$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3135302e302f32332d3234203d3e20313430333034.roa File: 3135312e3135382e3135302e302f32332d3234203d3e20313430333034.roa (raw, json) Hash identifier: nKoJx+ps7nbi7qjScdwuergOeJAMrw6Ipvaj9iQKbkE= Subject key identifier: A4:A2:FA:3D:17:E7:FE:E2:DD:DA:1E:E5:10:49:6E:32:57:2E:81:37 Certificate issuer: /CN=A91862140000/serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Certificate serial: 1AC2B52CEF0D75FF9720DEFFCAB00CC71DA3ED54 Authority key identifier: 12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3135302e302f32332d3234203d3e20313430333034.roa Signing time: Tue 07 Apr 2026 07:59:28 +0000 ROA not before: Tue 07 Apr 2026 07:54:28 +0000 ROA not after: Tue 06 Apr 2027 07:59:28 +0000 asID: 140304 IP address blocks: 151.158.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c2:b5:2c:ef:0d:75:ff:97:20:de:ff:ca:b0:0c:c7:1d:a3:ed:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Validity Not Before: Apr 7 07:54:28 2026 GMT Not After : Apr 6 07:59:28 2027 GMT Subject: CN=A4A2FA3D17E7FEE2DDDA1EE510496E32572E8137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:fc:88:23:27:a4:5a:fd:a4:c2:cc:e8:4a: 61:22:c0:37:52:37:7a:00:97:8d:ce:4e:cd:51:11: cb:c8:78:42:fe:5a:ad:bc:cb:af:b3:0d:11:2a:af: 72:68:b2:0e:bd:2e:e2:08:cb:88:47:13:02:ec:d6: 9d:c0:41:47:32:a3:ee:5e:f7:75:00:d5:ab:d0:94: be:7f:45:2c:da:53:0f:a3:93:75:e8:8b:3b:cc:f3: 30:48:b5:69:94:ba:a1:30:dc:98:04:a3:12:d2:b8: 4c:0a:70:e0:81:52:6c:4a:43:fe:47:d3:d0:c4:df: c7:e5:8b:f2:cc:b5:8d:bc:e6:20:1f:27:35:04:23: 7e:7d:0d:9f:3f:c8:d5:ec:fe:4c:07:11:5e:2b:23: 33:75:7e:df:5d:03:95:e3:c7:1a:40:e7:a1:a6:d3: 96:2a:f7:d8:53:46:9d:96:af:1d:46:6b:6f:d7:36: 03:ca:8a:b5:dc:f0:01:80:f2:62:f9:d6:6d:25:ab: 50:5c:fd:25:b1:c8:e1:8a:41:99:1b:2a:26:a0:5f: ee:d7:56:91:3f:ad:fd:de:69:65:3e:f9:20:52:f5: 4f:43:a3:c1:f7:dc:ca:6e:b2:7b:f8:04:44:57:3a: b2:e5:0e:30:ec:b1:93:d8:c1:06:2e:a6:ed:cc:6b: 1e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A2:FA:3D:17:E7:FE:E2:DD:DA:1E:E5:10:49:6E:32:57:2E:81:37 X509v3 Authority Key Identifier: keyid:12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3135302e302f32332d3234203d3e20313430333034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.150.0/23 Signature Algorithm: sha256WithRSAEncryption 32:11:df:1d:58:04:ae:3c:ad:75:ef:ca:9f:68:4d:07:73:29: 81:7b:b1:86:87:69:52:70:6d:a3:c9:37:93:1a:19:81:57:1b: