$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa File: 3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa (raw, json) Hash identifier: 52qrDnM09tRZ9PTF92Y51pJWQ24eofPJfXULRl1uZ6c= Subject key identifier: 56:4B:BA:48:8D:BD:B4:31:84:ED:88:8B:70:1D:9A:1B:3A:FF:58:13 Certificate issuer: /CN=A91862140000/serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Certificate serial: 7E82838800BF58866C372BD79E1A6CD14F2C53E6 Authority key identifier: 12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa Signing time: Thu 26 Feb 2026 04:42:01 +0000 ROA not before: Thu 26 Feb 2026 04:37:01 +0000 ROA not after: Thu 25 Feb 2027 04:42:01 +0000 asID: 154523 IP address blocks: 151.158.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 18:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:82:83:88:00:bf:58:86:6c:37:2b:d7:9e:1a:6c:d1:4f:2c:53:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=12345F115AC4B62A51F5274C54C81E86463BD0BA Validity Not Before: Feb 26 04:37:01 2026 GMT Not After : Feb 25 04:42:01 2027 GMT Subject: CN=564BBA488DBDB43184ED888B701D9A1B3AFF5813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:25:de:60:3f:fc:fb:58:2d:f1:44:d9:2f:ab: e1:57:f2:36:9f:1f:53:48:fa:f9:ae:96:42:9f:d0: d9:e5:98:9c:b9:ac:a6:58:46:09:61:61:ab:9f:dc: 76:3a:02:26:62:82:f1:7c:3f:35:eb:fd:fc:8e:f0: 71:44:58:76:0c:8f:61:6c:7b:49:91:63:8c:b1:42: c8:b4:d1:0e:91:41:43:82:69:79:30:78:4a:ea:3c: 13:1b:2c:72:92:bd:59:47:f4:fd:bf:ec:c8:12:c8: 4c:f3:1e:1b:e6:68:48:4a:31:56:37:5c:0f:4e:34: 75:20:ba:75:0b:31:6d:d4:fc:fe:08:24:06:2e:50: bd:2a:d0:d2:44:59:1d:d2:5e:52:14:c0:5c:ac:93: 74:94:3d:e7:2b:9c:f2:7e:de:e1:29:ba:e0:69:b0: 09:34:4f:5f:76:d7:8a:6b:fc:df:68:14:97:29:c4: 7d:de:d1:6e:83:03:f7:77:8c:a8:b0:50:8e:68:27: 8e:09:4a:21:e7:31:57:ea:75:02:51:af:b4:ed:53: 6a:51:83:8c:7b:52:7f:c0:a2:a6:66:73:df:79:c1: 58:a2:c4:93:09:00:2a:eb:00:a3:81:19:bd:36:81: 73:80:e5:8d:41:76:e2:01:91:2a:3a:e5:bd:52:11: 4f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:4B:BA:48:8D:BD:B4:31:84:ED:88:8B:70:1D:9A:1B:3A:FF:58:13 X509v3 Authority Key Identifier: keyid:12:34:5F:11:5A:C4:B6:2A:51:F5:27:4C:54:C8:1E:86:46:3B:D0:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/3135312e3135382e3233362e302f32332d3234203d3e20313534353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.236.