$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153600.roa File: AS153600.roa (raw, json) Hash identifier: bjaNaVuyEznQp3u5pu8LnD/ITqGd2oyTRyxhGR1KOpw= Subject key identifier: 1F:9E:F6:53:7C:FC:01:A5:34:8A:F2:24:DB:07:9D:FF:A9:E4:49:68 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6DCE4EA06B1466CDECCE847C6481DBEB013336 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153600.roa Signing time: Mon 16 Jun 2025 04:57:14 +0000 ROA not before: Mon 16 Jun 2025 04:52:14 +0000 ROA not after: Mon 15 Jun 2026 04:57:14 +0000 asID: 153600 IP address blocks: 163.61.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ce:4e:a0:6b:14:66:cd:ec:ce:84:7c:64:81:db:eb:01:33:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 16 04:52:14 2025 GMT Not After : Jun 15 04:57:14 2026 GMT Subject: CN=1F9EF6537CFC01A5348AF224DB079DFFA9E44968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:67:aa:4d:4e:27:4c:7c:ed:cd:77:f6:63:36: 86:7c:53:34:e1:71:cb:b1:b1:86:1a:2c:66:d5:61: 71:4d:82:10:50:ed:5c:cb:f0:48:b7:11:aa:94:d1: 1e:50:3d:86:39:1b:43:40:e7:df:16:33:ba:8b:35: db:ef:3d:c5:42:be:e3:71:5b:7f:8a:fd:60:f0:7f: e2:4a:e1:fe:7b:97:9e:d5:9d:20:33:54:37:fe:a7: 0f:93:1c:3a:c6:50:e3:dc:59:53:78:46:9c:ce:54: 3e:fe:35:3d:8b:02:51:c1:d6:34:9a:09:e8:0b:33: 5c:a0:29:a9:83:50:dc:7f:93:a6:ef:91:c9:e9:3f: 5f:b8:56:4d:c3:f4:9a:05:98:86:03:ce:f3:f7:ed: 33:84:ba:93:6f:74:8f:e5:45:5d:f1:0d:fa:6b:38: c2:46:68:3f:11:23:f3:07:32:ab:4a:95:26:de:6c: 8f:c2:3b:4b:f8:53:c5:67:4f:73:ac:e3:53:b7:02: 52:52:83:a4:92:36:89:c1:b7:59:d5:19:99:77:20: b5:52:35:16:f6:9c:0e:05:6d:60:9e:38:9e:43:58: 05:d7:80:43:8b:73:89:ef:e2:34:96:f5:67:72:2b: 13:d8:22:ec:af:0c:4f:f4:d8:13:07:a4:21:34:f0: b3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9E:F6:53:7C:FC:01:A5:34:8A:F2:24:DB:07:9D:FF:A9:E4:49:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153600.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.112.0/24 Signature Algorithm: sha256WithRSAEncryption 48:ea:e1:1f:c8:1d:d9:90:fd:3f:b5:2e:71:2f:56:49:48:7d: 37:ac:9d:c9:34:2b:2b:96:db:5c:cb:a5:f5:23:f2:96:f4:b1: 0f:b3:de:25:cf:35:44:ae:b9:35:e8:04:5b:8c:f2:d1:ff:30: 91:42:e9:c1:c5:90:1f:d3:03:f5:ab:4c:a4:8d:54:4c:ae:ab: 40:7a:ff:cc:10:27:6b:76:c2:67:55:cc:de:c1:fb:c9:e3:c3: 80:e6:53:54:dd:db:69:28:04:77:d1:b2:79:9f:e7:59:fb:34: 4a:eb:e5:04:45:c4:25:ce:ba:8b:9f:ff:15:cc:c8:a6:86:89: b9:51:a3:4c:4f:d2:3e:3e:22:bf:e9:57:9c:23:10:fd:0c:8c: d8:49:3e:3f:fb:cc:99:84:f9:c0:45:18:f6:98:42:ed:69:3b: b9:db:ba:1a:db:b2:a6:ef:8d:58:8e:07:9b:24:7c:52:dc:b4: b2:79:bc:3f:af:2e:89:4b:78:f5:04:16:43:35:a5:70:10:7d: 27:86:ab:10:0f:ee:06:49:b5:5e:25:d9:77:2f:9d:77:41:d6: c7:e5:6c:38:cc:2f:fc:f4:6a:42:94:8b:8c:a5:d3:2d:90:e9: 6f:4c:a1:33:a8:6d:b3:67:85:fa:8f:63:e6:d8:45:5f:b6:f6: d7:8d:c9:97 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgITbc5OoGsUZs3szoR8ZIHb6wEzNjANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTE4NjIxNDAwMDAxMTAvBgNVBAUTKEJBOEY3N0QyMUU1 OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIwHhcNMjUwNjE2MDQ1MjE0WhcN MjYwNjE1MDQ1NzE0WjAzMTEwLwYDVQQDEygxRjlFRjY1MzdDRkMwMUE1MzQ4QUYy MjREQjA3OURGRkE5RTQ0OTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGeqTU4nTHztzXf2YzaGfFM04XHLsbGGGixm1WFxTYIQUO1cy/BItxGqlNEe UD2GORtDQOffFjO6izXb7z3FQr7jcVt/iv1g8H/iSuH+e5ee1Z0gM1Q3/qcPkxw6 xlDj3FlTeEaczlQ+/jU9iwJRwdY0mgnoCzNcoCmpg1Dcf5Om75HJ6T9fuFZNw/Sa BZiGA87z9+0zhLqTb3SP5UVd8Q36azjCRmg/ESPzBzKrSpUm3myPwjtL+FPFZ09z rONTtwJSUoOkkjaJwbdZ1RmZdyC1UjUW9pwOBW1gnjieQ1gF14BDi3OJ7+I0lvVn cisT2CLsrwxP9NgTB6QhNPCz/QIDAQABo4IB0DCCAcwwHQYDVR0OBBYEFB+e9lN8 /AGlNIryJNsHnf+p5EloMB8GA1UdIwQYMBaAFLqPd9IeWP6ck5prcOJYVhfhgzdr MA4GA1UdDwEB/wQEAwIHgDBpBgNVHR8EYjBgMF6gXKBahlhyc3luYzovL3JlcG8t cnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0JBOEY3N0QyMUU1OEZFOUM5 MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggr BgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdF RjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3VvOTMwaDVZX3B5VG1tdHc0bGhX Ri1HRE4ycy5jZXIwVAYIKwYBBQUHAQsESDBGMEQGCCsGAQUFBzALhjhyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FTMTUzNjAwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoz1wMA0GCSqGSIb3DQEBCwUAA4IBAQBI6uEfyB3ZkP0/tS5xL1ZJ SH03rJ3JNCsrlttcy6X1I/KW9LEPs94lzzVErrk16ARbjPLR/zCRQunBxZAf0wP1 q0ykjVRMrqtAev/MECdrdsJnVczewfvJ48OA5lNU3dtpKAR30bJ5n+dZ+zRK6+UE RcQlzrqLn/8VzMimhom5UaNMT9I+PiK/6VecIxD9DIzYST4/+8yZhPnARRj2mELt aTu527oa27Km741YjgebJHxS3LSyebw/ry6JS3j1BBZDNaVwEH0nhqsQD+4GSbVe Jdl3L513QdbH5Ww4zC/89GpClIuMpdMtkOlvTKEzqG2zZ4X6j2Pm2EVftvbXjcmX -----END CERTIFICATE-----Generated at Sun Jun 29 12:10:40 2025 by rpki-client