$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153575.roa File: AS153575.roa (raw, json) Hash identifier: vpDgs7Qt2IuYF5WA9TUNBZi7RRAN6eTZkrlr9wQJK60= Subject key identifier: BE:45:A5:0D:53:4C:4B:D8:C0:8D:F0:69:91:9C:72:41:85:A5:FF:0E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1BF63CA3D23BBAC312331EC87EFC283891280C01 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153575.roa Signing time: Fri 13 Mar 2026 05:00:00 +0000 ROA not before: Fri 13 Mar 2026 04:55:00 +0000 ROA not after: Fri 12 Mar 2027 05:00:00 +0000 asID: 153575 IP address blocks: 163.61.80.0/23 maxlen: 24 2001:df5:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f6:3c:a3:d2:3b:ba:c3:12:33:1e:c8:7e:fc:28:38:91:28:0c:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 04:55:00 2026 GMT Not After : Mar 12 05:00:00 2027 GMT Subject: CN=BE45A50D534C4BD8C08DF069919C724185A5FF0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:dc:e9:8c:a7:57:62:bc:ec:4e:68:ea:86: 74:0a:d7:cf:35:44:62:d6:a1:86:f7:6e:2e:0e:3e: 93:ed:b8:78:8e:a5:a3:ca:93:58:a0:db:6b:e3:ed: 7b:c0:c5:79:d9:be:f3:53:12:8a:78:e1:fd:5a:11: 62:ca:0d:5d:a0:af:9b:11:e1:f7:d6:a9:73:f4:32: 96:bd:63:f9:e7:8f:8d:c6:32:20:ec:62:01:03:7f: 23:cf:41:79:4a:ae:d2:0e:ae:00:52:7b:40:f0:d4: b6:4d:13:42:f8:c3:35:00:64:f7:f3:12:c3:a4:e8: 58:74:31:5c:1c:ee:dd:61:ce:00:e9:7c:bc:4e:0e: 48:78:9d:df:70:59:92:ac:ff:ca:dc:aa:1f:4d:95: 49:3a:38:92:4f:0d:5c:95:e2:01:d6:1e:72:61:d5: fa:63:fe:50:c5:b9:b7:94:03:a0:b5:8d:0c:ba:49: 96:a5:65:a2:8c:db:45:12:a1:c6:c0:b3:dd:ed:5a: ad:74:54:42:78:a5:d5:95:0f:8a:0a:18:7e:5c:61: 3b:ed:b8:86:f1:6a:c7:da:2c:eb:f5:18:2e:36:63: 3b:06:3a:e2:7a:67:ef:73:f2:a2:95:f4:d6:be:9d: a5:3f:85:8a:87:cd:68:56:56:2b:ba:10:5b:25:71: d0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:45:A5:0D:53:4C:4B:D8:C0:8D:F0:69:91:9C:72:41:85:A5:FF:0E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153575.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.80.0/23 IPv6: 2001:df5:1040::/48 Signature Algorithm: sha256WithRSAEncryption 8b:fa:ff:ea:6d:a6:16:41:31:42:37:a0:b9:71:27:51:5b:c7: a9:5d:05:51:a7:8f:b7:1a:a0:cf:44:2c:3c:04:b4:fa:5e:70: 82:a7:01:41:94:b3:a3:bc:4a:be:da:a6:3e:62:2f:81:d3:c6: 24:e7:2a:5f:0e:60:fa:e7:25:c0:7f:36:fc:62:46:75:4f:43: 4f:c3:6d:34:dc:a1:4f:f7:af:aa:63:37:75:e1:56:35:39:91: ff:5b:17:67:f7:ee:24:a2:95:ba:51:ec:27:5f:21:ab:72:3b: 70:38:21:2b:6c:1d:82:ee:29:6f:d9:b7:dc:d5:89:70:55:7b: 6a:05:ec:aa:6d:4c:53:31:29:b3:d2:89:a3:06:c8:fb:01:ef: b2:79:1d:e4:50:59:bb:02:5d:5a:9f:dd:60:06:83:b9:aa:9e: e6:47:c2:b7:11:ea:63:77:ec:4b:36:f1:0c:7a:12:f1:84:6a: 5d:ff:f1:ea:4c:0d:68:65:3e:a5:84:f8:e1:e0:35:92:fc:5e: 27:90:3e:da:37:9d:fc:a8:99:1e:2b:72:1a:d1:69:c0:71:78: da:82:b4:0a:91:db:8f:fd:ac:3f:04:e7:25:ea:ff:fb:8c:1f: 63:84:0c:e4:d2:3c:d8:1a:86:0a:95:91:77:7c:67:cf:48:c5: b7:4a:55:a6 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUG/Y8o9I7usMSMx7IfvwoOJEoDAEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxMzA0NTUwMFoX DTI3MDMxMjA1MDAwMFowMzExMC8GA1UEAxMoQkU0NUE1MEQ1MzRDNEJEOEMwOERG MDY5OTE5QzcyNDE4NUE1RkYwRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALV/3OmMp1divOxOaOqGdArXzzVEYtahhvduLg4+k+24eI6lo8qTWKDba+Pt e8DFedm+81MSinjh/VoRYsoNXaCvmxHh99apc/Qylr1j+eePjcYyIOxiAQN/I89B eUqu0g6uAFJ7QPDUtk0TQvjDNQBk9/MSw6ToWHQxXBzu3WHOAOl8vE4OSHid33BZ kqz/ytyqH02VSTo4kk8NXJXiAdYecmHV+mP+UMW5t5QDoLWNDLpJlqVloozbRRKh xsCz3e1arXRUQnil1ZUPigoYflxhO+24hvFqx9os6/UYLjZjOwY64npn73PyopX0 1r6dpT+FiofNaFZWK7oQWyVx0AUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBS+RaUN U0xL2MCN8GmRnHJBhaX/DjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaM9UDAPBAIAAjAJAwcAIAEN9RBAMA0GCSqGSIb3DQEBCwUAA4IB AQCL+v/qbaYWQTFCN6C5cSdRW8epXQVRp4+3GqDPRCw8BLT6XnCCpwFBlLOjvEq+ 2qY+Yi+B08Yk5ypfDmD65yXAfzb8YkZ1T0NPw2003KFP96+qYzd14VY1OZH/Wxdn 9+4kopW6UewnXyGrcjtwOCErbB2C7ilv2bfc1YlwVXtqBeyqbUxTMSmz0omjBsj7 Ae+yeR3kUFm7Al1an91gBoO5qp7mR8K3Eepjd+xLNvEMehLxhGpd//HqTA1oZT6l hPjh4DWS/F4nkD7aN538qJkeK3Ia0WnAcXjagrQKkduP/aw/BOcl6v/7jB9jhAzk 0jzYGoYKlZF3fGfPSMW3SlWm -----END CERTIFICATE-----Generated at Thu Mar 26 04:00:56 2026 by rpki-client