$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152769.roa File: AS152769.roa (raw, json) Hash identifier: //7EdinMh3sUCZP/obmJDGr6IriHegzB8UJSmLTFWaw= Subject key identifier: FC:32:ED:1C:E2:13:00:6C:68:89:9D:00:24:BE:5F:FD:6A:DE:2D:88 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 3C1B42997F78260204FCDBDAC444EC5D00317ED5 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152769.roa Signing time: Sun 03 May 2026 02:39:29 +0000 ROA not before: Sun 03 May 2026 02:34:29 +0000 ROA not after: Sun 02 May 2027 02:39:29 +0000 asID: 152769 IP address blocks: 157.15.0.0/23 maxlen: 24 157.15.0.0/24 maxlen: 24 157.15.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:1b:42:99:7f:78:26:02:04:fc:db:da:c4:44:ec:5d:00:31:7e:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 02:34:29 2026 GMT Not After : May 2 02:39:29 2027 GMT Subject: CN=FC32ED1CE213006C68899D0024BE5FFD6ADE2D88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ba:79:e0:a2:df:49:59:c2:71:a7:af:1e:c1: 88:81:88:a6:78:04:37:13:8d:22:da:f0:30:8c:84: f4:65:03:c0:04:13:bb:40:7f:af:4b:da:ab:fe:0f: ec:a3:57:5d:16:1e:9b:58:c8:35:fd:1c:23:b4:38: 4d:3d:01:f4:ea:b4:a4:90:7b:d2:3f:6d:72:ad:6a: 17:68:c1:43:f6:90:69:54:e6:18:f1:ca:81:96:98: ba:c7:8c:ca:69:8a:e9:a2:16:11:59:f8:e3:89:bc: 2e:a7:ed:ff:06:31:ec:c7:c2:c4:14:cb:4a:18:04: 95:7a:95:f9:f6:1d:3e:1f:96:5b:89:c7:1c:4f:19: 1e:62:a2:b5:a6:bd:46:1e:a5:4a:30:b4:18:8f:d1: cc:0b:1c:e0:ff:3d:ef:a1:ca:a2:9c:e8:92:89:f1: a9:f4:96:cb:c4:ef:e5:e4:3f:fb:02:70:93:e1:57: a7:de:f5:f4:06:fd:0d:aa:9a:68:ee:54:47:c9:36: 91:3a:5f:ff:14:22:58:95:69:53:41:8f:9f:14:7c: 08:58:b5:f6:12:02:e5:f8:15:81:2e:ab:6d:41:ea: 8c:18:77:cc:06:81:41:80:b2:d5:86:78:80:38:7e: 33:bc:d7:e6:52:b7:a5:76:7c:42:c4:5d:34:f5:cb: 7a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:32:ED:1C:E2:13:00:6C:68:89:9D:00:24:BE:5F:FD:6A:DE:2D:88 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.0.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:35:f1:3c:6b:bc:d0:e8:0d:e1:2c:e3:4e:5e:19:91:65:9d: f5:01:5e:27:a6:8d:34:93:8f:7f:14:89:18:45:13:59:dc:24: f3:12:01:01:62:0f:a1:7f:a8:4d:3d:14:48:64:db:e1:bb:7e: 12:cd:01:f7:2b:ea:5a:ae:a0:03:b6:4d:a7:22:cb:a5:8a:f2: 82:8f:1d:a1:d8:97:24:a9:6b:98:8e:1d:b5:36:73:5c:39:43: 80:63:39:8e:09:0f:ae:d5:81:e2:17:77:72:58:ba:f3:bc:a1: 05:3c:aa:da:74:5d:72:32:c3:55:8b:90:ec:1c:6d:d3:06:ff: 20:ef:87:fe:db:a2:d2:ce:e9:ed:5c:bd:a9:82:f4:3e:f0:73: 9d:30:29:f0:76:d7:1c:e3:2c:1f:e6:57:b7:29:7b:33:73:2d: 00:0d:75:a5:32:9b:17:0c:07:de:84:76:dd:8f:26:d4:15:01: 25:e8:6f:73:3e:03:82:8f:b4:1d:04:33:bd:84:ca:8a:39:18: b7:2b:cb:32:29:12:40:78:97:80:78:0f:82:e9:8e:7b:73:a5: a8:2d:55:e2:fb:3d:03:fa:f4:68:dc:0a:7f:50:3b:aa:13:aa: 11:f1:4b:9b:83:68:9e:9e:96:f6:65:53:6e:69:45:ff:94:54: ab:75:fa:71 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUPBtCmX94JgIE/NvaxETsXQAxftUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAyMzQyOVoX DTI3MDUwMjAyMzkyOVowMzExMC8GA1UEAxMoRkMzMkVEMUNFMjEzMDA2QzY4ODk5 RDAwMjRCRTVGRkQ2QURFMkQ4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANm6eeCi30lZwnGnrx7BiIGIpngENxONItrwMIyE9GUDwAQTu0B/r0vaq/4P 7KNXXRYem1jINf0cI7Q4TT0B9Oq0pJB70j9tcq1qF2jBQ/aQaVTmGPHKgZaYuseM ymmK6aIWEVn444m8Lqft/wYx7MfCxBTLShgElXqV+fYdPh+WW4nHHE8ZHmKitaa9 Rh6lSjC0GI/RzAsc4P8976HKopzokonxqfSWy8Tv5eQ/+wJwk+FXp9719Ab9Daqa aO5UR8k2kTpf/xQiWJVpU0GPnxR8CFi19hIC5fgVgS6rbUHqjBh3zAaBQYCy1YZ4 gDh+M7zX5lK3pXZ8QsRdNPXLegUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT8Mu0c 4hMAbGiJnQAkvl/9at4tiDAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyNzY5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQ8AMA0GCSqGSIb3DQEBCwUAA4IBAQB+NfE8a7zQ6A3hLONOXhmRZZ31 AV4npo00k49/FIkYRRNZ3CTzEgEBYg+hf6hNPRRIZNvhu34SzQH3K+parqADtk2n IsulivKCjx2h2JckqWuYjh21NnNcOUOAYzmOCQ+u1YHiF3dyWLrzvKEFPKradF1y MsNVi5DsHG3TBv8g74f+26LSzuntXL2pgvQ+8HOdMCnwdtcc4ywf5le3KXszcy0A DXWlMpsXDAfehHbdjybUFQEl6G9zPgOCj7QdBDO9hMqKORi3K8syKRJAeJeAeA+C 6Y57c6WoLVXi+z0D+vRo3Ap/UDuqE6oR8Uubg2ienpb2ZVNuaUX/lFSrdfpx -----END CERTIFICATE-----Generated at Tue May 12 22:43:31 2026 by rpki-client