$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153801.roa File: AS153801.roa (raw, json) Hash identifier: gaEyMAwvdC7UaP0nVzwqaDMU6Jg9shFtQmd0pSFD/l4= Subject key identifier: 0B:1E:7E:43:C3:F5:5E:18:3D:65:63:40:62:C2:1A:A8:4F:89:F5:7F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C9EFAAFAC11528DBF020BA60DB66A56D1042919 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153801.roa Signing time: Tue 13 May 2025 11:53:43 +0000 ROA not before: Tue 13 May 2025 11:48:43 +0000 ROA not after: Tue 12 May 2026 11:53:43 +0000 asID: 153801 IP address blocks: 163.227.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:9e:fa:af:ac:11:52:8d:bf:02:0b:a6:0d:b6:6a:56:d1:04:29:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 13 11:48:43 2025 GMT Not After : May 12 11:53:43 2026 GMT Subject: CN=0B1E7E43C3F55E183D65634062C21AA84F89F57F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a0:03:2d:52:85:93:b5:07:37:b5:c0:36:f8: 51:0d:a5:35:96:75:69:ae:47:7c:aa:0f:05:8b:59: 5a:56:fa:15:27:a1:91:cb:b1:4e:04:68:1b:38:94: 80:b1:57:2a:d9:c6:d6:43:e2:08:1f:22:21:6a:43: 36:8c:0f:2b:7e:81:b5:e0:f8:71:4c:d1:7a:69:f3: 4e:58:39:7c:dd:e1:f3:64:d7:b3:f4:d7:b1:9e:a6: 21:6e:4c:7b:6a:56:34:c6:f4:e2:4b:8c:0e:54:23: dd:2b:c6:ea:6b:16:fd:66:2a:c0:fa:1c:52:bc:49: db:66:4c:61:af:62:bb:f0:62:4d:85:e7:e3:59:24: a3:d8:75:ba:52:19:47:5f:4e:3f:c1:2a:41:40:0a: e8:03:81:cd:f0:2f:2b:aa:f6:87:ab:b2:b7:d1:fe: 22:2a:da:a5:16:15:47:d3:e8:de:d0:7c:db:1f:fb: c1:fc:41:26:62:7b:16:23:81:a6:9c:69:c5:36:3c: 7c:68:ef:e6:d7:35:5a:54:33:77:e0:13:9d:2d:84: ab:e3:df:ab:77:bc:7a:7c:64:22:7d:83:5b:41:91: 3d:ba:98:d1:13:75:30:9e:31:4f:61:80:0f:62:fd: 63:0d:eb:97:b3:2f:13:c5:7d:fd:4f:bb:d3:72:dd: d5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1E:7E:43:C3:F5:5E:18:3D:65:63:40:62:C2:1A:A8:4F:89:F5:7F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153801.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.0.0/24 Signature Algorithm: sha256WithRSAEncryption 16:1e:83:0d:6c:06:69:e3:78:2d:c8:f6:d7:fa:52:b3:f8:55: a0:10:de:6a:97:8a:be:6f:bf:ba:54:22:cd:37:55:07:9f:ec: 39:5c:b6:17:cc:ad:a9:e4:79:7a:fe:fb:63:a3:52:2b:06:ce: a0:7e:e1:fd:8f:7a:c3:70:22:9e:88:d3:37:51:fe:ca:c2:07: 99:0a:0f:db:f7:ab:94:a9:bd:12:c2:6a:77:08:c9:38:aa:20: 4a:39:13:65:a9:9b:24:35:0a:43:9b:2e:ea:6f:5c:74:22:af: 48:1a:1e:67:b9:46:0d:4d:79:25:d1:2e:9a:4b:63:7c:ae:e1: a0:5a:7c:89:70:5a:7e:19:22:36:db:5e:64:08:3c:98:c1:06: 8e:41:9d:5d:72:3e:fd:02:e9:43:bd:79:7c:a0:0d:28:bc:5b: 35:b3:c0:68:b0:a2:3c:0a:2f:bf:08:41:07:11:64:5c:e6:cc: e9:de:a1:e9:81:39:d1:c6:7c:8f:15:89:23:d9:44:c6:7c:53: 32:06:f5:48:17:e4:94:60:a7:13:48:0d:4c:65:de:6e:9f:4f: 01:75:18:8e:2c:53:81:6f:73:5b:1d:17:e2:42:b2:76:e9:11: ce:5e:9b:25:7e:ee:8e:e8:2d:34:e8:5d:e0:84:70:4f:77:79: e6:1b:09:f4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDJ76r6wRUo2/AgumDbZqVtEEKRkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUxMzExNDg0M1oX DTI2MDUxMjExNTM0M1owMzExMC8GA1UEAxMoMEIxRTdFNDNDM0Y1NUUxODNENjU2 MzQwNjJDMjFBQTg0Rjg5RjU3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJegAy1ShZO1Bze1wDb4UQ2lNZZ1aa5HfKoPBYtZWlb6FSehkcuxTgRoGziU gLFXKtnG1kPiCB8iIWpDNowPK36BteD4cUzRemnzTlg5fN3h82TXs/TXsZ6mIW5M e2pWNMb04kuMDlQj3SvG6msW/WYqwPocUrxJ22ZMYa9iu/BiTYXn41kko9h1ulIZ R19OP8EqQUAK6AOBzfAvK6r2h6uyt9H+IirapRYVR9Po3tB82x/7wfxBJmJ7FiOB ppxpxTY8fGjv5tc1WlQzd+ATnS2Eq+Pfq3e8enxkIn2DW0GRPbqY0RN1MJ4xT2GA D2L9Yw3rl7MvE8V9/U+703Ld1SUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQLHn5D w/VeGD1lY0BiwhqoT4n1fzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzgwMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPjADANBgkqhkiG9w0BAQsFAAOCAQEAFh6DDWwGaeN4Lcj21/pS s/hVoBDeapeKvm+/ulQizTdVB5/sOVy2F8ytqeR5ev77Y6NSKwbOoH7h/Y96w3Ai nojTN1H+ysIHmQoP2/erlKm9EsJqdwjJOKogSjkTZambJDUKQ5su6m9cdCKvSBoe Z7lGDU15JdEumktjfK7hoFp8iXBafhkiNtteZAg8mMEGjkGdXXI+/QLpQ715fKAN KLxbNbPAaLCiPAovvwhBBxFkXObM6d6h6YE50cZ8jxWJI9lExnxTMgb1SBfklGCn E0gNTGXebp9PAXUYjixTgW9zWx0X4kKydukRzl6bJX7ujugtNOhd4IRwT3d55hsJ 9A== -----END CERTIFICATE-----Generated at Tue Jun 3 23:13:21 2025 by rpki-client