$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3230332e302f32342d3234203d3e20313336373833.roa File: 3135312e3135382e3230332e302f32342d3234203d3e20313336373833.roa (raw, json) Hash identifier: NPFmuPD5p1q4xsC0OUpbrvvz76wi/OaRGYsWFjn+/80= Subject key identifier: 60:DB:EE:28:DD:EB:72:E8:C0:23:69:74:79:E2:21:62:83:CA:E9:FB Certificate issuer: /CN=A91862140000/serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Certificate serial: 6CFFB15FE16FDCF29278B3A54E7A9FC3D2C3EF2C Authority key identifier: 12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3230332e302f32342d3234203d3e20313336373833.roa Signing time: Tue 24 Feb 2026 06:24:17 +0000 ROA not before: Tue 24 Feb 2026 06:19:17 +0000 ROA not after: Tue 23 Feb 2027 06:24:17 +0000 asID: 136783 IP address blocks: 151.158.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 18:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ff:b1:5f:e1:6f:dc:f2:92:78:b3:a5:4e:7a:9f:c3:d2:c3:ef:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Validity Not Before: Feb 24 06:19:17 2026 GMT Not After : Feb 23 06:24:17 2027 GMT Subject: CN=60DBEE28DDEB72E8C023697479E2216283CAE9FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d0:40:5f:83:d5:ed:17:91:5c:95:64:97:b7: fb:df:94:3d:6d:24:bb:2a:d3:5f:64:84:71:0b:55: d6:a0:73:15:86:4d:49:96:01:4c:7e:75:57:a1:05: 30:22:5a:04:fd:59:fa:3e:00:c9:05:bf:eb:ad:f6: 08:e5:53:d4:cc:38:2e:ed:5f:a9:4a:d7:2a:5a:bc: 73:5f:39:69:e6:b5:7b:15:b4:26:1f:ca:c6:44:90: 86:be:b6:e2:86:57:4f:2a:97:61:a2:fe:be:ca:b5: dd:e8:59:8f:66:ca:33:70:33:94:04:1a:af:1f:d3: 10:e6:57:c6:53:18:03:0b:61:0a:26:85:e9:ed:37: 95:65:8b:1c:90:e3:86:a3:22:0d:ac:3b:2f:8b:28: 3c:06:f6:30:e9:d4:ea:36:ba:90:17:b8:3f:c4:52: 5c:c0:f6:d8:19:2e:ca:db:22:23:12:79:53:b1:a3: 81:97:5f:96:29:a7:11:32:e9:ce:0e:c0:1e:18:2c: 33:8b:f8:2c:a0:70:2a:3e:9b:9e:13:3a:81:c0:15: 75:d2:b9:07:f0:33:91:a4:1f:c2:3d:d2:7b:44:d3: c9:a1:3d:2e:3e:17:ba:c9:b8:a8:bb:2e:d4:65:ed: 00:3d:35:69:3b:ea:db:75:94:d6:fe:0f:32:25:fd: ac:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:DB:EE:28:DD:EB:72:E8:C0:23:69:74:79:E2:21:62:83:CA:E9:FB X509v3 Authority Key Identifier: keyid:12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3230332e302f32342d3234203d3e20313336373833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.203.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:bb:ef:6d:f4:c5:29:4d:07:9c:60:60:73:3b:ef:d9:6c:02: cf:36:e5:77:18:ed:0b:b2:82:6c:e3:1f:02:6b:ed:f2:f2:35: dd:19:cb:cb:8a:43:81:08:03:1f:8d:96:0a:84:d9:4b:6c:bc: b6:0d:47:f0:05:40:37:4c:46:b6:6b:58:0f:ef:74:9f:cb:45: ae:8d:e0:44:1e:64:ba:5b:a0:df:67:fb:9d:5e:6f:48:a7:2f: c0:24:5b:10:fd:c2:e3:e1:f9:74:ae:63:22:11:a1:64:f0:c6: cc:59:2e:74:51:18:88:a3:15:5c:1f:e7:57:cf:82:ee:3a:d3: 78:41:fa:65:8c:2c:1f:66:8c:24:cd:fe:34:cc:a6:73:7b:16: 0d:8e:ab:26:16:b4:e8:c7:79:65:e2:7f:cc:25:f8:03:9b:41: 46:17:bd:61:51:fa:c2:46:57:f9:51:93:85:ae:66:a8:fc:2a: f6:6b:e6:ce:67:0c:a1:19:71:0c:a6:9d:26:db:13:c1:0c:a5: d1:8d:1d:78:ab:22:94:f9:a8:f2:5d:e8:db:59:5d:c4:9b:07: 42:00:24:4c:49:bb:48:d7:73:ca:cf:44:50:d2:63:f9:99:e4: 71:0b:48:4f:a7:ac:81:58:de:1e:2f:62:84:e6:91:7c:d1:28: 3f:c6:b9:5c -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUbP+xX+Fv3PKSeLOlTnqfw9LD7ywwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEygxMjM0NUYxMTVB QzRCNjJBNTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBMB4XDTI2MDIyNDA2MTkxN1oX DTI3MDIyMzA2MjQxN1owMzExMC8GA1UEAxMoNjBEQkVFMjhEREVCNzJFOEMwMjM2 OTc0NzlFMjIxNjI4M0NBRTlGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOHQQF+D1e0XkVyVZJe3+9+UPW0kuyrTX2SEcQtV1qBzFYZNSZYBTH51V6EF MCJaBP1Z+j4AyQW/6632COVT1Mw4Lu1fqUrXKlq8c185aea1exW0Jh/KxkSQhr62 4oZXTyqXYaL+vsq13ehZj2bKM3AzlAQarx/TEOZXxlMYAwthCiaF6e03lWWLHJDj hqMiDaw7L4soPAb2MOnU6ja6kBe4P8RSXMD22BkuytsiIxJ5U7GjgZdflimnETLp zg7AHhgsM4v4LKBwKj6bnhM6gcAVddK5B/AzkaQfwj3Se0TTyaE9Lj4Xusm4qLsu 1GXtAD01aTvq23WU1v4PMiX9rJECAwEAAaOCAgMwggH/MB0GA1UdDgQWBBRg2+4o 3ety6MAjaXR54iFig8rp+zAfBgNVHSMEGDAWgBQSNF8RWsS2KlH1J0xUyB6GRjvQ ujAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMC8xMjM0NUYxMTVBQzRCNjJB NTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CMzIy QTVGNDFENjYxMUUyQTNGMjdGN0M3MkZEMUZGMi9FalJmRVZyRXRpcFI5U2RNVk1n ZWhrWTcwTG8uY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzAvMzEzNTMxMmUz MTM1MzgyZTMyMzAzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3Mzgz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJeeyzANBgkqhkiG9w0BAQsFAAOCAQEAirvvbfTFKU0HnGBg czvv2WwCzzbldxjtC7KCbOMfAmvt8vI13RnLy4pDgQgDH42WCoTZS2y8tg1H8AVA N0xGtmtYD+90n8tFro3gRB5kulug32f7nV5vSKcvwCRbEP3C4+H5dK5jIhGhZPDG zFkudFEYiKMVXB/nV8+C7jrTeEH6ZYwsH2aMJM3+NMymc3sWDY6rJha06Md5ZeJ/ zCX4A5tBRhe9YVH6wkZX+VGTha5mqPwq9mvmzmcMoRlxDKadJtsTwQyl0Y0deKsi lPmo8l3o21ldxJsHQgAkTEm7SNdzys9EUNJj+ZnkcQtIT6esgVjeHi9ihOaRfNEo P8a5XA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:05:25 2026 by rpki-client