$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153803.roa File: AS153803.roa (raw, json) Hash identifier: CwiWBUKFqlwfuv6jGZHpcebmHpxSwGYbLffr2pSPg9Y= Subject key identifier: 2D:50:68:DE:40:EB:BA:99:83:FA:B1:0A:F4:2D:1D:3B:38:8F:D6:BA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 711EB2E3EDF5E1DD2272E2780B35C6F0FA10777F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153803.roa Signing time: Thu 07 May 2026 09:15:01 +0000 ROA not before: Thu 07 May 2026 09:10:01 +0000 ROA not after: Thu 06 May 2027 09:15:01 +0000 asID: 153803 IP address blocks: 163.227.67.0/24 maxlen: 24 2001:df5:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:1e:b2:e3:ed:f5:e1:dd:22:72:e2:78:0b:35:c6:f0:fa:10:77:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 7 09:10:01 2026 GMT Not After : May 6 09:15:01 2027 GMT Subject: CN=2D5068DE40EBBA9983FAB10AF42D1D3B388FD6BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:99:59:db:6d:68:f8:37:d4:dc:66:dd:48:14: 33:4c:2a:e8:ae:74:05:b2:7f:43:47:28:ca:f5:a8: 1e:4d:98:4b:1d:5d:9e:4a:8d:24:68:39:7e:14:b6: 07:48:5a:9a:b4:ae:4c:a2:86:a9:04:77:9c:10:e2: 5d:e8:c3:7b:64:fb:7f:e2:6a:d8:37:3e:19:e1:6d: 8b:7a:a1:1b:e6:06:d6:60:6b:b1:f0:03:73:e1:e4: 63:29:0a:33:ae:be:a2:d2:7f:41:d1:ac:92:a7:3b: da:1a:78:b6:ba:22:00:48:16:16:f2:d9:ed:20:ed: 60:e7:40:22:f4:ea:e8:53:f1:4b:ee:41:75:4e:7f: b4:6d:2b:91:33:3d:57:8b:98:ce:e5:98:18:8d:b6: 8d:f4:77:cd:bf:1c:13:b3:ad:8f:1a:90:bf:21:b7: f7:ce:eb:63:51:06:b7:f4:12:3a:ce:65:5d:4b:9e: 35:50:cf:bc:db:ab:83:4b:09:3f:28:7a:dc:e0:4e: 42:4c:0e:36:7c:50:1e:c9:b4:77:bf:95:26:ff:72: b6:93:40:05:b7:77:02:19:8d:56:d1:ed:25:55:ac: 14:03:d5:fc:96:f2:c6:ae:0f:97:99:31:52:15:06: 9e:c2:e6:26:31:61:bf:8a:4a:7f:a8:58:25:b7:67: 55:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:50:68:DE:40:EB:BA:99:83:FA:B1:0A:F4:2D:1D:3B:38:8F:D6:BA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153803.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.67.0/24 IPv6: 2001:df5:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 08:bd:9c:4c:61:3c:f1:3f:fd:75:3a:95:4a:31:dc:e7:8d:74: c4:59:7c:47:cd:2b:bd:11:ee:ab:38:5b:25:7d:0b:e4:b8:30: e3:4c:e1:e1:e7:e9:6a:02:fc:8c:46:cf:a7:c0:6f:c6:59:1f: da:76:68:0f:bc:a1:46:ac:d9:07:69:56:65:36:17:48:ec:6f: 22:3c:a1:0e:e3:82:c0:b5:4d:2e:e6:81:49:b2:fc:46:da:a3: 56:01:e1:48:8b:26:da:9f:9a:1b:83:6a:43:8d:5b:a9:a8:0a: 6a:29:50:bb:8c:5a:b0:6f:e4:ad:98:10:67:48:9a:2d:13:16: c2:43:72:2c:0f:23:00:16:8b:95:fe:9a:cd:8e:1d:3a:6a:66: af:51:a9:b7:32:6a:b6:0f:c9:f0:aa:e2:aa:80:e9:4e:cb:8a: 08:35:8a:9d:f9:d4:7f:b8:d0:42:7b:04:ff:c1:c0:d1:2a:47: 26:9b:da:43:0b:ab:a3:6e:8d:bf:16:5c:f6:cb:ed:57:b8:8b: b3:69:80:bd:7c:00:36:49:5c:9e:6d:36:78:aa:4e:ee:54:17: 72:b6:f1:02:d7:66:2f:1f:d9:2c:a5:7b:1b:07:db:fa:3f:02: 28:b3:b0:fc:91:a6:39:c7:5a:5d:eb:48:21:5f:29:7e:27:dc: cf:85:d1:83 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcR6y4+314d0icuJ4CzXG8PoQd38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNzA5MTAwMVoX DTI3MDUwNjA5MTUwMVowMzExMC8GA1UEAxMoMkQ1MDY4REU0MEVCQkE5OTgzRkFC MTBBRjQyRDFEM0IzODhGRDZCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANCZWdttaPg31Nxm3UgUM0wq6K50BbJ/Q0coyvWoHk2YSx1dnkqNJGg5fhS2 B0hamrSuTKKGqQR3nBDiXejDe2T7f+Jq2Dc+GeFti3qhG+YG1mBrsfADc+HkYykK M66+otJ/QdGskqc72hp4troiAEgWFvLZ7SDtYOdAIvTq6FPxS+5BdU5/tG0rkTM9 V4uYzuWYGI22jfR3zb8cE7OtjxqQvyG3987rY1EGt/QSOs5lXUueNVDPvNurg0sJ Pyh63OBOQkwONnxQHsm0d7+VJv9ytpNABbd3AhmNVtHtJVWsFAPV/Jbyxq4Pl5kx UhUGnsLmJjFhv4pKf6hYJbdnVcsCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQtUGje QOu6mYP6sQr0LR07OI/WujAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODAzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo+NDMA8EAgACMAkDBwAgAQ31XUAwDQYJKoZIhvcNAQELBQADggEBAAi9 nExhPPE//XU6lUox3OeNdMRZfEfNK70R7qs4WyV9C+S4MONM4eHn6WoC/IxGz6fA b8ZZH9p2aA+8oUas2QdpVmU2F0jsbyI8oQ7jgsC1TS7mgUmy/Ebao1YB4UiLJtqf mhuDakONW6moCmopULuMWrBv5K2YEGdImi0TFsJDciwPIwAWi5X+ms2OHTpqZq9R qbcyarYPyfCq4qqA6U7Ligg1ip351H+40EJ7BP/BwNEqRyab2kMLq6Nujb8WXPbL 7Ve4i7NpgL18ADZJXJ5tNniqTu5UF3K28QLXZi8f2SylexsH2/o/AiizsPyRpjnH Wl3rSCFfKX4n3M+F0YM= -----END CERTIFICATE-----Generated at Tue May 12 22:42:02 2026 by rpki-client