$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153824.roa File: AS153824.roa (raw, json) Hash identifier: qaA+ijofBJsCIJblq6m+oeQBJwkiPrcdxZ4l8mPegLg= Subject key identifier: 49:A7:94:E4:3B:B6:1C:6E:6F:06:4F:16:B3:1F:C1:EB:20:23:5A:B1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5994C76C5980A0E9B0413518816C87A51003C3E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153824.roa Signing time: Wed 28 May 2025 06:35:21 +0000 ROA not before: Wed 28 May 2025 06:30:21 +0000 ROA not after: Wed 27 May 2026 06:35:21 +0000 asID: 153824 IP address blocks: 163.227.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:94:c7:6c:59:80:a0:e9:b0:41:35:18:81:6c:87:a5:10:03:c3:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 28 06:30:21 2025 GMT Not After : May 27 06:35:21 2026 GMT Subject: CN=49A794E43BB61C6E6F064F16B31FC1EB20235AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:09:1e:16:51:9c:95:56:6e:70:3e:4a:53:a6: 81:53:ec:82:ff:c1:52:33:3e:bf:8e:47:02:d9:64: d9:5c:24:3d:dd:6d:55:e0:e1:17:98:d6:72:92:1a: d5:a3:85:eb:11:86:b0:98:87:c7:be:67:23:be:2a: 6c:4f:92:af:81:89:aa:39:7c:94:ab:39:9f:81:94: 89:e6:f4:1e:2c:2f:f0:e2:2d:47:18:ed:07:37:20: 5c:0d:6e:06:40:92:8a:ed:76:57:cd:b1:a6:ae:e9: 30:0c:81:31:1c:66:c1:31:5e:cf:c5:7e:3a:38:a5: 4a:f1:53:fa:1d:de:c3:86:e2:d1:89:91:94:c1:1a: 7c:a8:bc:12:ad:66:64:75:e9:87:f1:a8:d2:20:a7: 4a:38:f7:f9:b5:c5:71:07:63:db:d3:78:39:a8:b2: 6d:9b:27:9b:8a:a1:6c:07:0f:8c:ed:95:7c:b5:4c: 1c:f2:24:d7:0f:ab:1f:9f:63:40:5f:eb:79:43:f8: 7e:1f:ad:94:6f:bf:96:5e:57:d1:3e:c2:c6:c9:9b: 57:27:3c:57:9f:8c:c1:72:83:81:8e:03:f2:47:37: f0:1e:dd:1a:3f:2f:68:0c:3c:df:27:5a:f3:70:ad: 4f:b6:cd:29:da:31:8d:f6:90:f9:bd:95:72:17:0a: eb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A7:94:E4:3B:B6:1C:6E:6F:06:4F:16:B3:1F:C1:EB:20:23:5A:B1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153824.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.112.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:53:7a:8b:84:9e:0f:e5:d0:76:03:14:8e:7b:6c:0c:89:40: 23:8f:1a:f8:e1:51:50:0b:72:c7:a3:09:d7:e4:b3:ea:c2:34: e6:82:85:2e:b2:5c:da:cc:7b:e4:9e:38:39:f4:d9:19:df:2e: 1b:ea:5c:a0:0c:a7:32:ec:6d:e1:c3:7b:9b:9e:4f:4d:65:2d: ca:7e:5d:2a:f4:dd:38:2b:c5:4a:bd:94:9a:a3:91:a3:6d:ee: 8d:32:67:2d:6b:ed:f4:03:72:a6:14:8f:c1:e3:28:45:0a:3c: 02:f0:23:71:be:29:46:24:e3:c3:7e:00:7d:53:c6:e3:bc:8c: 1c:55:a0:d3:e9:99:c0:14:7e:ef:8a:eb:97:36:dc:b9:4a:08: 06:7d:29:ef:10:b4:c7:58:09:98:0c:d6:62:a3:c9:3a:4d:06: b9:f9:b1:37:96:32:85:db:30:93:67:3f:41:54:85:3e:5f:7c: f2:1f:da:46:f9:0c:a4:ad:5b:83:ac:95:5d:df:0d:fb:1d:aa: 66:01:48:25:16:15:a1:4c:c1:e2:33:40:82:e1:ef:f6:a5:b7: dc:ce:d4:b8:c2:39:97:bf:dc:f6:7a:8e:94:26:97:a1:7d:f5: 9f:98:69:1e:0b:4c:af:7f:ab:a2:85:f3:27:01:19:11:6e:43: bc:b8:2b:e5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWZTHbFmAoOmwQTUYgWyHpRADw+AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyODA2MzAyMVoX DTI2MDUyNzA2MzUyMVowMzExMC8GA1UEAxMoNDlBNzk0RTQzQkI2MUM2RTZGMDY0 RjE2QjMxRkMxRUIyMDIzNUFCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAJHhZRnJVWbnA+SlOmgVPsgv/BUjM+v45HAtlk2VwkPd1tVeDhF5jWcpIa 1aOF6xGGsJiHx75nI74qbE+Sr4GJqjl8lKs5n4GUieb0Hiwv8OItRxjtBzcgXA1u BkCSiu12V82xpq7pMAyBMRxmwTFez8V+OjilSvFT+h3ew4bi0YmRlMEafKi8Eq1m ZHXph/Go0iCnSjj3+bXFcQdj29N4OaiybZsnm4qhbAcPjO2VfLVMHPIk1w+rH59j QF/reUP4fh+tlG+/ll5X0T7CxsmbVyc8V5+MwXKDgY4D8kc38B7dGj8vaAw83yda 83CtT7bNKdoxjfaQ+b2VchcK66MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRJp5Tk O7Ycbm8GTxazH8HrICNasTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzgyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPjcDANBgkqhkiG9w0BAQsFAAOCAQEAbVN6i4SeD+XQdgMUjnts DIlAI48a+OFRUAtyx6MJ1+Sz6sI05oKFLrJc2sx75J44OfTZGd8uG+pcoAynMuxt 4cN7m55PTWUtyn5dKvTdOCvFSr2UmqORo23ujTJnLWvt9ANyphSPweMoRQo8AvAj cb4pRiTjw34AfVPG47yMHFWg0+mZwBR+74rrlzbcuUoIBn0p7xC0x1gJmAzWYqPJ Ok0GufmxN5Yyhdswk2c/QVSFPl988h/aRvkMpK1bg6yVXd8N+x2qZgFIJRYVoUzB 4jNAguHv9qW33M7UuMI5l7/c9nqOlCaXoX31n5hpHgtMr3+rooXzJwEZEW5DvLgr 5Q== -----END CERTIFICATE-----Generated at Tue Jun 3 23:14:22 2025 by rpki-client