$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152763.roa File: AS152763.roa (raw, json) Hash identifier: 1aD7/OET+joejVd+yRfY7WpUMsn57QMVXP9S+hC6Ct8= Subject key identifier: A5:E3:9E:A5:0F:4B:78:FA:CE:C0:C6:1F:26:31:1E:0A:6C:9B:73:7E Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 02E567A43967A09CB695A190D748AE13149493C8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152763.roa Signing time: Fri 13 Mar 2026 05:00:01 +0000 ROA not before: Fri 13 Mar 2026 04:55:01 +0000 ROA not after: Fri 12 Mar 2027 05:00:01 +0000 asID: 152763 IP address blocks: 160.19.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:e5:67:a4:39:67:a0:9c:b6:95:a1:90:d7:48:ae:13:14:94:93:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 13 04:55:01 2026 GMT Not After : Mar 12 05:00:01 2027 GMT Subject: CN=A5E39EA50F4B78FACEC0C61F26311E0A6C9B737E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:22:f1:58:3c:0b:fa:e5:6a:dd:ae:31:0a:1d: 17:a9:c2:19:e0:cc:83:ba:fe:7c:33:f6:c3:ec:d5: b1:97:cb:bb:55:9d:4c:fc:ec:f3:d4:cf:e9:b5:a0: 46:60:c9:bc:ee:50:de:9e:c8:9a:0d:c8:f8:a7:83: 7b:f1:53:0b:4a:42:39:b4:75:ed:0f:9a:34:8f:89: ad:d0:c4:24:13:5b:af:c1:39:14:f3:c4:d5:85:ee: 43:37:b2:30:45:20:f7:a0:fa:19:c0:f5:4f:f6:f5: 06:35:23:60:d7:78:36:8c:14:fa:5a:5d:20:10:54: 61:68:80:23:2b:97:99:d2:c0:31:4e:6a:3f:2f:da: 37:13:ad:09:ed:1d:11:ad:44:42:ba:8a:56:3d:dc: be:83:8d:a9:87:73:de:7f:da:61:92:00:a7:98:67: f6:38:46:d2:20:97:f0:cc:f8:9d:c6:dd:e8:63:94: aa:61:de:08:79:17:25:fd:4b:d1:55:92:12:4b:10: b4:2d:6a:47:05:a0:a8:d6:02:51:17:41:50:4b:1f: 86:45:e7:ac:82:35:b8:46:5d:4c:48:61:a6:c2:36: b5:28:14:dc:05:7e:f0:8e:6f:db:7b:99:da:be:e5: bb:05:43:bf:4b:32:03:9f:0d:7f:16:25:8d:8c:ae: 29:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E3:9E:A5:0F:4B:78:FA:CE:C0:C6:1F:26:31:1E:0A:6C:9B:73:7E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152763.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.228.0/23 Signature Algorithm: sha256WithRSAEncryption 58:4c:d6:cd:54:ef:05:0c:39:a1:91:65:95:0b:0c:ea:08:90: cf:f9:00:a3:e6:02:28:e8:89:d0:59:e4:6d:c1:01:56:69:b7: ef:78:ff:ea:b3:76:ed:d3:0d:c2:3b:e3:92:af:7c:97:cb:45: 0e:fc:5e:fb:76:af:8f:a1:c4:59:01:84:2f:d8:73:7c:4c:e9: 8a:b9:cd:38:05:4a:b8:14:a0:18:0d:10:cc:04:c2:1b:48:d8: d5:08:ce:13:e9:d0:b4:4f:f5:1b:e1:be:16:eb:93:cd:2b:d7: b0:70:f8:fb:7d:57:36:5d:3c:b1:4d:05:db:cf:30:7f:2e:c0: 24:74:b5:ab:e2:6f:c8:68:85:73:d9:a6:57:9b:84:b9:60:25: 61:58:58:11:58:27:cb:58:77:fe:d9:81:2a:19:c0:6c:db:65: 12:eb:48:db:b0:0b:8d:37:f6:2a:4e:b5:03:78:03:ea:f6:bf: 3d:94:a7:d6:69:52:fb:32:77:c1:69:d3:80:d0:25:f1:26:3a: 08:04:2d:83:2a:bc:2d:2a:03:f1:0e:ba:e2:5b:45:d4:57:41: f3:12:92:86:e4:0b:aa:07:4e:bb:74:a6:22:32:ca:0a:8f:82: 5b:e9:3b:1b:e0:4f:06:63:4f:fc:a4:22:08:01:79:7f:42:a6: 13:8b:a8:73 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAuVnpDlnoJy2laGQ10iuExSUk8gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDMxMzA0NTUwMVoX DTI3MDMxMjA1MDAwMVowMzExMC8GA1UEAxMoQTVFMzlFQTUwRjRCNzhGQUNFQzBD NjFGMjYzMTFFMEE2QzlCNzM3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALMi8Vg8C/rlat2uMQodF6nCGeDMg7r+fDP2w+zVsZfLu1WdTPzs89TP6bWg RmDJvO5Q3p7Img3I+KeDe/FTC0pCObR17Q+aNI+JrdDEJBNbr8E5FPPE1YXuQzey MEUg96D6GcD1T/b1BjUjYNd4NowU+lpdIBBUYWiAIyuXmdLAMU5qPy/aNxOtCe0d Ea1EQrqKVj3cvoONqYdz3n/aYZIAp5hn9jhG0iCX8Mz4ncbd6GOUqmHeCHkXJf1L 0VWSEksQtC1qRwWgqNYCURdBUEsfhkXnrII1uEZdTEhhpsI2tSgU3AV+8I5v23uZ 2r7luwVDv0syA58NfxYljYyuKW8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSl456l D0t4+s7Axh8mMR4KbJtzfjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1Mjc2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaAT5DANBgkqhkiG9w0BAQsFAAOCAQEAWEzWzVTvBQw5oZFllQsM 6giQz/kAo+YCKOiJ0FnkbcEBVmm373j/6rN27dMNwjvjkq98l8tFDvxe+3avj6HE WQGEL9hzfEzpirnNOAVKuBSgGA0QzATCG0jY1QjOE+nQtE/1G+G+FuuTzSvXsHD4 +31XNl08sU0F288wfy7AJHS1q+JvyGiFc9mmV5uEuWAlYVhYEVgny1h3/tmBKhnA bNtlEutI27ALjTf2Kk61A3gD6va/PZSn1mlS+zJ3wWnTgNAl8SY6CAQtgyq8LSoD 8Q664ltF1FdB8xKShuQLqgdOu3SmIjLKCo+CW+k7G+BPBmNP/KQiCAF5f0KmE4uo cw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:47:03 2026 by rpki-client