$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153092.roa File: AS153092.roa (raw, json) Hash identifier: RwKZizbFBbJL+JZr6D+shMgx4ql9FGASulJu9VLmmb4= Subject key identifier: A1:B9:9A:24:75:E8:98:2D:04:A1:13:AC:E9:E1:26:01:6F:38:1E:5B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 16A2A36D3EED2F1E9C6835E628811276812829B9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153092.roa Signing time: Wed 01 Oct 2025 08:00:00 +0000 ROA not before: Wed 01 Oct 2025 07:55:00 +0000 ROA not after: Wed 30 Sep 2026 08:00:00 +0000 asID: 153092 IP address blocks: 103.80.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:a2:a3:6d:3e:ed:2f:1e:9c:68:35:e6:28:81:12:76:81:28:29:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 1 07:55:00 2025 GMT Not After : Sep 30 08:00:00 2026 GMT Subject: CN=A1B99A2475E8982D04A113ACE9E126016F381E5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f8:1b:94:23:5e:a1:fc:6f:c6:25:34:6f:3d: ea:d3:85:95:49:79:80:af:f3:1f:d1:18:73:46:22: c6:5a:d8:9f:09:f7:e7:40:7f:19:8a:55:b9:62:53: c6:65:3c:a2:2c:a1:8e:f8:6c:24:35:ab:20:c3:3b: 9e:b1:44:37:cf:fa:ef:5c:89:dd:81:31:ce:a8:fd: be:4b:63:07:eb:6d:ee:42:7f:d5:1f:72:c5:a7:b6: 53:48:6f:05:78:df:f2:bf:32:f3:af:67:74:cc:c7: 07:81:78:9b:21:85:29:3d:d3:a8:59:28:f8:4e:79: c2:c2:86:89:ce:76:cb:26:ff:85:31:aa:5d:77:47: 80:3c:d1:60:0a:40:00:8a:c3:2f:51:26:09:b9:1d: bf:ee:a5:f2:f8:fc:fb:01:1a:10:cf:2e:3a:20:9e: ce:a4:0f:be:f2:90:e2:d1:99:c9:eb:86:e2:57:9e: 91:c5:5c:84:ef:10:7b:9c:82:60:71:ad:0c:4c:ef: bc:95:be:1f:58:87:c4:45:5e:46:6b:c5:bd:bf:51: 91:5c:6d:3e:73:ef:73:dd:95:44:7b:6f:b7:b2:89: b2:5e:af:a2:1e:02:21:45:ba:f8:e1:7a:8b:53:1b: fd:d5:2e:2b:8f:68:0b:19:3d:b2:7c:80:20:c4:a7: 0b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B9:9A:24:75:E8:98:2D:04:A1:13:AC:E9:E1:26:01:6F:38:1E:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.214.0/23 Signature Algorithm: sha256WithRSAEncryption 24:60:d6:be:d2:0c:be:b4:aa:5e:6d:37:13:e3:02:47:b6:b9: d8:83:51:22:6d:4f:4a:7f:a4:8c:d8:8a:1a:fd:01:4c:af:8c: 8c:47:b0:c5:d8:d6:56:08:89:c8:40:db:46:a9:72:6b:fa:3a: 94:17:dd:b3:1e:25:24:02:16:3a:37:ed:03:22:56:aa:b5:ff: ca:6e:e4:9f:70:63:3a:4e:9c:74:5c:53:5b:07:a7:6c:f9:77: cd:fc:54:5e:9e:39:cc:63:8b:28:19:36:70:95:38:4e:0d:16: 15:50:d7:8c:81:9f:bd:08:a7:25:6a:ee:68:48:d6:e1:e6:6a: 4e:f2:74:17:8f:04:50:54:34:b1:b7:d9:a8:32:d4:34:37:ea: ba:44:37:73:22:f4:e8:53:78:dd:0d:2e:8e:86:70:bb:95:b2: 20:fe:a7:9a:5f:69:5f:51:e6:26:5d:2a:d7:e3:a3:26:4c:38: bf:cc:8d:ea:4b:92:5a:7b:ff:d4:e4:96:ed:a3:91:0b:51:d2: 20:21:69:e9:36:2c:7c:b1:02:4e:b3:8b:d4:76:7f:6a:02:3e: ba:b3:ed:1a:43:93:e3:e7:34:ce:be:1b:a7:4a:87:59:46:d4: 6b:49:02:19:dc:c4:88:a5:df:f4:77:2f:74:73:31:be:96:5d: 56:55:de:a0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFqKjbT7tLx6caDXmKIESdoEoKbkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwMTA3NTUwMFoX DTI2MDkzMDA4MDAwMFowMzExMC8GA1UEAxMoQTFCOTlBMjQ3NUU4OTgyRDA0QTEx M0FDRTlFMTI2MDE2RjM4MUU1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOb4G5QjXqH8b8YlNG896tOFlUl5gK/zH9EYc0YixlrYnwn350B/GYpVuWJT xmU8oiyhjvhsJDWrIMM7nrFEN8/671yJ3YExzqj9vktjB+tt7kJ/1R9yxae2U0hv BXjf8r8y869ndMzHB4F4myGFKT3TqFko+E55wsKGic52yyb/hTGqXXdHgDzRYApA AIrDL1EmCbkdv+6l8vj8+wEaEM8uOiCezqQPvvKQ4tGZyeuG4leekcVchO8Qe5yC YHGtDEzvvJW+H1iHxEVeRmvFvb9RkVxtPnPvc92VRHtvt7KJsl6voh4CIUW6+OF6 i1Mb/dUuK49oCxk9snyAIMSnC+kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBShuZok deiYLQShE6zp4SYBbzgeWzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzA5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdQ1jANBgkqhkiG9w0BAQsFAAOCAQEAJGDWvtIMvrSqXm03E+MC R7a52INRIm1PSn+kjNiKGv0BTK+MjEewxdjWVgiJyEDbRqlya/o6lBfdsx4lJAIW OjftAyJWqrX/ym7kn3BjOk6cdFxTWwenbPl3zfxUXp45zGOLKBk2cJU4Tg0WFVDX jIGfvQinJWruaEjW4eZqTvJ0F48EUFQ0sbfZqDLUNDfqukQ3cyL06FN43Q0ujoZw u5WyIP6nml9pX1HmJl0q1+OjJkw4v8yN6kuSWnv/1OSW7aORC1HSICFp6TYsfLEC TrOL1HZ/agI+urPtGkOT4+c0zr4bp0qHWUbUa0kCGdzEiKXf9HcvdHMxvpZdVlXe oA== -----END CERTIFICATE-----Generated at Mon Oct 20 05:56:47 2025 by rpki-client