$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153327.roa File: AS153327.roa (raw, json) Hash identifier: T10iTYHy3xPz6ngeJ9DIWV6szGml6XPWQb8b/ORaPmE= Subject key identifier: 79:A9:57:B1:82:E1:E4:AB:BC:BF:30:4F:99:E3:23:A8:DD:F2:0D:58 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E589BC0DB7A1AF4012A0CF11A0162D52559A1D3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153327.roa Signing time: Tue 07 Oct 2025 07:00:00 +0000 ROA not before: Tue 07 Oct 2025 06:55:00 +0000 ROA not after: Tue 06 Oct 2026 07:00:00 +0000 asID: 153327 IP address blocks: 103.251.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:58:9b:c0:db:7a:1a:f4:01:2a:0c:f1:1a:01:62:d5:25:59:a1:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 7 06:55:00 2025 GMT Not After : Oct 6 07:00:00 2026 GMT Subject: CN=79A957B182E1E4ABBCBF304F99E323A8DDF20D58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:96:aa:f4:a8:91:c9:3e:ad:53:df:02:b7:46: 6d:b4:88:2a:65:2b:1d:df:3d:56:9e:66:3e:61:94: 06:51:68:9c:3a:07:64:31:ba:f8:f1:cd:2d:76:c0: 29:90:a5:5c:a6:23:6e:da:16:7d:2f:21:c6:1d:d8: 63:1f:ba:bb:d2:7f:ac:a8:5b:3d:72:9a:2e:63:19: 51:df:ff:95:06:e8:2b:eb:3b:b0:60:94:6e:be:fa: 36:a6:d6:8d:1d:00:54:13:07:27:06:39:a6:25:00: 09:d2:e7:a4:7a:fc:76:46:1e:a5:7a:66:8c:8a:4c: e7:79:0a:ae:2c:c2:6a:e4:ea:f4:a5:af:8a:86:76: a7:5f:df:e5:35:4e:e4:87:09:9f:2b:1d:d3:bc:ca: d0:94:2d:26:f7:53:4d:33:44:64:ff:a3:f6:fa:a9: bd:37:a7:58:70:eb:d5:06:5b:1a:5b:17:b5:f2:9b: 01:12:07:82:19:b2:42:b3:e8:ae:f3:21:3c:6d:30: 62:ba:63:14:ef:69:9a:d4:9b:6b:33:84:60:22:63: 54:13:68:0b:63:37:1d:ac:3d:7f:8c:5e:42:60:87: c8:d2:c8:ae:43:4c:38:8c:0d:e3:9e:72:ed:95:cc: e7:eb:44:3c:4f:ed:db:f2:c7:43:3d:ba:c8:d9:a0: f2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A9:57:B1:82:E1:E4:AB:BC:BF:30:4F:99:E3:23:A8:DD:F2:0D:58 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153327.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.251.152.0/23 Signature Algorithm: sha256WithRSAEncryption 01:15:a3:05:91:50:fb:35:7e:26:98:a4:8b:60:ab:a9:65:68: 1a:94:70:45:e8:c9:4c:60:d0:60:54:b4:49:5c:92:36:04:9d: e3:62:59:54:7d:df:d9:76:62:9b:50:a2:8d:31:d5:1f:24:77: b0:48:05:80:94:2c:a2:16:fb:5c:80:b9:b9:9b:85:2f:df:fe: 66:3b:13:45:c4:e3:df:6a:cb:d6:f5:93:64:04:7c:51:82:28: df:f9:ce:9d:65:9f:c7:82:24:21:6d:93:4a:62:ac:27:5a:52: d1:85:5d:50:bc:d9:20:5d:dd:45:d2:c3:e8:e3:02:74:fd:95: a4:05:2f:d9:23:f6:67:c4:2e:ab:78:9a:e7:95:30:5b:60:33: 09:fe:36:a2:8a:98:c0:e7:85:6d:22:80:d7:c8:b0:99:c3:7e: 66:1f:98:a4:a7:31:ef:7a:7e:34:47:fe:52:95:66:1f:a1:48: 95:ed:23:af:f8:89:11:85:8a:9b:58:ae:24:ef:3a:d9:94:61: 3e:7e:d2:0f:b4:89:ab:b2:ee:84:fe:af:c4:86:c1:42:99:3d: 63:7e:e9:d6:0f:2e:7e:7e:79:a7:09:42:e6:83:05:aa:29:62: 32:ca:58:43:5e:6f:17:02:77:7a:b7:4a:17:ce:c8:ec:73:3f: 0f:71:c6:e0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUflibwNt6GvQBKgzxGgFi1SVZodMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwNzA2NTUwMFoX DTI2MTAwNjA3MDAwMFowMzExMC8GA1UEAxMoNzlBOTU3QjE4MkUxRTRBQkJDQkYz MDRGOTlFMzIzQThEREYyMEQ1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2WqvSokck+rVPfArdGbbSIKmUrHd89Vp5mPmGUBlFonDoHZDG6+PHNLXbA KZClXKYjbtoWfS8hxh3YYx+6u9J/rKhbPXKaLmMZUd//lQboK+s7sGCUbr76NqbW jR0AVBMHJwY5piUACdLnpHr8dkYepXpmjIpM53kKrizCauTq9KWvioZ2p1/f5TVO 5IcJnysd07zK0JQtJvdTTTNEZP+j9vqpvTenWHDr1QZbGlsXtfKbARIHghmyQrPo rvMhPG0wYrpjFO9pmtSbazOEYCJjVBNoC2M3Haw9f4xeQmCHyNLIrkNMOIwN455y 7ZXM5+tEPE/t2/LHQz26yNmg8pcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR5qVex guHkq7y/ME+Z4yOo3fINWDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzMyNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf7mDANBgkqhkiG9w0BAQsFAAOCAQEAARWjBZFQ+zV+Jpiki2Cr qWVoGpRwRejJTGDQYFS0SVySNgSd42JZVH3f2XZim1CijTHVHyR3sEgFgJQsohb7 XIC5uZuFL9/+ZjsTRcTj32rL1vWTZAR8UYIo3/nOnWWfx4IkIW2TSmKsJ1pS0YVd ULzZIF3dRdLD6OMCdP2VpAUv2SP2Z8Quq3ia55UwW2AzCf42ooqYwOeFbSKA18iw mcN+Zh+YpKcx73p+NEf+UpVmH6FIle0jr/iJEYWKm1iuJO862ZRhPn7SD7SJq7Lu hP6vxIbBQpk9Y37p1g8ufn55pwlC5oMFqiliMspYQ15vFwJ3erdKF87I7HM/D3HG 4A== -----END CERTIFICATE-----Generated at Mon Oct 20 06:00:05 2025 by rpki-client