$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152367.roa File: AS152367.roa (raw, json) Hash identifier: ZKCJ6D2MtkIisk/qZkCdcvF330Qv9kg7WU0WvEYgl5Y= Subject key identifier: F1:EA:6F:8C:73:42:CE:B5:BE:D4:FE:B8:EF:88:E8:4C:06:E1:A3:E6 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 6B47D0C868EBB7B74FFF9F2B41081FD3FDE952D4 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152367.roa Signing time: Sat 02 May 2026 09:22:47 +0000 ROA not before: Sat 02 May 2026 09:17:47 +0000 ROA not after: Sat 01 May 2027 09:22:47 +0000 asID: 152367 IP address blocks: 157.15.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:47:d0:c8:68:eb:b7:b7:4f:ff:9f:2b:41:08:1f:d3:fd:e9:52:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:17:47 2026 GMT Not After : May 1 09:22:47 2027 GMT Subject: CN=F1EA6F8C7342CEB5BED4FEB8EF88E84C06E1A3E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d5:a1:ef:4e:78:1c:41:9b:2d:06:5a:5f:ba: 0e:d8:9b:02:1b:11:0e:cd:43:24:31:1d:f8:97:03: f4:5b:89:0e:12:43:60:bb:65:93:5c:22:e0:e3:0f: ac:ad:e8:ab:0d:45:ae:c5:ae:10:78:7b:d6:3c:26: 8e:1b:be:c8:ea:76:3a:94:2b:78:6d:b6:f1:b2:18: 70:eb:01:0d:20:68:43:b0:3a:7b:94:64:3d:81:06: 13:78:32:c4:b5:90:1e:fd:b0:f8:f2:12:01:c8:eb: 42:03:99:43:ce:3d:8a:8c:2c:e5:ab:8e:41:29:07: 62:1c:bd:73:f5:51:2b:5a:ab:3b:10:a9:57:22:75: 1c:27:d5:bf:e4:13:75:48:e6:cc:58:13:31:57:0c: fb:b1:75:28:d9:b6:0e:97:b2:9a:af:cb:b4:b3:ab: 01:55:29:7b:fd:d0:e3:30:95:83:ec:26:7f:be:93: ee:f7:b2:ab:1f:5b:b3:b9:06:d0:2f:10:be:4c:6d: 41:a7:2a:c7:fa:8f:d5:a1:3f:bf:db:f3:5d:26:d8: a2:6c:21:bd:21:c1:0c:9a:44:33:c8:9c:33:f3:34: 22:01:03:fe:62:45:6a:6c:6b:1c:07:8a:d9:2d:75: 72:86:03:33:47:c5:ad:5e:11:31:40:a5:67:80:5b: fa:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EA:6F:8C:73:42:CE:B5:BE:D4:FE:B8:EF:88:E8:4C:06:E1:A3:E6 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152367.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.78.0/23 Signature Algorithm: sha256WithRSAEncryption 33:16:7f:68:2b:84:73:2b:c8:17:fe:7b:92:23:0c:9f:f6:73: 76:83:71:94:a1:9a:f9:56:a5:37:64:30:69:c9:6b:0c:2f:fa: be:08:5d:94:95:44:c9:8d:03:d1:6c:8e:24:02:ab:e8:72:e5: 3e:84:44:ac:4f:7d:2e:2d:db:79:87:c0:3a:4a:0a:18:5a:49: 6f:df:24:49:b0:71:61:12:81:85:4c:ac:57:ba:aa:d9:d7:5a: 7e:3f:23:73:81:ff:60:34:ce:99:4e:2c:8b:6a:3c:61:b3:2f: 3c:70:6b:1a:36:79:bc:c9:13:db:bb:7c:e3:d1:84:6f:9a:f9: 23:43:fb:ce:bd:38:77:a7:db:38:10:f5:17:9e:83:6b:e4:b4: ab:ad:76:87:7e:9b:27:a8:16:fc:fd:cd:d5:90:a8:ba:dd:a5: f6:08:a2:97:ad:89:76:54:22:38:cf:ff:ec:79:1f:a9:01:24: 63:d1:32:b8:61:93:c7:de:b8:65:bb:03:83:bc:92:c4:87:0a: 57:73:4c:39:10:c8:45:32:79:9b:f6:93:38:40:39:4a:8b:29: 0c:ca:bf:94:ff:24:ab:cb:0c:99:35:91:ff:43:a9:70:89:f6: c2:41:f3:b8:19:ab:cb:e0:46:c9:86:5b:57:46:73:09:3e:2c: c1:f7:5c:24 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUa0fQyGjrt7dP/58rQQgf0/3pUtQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTc0N1oX DTI3MDUwMTA5MjI0N1owMzExMC8GA1UEAxMoRjFFQTZGOEM3MzQyQ0VCNUJFRDRG RUI4RUY4OEU4NEMwNkUxQTNFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbVoe9OeBxBmy0GWl+6DtibAhsRDs1DJDEd+JcD9FuJDhJDYLtlk1wi4OMP rK3oqw1FrsWuEHh71jwmjhu+yOp2OpQreG228bIYcOsBDSBoQ7A6e5RkPYEGE3gy xLWQHv2w+PISAcjrQgOZQ849iows5auOQSkHYhy9c/VRK1qrOxCpVyJ1HCfVv+QT dUjmzFgTMVcM+7F1KNm2Dpeymq/LtLOrAVUpe/3Q4zCVg+wmf76T7veyqx9bs7kG 0C8QvkxtQacqx/qP1aE/v9vzXSbYomwhvSHBDJpEM8icM/M0IgED/mJFamxrHAeK 2S11coYDM0fFrV4RMUClZ4Bb+l8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTx6m+M c0LOtb7U/rjviOhMBuGj5jAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyMzY3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQ9OMA0GCSqGSIb3DQEBCwUAA4IBAQAzFn9oK4RzK8gX/nuSIwyf9nN2 g3GUoZr5VqU3ZDBpyWsML/q+CF2UlUTJjQPRbI4kAqvocuU+hESsT30uLdt5h8A6 SgoYWklv3yRJsHFhEoGFTKxXuqrZ11p+PyNzgf9gNM6ZTiyLajxhsy88cGsaNnm8 yRPbu3zj0YRvmvkjQ/vOvTh3p9s4EPUXnoNr5LSrrXaHfpsnqBb8/c3VkKi63aX2 CKKXrYl2VCI4z//seR+pASRj0TK4YZPH3rhluwODvJLEhwpXc0w5EMhFMnmb9pM4 QDlKiykMyr+U/ySrywyZNZH/Q6lwifbCQfO4GavL4EbJhltXRnMJPizB91wk -----END CERTIFICATE-----Generated at Sat May 2 21:03:51 2026 by rpki-client