$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152378.roa File: AS152378.roa (raw, json) Hash identifier: 2KJIMbcI7VPrZUR7bdXxaZ1I93Cjat+wqpPygykZFow= Subject key identifier: 20:93:3A:D2:1F:EE:F9:6E:AC:F2:2A:FD:CB:F5:4E:C8:46:99:0F:B3 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 6E8FCC4A6D089CCCE5ED0471148A3D439A4574A4 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152378.roa Signing time: Sat 02 May 2026 09:23:21 +0000 ROA not before: Sat 02 May 2026 09:18:21 +0000 ROA not after: Sat 01 May 2027 09:23:21 +0000 asID: 152378 IP address blocks: 157.15.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:8f:cc:4a:6d:08:9c:cc:e5:ed:04:71:14:8a:3d:43:9a:45:74:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:21 2026 GMT Not After : May 1 09:23:21 2027 GMT Subject: CN=20933AD21FEEF96EACF22AFDCBF54EC846990FB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8c:7c:f8:16:9a:97:e8:b7:46:9f:72:94:91: 2b:be:59:12:e6:73:57:44:c2:b1:4b:05:6d:44:ee: 9e:3b:33:71:be:ab:03:03:70:a6:f9:1d:a9:bd:cf: b4:b4:f4:4a:0b:70:8b:9d:84:f2:af:f3:97:99:2c: 9b:eb:09:5f:f9:1b:b7:b1:fe:c8:15:71:b6:1e:74: 6d:d0:86:9b:8f:eb:3a:31:48:68:51:d5:4a:77:bf: b6:6c:23:62:7a:ad:d3:21:ce:21:61:db:e6:3a:a2: 9b:cd:1c:85:52:99:fc:f1:37:2c:3f:28:49:52:8f: 68:d6:7f:68:85:a2:e8:25:fd:ef:f6:2c:5a:61:38: e3:2e:f2:8f:58:6b:47:ae:02:1e:90:47:7b:5e:52: 07:c0:e5:a2:b3:04:9e:1c:d4:8e:65:d1:8e:15:05: bc:88:25:51:7c:1d:b8:51:00:83:6d:57:63:8b:7a: 82:b9:47:e6:20:59:96:bd:5f:6b:2a:c1:b3:d8:54: fe:59:44:ce:17:4a:19:14:4c:79:68:ed:dd:38:ac: 87:64:f7:b2:62:2a:5b:b6:77:15:61:02:6b:5f:e4: b6:2a:b3:a2:5a:38:2e:e1:d1:99:ab:8b:5d:2f:63: c1:a2:87:df:54:f6:9c:2b:56:91:08:66:d9:1c:cf: 26:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:93:3A:D2:1F:EE:F9:6E:AC:F2:2A:FD:CB:F5:4E:C8:46:99:0F:B3 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152378.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.214.0/23 Signature Algorithm: sha256WithRSAEncryption 72:c5:77:15:2f:bc:6f:04:e0:3a:47:79:97:ef:88:63:26:71: 49:80:45:9d:34:02:dc:c4:db:2d:ec:b6:bb:19:c3:7f:d5:c0: e2:f8:99:e4:78:98:44:7a:19:88:14:27:fd:8d:19:76:7f:7c: 1f:4a:d6:a3:25:97:51:66:76:bc:c8:41:dd:8e:e4:d9:ba:f5: c4:a3:b3:f2:e8:c9:57:a7:31:42:9d:aa:e6:42:a8:bb:e7:54: 6a:30:bd:eb:1e:85:d7:09:aa:51:56:a9:40:78:12:46:6c:5d: d5:47:94:82:5c:17:22:8b:c0:9b:5c:f5:90:53:f2:f1:e3:5e: d3:78:aa:be:db:17:75:bd:fd:df:d2:67:b7:99:10:ba:96:9f: 2a:59:7d:52:9b:23:62:d8:ef:36:1a:d4:d0:4a:7a:e7:9d:87: 30:82:64:ac:11:9a:33:cc:07:57:77:6b:4c:1a:19:7d:3b:57: 14:5d:4b:58:9f:04:65:7a:66:05:db:58:3d:7b:e3:93:1a:87: 35:f5:cd:4a:20:9e:a7:0b:bb:4f:b3:29:4a:9b:c8:b4:1b:79: db:36:f2:e3:eb:e3:8b:37:31:9d:d9:3e:e9:a8:b3:e4:a8:dd: 77:4d:f0:cf:30:70:6f:55:33:19:b6:c3:a8:6f:71:16:14:f8: 21:60:7f:52 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUbo/MSm0InMzl7QRxFIo9Q5pFdKQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgyMVoX DTI3MDUwMTA5MjMyMVowMzExMC8GA1UEAxMoMjA5MzNBRDIxRkVFRjk2RUFDRjIy QUZEQ0JGNTRFQzg0Njk5MEZCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKOMfPgWmpfot0afcpSRK75ZEuZzV0TCsUsFbUTunjszcb6rAwNwpvkdqb3P tLT0Sgtwi52E8q/zl5ksm+sJX/kbt7H+yBVxth50bdCGm4/rOjFIaFHVSne/tmwj Ynqt0yHOIWHb5jqim80chVKZ/PE3LD8oSVKPaNZ/aIWi6CX97/YsWmE44y7yj1hr R64CHpBHe15SB8DlorMEnhzUjmXRjhUFvIglUXwduFEAg21XY4t6grlH5iBZlr1f ayrBs9hU/llEzhdKGRRMeWjt3Tish2T3smIqW7Z3FWECa1/ktiqzolo4LuHRmauL XS9jwaKH31T2nCtWkQhm2RzPJl0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQgkzrS H+75bqzyKv3L9U7IRpkPszAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyMzc4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQ/WMA0GCSqGSIb3DQEBCwUAA4IBAQByxXcVL7xvBOA6R3mX74hjJnFJ gEWdNALcxNst7La7GcN/1cDi+JnkeJhEehmIFCf9jRl2f3wfStajJZdRZna8yEHd juTZuvXEo7Py6MlXpzFCnarmQqi751RqML3rHoXXCapRVqlAeBJGbF3VR5SCXBci i8CbXPWQU/Lx417TeKq+2xd1vf3f0me3mRC6lp8qWX1SmyNi2O82GtTQSnrnnYcw gmSsEZozzAdXd2tMGhl9O1cUXUtYnwRlemYF21g9e+OTGoc19c1KIJ6nC7tPsylK m8i0G3nbNvLj6+OLNzGd2T7pqLPkqN13TfDPMHBvVTMZtsOob3EWFPghYH9S -----END CERTIFICATE-----Generated at Sat May 2 21:04:48 2026 by rpki-client