$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153699.roa File: AS153699.roa (raw, json) Hash identifier: ek5fXg/VKJInv5OtAE8ciw8Dow2v03QFkQw/NMl7r0E= Subject key identifier: 04:B0:69:BA:94:C7:65:6F:15:93:D8:31:4B:32:60:26:F4:13:27:D2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 481C0CDB4B160373A398C943F5E13CA80AE4F563 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153699.roa Signing time: Tue 06 May 2025 03:36:25 +0000 ROA not before: Tue 06 May 2025 03:31:25 +0000 ROA not after: Tue 05 May 2026 03:36:25 +0000 asID: 153699 IP address blocks: 163.223.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1c:0c:db:4b:16:03:73:a3:98:c9:43:f5:e1:3c:a8:0a:e4:f5:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 6 03:31:25 2025 GMT Not After : May 5 03:36:25 2026 GMT Subject: CN=04B069BA94C7656F1593D8314B326026F41327D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9e:2e:16:28:71:04:e8:e5:ef:67:42:5d:ae: dc:93:9b:bf:7d:4d:aa:8a:87:0e:c3:07:5b:82:b5: eb:ec:ec:88:a0:73:58:af:a4:ea:44:1a:36:b3:09: 5c:96:46:f6:2c:5d:e8:57:e2:d4:ce:f3:31:77:d8: 2f:cc:ec:67:55:b5:28:a7:26:cd:ba:fe:88:2f:59: 23:be:a0:f7:57:6e:f9:c4:98:06:57:01:fb:d3:9e: 9e:9a:d7:20:38:f6:55:d9:e0:ef:b1:f0:cc:35:7a: f3:4b:98:f4:c8:ef:06:fb:7b:09:a7:ed:42:76:3c: 1f:0b:1a:b1:0b:1d:c2:1c:c4:71:02:74:6b:9c:94: 8d:5a:37:8b:bb:9b:d1:9f:26:fc:50:82:a1:99:6c: a7:e4:ef:82:cf:8e:b9:d5:fd:c7:48:c1:5f:e8:2a: d0:21:ed:b6:a3:2a:3b:c8:2e:00:86:57:87:95:87: 9a:a9:4c:fb:62:f6:d2:54:ab:72:ab:52:2e:02:2c: 1c:79:11:ab:00:bf:a2:cf:02:5f:f4:ee:2f:4d:0a: e2:66:b7:e9:74:5a:63:37:97:e2:2a:23:d3:df:cf: 8a:a6:c0:d8:33:98:f3:7e:45:30:92:f0:e2:b4:0d: bd:d0:a4:ed:c2:2d:8c:0d:f3:01:9f:2d:88:3b:e7: 39:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B0:69:BA:94:C7:65:6F:15:93:D8:31:4B:32:60:26:F4:13:27:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.113.0/24 Signature Algorithm: sha256WithRSAEncryption 92:c0:a8:17:7a:16:65:0a:01:0d:01:81:b8:4f:bf:c4:75:08: 12:49:8f:63:4f:55:07:f0:86:24:6e:3a:32:df:63:3b:25:0a: 8a:15:6f:88:5e:4f:f4:14:e3:47:0c:d4:69:bf:4a:0a:0e:6b: 07:88:81:d2:d0:e9:a0:a2:d5:af:1c:0a:c3:7c:da:ad:c4:22: 67:db:d1:23:c3:f5:b5:96:d4:2f:fc:96:0c:b6:47:88:28:17: 0a:d7:79:62:da:4a:54:88:92:51:cc:e5:3a:53:e0:3d:be:8c: 7f:df:0b:61:30:45:74:85:a9:79:18:e9:98:8d:72:d7:24:1b: 32:2f:d8:b2:f0:07:3c:f9:d2:b3:50:9b:d2:0c:00:e3:00:fc: 94:cc:f4:8c:43:7c:8d:5e:8b:e1:2f:a8:b3:29:cc:f3:19:48: 3c:8d:69:68:48:b0:2b:31:b5:a0:ba:c7:7c:19:7d:88:1b:c2: a8:72:91:7b:4f:e2:bf:1a:74:61:dd:64:99:a6:f4:bd:d6:9a: 70:e4:30:3e:98:cd:11:74:22:c2:32:a6:56:8a:15:cb:3d:ca: 06:39:a9:dc:4f:2b:63:78:d2:35:5e:c8:07:c2:f9:ae:23:7e: 62:66:88:6b:28:4e:97:8a:75:8a:8c:5e:dd:aa:19:3c:d6:56: 09:74:79:6d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSBwM20sWA3OjmMlD9eE8qArk9WMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNjAzMzEyNVoX DTI2MDUwNTAzMzYyNVowMzExMC8GA1UEAxMoMDRCMDY5QkE5NEM3NjU2RjE1OTNE ODMxNEIzMjYwMjZGNDEzMjdEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOSeLhYocQTo5e9nQl2u3JObv31NqoqHDsMHW4K16+zsiKBzWK+k6kQaNrMJ XJZG9ixd6Ffi1M7zMXfYL8zsZ1W1KKcmzbr+iC9ZI76g91du+cSYBlcB+9OenprX IDj2Vdng77HwzDV680uY9MjvBvt7CaftQnY8HwsasQsdwhzEcQJ0a5yUjVo3i7ub 0Z8m/FCCoZlsp+Tvgs+OudX9x0jBX+gq0CHttqMqO8guAIZXh5WHmqlM+2L20lSr cqtSLgIsHHkRqwC/os8CX/TuL00K4ma36XRaYzeX4ioj09/PiqbA2DOY835FMJLw 4rQNvdCk7cItjA3zAZ8tiDvnOecCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEsGm6 lMdlbxWT2DFLMmAm9BMn0jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzY5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPfcTANBgkqhkiG9w0BAQsFAAOCAQEAksCoF3oWZQoBDQGBuE+/ xHUIEkmPY09VB/CGJG46Mt9jOyUKihVviF5P9BTjRwzUab9KCg5rB4iB0tDpoKLV rxwKw3zarcQiZ9vRI8P1tZbUL/yWDLZHiCgXCtd5YtpKVIiSUczlOlPgPb6Mf98L YTBFdIWpeRjpmI1y1yQbMi/YsvAHPPnSs1Cb0gwA4wD8lMz0jEN8jV6L4S+osynM 8xlIPI1paEiwKzG1oLrHfBl9iBvCqHKRe0/ivxp0Yd1kmab0vdaacOQwPpjNEXQi wjKmVooVyz3KBjmp3E8rY3jSNV7IB8L5riN+YmaIayhOl4p1ioxe3aoZPNZWCXR5 bQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:14:54 2025 by rpki-client