$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153768.roa File: AS153768.roa (raw, json) Hash identifier: PesvmfvW8baBwo09Olz4cDTd0kdj3ewVRpE2gL9yei0= Subject key identifier: 56:97:D0:5C:49:A0:A3:C2:FB:23:D8:9F:52:B1:E0:FF:9A:11:F5:86 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30B6C374ED6C28A2F77D4FAF81184C0A1D754483 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153768.roa Signing time: Tue 17 Mar 2026 09:00:00 +0000 ROA not before: Tue 17 Mar 2026 08:55:00 +0000 ROA not after: Tue 16 Mar 2027 09:00:00 +0000 asID: 153768 IP address blocks: 163.223.116.0/23 maxlen: 24 2001:df5:3e40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:b6:c3:74:ed:6c:28:a2:f7:7d:4f:af:81:18:4c:0a:1d:75:44:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 17 08:55:00 2026 GMT Not After : Mar 16 09:00:00 2027 GMT Subject: CN=5697D05C49A0A3C2FB23D89F52B1E0FF9A11F586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:a7:c4:2d:a5:c2:1a:02:a7:91:1d:02:62: a4:7b:52:f8:89:34:f3:28:5e:d4:a7:5a:0f:71:48: 31:9f:0f:50:8e:11:51:85:31:60:f9:06:3e:27:08: 58:d7:03:a5:8f:06:4f:aa:30:a3:0b:6d:c3:45:91: 3f:2c:31:d3:9a:d6:04:47:83:68:96:3e:63:90:5c: 6f:b7:bd:21:1a:50:be:13:92:c4:f0:2b:94:21:db: cc:fb:01:6d:ec:dc:12:6f:b1:8c:36:3f:c6:3d:0c: 54:b0:16:70:2b:83:40:ee:41:bf:69:b8:68:aa:e2: c1:4e:ce:49:22:b0:16:c8:35:ee:02:ff:8e:eb:c7: b2:a6:b4:32:72:79:7a:23:b3:8b:ed:99:62:e1:02: 33:b8:50:95:1c:ec:a5:33:b5:3c:aa:72:d1:6c:b5: 8d:a2:0d:48:2a:1d:5d:ec:83:d9:47:78:f6:35:57: c9:d1:20:17:83:63:11:27:9b:6f:b6:b7:92:72:b5: 9c:2b:04:4d:3e:16:98:22:c4:d7:40:9f:b7:69:41: 12:96:76:39:97:8d:67:0e:7e:fc:32:bb:44:9c:92: 03:20:d4:8a:e5:30:1e:20:f2:3b:c0:76:cf:a1:cf: 4d:05:ab:f4:6a:fb:99:90:b4:52:a4:a6:52:6d:b3: a2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:97:D0:5C:49:A0:A3:C2:FB:23:D8:9F:52:B1:E0:FF:9A:11:F5:86 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153768.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.116.0/23 IPv6: 2001:df5:3e40::/48 Signature Algorithm: sha256WithRSAEncryption 70:2c:f4:82:f4:04:f7:43:70:fd:63:26:88:d4:2c:0f:14:7f: e8:38:1c:2e:77:59:f0:f5:40:37:fd:0f:2c:ba:52:5c:6f:fc: a6:7a:c2:20:12:ed:9c:0d:ad:20:bb:70:17:7f:b1:81:57:c1: 0c:86:be:c8:2e:fa:93:34:93:8d:c9:bd:c4:82:d8:4b:a8:81: f4:fa:79:dc:a8:13:a8:a1:d9:4f:ac:f6:3e:86:38:ed:ed:59: 23:0c:c6:30:48:db:fa:0b:93:59:31:d6:1b:31:ab:4d:06:5f: 29:90:17:f9:5e:2a:b4:e0:b6:f1:52:d4:3c:f6:10:b1:fe:0a: 68:a0:07:a2:e2:f8:b8:9a:26:a8:13:48:e5:c7:3e:12:7c:9b: b3:ab:fc:40:db:f5:2f:7c:94:46:a2:80:1d:8c:b6:02:8c:d5: 90:30:a7:5f:d9:18:89:7e:41:2e:01:70:c7:d9:f5:17:d4:44: d7:ca:a3:1c:5b:cc:07:4d:c4:af:85:7a:3d:df:86:88:16:e6: 0f:14:12:76:f4:a8:31:0a:50:fc:79:1a:b7:b3:04:9a:32:76: 1a:c2:49:69:e2:12:2a:93:87:7d:2f:f7:c3:95:c6:04:dd:bd: 01:15:11:47:8c:1a:2e:e3:c6:a1:8d:91:f0:a1:e1:5f:0f:5e: 98:19:1e:e5 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUMLbDdO1sKKL3fU+vgRhMCh11RIMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxNzA4NTUwMFoX DTI3MDMxNjA5MDAwMFowMzExMC8GA1UEAxMoNTY5N0QwNUM0OUEwQTNDMkZCMjNE ODlGNTJCMUUwRkY5QTExRjU4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsMp8QtpcIaAqeRHQJipHtS+Ik08yhe1KdaD3FIMZ8PUI4RUYUxYPkGPicI WNcDpY8GT6owowttw0WRPywx05rWBEeDaJY+Y5Bcb7e9IRpQvhOSxPArlCHbzPsB bezcEm+xjDY/xj0MVLAWcCuDQO5Bv2m4aKriwU7OSSKwFsg17gL/juvHsqa0MnJ5 eiOzi+2ZYuECM7hQlRzspTO1PKpy0Wy1jaINSCodXeyD2Ud49jVXydEgF4NjESeb b7a3knK1nCsETT4WmCLE10Cft2lBEpZ2OZeNZw5+/DK7RJySAyDUiuUwHiDyO8B2 z6HPTQWr9Gr7mZC0UqSmUm2zohsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRWl9Bc SaCjwvsj2J9SseD/mhH1hjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1Mzc2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPfdDAPBAIAAjAJAwcAIAEN9T5AMA0GCSqGSIb3DQEBCwUAA4IB AQBwLPSC9AT3Q3D9YyaI1CwPFH/oOBwud1nw9UA3/Q8sulJcb/ymesIgEu2cDa0g u3AXf7GBV8EMhr7ILvqTNJONyb3EgthLqIH0+nncqBOoodlPrPY+hjjt7VkjDMYw SNv6C5NZMdYbMatNBl8pkBf5Xiq04LbxUtQ89hCx/gpooAei4vi4miaoE0jlxz4S fJuzq/xA2/UvfJRGooAdjLYCjNWQMKdf2RiJfkEuAXDH2fUX1ETXyqMcW8wHTcSv hXo934aIFuYPFBJ29KgxClD8eRq3swSaMnYawklp4hIqk4d9L/fDlcYE3b0BFRFH jBou48ahjZHwoeFfD16YGR7l -----END CERTIFICATE-----Generated at Thu Mar 26 04:00:53 2026 by rpki-client