$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS152808.roa File: AS152808.roa (raw, json) Hash identifier: whRy+0rdY5UHSAxHQRhPRTI7zoOXdK4pXVn2/7qIiQA= Subject key identifier: 82:D7:D8:BB:28:3C:FA:49:1D:44:DF:1F:93:AE:4F:BD:83:28:FB:D3 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 0C40AFEA69A04C1A160A99444D4CE92B0DEA9B8C Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152808.roa Signing time: Sat 02 May 2026 09:23:46 +0000 ROA not before: Sat 02 May 2026 09:18:46 +0000 ROA not after: Sat 01 May 2027 09:23:46 +0000 asID: 152808 IP address blocks: 160.22.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:40:af:ea:69:a0:4c:1a:16:0a:99:44:4d:4c:e9:2b:0d:ea:9b:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:46 2026 GMT Not After : May 1 09:23:46 2027 GMT Subject: CN=82D7D8BB283CFA491D44DF1F93AE4FBD8328FBD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:60:d7:42:22:2d:fb:79:7b:69:de:6e:33:8e: 96:b0:4f:20:6b:b5:bf:e1:e1:c1:78:7f:92:ff:84: 05:0c:4c:ac:a0:85:f4:c6:fa:e5:8c:6c:27:3e:f4: d5:8f:1a:90:c9:7a:a8:51:49:83:a8:a4:30:b8:51: b9:fd:45:38:a3:0b:bc:47:51:93:3c:f9:81:10:25: 95:24:a0:a2:0a:6e:95:8b:f7:ab:fd:a6:2d:32:eb: 9f:db:7d:62:d8:9d:da:2c:e2:8d:08:de:ff:e3:ea: fc:3f:4a:20:c7:70:1f:42:3b:cc:af:53:e0:52:38: 00:ce:b3:e5:43:d9:50:e4:e9:16:ca:f5:61:34:5b: 40:7f:8d:3c:17:93:46:ee:43:b8:30:76:81:48:8d: 20:60:df:6f:1b:97:e8:0f:c0:57:af:88:0e:9d:57: 55:7f:23:49:4d:2f:35:65:cc:8f:8c:e1:c7:7f:8a: 48:d5:eb:ed:dc:b5:e2:06:6a:c8:7f:16:e8:97:37: a8:a0:58:e0:5c:33:8c:c2:84:21:55:e2:31:39:cd: 6e:66:5a:5c:da:9e:aa:d4:c6:1a:f7:27:b1:0b:14: a8:6a:85:1d:d3:dc:32:c1:67:c6:eb:97:15:29:21: 34:c7:35:72:32:d7:64:74:2f:0c:a9:cc:6b:9b:b8: 13:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D7:D8:BB:28:3C:FA:49:1D:44:DF:1F:93:AE:4F:BD:83:28:FB:D3 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS152808.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.100.0/24 Signature Algorithm: sha256WithRSAEncryption a7:ed:a8:67:ed:1d:26:6b:a8:c4:9f:4e:23:2f:00:4b:71:af: 3c:4d:28:5d:b0:73:b6:24:de:6b:1c:f5:52:77:c6:da:09:fc: ee:2b:9e:d2:43:c0:cc:2d:29:97:6b:91:e5:c0:02:9d:0a:03: 22:b2:6c:94:70:b9:2f:39:2c:b4:ed:0a:96:ff:ac:03:62:ed: 20:ff:97:7f:70:da:60:65:cc:c0:65:a5:f9:49:7e:93:4e:d5: 32:28:a3:8d:6e:4b:3e:b3:03:1e:12:1f:cf:0d:cd:40:29:25: 28:e0:af:45:c4:ec:05:96:b3:87:ae:74:38:49:f4:ba:f4:c3: 40:66:24:1a:18:31:76:4f:c6:bf:eb:9a:1c:9f:7e:63:57:13: b2:5b:8e:4e:89:d0:01:99:6c:21:00:17:16:25:78:36:99:00: a6:c9:4e:c8:eb:b4:8f:86:7f:51:06:dd:b2:23:c2:41:ec:a8: fe:4c:44:be:17:5d:2d:b6:79:dd:62:08:49:93:15:24:f9:12: 3c:ae:0b:45:ed:b9:1d:82:29:19:23:29:7d:f7:9f:a3:60:5f: e2:17:16:fe:8e:1a:1a:97:0a:df:1c:91:94:54:c7:14:6a:c7: db:08:0d:af:35:c2:32:0a:41:96:79:71:2f:24:90:ca:f7:84: b6:ea:26:b0 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUDECv6mmgTBoWCplETUzpKw3qm4wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTg0NloX DTI3MDUwMTA5MjM0NlowMzExMC8GA1UEAxMoODJEN0Q4QkIyODNDRkE0OTFENDRE RjFGOTNBRTRGQkQ4MzI4RkJEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIlg10IiLft5e2nebjOOlrBPIGu1v+HhwXh/kv+EBQxMrKCF9Mb65YxsJz70 1Y8akMl6qFFJg6ikMLhRuf1FOKMLvEdRkzz5gRAllSSgogpulYv3q/2mLTLrn9t9 Ytid2izijQje/+Pq/D9KIMdwH0I7zK9T4FI4AM6z5UPZUOTpFsr1YTRbQH+NPBeT Ru5DuDB2gUiNIGDfbxuX6A/AV6+IDp1XVX8jSU0vNWXMj4zhx3+KSNXr7dy14gZq yH8W6Jc3qKBY4FwzjMKEIVXiMTnNbmZaXNqeqtTGGvcnsQsUqGqFHdPcMsFnxuuX FSkhNMc1cjLXZHQvDKnMa5u4E3cCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSC19i7 KDz6SR1E3x+Trk+9gyj70zAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUyODA4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAoBZkMA0GCSqGSIb3DQEBCwUAA4IBAQCn7ahn7R0ma6jEn04jLwBLca88 TShdsHO2JN5rHPVSd8baCfzuK57SQ8DMLSmXa5HlwAKdCgMismyUcLkvOSy07QqW /6wDYu0g/5d/cNpgZczAZaX5SX6TTtUyKKONbks+swMeEh/PDc1AKSUo4K9FxOwF lrOHrnQ4SfS69MNAZiQaGDF2T8a/65ocn35jVxOyW45OidABmWwhABcWJXg2mQCm yU7I67SPhn9RBt2yI8JB7Kj+TES+F10ttnndYghJkxUk+RI8rgtF7bkdgikZIyl9 95+jYF/iFxb+jhoalwrfHJGUVMcUasfbCA2vNcIyCkGWeXEvJJDK94S26iaw -----END CERTIFICATE-----Generated at Sat May 2 21:04:48 2026 by rpki-client