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:19:23:66:6d:6f:6c:ba:6b:d3:5f:d6:b7:f8:f2:44:27:11: c6:c6:e2:e8:f9:ef:cd:5d:f0:49:8a:79:70:88:1c:1a:f0:17: ae:b2:5f:97:07:78:1d:87:17:aa:e6:70:86:3e:25:e8:79:5c: e7:d9:01:e9:91:48:d5:52:d7:a4:b4:42:40:8b:28:41:6c:94: e7:4a:b1:cc:b4:5c:10:aa:e3:e6:e2:d3:e6:20:18:d3:18:cf: de:d4:11:23:00:0a:29:53:46:fc:15:f7:69:ce:73:72:08:1f: 40:af:e3:88:6c:ea:a9:45:8e:ff:93:d3:8d:88:8f:a5:7f:b1: 8f:f8:bb:dd:f8:e8:50:ad:3b:64:f1:4f:16:5d:58:b4:0f:17: db:2c:1a:0a:a3:2d:5a:ed:1a:86:d6:95:16:b0:c3:4f:48:ce: 33:f9:be:fb:1e:1d:45:f2:22:09:2d:48:b6:26:af:1c:67:5b: 39:d8:4c:83:1c:e7:06:0a:2e:64:26:91:50:02:40:94:c6:54: 76:f6:aa:5a:8c:17:4f:87:a0:9d:7d:49:b0:21:2a:18:30:de: ba:6f:64:da:79:1f:9d:45:74:c5:88:69:5c:07:72:23:ce:02: ea:66:54:54:7a:f8:37:be:f0:f9:32:ce:d2:a6:f6:0a:14:77: 2f:70:aa:e9 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUfoKDiAC/WIZsNyvXnhps0U8sU+YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEygxMjM0NUYxMTVB QzRCNjJBNTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBMB4XDTI2MDIyNjA0MzcwMVoX DTI3MDIyNTA0NDIwMVowMzExMC8GA1UEAxMoNTY0QkJBNDg4REJEQjQzMTg0RUQ4 ODhCNzAxRDlBMUIzQUZGNTgxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOol3mA//PtYLfFE2S+r4VfyNp8fU0j6+a6WQp/Q2eWYnLmsplhGCWFhq5/c djoCJmKC8Xw/Nev9/I7wcURYdgyPYWx7SZFjjLFCyLTRDpFBQ4JpeTB4Suo8Exss cpK9WUf0/b/syBLITPMeG+ZoSEoxVjdcD040dSC6dQsxbdT8/ggkBi5QvSrQ0kRZ HdJeUhTAXKyTdJQ95yuc8n7e4Sm64GmwCTRPX3bXimv832gUlynEfd7RboMD93eM qLBQjmgnjglKIecxV+p1AlGvtO1TalGDjHtSf8CipmZz33nBWKLEkwkAKusAo4EZ vTaBc4DljUF24gGRKjrlvVIRT/0CAwEAAaOCAgMwggH/MB0GA1UdDgQWBBRWS7pI jb20MYTtiItwHZobOv9YEzAfBgNVHSMEGDAWgBQSNF8RWsS2KlH1J0xUyB6GRjvQ ujAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMC8xMjM0NUYxMTVBQzRCNjJB NTFGNTI3NEM1NEM4MUU4NjQ2M0JEMEJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CMzIy QTVGNDFENjYxMUUyQTNGMjdGN0M3MkZEMUZGMi9FalJmRVZyRXRpcFI5U2RNVk1n ZWhrWTcwTG8uY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzAvMzEzNTMxMmUz MTM1MzgyZTMyMzMzNjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzNDM1MzIz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZee7DANBgkqhkiG9w0BAQsFAAOCAQEAXhkjZm1vbLpr01/W t/jyRCcRxsbi6PnvzV3wSYp5cIgcGvAXrrJflwd4HYcXquZwhj4l6Hlc59kB6ZFI 1VLXpLRCQIsoQWyU50qxzLRcEKrj5uLT5iAY0xjP3tQRIwAKKVNG/BX3ac5zcggf QK/jiGzqqUWO/5PTjYiPpX+xj/i73fjoUK07ZPFPFl1YtA8X2ywaCqMtWu0ahtaV FrDDT0jOM/m++x4dRfIiCS1ItiavHGdbOdhMgxznBgouZCaRUAJAlMZUdvaqWowX T4egnX1JsCEqGDDeum9k2nkfnUV0xYhpXAdyI84C6mZUVHr4N77w+TLO0qb2ChR3 L3Cq6Q== -----END CERTIFICATE-----Generated at Sun Mar 1 23:18:49 2026 by rpki-client