$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153816.roa File: AS153816.roa (raw, json) Hash identifier: rybfziSftAR6E/uIYb6K4ukgM925iXd46c8iU+3Nd1k= Subject key identifier: D0:C4:D9:45:E4:6F:BC:80:85:23:B2:5C:2B:0C:CD:2E:89:0C:DF:29 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 33BBE46E4EDE9BBD3372B1C9A256A8FA1FB050D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153816.roa Signing time: Wed 14 May 2025 09:51:05 +0000 ROA not before: Wed 14 May 2025 09:46:05 +0000 ROA not after: Wed 13 May 2026 09:51:05 +0000 asID: 153816 IP address blocks: 163.61.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:bb:e4:6e:4e:de:9b:bd:33:72:b1:c9:a2:56:a8:fa:1f:b0:50:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 14 09:46:05 2025 GMT Not After : May 13 09:51:05 2026 GMT Subject: CN=D0C4D945E46FBC808523B25C2B0CCD2E890CDF29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:72:41:cc:59:8f:ac:dd:e1:32:8a:be:ec:1c: 8d:b7:cc:39:0d:03:85:eb:8c:d2:b7:79:c1:6f:13: 43:52:c6:ce:3b:f0:c2:18:dd:47:5c:dc:e8:f5:54: 3a:f7:98:c1:16:b4:42:d3:14:4b:b3:a4:7d:6c:bd: f7:ae:45:52:72:1a:7f:d7:09:af:35:c0:31:fd:d1: eb:b9:e9:e7:1c:0b:dc:e1:b6:d5:99:74:53:b5:79: 00:84:49:83:35:59:ac:da:8a:b1:7a:60:67:3c:61: 82:5b:2e:32:91:4a:d4:0c:67:bc:7e:d4:05:de:82: 17:71:54:ec:bc:89:49:78:e1:bd:0d:b5:f7:74:56: 38:50:2a:a3:2a:1d:a4:44:0c:25:49:fd:85:67:ad: 82:43:14:1d:01:67:6c:5a:1c:fb:a5:d7:75:ac:1f: 38:1b:11:6b:b8:19:27:e9:dd:d1:5a:40:fc:a2:cd: 32:a3:32:ba:11:b2:c8:d0:f3:93:06:56:1f:85:c2: 40:ad:8f:31:9e:fd:7c:d0:65:64:59:86:62:24:92: de:8a:3b:a2:34:95:69:89:51:32:c3:e7:2d:b2:46: cf:8b:7a:de:81:29:35:2a:00:03:06:34:5e:b5:bb: e8:7d:a2:67:51:9d:4b:45:b4:8a:b6:75:64:4a:aa: d5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C4:D9:45:E4:6F:BC:80:85:23:B2:5C:2B:0C:CD:2E:89:0C:DF:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153816.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.201.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:52:c9:84:c0:2e:4b:e1:09:14:3e:04:33:a5:2b:06:23:14: 06:ad:f0:45:93:40:98:be:d2:bd:5d:07:1d:72:74:a3:14:19: ac:25:a1:c9:45:38:d3:7c:98:29:d7:29:52:f2:e6:d7:3f:db: 10:64:7e:95:72:ef:e0:8d:0f:28:e2:8e:fd:80:ad:b8:05:bf: 60:1e:cf:ae:b6:45:f5:46:34:62:f3:ec:5f:78:fd:4a:15:0d: bc:19:b7:54:4f:50:af:c7:d7:93:27:97:4b:d4:0e:bb:4d:61: 2b:10:f6:2d:d4:13:1c:57:88:c7:cb:5d:21:e8:99:79:fe:a8: df:15:47:0a:e6:78:b3:e7:27:76:3c:67:61:f0:33:51:c3:65: d5:27:dd:1a:79:9a:63:53:a5:5d:34:00:90:c5:13:44:4a:93: ec:92:c4:3e:1f:4e:fa:17:05:b5:be:d4:1c:87:8f:f5:bf:75: c5:31:7e:e4:f4:73:07:3e:dc:6f:3a:cc:ce:d0:2f:a6:cd:88: 32:29:12:ca:6c:54:a4:43:f0:e8:65:3d:e6:d4:a1:d9:f2:d2: fe:9c:74:cb:af:49:14:35:cc:c0:f3:cc:65:38:58:71:36:8d: df:54:f7:5c:79:f8:00:0a:b8:b5:9e:af:9f:36:2d:b7:f7:0c: 43:88:b3:8f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUM7vkbk7em70zcrHJolao+h+wUNYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUxNDA5NDYwNVoX DTI2MDUxMzA5NTEwNVowMzExMC8GA1UEAxMoRDBDNEQ5NDVFNDZGQkM4MDg1MjNC MjVDMkIwQ0NEMkU4OTBDREYyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRyQcxZj6zd4TKKvuwcjbfMOQ0DheuM0rd5wW8TQ1LGzjvwwhjdR1zc6PVU OveYwRa0QtMUS7OkfWy9965FUnIaf9cJrzXAMf3R67np5xwL3OG21Zl0U7V5AIRJ gzVZrNqKsXpgZzxhglsuMpFK1AxnvH7UBd6CF3FU7LyJSXjhvQ2193RWOFAqoyod pEQMJUn9hWetgkMUHQFnbFoc+6XXdawfOBsRa7gZJ+nd0VpA/KLNMqMyuhGyyNDz kwZWH4XCQK2PMZ79fNBlZFmGYiSS3oo7ojSVaYlRMsPnLbJGz4t63oEpNSoAAwY0 XrW76H2iZ1GdS0W0irZ1ZEqq1V8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTQxNlF 5G+8gIUjslwrDM0uiQzfKTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzgxNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKM9yTANBgkqhkiG9w0BAQsFAAOCAQEAOlLJhMAuS+EJFD4EM6Ur BiMUBq3wRZNAmL7SvV0HHXJ0oxQZrCWhyUU403yYKdcpUvLm1z/bEGR+lXLv4I0P KOKO/YCtuAW/YB7PrrZF9UY0YvPsX3j9ShUNvBm3VE9Qr8fXkyeXS9QOu01hKxD2 LdQTHFeIx8tdIeiZef6o3xVHCuZ4s+cndjxnYfAzUcNl1SfdGnmaY1OlXTQAkMUT REqT7JLEPh9O+hcFtb7UHIeP9b91xTF+5PRzBz7cbzrMztAvps2IMikSymxUpEPw 6GU95tSh2fLS/px0y69JFDXMwPPMZThYcTaN31T3XHn4AAq4tZ6vnzYtt/cMQ4iz jw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:12:07 2025 by rpki-client