$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153863.roa File: AS153863.roa (raw, json) Hash identifier: JnvFGn/PCUZjqaWc+uR7K9bCL2ny1QX+eB1u53Fa5gw= Subject key identifier: 63:FE:1A:FC:52:D6:CF:C8:98:96:EE:E4:6D:D9:27:BE:E9:19:C3:1E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 31833FD1EFDDB28A125B87F52CA7FECA721A3EAE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153863.roa Signing time: Thu 08 May 2025 03:51:06 +0000 ROA not before: Thu 08 May 2025 03:46:06 +0000 ROA not after: Thu 07 May 2026 03:51:06 +0000 asID: 153863 IP address blocks: 163.227.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:83:3f:d1:ef:dd:b2:8a:12:5b:87:f5:2c:a7:fe:ca:72:1a:3e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 8 03:46:06 2025 GMT Not After : May 7 03:51:06 2026 GMT Subject: CN=63FE1AFC52D6CFC89896EEE46DD927BEE919C31E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f1:a1:4d:d9:9d:52:3e:68:ac:03:29:b5:b5: 09:8c:6c:b2:f1:65:1b:5f:6f:e6:24:6a:01:45:ba: 1c:e5:07:ad:21:6b:a5:22:1c:79:4f:1c:c3:e6:34: 99:0f:7f:2e:ef:98:df:a2:dc:13:51:2d:2e:67:1b: e6:da:24:db:c2:9e:08:43:d2:26:41:59:50:b3:80: fa:6c:5b:1a:f2:55:32:74:cb:21:dc:9a:e8:7b:63: 2c:fc:02:0f:e0:a5:63:ef:7c:33:6c:fe:6d:a6:71: f6:a4:15:93:97:5c:50:ef:cf:01:6f:9e:0b:07:cf: 44:b7:ed:2a:a1:65:63:71:5d:52:65:da:74:f5:5b: 41:b3:97:b0:f8:b0:b9:36:55:11:a9:04:63:d8:ab: 16:79:84:30:42:d5:7b:99:6f:bf:b1:a4:97:6b:c5: 05:a3:bc:6f:e5:7d:d2:f0:0a:9e:57:3e:3d:f3:55: 9b:79:b2:d8:fe:16:9b:ca:e8:a3:d8:72:f8:21:9e: 2e:ba:6e:a9:4f:df:18:57:b2:05:1a:e2:f4:a0:31: a4:dc:a8:f8:33:77:33:95:f4:5f:63:3d:b4:3e:92: bc:8b:32:7c:92:73:60:de:5d:ed:ec:b1:a8:cb:ae: 89:7a:ef:64:9f:0b:dd:77:36:6e:08:c3:0d:14:d2: 7f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:FE:1A:FC:52:D6:CF:C8:98:96:EE:E4:6D:D9:27:BE:E9:19:C3:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153863.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.220.0/24 Signature Algorithm: sha256WithRSAEncryption 33:47:93:7c:5f:70:25:5a:13:68:a4:cf:03:24:4b:c3:77:21: 02:88:02:11:ff:6f:ec:3b:65:8b:1c:41:0e:1a:c7:d6:cf:62: b8:07:ab:d4:45:28:58:d3:2e:34:82:4c:07:6e:69:97:a9:c5: 61:a2:47:38:3f:0d:ec:30:41:da:8a:71:47:4a:59:70:93:1d: c7:08:bf:f3:98:3a:48:a0:d4:24:fb:be:af:69:17:d4:4c:05: f4:8b:54:88:e8:14:c3:d7:0c:cc:25:72:dc:bf:91:fa:43:53: 95:00:02:3d:be:d5:88:ba:33:bb:ab:f0:ff:6c:df:38:92:52: 8f:5e:33:47:6b:59:19:09:a4:6d:0e:2b:7b:a8:27:7b:a1:ff: 39:39:4b:bf:2c:d5:16:8e:18:04:27:4d:4a:c0:73:89:da:79: 09:27:79:f4:48:3b:2e:f3:7f:59:53:7e:00:90:ad:24:d7:bb: 5e:dc:53:35:c3:fc:68:43:68:5f:a1:06:3e:3e:7a:b8:75:8a: 5d:6a:e0:ca:51:0c:bc:5b:f4:2c:0b:1d:33:27:1f:0a:8e:46: 4b:a8:db:a5:c0:d4:06:a0:92:99:98:5c:29:3a:ca:30:56:63: fe:59:66:bd:4b:85:ac:af:e5:18:23:43:ef:de:a3:3e:2f:d7: 9b:ad:8e:06 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMYM/0e/dsooSW4f1LKf+ynIaPq4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwODAzNDYwNloX DTI2MDUwNzAzNTEwNlowMzExMC8GA1UEAxMoNjNGRTFBRkM1MkQ2Q0ZDODk4OTZF RUU0NkREOTI3QkVFOTE5QzMxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnxoU3ZnVI+aKwDKbW1CYxssvFlG19v5iRqAUW6HOUHrSFrpSIceU8cw+Y0 mQ9/Lu+Y36LcE1EtLmcb5tok28KeCEPSJkFZULOA+mxbGvJVMnTLIdya6HtjLPwC D+ClY+98M2z+baZx9qQVk5dcUO/PAW+eCwfPRLftKqFlY3FdUmXadPVbQbOXsPiw uTZVEakEY9irFnmEMELVe5lvv7Gkl2vFBaO8b+V90vAKnlc+PfNVm3my2P4Wm8ro o9hy+CGeLrpuqU/fGFeyBRri9KAxpNyo+DN3M5X0X2M9tD6SvIsyfJJzYN5d7eyx qMuuiXrvZJ8L3Xc2bgjDDRTSf9cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRj/hr8 UtbPyJiW7uRt2Se+6RnDHjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1Mzg2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPj3DANBgkqhkiG9w0BAQsFAAOCAQEAM0eTfF9wJVoTaKTPAyRL w3chAogCEf9v7DtlixxBDhrH1s9iuAer1EUoWNMuNIJMB25pl6nFYaJHOD8N7DBB 2opxR0pZcJMdxwi/85g6SKDUJPu+r2kX1EwF9ItUiOgUw9cMzCVy3L+R+kNTlQAC Pb7ViLozu6vw/2zfOJJSj14zR2tZGQmkbQ4re6gne6H/OTlLvyzVFo4YBCdNSsBz idp5CSd59Eg7LvN/WVN+AJCtJNe7XtxTNcP8aENoX6EGPj56uHWKXWrgylEMvFv0 LAsdMycfCo5GS6jbpcDUBqCSmZhcKTrKMFZj/llmvUuFrK/lGCND796jPi/Xm62O Bg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:11:03 2025 by rpki-client