$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153083.roa File: AS153083.roa (raw, json) Hash identifier: Jpzfi1l9ggtraMF7cM/AmJXjNAVHuMJ+Ens3GgDyWSk= Subject key identifier: 37:79:6E:F4:B0:E8:D2:12:3F:FB:2C:22:E0:34:95:0E:3A:CF:4B:B1 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 790C5B6025060417F4AF60D395AF218770DE54A9 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153083.roa Signing time: Sat 02 May 2026 09:23:51 +0000 ROA not before: Sat 02 May 2026 09:18:51 +0000 ROA not after: Sat 01 May 2027 09:23:51 +0000 asID: 153083 IP address blocks: 160.19.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:0c:5b:60:25:06:04:17:f4:af:60:d3:95:af:21:87:70:de:54:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:51 2026 GMT Not After : May 1 09:23:51 2027 GMT Subject: CN=37796EF4B0E8D2123FFB2C22E034950E3ACF4BB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e9:81:d1:47:77:00:2e:09:56:bf:2d:92:ec: 3b:e5:b4:d6:01:73:d0:29:53:f0:f5:be:30:7c:a0: c7:d8:8a:b0:f7:b3:88:25:2f:90:32:b9:de:3c:d5: 38:da:42:27:b5:4d:ee:f6:5a:ef:ee:27:90:b1:de: 63:f6:ba:db:03:9d:39:89:97:c9:db:bc:27:71:11: ac:bb:89:e0:96:7e:c0:3f:20:d0:db:40:fd:5b:8e: 55:5f:05:9c:00:c8:f9:c6:dd:4e:f9:a3:8f:19:fc: f4:3c:ce:5a:de:10:3a:c9:da:15:dd:72:b9:ae:2d: a3:d2:46:10:80:ca:3f:35:bc:33:9c:3b:b4:92:04: 5f:ef:6e:f4:90:24:31:06:f5:46:bc:48:31:2b:da: 05:29:fb:41:de:0c:02:18:a0:6a:27:21:c9:7f:fa: e9:4a:64:d9:29:3f:c7:ec:74:29:fa:d8:8e:d9:7d: 51:d0:51:50:fc:34:61:6c:11:ed:39:70:0b:7f:44: c0:40:d8:29:87:c8:87:e3:50:c5:3f:95:2a:be:2b: 95:c6:64:c6:50:86:ad:ee:d4:e4:09:20:0f:ce:d4: ce:61:98:19:d7:20:d7:ab:b7:1f:92:c3:91:18:2b: 7a:4d:9d:fb:44:6f:ed:d8:59:db:6a:c2:65:f5:90: 60:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:79:6E:F4:B0:E8:D2:12:3F:FB:2C:22:E0:34:95:0E:3A:CF:4B:B1 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.176.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:d8:f1:d6:ec:09:ca:80:fc:6d:4e:ea:4a:52:34:96:01:99: c0:21:4c:f8:33:15:2c:df:ad:a7:f1:61:fc:11:9b:6f:ce:da: e7:ea:db:40:4f:74:00:f4:57:58:b7:05:e8:ce:16:1d:26:99: 92:52:36:ce:ab:76:bb:6e:68:8d:b5:85:3f:b5:3a:f5:44:4f: 99:df:ad:72:57:a4:b9:a1:9b:cf:c6:ef:3b:3d:72:06:33:c2: f3:37:90:70:5c:51:b4:ec:9f:ec:4b:8b:6a:6f:d8:01:8a:63: 5d:c0:63:d1:e1:43:a3:d5:bf:e5:61:45:17:a3:40:6c:ab:46: 28:c9:62:8c:bc:b3:9f:53:f5:66:c9:b8:ed:2d:2a:6a:6d:9a: 19:f0:f5:5c:5c:9a:b5:46:45:f1:1a:f2:9a:9d:7f:df:58:59: 12:80:22:c2:2a:3a:61:08:0f:1e:87:ce:bc:f9:5b:5f:42:df: 94:af:e6:11:9a:ae:1b:e1:19:e0:b4:9b:ed:92:2c:78:a4:07: 33:0e:1a:8d:59:0b:51:08:48:17:11:c6:6d:da:70:c7:74:3c: 52:7e:51:05:b9:25:13:c1:0d:56:7f:9b:b0:8c:2e:bd:34:f0: 43:c6:35:c8:73:a5:d0:37:94:29:78:f1:32:42:44:24:a9:dd: 02:f4:fd:50 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUeQxbYCUGBBf0r2DTla8hh3DeVKkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTg1MVoX DTI3MDUwMTA5MjM1MVowMzExMC8GA1UEAxMoMzc3OTZFRjRCMEU4RDIxMjNGRkIy QzIyRTAzNDk1MEUzQUNGNEJCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOTpgdFHdwAuCVa/LZLsO+W01gFz0ClT8PW+MHygx9iKsPeziCUvkDK53jzV ONpCJ7VN7vZa7+4nkLHeY/a62wOdOYmXydu8J3ERrLuJ4JZ+wD8g0NtA/VuOVV8F nADI+cbdTvmjjxn89DzOWt4QOsnaFd1yua4to9JGEIDKPzW8M5w7tJIEX+9u9JAk MQb1RrxIMSvaBSn7Qd4MAhigaichyX/66Upk2Sk/x+x0KfrYjtl9UdBRUPw0YWwR 7TlwC39EwEDYKYfIh+NQxT+VKr4rlcZkxlCGre7U5AkgD87UzmGYGdcg16u3H5LD kRgrek2d+0Rv7dhZ22rCZfWQYFUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQ3eW70 sOjSEj/7LCLgNJUOOs9LsTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzMDgzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBoBOwMA0GCSqGSIb3DQEBCwUAA4IBAQCf2PHW7AnKgPxtTupKUjSWAZnA IUz4MxUs362n8WH8EZtvztrn6ttAT3QA9FdYtwXozhYdJpmSUjbOq3a7bmiNtYU/ tTr1RE+Z361yV6S5oZvPxu87PXIGM8LzN5BwXFG07J/sS4tqb9gBimNdwGPR4UOj 1b/lYUUXo0Bsq0YoyWKMvLOfU/VmybjtLSpqbZoZ8PVcXJq1RkXxGvKanX/fWFkS gCLCKjphCA8eh868+VtfQt+Ur+YRmq4b4RngtJvtkix4pAczDhqNWQtRCEgXEcZt 2nDHdDxSflEFuSUTwQ1Wf5uwjC69NPBDxjXIc6XQN5QpePEyQkQkqd0C9P1Q -----END CERTIFICATE-----Generated at Sat May 2 21:03:46 2026 by rpki-client