$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152770.roa File: AS152770.roa (raw, json) Hash identifier: 0Kzikf2pMqS3do63bj4lftJs4ENvALdmG3UOV44FhZA= Subject key identifier: 41:3C:AF:9C:D4:A3:F7:73:99:50:F5:27:E0:93:C0:41:6B:91:64:26 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 5A6E0433C7FB51AEA9E685BA93330184C5DD0651 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152770.roa Signing time: Sat 02 May 2026 17:23:22 +0000 ROA not before: Sat 02 May 2026 17:18:22 +0000 ROA not after: Sat 01 May 2027 17:23:22 +0000 asID: 152770 IP address blocks: 157.66.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:6e:04:33:c7:fb:51:ae:a9:e6:85:ba:93:33:01:84:c5:dd:06:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 17:18:22 2026 GMT Not After : May 1 17:23:22 2027 GMT Subject: CN=413CAF9CD4A3F7739950F527E093C0416B916426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:4c:01:18:8a:3b:de:34:eb:d1:63:82:8b: e2:11:fd:a9:03:d1:85:7f:d1:ce:6c:b9:11:c9:96: d2:9b:53:62:66:d6:af:47:db:69:1a:c8:73:ee:1a: 34:83:3a:3e:20:98:47:6f:6f:cf:ba:06:30:98:09: c7:f1:a8:29:0c:0f:fe:1c:de:61:8d:dd:73:28:c1: 02:7b:e8:71:b4:ce:a5:25:f5:14:58:32:11:78:dc: b8:1b:0e:9e:cc:e7:29:06:3b:12:99:53:b3:ce:04: 75:67:7a:29:13:8b:e1:f4:5c:e5:3c:b8:a2:cc:ad: 15:ad:3c:76:57:3d:85:fb:d8:c6:be:2a:93:db:68: b0:7b:4d:16:4e:8f:87:b5:88:19:33:31:b6:10:1c: ac:a6:d6:04:4e:f6:ad:45:90:37:ac:25:e3:11:4e: fc:9e:18:24:b9:77:35:ad:6d:53:16:f7:f1:d7:71: 5a:ab:90:ff:1b:f7:c4:5a:4e:54:3e:1b:4a:9e:55: 65:94:be:23:0a:28:ec:e8:b0:40:97:44:ef:74:5e: a8:ce:aa:dd:ba:b7:32:ea:fa:5f:3a:17:9c:df:8b: 59:4b:68:27:ff:9c:56:71:61:2e:38:ad:fa:96:44: d1:18:52:3e:fe:ae:4f:66:e2:6f:76:c2:40:82:4c: 17:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3C:AF:9C:D4:A3:F7:73:99:50:F5:27:E0:93:C0:41:6B:91:64:26 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152770.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.192.0/23 Signature Algorithm: sha256WithRSAEncryption 76:9a:6e:9e:73:2e:af:20:87:79:fe:40:74:c5:c8:96:d0:f8: 82:6d:65:41:ee:63:ca:68:61:36:51:d6:aa:7b:81:bd:30:6c: ce:3a:a2:49:fb:87:49:c2:7e:ed:d2:1b:35:19:0a:83:eb:ee: ef:20:99:f5:49:ce:31:cd:c1:81:c6:f2:db:f3:01:d5:70:46: c3:a9:ee:fd:78:66:91:ea:63:bd:90:81:0a:9b:65:78:da:dd: c6:48:2c:f9:98:5f:c6:95:c3:bd:02:b6:71:8a:f4:7c:01:93: 55:b4:ea:9f:c1:7b:8f:ba:62:d3:e6:dd:c1:48:9d:e7:71:d5: 8a:17:43:48:e7:6a:e9:3e:99:a7:c2:22:cd:70:ab:5a:27:62: d5:51:ee:ca:3a:e5:31:ac:ba:9f:69:8b:85:a7:a0:55:c8:b4: 62:0a:db:ea:5e:48:97:d5:d7:68:7e:92:53:29:70:a2:7f:39: 5e:69:25:9a:c1:3d:4a:11:a6:59:1d:13:76:4e:76:32:b5:97: 96:6f:df:06:38:b5:d6:71:66:f6:9d:8d:19:b6:e7:52:e6:f5: 5b:cc:34:30:e7:37:f5:e5:4b:9d:26:ba:39:a0:70:2f:a2:b5: df:b3:09:fc:94:45:38:2b:55:1b:1e:45:71:0b:0f:b2:a6:d4: b3:d8:f5:6c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWm4EM8f7Ua6p5oW6kzMBhMXdBlEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjE3MTgyMloX DTI3MDUwMTE3MjMyMlowMzExMC8GA1UEAxMoNDEzQ0FGOUNENEEzRjc3Mzk5NTBG NTI3RTA5M0MwNDE2QjkxNjQyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1+TAEYijveNOvRY4KL4hH9qQPRhX/Rzmy5EcmW0ptTYmbWr0fbaRrIc+4a NIM6PiCYR29vz7oGMJgJx/GoKQwP/hzeYY3dcyjBAnvocbTOpSX1FFgyEXjcuBsO nsznKQY7EplTs84EdWd6KROL4fRc5Ty4osytFa08dlc9hfvYxr4qk9tosHtNFk6P h7WIGTMxthAcrKbWBE72rUWQN6wl4xFO/J4YJLl3Na1tUxb38ddxWquQ/xv3xFpO VD4bSp5VZZS+Iwoo7OiwQJdE73ReqM6q3bq3Mur6XzoXnN+LWUtoJ/+cVnFhLjit +pZE0RhSPv6uT2bib3bCQIJMF1UCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRBPK+c 1KP3c5lQ9Sfgk8BBa5FkJjAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyNzcwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnULAMA0GCSqGSIb3DQEBCwUAA4IBAQB2mm6ecy6vIId5/kB0xciW0PiC bWVB7mPKaGE2Udaqe4G9MGzOOqJJ+4dJwn7t0hs1GQqD6+7vIJn1Sc4xzcGBxvLb 8wHVcEbDqe79eGaR6mO9kIEKm2V42t3GSCz5mF/GlcO9ArZxivR8AZNVtOqfwXuP umLT5t3BSJ3ncdWKF0NI52rpPpmnwiLNcKtaJ2LVUe7KOuUxrLqfaYuFp6BVyLRi CtvqXkiX1ddofpJTKXCifzleaSWawT1KEaZZHRN2TnYytZeWb98GOLXWcWb2nY0Z tudS5vVbzDQw5zf15UudJro5oHAvorXfswn8lEU4K1UbHkVxCw+yptSz2PVs -----END CERTIFICATE-----Generated at Sat May 2 21:04:40 2026 by rpki-client