$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152762.roa File: AS152762.roa (raw, json) Hash identifier: 3WRA9uOCf1gql2FYHkWcP1juxbYmqACfSVegNoOgR4Y= Subject key identifier: 86:1C:4F:81:26:4B:E8:25:FD:CD:1A:99:67:EA:8D:52:D4:EA:63:F9 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 07A4917D631F69433C96918725AB5681539DCD25 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152762.roa Signing time: Sat 02 May 2026 09:23:44 +0000 ROA not before: Sat 02 May 2026 09:18:44 +0000 ROA not after: Sat 01 May 2027 09:23:44 +0000 asID: 152762 IP address blocks: 160.19.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a4:91:7d:63:1f:69:43:3c:96:91:87:25:ab:56:81:53:9d:cd:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:44 2026 GMT Not After : May 1 09:23:44 2027 GMT Subject: CN=861C4F81264BE825FDCD1A9967EA8D52D4EA63F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:50:ed:b6:ce:fe:83:10:72:0d:33:5b:42:f5: cc:80:95:b4:25:ae:87:0a:47:2b:ed:63:1c:50:47: 23:b9:2b:ae:fc:47:b5:48:2a:4a:56:20:02:c7:0a: 7b:cf:41:3f:01:7b:44:6d:bd:a8:b9:7d:e1:fe:83: 9d:1f:0d:9a:37:a3:7c:a4:21:a9:21:11:32:07:48: 35:34:3f:28:f8:5c:b0:dc:7b:6b:76:6b:06:4c:bf: bb:38:39:34:c2:f8:b3:b3:b7:48:02:5f:54:37:68: aa:27:83:22:d5:d3:45:92:09:3c:4c:ef:a2:c4:e4: 3d:a1:43:e1:93:cc:5b:38:56:e0:77:83:19:8c:58: 3a:5f:a1:a6:bb:7e:2e:5c:a2:49:1a:d6:42:da:bd: ef:70:3a:58:70:a2:65:a7:4e:66:b6:ce:f9:00:ea: 6a:32:d0:a3:eb:c6:c3:19:cb:f5:65:19:15:b5:db: 75:82:68:1e:d4:06:b9:5e:8b:5e:4f:5c:39:61:f2: 0b:f5:7a:5d:9f:f1:11:9d:12:96:95:3d:04:86:d8: 22:43:c9:62:43:31:40:5d:33:09:21:9b:fd:4b:9f: d8:21:1b:1e:b5:be:3f:d4:92:36:72:54:e9:ba:65: 7d:d8:83:69:48:7c:b4:8c:56:8b:3d:5b:96:33:41: b3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:1C:4F:81:26:4B:E8:25:FD:CD:1A:99:67:EA:8D:52:D4:EA:63:F9 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.230.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:01:06:f2:00:e7:7e:c0:6d:d4:eb:d0:11:a3:0d:57:ce:2e: 98:4a:10:1d:ab:49:fc:2a:08:eb:de:b7:61:89:97:a3:a9:58: 37:b2:8d:05:63:eb:9c:35:f8:bc:e2:e4:b1:3a:19:35:31:31: 7e:e2:d4:51:f1:a7:5b:61:de:c4:16:eb:e7:18:14:12:ec:18: eb:9e:89:e0:cc:55:3c:79:e3:9e:f7:07:6f:74:61:ed:b7:eb: 8e:ed:26:43:9a:f0:e9:fa:d8:fe:43:49:a8:24:8d:ed:aa:19: dc:a4:52:9c:78:e1:4c:2d:b8:9d:1f:7b:a1:ab:c4:4b:98:11: d6:ad:4c:4f:0a:dc:60:ce:b6:f6:47:1b:bd:16:4e:cc:62:77: c7:63:1b:8b:de:66:5c:d7:cd:d6:5c:05:ae:9a:07:59:13:45: 0a:16:22:15:70:8d:17:7a:3f:06:d4:45:5a:13:78:88:43:0b: 80:9d:ef:30:34:20:03:1e:7a:7d:86:7b:9e:31:f5:38:0d:77: 5c:96:28:0e:e7:2f:7a:63:9a:34:63:5f:22:6f:b6:63:b7:82: bc:b9:f3:52:f6:69:f3:f8:d9:23:62:04:62:6b:72:dd:59:a7: 88:49:37:b3:9f:30:84:87:1f:b5:0c:c4:9c:f8:7d:02:21:da: d3:da:14:04 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUB6SRfWMfaUM8lpGHJatWgVOdzSUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTg0NFoX DTI3MDUwMTA5MjM0NFowMzExMC8GA1UEAxMoODYxQzRGODEyNjRCRTgyNUZEQ0Qx QTk5NjdFQThENTJENEVBNjNGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN9Q7bbO/oMQcg0zW0L1zICVtCWuhwpHK+1jHFBHI7krrvxHtUgqSlYgAscK e89BPwF7RG29qLl94f6DnR8NmjejfKQhqSERMgdINTQ/KPhcsNx7a3ZrBky/uzg5 NML4s7O3SAJfVDdoqieDItXTRZIJPEzvosTkPaFD4ZPMWzhW4HeDGYxYOl+hprt+ LlyiSRrWQtq973A6WHCiZadOZrbO+QDqajLQo+vGwxnL9WUZFbXbdYJoHtQGuV6L Xk9cOWHyC/V6XZ/xEZ0SlpU9BIbYIkPJYkMxQF0zCSGb/Uuf2CEbHrW+P9SSNnJU 6bplfdiDaUh8tIxWiz1bljNBsz0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSGHE+B JkvoJf3NGpln6o1S1Opj+TAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyNzYyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBoBPmMA0GCSqGSIb3DQEBCwUAA4IBAQBPAQbyAOd+wG3U69ARow1Xzi6Y ShAdq0n8Kgjr3rdhiZejqVg3so0FY+ucNfi84uSxOhk1MTF+4tRR8adbYd7EFuvn GBQS7BjrnongzFU8eeOe9wdvdGHtt+uO7SZDmvDp+tj+Q0moJI3tqhncpFKceOFM LbidH3uhq8RLmBHWrUxPCtxgzrb2Rxu9Fk7MYnfHYxuL3mZc183WXAWumgdZE0UK FiIVcI0Xej8G1EVaE3iIQwuAne8wNCADHnp9hnueMfU4DXdcligO5y96Y5o0Y18i b7Zjt4K8ufNS9mnz+NkjYgRia3LdWaeISTeznzCEhx+1DMSc+H0CIdrT2hQE -----END CERTIFICATE-----Generated at Sat May 2 21:04:48 2026 by rpki-client