$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153095.roa File: AS153095.roa (raw, json) Hash identifier: 3nQIq7bd6OyevINk0khfbOkCrKMY+CXqSecGOuGOR7E= Subject key identifier: 63:1A:4C:78:4F:9D:3B:9D:94:FD:70:02:E0:C3:B0:AD:A1:C1:DF:F3 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 46FBD97F3DDF62953BF3D5CB7D1B1F2F4EFA22DF Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153095.roa Signing time: Sat 02 May 2026 09:24:17 +0000 ROA not before: Sat 02 May 2026 09:19:17 +0000 ROA not after: Sat 01 May 2027 09:24:17 +0000 asID: 153095 IP address blocks: 160.25.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:fb:d9:7f:3d:df:62:95:3b:f3:d5:cb:7d:1b:1f:2f:4e:fa:22:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:17 2026 GMT Not After : May 1 09:24:17 2027 GMT Subject: CN=631A4C784F9D3B9D94FD7002E0C3B0ADA1C1DFF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:75:2b:e1:5f:60:2e:bf:ae:30:63:7b:c0:52: 3a:a0:69:71:60:22:48:d5:cf:07:4e:7f:4a:86:d8: d1:17:be:7d:fd:d8:d3:10:c7:45:8f:08:3c:cd:c1: 5a:54:54:0c:da:42:9c:62:e9:34:79:8e:0e:42:48: 56:ea:ee:ed:ad:0e:d7:0f:ae:1b:d4:73:d6:bc:01: 62:e9:13:87:27:1c:5f:eb:78:38:c6:44:a0:74:96: c6:33:d3:b5:32:f5:d7:ce:d5:1b:10:61:f2:8c:a4: c2:b8:08:31:65:a8:d3:a4:0e:db:65:4d:ea:e4:bb: e5:dd:76:d8:c9:5a:78:8e:bf:85:70:06:c0:ab:89: b7:18:54:de:ec:36:aa:8e:c0:b4:43:b8:fa:0a:c8: 78:76:7a:ec:45:22:01:1e:89:36:84:1e:34:89:3b: 25:1b:37:cb:44:ef:73:b3:7b:61:21:4d:d0:f0:1d: 01:cd:38:4d:96:ed:55:e8:6b:03:44:dd:87:f2:14: 75:7e:ec:84:22:48:ed:e6:6d:cc:78:a5:05:8d:5b: 81:86:35:fd:75:bd:7c:9f:a5:85:40:0c:ce:5d:66: 97:31:20:24:90:e1:8c:30:bc:58:df:f1:86:30:b4: c7:30:42:80:fc:83:72:25:aa:b5:bb:a1:d4:f0:f7: e1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1A:4C:78:4F:9D:3B:9D:94:FD:70:02:E0:C3:B0:AD:A1:C1:DF:F3 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153095.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.204.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:69:c8:8b:de:c7:27:dc:a1:93:e0:5e:bf:33:62:04:7a:b8: ce:cd:0d:13:3d:26:f1:0b:61:50:e2:d4:5a:2b:d0:c7:e7:37: 42:b8:a9:db:e3:67:bf:19:ff:a6:b1:d9:44:6f:ac:7e:00:0f: 09:79:a8:ce:61:70:2d:31:36:e7:12:a8:7d:66:d8:97:82:26: 98:8c:1a:18:d0:9d:fe:98:b3:33:92:20:16:e6:2e:8d:53:10: 87:cc:43:e6:fb:d6:39:c8:81:b1:80:3d:61:e7:ca:ad:00:e3: d9:4e:18:05:49:8d:84:73:c3:4f:94:4b:f7:e5:d9:11:ad:b2: 94:d9:09:b4:02:5b:9f:46:e9:ca:b5:95:f0:22:f0:6f:d5:ff: 22:10:de:9f:84:4b:6e:84:46:83:db:fd:f1:3a:ab:ed:f7:d2: fb:4a:cc:9b:b3:d7:6b:9d:13:39:22:5b:08:6d:f7:32:67:99: b6:a1:5f:32:92:99:ac:74:81:23:79:68:88:39:7b:51:71:5f: b1:e6:e7:ad:0b:87:97:83:04:b4:bf:81:e6:ae:af:c3:1f:53: 63:74:a1:f5:3c:86:bb:71:f1:97:f6:b0:c8:68:16:92:10:0a: 8f:2a:22:e7:37:80:93:14:22:22:0c:69:68:a3:fe:49:56:33: a4:71:df:3e -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURvvZfz3fYpU789XLfRsfL076It8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkxN1oX DTI3MDUwMTA5MjQxN1owMzExMC8GA1UEAxMoNjMxQTRDNzg0RjlEM0I5RDk0RkQ3 MDAyRTBDM0IwQURBMUMxREZGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPB1K+FfYC6/rjBje8BSOqBpcWAiSNXPB05/SobY0Re+ff3Y0xDHRY8IPM3B WlRUDNpCnGLpNHmODkJIVuru7a0O1w+uG9Rz1rwBYukThyccX+t4OMZEoHSWxjPT tTL1187VGxBh8oykwrgIMWWo06QO22VN6uS75d122MlaeI6/hXAGwKuJtxhU3uw2 qo7AtEO4+grIeHZ67EUiAR6JNoQeNIk7JRs3y0Tvc7N7YSFN0PAdAc04TZbtVehr A0Tdh/IUdX7shCJI7eZtzHilBY1bgYY1/XW9fJ+lhUAMzl1mlzEgJJDhjDC8WN/x hjC0xzBCgPyDciWqtbuh1PD34WMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRjGkx4 T507nZT9cALgw7CtocHf8zAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzMDk1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBoBnMMA0GCSqGSIb3DQEBCwUAA4IBAQBtaciL3scn3KGT4F6/M2IEerjO zQ0TPSbxC2FQ4tRaK9DH5zdCuKnb42e/Gf+msdlEb6x+AA8JeajOYXAtMTbnEqh9 ZtiXgiaYjBoY0J3+mLMzkiAW5i6NUxCHzEPm+9Y5yIGxgD1h58qtAOPZThgFSY2E c8NPlEv35dkRrbKU2Qm0AlufRunKtZXwIvBv1f8iEN6fhEtuhEaD2/3xOqvt99L7 Ssybs9drnRM5IlsIbfcyZ5m2oV8ykpmsdIEjeWiIOXtRcV+x5uetC4eXgwS0v4Hm rq/DH1NjdKH1PIa7cfGX9rDIaBaSEAqPKiLnN4CTFCIiDGloo/5JVjOkcd8+ -----END CERTIFICATE-----Generated at Sat May 2 21:03:35 2026 by rpki-client