$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153573.roa File: AS153573.roa (raw, json) Hash identifier: mUDvPeJbcPW1O8AM+QhQIffqgr7lo7xbWJyXGx/YHo8= Subject key identifier: BC:1C:14:79:21:17:41:8C:BB:A9:69:FC:70:80:DF:1D:11:F7:98:D7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79791AFE0C80F3263C48E97CE14F15824D599622 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153573.roa Signing time: Tue 06 May 2025 04:34:39 +0000 ROA not before: Tue 06 May 2025 04:29:39 +0000 ROA not after: Tue 05 May 2026 04:34:39 +0000 asID: 153573 IP address blocks: 163.61.47.0/24 maxlen: 24 2001:df5:740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:79:1a:fe:0c:80:f3:26:3c:48:e9:7c:e1:4f:15:82:4d:59:96:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 6 04:29:39 2025 GMT Not After : May 5 04:34:39 2026 GMT Subject: CN=BC1C14792117418CBBA969FC7080DF1D11F798D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a8:5f:44:c9:38:ea:22:88:12:6f:ed:aa:84: 73:c0:b2:b4:29:32:a3:b1:bd:02:e6:12:ea:a4:54: 04:d6:a1:6e:1f:2b:a9:ac:e5:93:2f:12:a5:ab:44: cf:5c:7a:74:1c:d5:1e:9b:c9:7d:ce:6c:ee:a6:3b: f7:2c:3b:1a:84:ac:5b:54:cc:0d:9f:a1:ab:b2:f3: 12:61:ac:51:f6:b9:1b:51:9c:11:31:35:6a:d0:9d: 33:8e:cd:09:bf:ea:63:7a:e0:15:66:6b:e8:e9:db: dd:ca:5c:68:d1:60:98:63:54:c2:21:b4:4c:39:ca: d8:d0:89:3b:53:b5:3c:79:e1:72:ee:80:97:f3:cb: f5:47:8d:2e:d9:be:d2:cf:8f:9a:52:ab:b3:bf:16: 61:a4:62:e8:d0:06:33:35:f0:70:87:3d:92:50:bd: f6:f1:f7:41:05:6a:5d:50:50:41:c2:35:ed:c8:55: ec:66:af:85:6c:20:8d:eb:dc:38:c5:17:f9:c5:00: b2:df:1f:b9:dc:ac:04:47:04:e1:e3:77:a8:bd:83: 61:aa:95:40:98:ae:5d:7a:44:52:b3:e9:ab:25:d9: f0:c9:80:06:79:0c:c2:0c:96:b1:9f:5a:01:47:57: 99:70:9d:d3:4a:8f:c5:c4:19:fd:98:0b:db:28:3e: 5a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1C:14:79:21:17:41:8C:BB:A9:69:FC:70:80:DF:1D:11:F7:98:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153573.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.47.0/24 IPv6: 2001:df5:740::/48 Signature Algorithm: sha256WithRSAEncryption 67:28:f4:7f:ce:71:0b:d0:35:61:cc:e6:07:9e:40:34:85:f4: 0d:ad:d9:44:6c:e6:a9:8c:37:ec:4e:89:2c:5a:01:20:50:ae: 3e:be:5e:30:ef:40:c4:77:3b:29:3d:16:05:52:5c:87:2f:b6: f5:8d:96:d8:2f:ed:a6:49:c0:b9:cc:2a:8b:5e:78:12:a6:4d: f1:0d:08:d9:a0:ad:2f:66:53:d6:63:7d:6d:68:7e:82:bf:c3: 71:21:08:b3:55:93:bc:d8:82:41:de:a2:b1:85:08:fc:96:aa: cd:18:0e:75:ed:1a:2a:93:27:ec:17:fe:ce:7a:2c:96:b9:da: 6d:f3:86:c4:c9:59:8b:b5:41:66:40:79:bb:e5:87:69:7f:a9: 43:89:17:86:9f:23:cc:ac:4d:9a:f7:f1:0c:bd:1c:90:43:79: c5:db:a4:95:e6:7f:6d:f9:2e:f2:7d:e1:fa:24:6c:43:71:0a: 66:5f:e4:cf:34:25:1f:95:4a:ad:45:2a:85:c0:7e:e7:03:d6: 4d:56:70:a0:a9:2b:cc:0e:0d:10:ca:b7:58:40:55:94:26:20: ce:1c:bc:21:67:1a:e9:60:fc:bc:47:0c:4c:32:75:ff:e9:9b: 5d:94:d5:49:ff:6d:01:b0:cc:fd:b6:25:37:a2:3a:d2:b0:51: 30:4f:a1:c5 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUeXka/gyA8yY8SOl84U8Vgk1ZliIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNjA0MjkzOVoX DTI2MDUwNTA0MzQzOVowMzExMC8GA1UEAxMoQkMxQzE0NzkyMTE3NDE4Q0JCQTk2 OUZDNzA4MERGMUQxMUY3OThENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK6oX0TJOOoiiBJv7aqEc8CytCkyo7G9AuYS6qRUBNahbh8rqazlky8SpatE z1x6dBzVHpvJfc5s7qY79yw7GoSsW1TMDZ+hq7LzEmGsUfa5G1GcETE1atCdM47N Cb/qY3rgFWZr6Onb3cpcaNFgmGNUwiG0TDnK2NCJO1O1PHnhcu6Al/PL9UeNLtm+ 0s+PmlKrs78WYaRi6NAGMzXwcIc9klC99vH3QQVqXVBQQcI17chV7GavhWwgjevc OMUX+cUAst8fudysBEcE4eN3qL2DYaqVQJiuXXpEUrPpqyXZ8MmABnkMwgyWsZ9a AUdXmXCd00qPxcQZ/ZgL2yg+WvMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBS8HBR5 IRdBjLupafxwgN8dEfeY1zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKM9LzAPBAIAAjAJAwcAIAEN9QdAMA0GCSqGSIb3DQEBCwUAA4IB AQBnKPR/znEL0DVhzOYHnkA0hfQNrdlEbOapjDfsToksWgEgUK4+vl4w70DEdzsp PRYFUlyHL7b1jZbYL+2mScC5zCqLXngSpk3xDQjZoK0vZlPWY31taH6Cv8NxIQiz VZO82IJB3qKxhQj8lqrNGA517RoqkyfsF/7OeiyWudpt84bEyVmLtUFmQHm75Ydp f6lDiReGnyPMrE2a9/EMvRyQQ3nF26SV5n9t+S7yfeH6JGxDcQpmX+TPNCUflUqt RSqFwH7nA9ZNVnCgqSvMDg0QyrdYQFWUJiDOHLwhZxrpYPy8RwxMMnX/6ZtdlNVJ /20BsMz9tiU3ojrSsFEwT6HF -----END CERTIFICATE-----Generated at Tue Jun 3 23:15:11 2025 by rpki-client