$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152050.roa File: AS152050.roa (raw, json) Hash identifier: fkgsOFORscTXRg/nlpen730KVqKc19LDJViVxjwN6IU= Subject key identifier: 48:71:31:0D:C4:87:F6:37:2A:DC:F0:2B:67:3B:AC:31:5D:95:BE:37 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 2455823C96DAC3CEE21FF6E3AF5E181331FCCE1A Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152050.roa Signing time: Sat 02 May 2026 09:23:26 +0000 ROA not before: Sat 02 May 2026 09:18:26 +0000 ROA not after: Sat 01 May 2027 09:23:26 +0000 asID: 152050 IP address blocks: 138.252.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:55:82:3c:96:da:c3:ce:e2:1f:f6:e3:af:5e:18:13:31:fc:ce:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:26 2026 GMT Not After : May 1 09:23:26 2027 GMT Subject: CN=4871310DC487F6372ADCF02B673BAC315D95BE37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:62:87:2c:30:33:a0:82:93:07:01:68:c9: 3e:ea:37:d3:de:a0:b6:6f:f0:e3:cc:2f:24:05:93: a9:21:e7:c4:80:da:67:29:30:7b:cb:50:51:c7:fc: 29:67:45:06:e3:bb:3c:9d:7c:7e:37:07:19:34:57: 21:87:e9:41:84:e1:ae:58:3a:2b:a0:e1:80:5d:40: 3c:13:76:a0:77:7b:7d:da:59:5c:7c:8d:29:50:e1: 42:1a:01:dd:8d:8c:2e:b9:10:60:ed:88:ba:59:b6: bc:ef:c9:91:50:c0:4f:37:eb:a2:46:0c:8e:8a:f2: c2:99:47:3e:72:86:50:d3:55:40:bc:fb:3e:e6:ce: b7:d5:c0:63:f0:bb:92:4d:05:7a:ba:3d:57:0f:dc: 88:d1:5a:b6:af:97:88:9e:8e:6d:29:08:da:a2:e7: f7:57:c3:1c:e6:da:f5:d4:8a:27:61:84:dc:5e:11: 84:6e:00:ae:94:c3:28:dc:3b:9c:23:4b:2a:25:75: ee:f3:08:fc:b7:7c:c4:50:6e:a4:ea:94:78:7b:eb: 99:8c:0d:52:84:ab:38:b6:ff:c0:4f:87:26:26:90: 9d:05:11:86:51:c4:c4:8e:9d:a2:5b:c3:21:b2:d0: 88:c9:6c:da:96:16:92:b4:a0:6d:62:23:76:66:65: 81:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:71:31:0D:C4:87:F6:37:2A:DC:F0:2B:67:3B:AC:31:5D:95:BE:37 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152050.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.157.0/24 Signature Algorithm: sha256WithRSAEncryption 64:de:fb:87:fb:4c:c2:4e:89:23:ea:a8:8f:ed:34:1c:bc:4c: 33:a0:ac:3c:38:69:e8:35:b7:f5:8e:61:11:db:7c:04:7b:7d: 14:ca:ac:ff:6e:81:a1:63:ec:23:a5:41:75:21:97:03:ae:f2: 3d:7c:df:86:2b:7a:ee:2c:f8:a9:8b:fb:54:11:8b:01:8b:a1: 5e:54:b8:81:f4:8d:96:46:4c:19:15:05:ac:21:8b:cb:b9:36: ba:e5:05:0c:22:bf:cf:ac:c7:ae:00:2f:c2:90:e3:99:bb:50: b9:6e:a9:34:ca:13:74:6d:95:0a:fc:a5:4b:6c:12:30:4c:2a: 5b:54:e8:32:9f:28:57:59:9f:9f:d5:45:98:41:88:48:ea:e7: df:db:0d:98:30:5e:f5:f2:9d:d0:1d:17:55:34:ae:80:70:5b: 4e:b9:62:6e:2b:a6:f5:9f:5a:4e:e9:4c:76:e9:9d:9e:d0:55: c4:2a:f9:73:0d:84:05:a1:26:66:c4:d8:8a:48:a4:ce:99:bc: 6d:1d:8c:f2:c7:05:46:ce:6c:34:77:ae:71:66:62:8a:cb:a0: 3e:27:3d:53:1f:2e:7c:80:81:65:e4:96:dd:90:06:b2:fb:a1: 37:88:83:b4:15:ee:37:7c:17:39:8c:ed:cd:ab:38:e6:97:06: 1b:13:63:f4 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUJFWCPJbaw87iH/bjr14YEzH8zhowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgyNloX DTI3MDUwMTA5MjMyNlowMzExMC8GA1UEAxMoNDg3MTMxMERDNDg3RjYzNzJBRENG MDJCNjczQkFDMzE1RDk1QkUzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMmYocsMDOggpMHAWjJPuo3096gtm/w48wvJAWTqSHnxIDaZykwe8tQUcf8 KWdFBuO7PJ18fjcHGTRXIYfpQYThrlg6K6DhgF1APBN2oHd7fdpZXHyNKVDhQhoB 3Y2MLrkQYO2Iulm2vO/JkVDATzfrokYMjorywplHPnKGUNNVQLz7PubOt9XAY/C7 kk0Fero9Vw/ciNFatq+XiJ6ObSkI2qLn91fDHOba9dSKJ2GE3F4RhG4ArpTDKNw7 nCNLKiV17vMI/Ld8xFBupOqUeHvrmYwNUoSrOLb/wE+HJiaQnQURhlHExI6dolvD IbLQiMls2pYWkrSgbWIjdmZlgRMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRIcTEN xIf2Nyrc8CtnO6wxXZW+NzAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyMDUwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAivydMA0GCSqGSIb3DQEBCwUAA4IBAQBk3vuH+0zCTokj6qiP7TQcvEwz oKw8OGnoNbf1jmER23wEe30Uyqz/boGhY+wjpUF1IZcDrvI9fN+GK3ruLPipi/tU EYsBi6FeVLiB9I2WRkwZFQWsIYvLuTa65QUMIr/PrMeuAC/CkOOZu1C5bqk0yhN0 bZUK/KVLbBIwTCpbVOgynyhXWZ+f1UWYQYhI6uff2w2YMF718p3QHRdVNK6AcFtO uWJuK6b1n1pO6Ux26Z2e0FXEKvlzDYQFoSZmxNiKSKTOmbxtHYzyxwVGzmw0d65x ZmKKy6A+Jz1THy58gIFl5JbdkAay+6E3iIO0Fe43fBc5jO3NqzjmlwYbE2P0 -----END CERTIFICATE-----Generated at Sat May 2 21:04:36 2026 by rpki-client