$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153582.roa File: AS153582.roa (raw, json) Hash identifier: cdueUAlqTGP46Pdqq1dqFi5+GFIx0C/Ql0sNRtBb0L8= Subject key identifier: 2D:B1:2A:C2:C0:3A:20:5F:DD:9F:29:30:89:32:A9:85:84:28:F8:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1634F6C461DA6E52EDF5C852B752FF7D171A34BC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153582.roa Signing time: Wed 09 Jul 2025 02:24:05 +0000 ROA not before: Wed 09 Jul 2025 02:19:05 +0000 ROA not after: Wed 08 Jul 2026 02:24:05 +0000 asID: 153582 IP address blocks: 163.61.55.0/24 maxlen: 24 2001:df5:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:34:f6:c4:61:da:6e:52:ed:f5:c8:52:b7:52:ff:7d:17:1a:34:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 9 02:19:05 2025 GMT Not After : Jul 8 02:24:05 2026 GMT Subject: CN=2DB12AC2C03A205FDD9F29308932A9858428F8AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:15:8a:b1:87:87:1f:43:40:4f:cf:16:8d:d6: b1:ca:2d:db:ce:6b:27:4d:36:d7:ac:63:0a:d3:1e: 4f:98:c9:95:19:48:17:ef:73:c7:f9:a9:c1:dc:27: 81:47:11:99:46:02:22:83:64:c5:0f:39:b1:6a:73: f2:22:ed:5e:49:93:e2:7b:90:97:ec:22:40:a3:23: 95:b6:a3:28:be:c4:43:45:3c:fe:e6:57:bf:4a:d8: 97:8a:90:02:2d:b2:a3:ad:1a:d4:f4:3a:29:c4:c8: 28:81:23:1e:da:26:f6:f0:72:79:fa:60:e3:c1:88: e4:dd:41:80:3a:02:99:a6:dd:9a:b9:a0:24:2c:cb: e1:cc:56:5c:8a:ba:8c:6c:6a:05:ef:86:a5:7d:76: 5c:d8:e8:ae:c3:51:7c:61:69:4e:19:45:eb:47:f1: 27:3b:b1:71:56:1a:cd:02:8f:e6:e5:99:ad:ea:b3: a6:cc:55:45:d6:71:e0:b9:a2:6d:0d:ae:83:61:e1: bc:d6:61:f1:ab:5d:ce:c9:f2:d7:1e:17:b5:e5:28: b4:e6:65:5a:d9:47:6c:b8:3c:38:a8:0f:48:c8:1e: 8c:a9:29:c0:17:ca:48:81:b5:25:d3:a2:94:d4:0f: 34:76:4d:95:ae:50:7c:e0:0a:45:45:85:4b:90:cf: 80:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B1:2A:C2:C0:3A:20:5F:DD:9F:29:30:89:32:A9:85:84:28:F8:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153582.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.55.0/24 IPv6: 2001:df5:a40::/48 Signature Algorithm: sha256WithRSAEncryption 5a:2d:e3:88:0d:e7:62:2a:b7:38:2f:07:32:6d:70:97:2f:b7: 7a:d6:23:69:89:fc:11:fa:56:a2:a0:c3:e7:a4:44:6d:f3:c2: 42:72:87:af:ea:f2:00:e0:fc:ad:cd:af:8d:58:8b:62:f2:41: 33:3c:33:1a:07:93:30:ed:30:2f:21:2d:eb:1a:71:a5:6e:50: 49:9f:47:0a:83:85:fd:50:c9:9d:0c:4c:df:ac:a2:2a:32:51: 38:bc:60:93:64:3e:b4:27:86:f2:dd:ff:8b:1e:a0:31:ac:5e: 59:19:67:4d:1a:de:8f:97:ed:ac:58:1e:bf:9a:c8:3b:e6:b7: 9e:e2:37:14:8c:33:be:70:cf:a7:11:cc:10:73:db:48:8f:8c: 80:bb:b6:6d:4f:27:47:b2:48:c3:41:33:1e:db:cc:e9:0a:08: a9:05:2d:64:6b:ae:7b:98:27:4d:cd:6c:a2:a9:83:5b:68:aa: a8:00:5f:a1:8a:2b:c7:22:47:6e:9c:fa:9f:f0:cb:0d:d4:5a: e6:af:0f:09:56:ff:57:4a:47:61:b6:06:90:b8:24:71:d3:73: 4e:b1:f0:5c:d8:9f:2a:ac:c1:fa:79:9f:b5:90:96:c2:69:f0: 39:e3:cc:81:4e:b2:8d:70:7c:50:df:a1:ab:e7:7f:97:a3:1f: ac:76:46:42 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUFjT2xGHablLt9chSt1L/fRcaNLwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcwOTAyMTkwNVoX DTI2MDcwODAyMjQwNVowMzExMC8GA1UEAxMoMkRCMTJBQzJDMDNBMjA1RkREOUYy OTMwODkzMkE5ODU4NDI4RjhBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKAVirGHhx9DQE/PFo3Wscot285rJ00216xjCtMeT5jJlRlIF+9zx/mpwdwn gUcRmUYCIoNkxQ85sWpz8iLtXkmT4nuQl+wiQKMjlbajKL7EQ0U8/uZXv0rYl4qQ Ai2yo60a1PQ6KcTIKIEjHtom9vByefpg48GI5N1BgDoCmabdmrmgJCzL4cxWXIq6 jGxqBe+GpX12XNjorsNRfGFpThlF60fxJzuxcVYazQKP5uWZreqzpsxVRdZx4Lmi bQ2ug2HhvNZh8atdzsny1x4XteUotOZlWtlHbLg8OKgPSMgejKkpwBfKSIG1JdOi lNQPNHZNla5QfOAKRUWFS5DPgLkCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQtsSrC wDogX92fKTCJMqmFhCj4qzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKM9NzAPBAIAAjAJAwcAIAEN9QpAMA0GCSqGSIb3DQEBCwUAA4IB AQBaLeOIDediKrc4LwcybXCXL7d61iNpifwR+laioMPnpERt88JCcoev6vIA4Pyt za+NWIti8kEzPDMaB5Mw7TAvIS3rGnGlblBJn0cKg4X9UMmdDEzfrKIqMlE4vGCT ZD60J4by3f+LHqAxrF5ZGWdNGt6Pl+2sWB6/msg75ree4jcUjDO+cM+nEcwQc9tI j4yAu7ZtTydHskjDQTMe28zpCgipBS1ka657mCdNzWyiqYNbaKqoAF+hiivHIkdu nPqf8MsN1Frmrw8JVv9XSkdhtgaQuCRx03NOsfBc2J8qrMH6eZ+1kJbCafA548yB TrKNcHxQ36Gr53+Xox+sdkZC -----END CERTIFICATE-----Generated at Mon Jul 21 00:05:54 2025 by rpki-client