$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152383.roa File: AS152383.roa (raw, json) Hash identifier: qKJnLFJq0HcLj1swMFElvj7Jmc594uoC97SlHjLPNRI= Subject key identifier: FC:22:05:C1:F4:76:15:7D:BC:68:20:F6:BC:FF:9A:F8:71:BF:19:41 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 700235D32BE864B50B7C7399ADD6FA8893B3D082 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152383.roa Signing time: Sat 02 May 2026 09:23:28 +0000 ROA not before: Sat 02 May 2026 09:18:28 +0000 ROA not after: Sat 01 May 2027 09:23:28 +0000 asID: 152383 IP address blocks: 157.15.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:02:35:d3:2b:e8:64:b5:0b:7c:73:99:ad:d6:fa:88:93:b3:d0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:28 2026 GMT Not After : May 1 09:23:28 2027 GMT Subject: CN=FC2205C1F476157DBC6820F6BCFF9AF871BF1941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:0a:02:29:76:15:56:b1:05:48:41:17:f5: b0:05:94:b8:9a:28:f4:79:76:34:a1:6b:97:28:7e: 53:b4:ec:f3:0d:2b:fb:25:5d:2b:b0:5a:47:cd:73: 26:34:03:ce:ac:b1:98:71:41:f6:77:32:2f:69:8c: 8a:b7:e0:8c:75:c0:36:15:86:cf:a5:5f:f7:36:de: c8:6a:83:ab:02:5b:ff:e8:0f:b6:0b:67:9e:c7:d7: 19:20:7f:3b:25:34:2d:2c:25:18:d6:79:45:34:9b: 84:ec:72:27:81:c4:f5:fb:da:ef:27:5b:62:2c:52: 79:a0:b1:86:6e:63:6a:ce:ee:28:76:d7:66:c3:3f: 72:c6:c0:72:c0:a5:49:75:d9:a4:6b:fc:2e:25:c4: 84:de:a2:c0:e7:7c:6c:77:7b:c7:45:9a:3b:0f:d2: 10:53:a3:4b:f2:62:d9:47:af:15:96:2f:37:e0:e8: 20:3a:fb:f9:f2:24:2b:d4:7b:ac:69:b3:17:13:bd: 1a:ee:7c:95:c7:14:8c:be:b9:7f:26:7b:e1:f8:58: 7f:8b:bd:63:4a:f0:06:76:37:dc:c1:69:bb:91:a4: 26:ac:f1:34:bf:68:30:36:a8:59:22:3d:e7:a9:8a: 78:b2:d0:6a:05:a0:87:09:17:6b:1a:c4:26:22:2c: db:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:22:05:C1:F4:76:15:7D:BC:68:20:F6:BC:FF:9A:F8:71:BF:19:41 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.172.0/23 Signature Algorithm: sha256WithRSAEncryption 72:fb:0a:b3:f0:16:1b:aa:7c:ba:d1:30:83:dd:8a:cf:67:a7: d2:00:5a:ed:03:f4:73:67:65:a9:c1:b0:7f:c6:57:be:91:d6: 10:4a:39:b3:db:a3:b3:27:32:a8:c0:7e:f9:e3:c2:65:15:d2: a6:86:03:80:5c:4c:40:d8:86:0d:53:79:e5:61:2c:43:94:98: 09:c7:82:55:95:34:0b:64:a9:ba:a4:8c:50:e9:7b:91:0e:2a: 22:ed:10:60:36:4f:be:22:b5:27:f6:d5:df:d9:52:be:91:d1: bb:0b:46:7c:2f:8c:95:b2:a3:6c:00:d6:5c:ef:7c:53:46:59: c6:e9:fe:1d:c3:57:1b:e2:2f:34:c4:97:34:a3:25:3f:18:3c: f6:7c:b3:49:86:31:56:18:dd:e7:10:a3:a2:64:70:c5:26:04: 74:82:85:bf:23:08:60:f3:bc:19:8f:9b:23:37:ad:36:80:df: 91:17:ab:b5:94:0e:2e:68:26:39:48:4c:7e:d3:0a:98:70:d0: 94:4f:4b:6f:7b:38:4a:ff:28:c3:e6:1a:3e:95:7d:bf:97:7b: 17:13:81:18:a5:0e:f9:b0:ce:65:0c:2f:78:b5:f8:5c:7b:09: 4f:95:ea:56:2e:12:7f:f9:67:12:05:b5:37:ad:ef:20:ac:61: 91:f0:5c:7c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcAI10yvoZLULfHOZrdb6iJOz0IIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgyOFoX DTI3MDUwMTA5MjMyOFowMzExMC8GA1UEAxMoRkMyMjA1QzFGNDc2MTU3REJDNjgy MEY2QkNGRjlBRjg3MUJGMTk0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxjCgIpdhVWsQVIQRf1sAWUuJoo9Hl2NKFrlyh+U7Ts8w0r+yVdK7BaR81z JjQDzqyxmHFB9ncyL2mMirfgjHXANhWGz6Vf9zbeyGqDqwJb/+gPtgtnnsfXGSB/ OyU0LSwlGNZ5RTSbhOxyJ4HE9fva7ydbYixSeaCxhm5jas7uKHbXZsM/csbAcsCl SXXZpGv8LiXEhN6iwOd8bHd7x0WaOw/SEFOjS/Ji2UevFZYvN+DoIDr7+fIkK9R7 rGmzFxO9Gu58lccUjL65fyZ74fhYf4u9Y0rwBnY33MFpu5GkJqzxNL9oMDaoWSI9 56mKeLLQagWghwkXaxrEJiIs268CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT8IgXB 9HYVfbxoIPa8/5r4cb8ZQTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyMzgzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQ+sMA0GCSqGSIb3DQEBCwUAA4IBAQBy+wqz8BYbqny60TCD3YrPZ6fS AFrtA/RzZ2WpwbB/xle+kdYQSjmz26OzJzKowH7548JlFdKmhgOAXExA2IYNU3nl YSxDlJgJx4JVlTQLZKm6pIxQ6XuRDioi7RBgNk++IrUn9tXf2VK+kdG7C0Z8L4yV sqNsANZc73xTRlnG6f4dw1cb4i80xJc0oyU/GDz2fLNJhjFWGN3nEKOiZHDFJgR0 goW/Iwhg87wZj5sjN602gN+RF6u1lA4uaCY5SEx+0wqYcNCUT0tvezhK/yjD5ho+ lX2/l3sXE4EYpQ75sM5lDC94tfhcewlPlepWLhJ/+WcSBbU3re8grGGR8Fx8 -----END CERTIFICATE-----Generated at Sat May 2 21:03:44 2026 by rpki-client