d2:11:0d:f5:0c:6f:86:07:f4:cc:42:bb:36:29:a0:f4:3c:02: 22:00:5c:c7:7a:fb:c9:de:1d:42:92:35:ef:93:a5:62:3b:da: 0b:7b:7d:f4:3c:12:09:d2:70:31:ff:54:c9:01:dc:dc:59:5c: b6:c9:a3:f3:73:ec:f6:24:c9:af:5d:f7:e6:b3:b3:11:46:f0: 4f:3b:7d:08:7f:d1:df:82:2e:70:1b:6b:1f:b6:18:6a:ec:38: 42:b4:28:8b:fd:0d:39:40:40:19:57:ad:a9:01:be:06:57:8a: 04:20:38:f1:dc:1f:84:c6:56:50:6c:48:27:ca:30:64:6c:70: b6:46:4e:de:65:85:18:a5:d1:29:c0:e0:48:a5:a8:cf:37:4f: 14:61:02:91:01:07:80:84:71:aa:26:a3:f2:25:e1:dd:06:ee: be:9a:34:99:ce:24:1d:41:fb:6c:bc:3f:8f:41:06:37:33:b9: 7f:71:29:e5:6e:6c:1f:9b:b8:89:a3:16:a8:67:36:3a:6e:70: 7d:05:b4:be:80:b0:61:8e:c3:1f:56:2c:7d:97:96:06:84:4c: 97:ca:73:f9 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUGsK1LO8Ndf+XIN7/yrAMxx2j7VQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEygxMjM0NUYxMTVB QzRCNjJBNTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBMB4XDTI2MDQwNzA3NTQyOFoX DTI3MDQwNjA3NTkyOFowMzExMC8GA1UEAxMoQTRBMkZBM0QxN0U3RkVFMkREREEx RUU1MTA0OTZFMzI1NzJFODEzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKf8/IgjJ6Ra/aTCzOhKYSLAN1I3egCXjc5OzVERy8h4Qv5arbzLr7MNESqv cmiyDr0u4gjLiEcTAuzWncBBRzKj7l73dQDVq9CUvn9FLNpTD6OTdeiLO8zzMEi1 aZS6oTDcmASjEtK4TApw4IFSbEpD/kfT0MTfx+WL8sy1jbzmIB8nNQQjfn0Nnz/I 1ez+TAcRXisjM3V+310DlePHGkDnoabTlir32FNGnZavHUZrb9c2A8qKtdzwAYDy YvnWbSWrUFz9JbHI4YpBmRsqJqBf7tdWkT+t/d5pZT75IFL1T0Ojwffcym6ye/gE RFc6suUOMOyxk9jBBi6m7cxrHgsCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBSkovo9 F+f+4t3aHuUQSW4yVy6BNzAfBgNVHSMEGDAWgBQSNF8RWsS2KlH1J0xUyB6GRjvQ ujAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMC8xMjM0NUYxMTVBQzRCNjJB NTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CMzIy QTVGNDFENjYxMUUyQTNGMjdGN0M3MkZEMUZGMi9FalJmRVZyRXRpcFI5U2RNVk1n ZWhrWTcwTG8uY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzAvMzEzNTMxMmUz MTM1MzgyZTMxMzUzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzAz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZeeljANBgkqhkiG9w0BAQsFAAOCAQEAMhHfHVgErjytde/K n2hNB3MpgXuxhodpUnBto8k3kxoZgVcb0hEN9Qxvhgf0zEK7Nimg9DwCIgBcx3r7 yd4dQpI175OlYjvaC3t99DwSCdJwMf9UyQHc3Flctsmj83Ps9iTJr1335rOzEUbw Tzt9CH/R34IucBtrH7YYauw4QrQoi/0NOUBAGVetqQG+BleKBCA48dwfhMZWUGxI J8owZGxwtkZO3mWFGKXRKcDgSKWozzdPFGECkQEHgIRxqiaj8iXh3Qbuvpo0mc4k HUH7bLw/j0EGNzO5f3Ep5W5sH5u4iaMWqGc2Om5wfQW0voCwYY7DH1YsfZeWBoRM l8pz+Q== -----END CERTIFICATE-----Generated at Fri Apr 17 14:28:47 2026 by rpki-client