38:ca:ed:dd:3c:95: 76:00:b6:41:0b:e3:7f:85:d8:b8:4f:d3:d6:ba:5d: 8b:16:e0:a4:a6:e6:fe:e3:45:37:73:bf:6d:30:18: 99:96:56:c4:02:73:2e:5a:35:42:2a:d6:7a:57:6d: 5b:9c:43:9e:ef:b7:2f:cb:e7:a5:20:a1:19:26:4c: 31:ef:52:7b:b5:3c:b9:d1:ce:a6:55:6e:2a:bc:55: a1:fb:87:d6:b2:99:a5:b9:6e:4d:4e:80:5b:eb:c5: 0f:4c:d0:fd:5b:64:d2:05:71:d9:c3:8e:f1:97:73: f0:da:d9:8b:96:8c:75:c5:b1:91:2c:57:27:38:e8: 5c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4B:BD:13:86:30:4B:DE:98:29:31:49:83:21:C3:1C:A0:43:81:33 X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/3135312e3135382e38342e302f32332d3234203d3e20313534343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.84.0/23 Signature Algorithm: sha256WithRSAEncryption 87:d3:c7:9b:46:7f:a5:36:66:1a:29:85:0a:91:5f:b0:3e:5b: 35:6b:23:f4:a0:73:13:76:d9:30:09:12:45:67:b5:0b:db:c5: a8:fd:0a:cc:82:0a:cc:17:b0:27:99:98:fe:d6:e9:2c:6d:a7: 83:89:ec:20:4f:a0:a2:e3:0f:33:d9:d1:78:14:b3:81:74:82: f6:58:97:f5:61:2c:b8:1d:b8:7f:0f:db:72:87:8c:00:d6:bd: 19:4c:55:5d:99:4d:67:25:5d:75:d1:f2:55:92:ed:a4:82:33: 73:65:7d:32:6f:71:77:f0:e8:b4:53:2f:37:56:db:7d:07:86: 50:ba:e1:3d:dd:09:9c:16:83:d7:1a:49:33:2d:80:e4:fd:7b: 31:dc:e5:78:72:c8:4f:2e:a6:62:b3:31:03:73:02:19:28:73: 84:e7:6c:41:b8:d1:39:eb:06:66:1a:f7:e7:88:52:0a:ca:2d: 57:63:d8:2c:a3:e4:49:62:59:60:7d:9a:fc:c2:e9:1e:0d:98: 2f:41:7c:02:6e:d6:e7:7f:e9:47:6b:3b:c4:2f:87:13:cf:15: 7b:5e:e3:33:50:a0:f4:1c:28:1e:2a:02:8d:1f:b2:a3:4d:e5: d0:52:a4:c1:51:a6:ae:86:81:1f:05:27:76:7a:89:3b:fb:2f: 18:e0:93:5b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdLOPGdU6j/JT7/5Nr41cJKwr7dIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA5MTgzMloX DTI3MDUwMTA5MjMzMlowMzExMC8GA1UEAxMoQTI0QkJEMTM4NjMwNEJERTk4Mjkz MTQ5ODMyMUMzMUNBMDQzODEzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKE2HDvA03QYHCgrWDutdOWFO4WnVu1RnHXQ28Ni1xMrIuvNTAtALb4+ETtW nk8zORRzjgZzKLAKNQ9R8P7ElcX1kMLiKOzoVmf7WHIi+O2SdsraDVKSa/BG589L uLanxGqUgFcgdH/h6oofLaPjUHMrg8gen+Kj3OAM1RSCV/STOMrt3TyVdgC2QQvj f4XYuE/T1rpdixbgpKbm/uNFN3O/bTAYmZZWxAJzLlo1QirWeldtW5xDnu+3L8vn pSChGSZMMe9Se7U8udHOplVuKrxVofuH1rKZpbluTU6AW+vFD0zQ/Vtk0gVx2cOO 8Zdz8NrZi5aMdcWxkSxXJzjoXNsCAwEAAaOCAf0wggH5MB0GA1UdDgQWBBSiS70T hjBL3pgpMUmDIcMcoEOBMzAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zMTM1MzEyZTMxMzUz ODJlMzgzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzNDM0MzczNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZeeVDANBgkqhkiG9w0BAQsFAAOCAQEAh9PHm0Z/pTZmGimFCpFfsD5b NWsj9KBzE3bZMAkSRWe1C9vFqP0KzIIKzBewJ5mY/tbpLG2ng4nsIE+gouMPM9nR eBSzgXSC9liX9WEsuB24fw/bcoeMANa9GUxVXZlNZyVdddHyVZLtpIIzc2V9Mm9x d/DotFMvN1bbfQeGULrhPd0JnBaD1xpJMy2A5P17MdzleHLITy6mYrMxA3MCGShz hOdsQbjROesGZhr354hSCsotV2PYLKPkSWJZYH2a/MLpHg2YL0F8Am7W53/pR2s7 xC+HE88Ve17jM1Cg9BwoHioCjR+yo03l0FKkwVGmroaBHwUndnqJO/svGOCTWw== -----END CERTIFICATE-----Generated at Tue May 5 14:56:02 2026 by rpki-client