$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153115.roa File: AS153115.roa (raw, json) Hash identifier: 9hfIy1ni5+9+/ZBg47zAbYAK583/S4oHlFKy76GzxPQ= Subject key identifier: 55:91:8B:73:65:68:D0:4F:F5:8D:EC:EB:62:9F:57:BB:08:16:82:9F Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 238C6596F170CF8597C40382E59448E079573D86 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153115.roa Signing time: Sat 02 May 2026 09:23:52 +0000 ROA not before: Sat 02 May 2026 09:18:52 +0000 ROA not after: Sat 01 May 2027 09:23:52 +0000 asID: 153115 IP address blocks: 157.20.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:8c:65:96:f1:70:cf:85:97:c4:03:82:e5:94:48:e0:79:57:3d:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:52 2026 GMT Not After : May 1 09:23:52 2027 GMT Subject: CN=55918B736568D04FF58DECEB629F57BB0816829F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7e:83:b7:50:a2:78:96:75:e8:4c:61:82:36: 78:b8:e2:8a:cd:a2:6f:8b:23:8b:96:f8:23:8e:16: 84:b3:67:fa:6c:47:6c:6e:34:74:fc:e4:3d:b6:f0: bf:e5:90:df:87:be:55:42:e9:0d:72:cd:f8:17:c9: 3a:77:96:2a:c5:4f:25:9f:2d:d5:a5:35:56:05:f8: 66:d2:67:0b:cd:1e:ab:3f:7d:99:4f:de:5c:07:7a: 5c:de:49:d4:5b:65:27:9e:de:35:5e:ea:63:a1:f6: 3b:33:1b:ef:ba:8b:74:a8:86:5e:4a:ae:c4:b3:e3: 33:bb:7d:31:67:31:67:fc:f2:95:26:33:bd:2f:1c: 53:44:46:cf:b4:09:6b:9d:a4:4f:dd:b3:34:6b:b9: 6c:81:14:c4:06:b6:31:99:51:9e:98:e9:20:62:d1: b9:f0:2c:0f:e1:a7:b1:85:96:38:a7:fb:05:eb:86: f4:7c:85:c3:88:aa:81:fc:84:d1:b1:34:46:23:54: 12:de:99:3c:ad:ad:9b:a4:b8:75:96:74:56:02:46: 3c:e5:b6:9b:9b:91:3c:8a:f4:86:eb:24:49:38:0e: 21:ca:e8:e9:c7:fc:2c:4c:92:ab:cc:43:40:44:a3: b9:db:7f:6a:bd:91:82:9d:62:17:88:78:ff:64:2e: 0d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:91:8B:73:65:68:D0:4F:F5:8D:EC:EB:62:9F:57:BB:08:16:82:9F X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153115.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.48.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:35:44:bb:01:b4:3b:d1:47:0a:c0:58:02:0a:86:8a:d9:14: b7:66:ed:54:55:fa:fc:37:36:b2:34:7f:3e:21:e3:4b:a9:6c: 13:de:3f:cc:67:be:cf:33:74:a0:54:95:32:d2:5f:1b:23:e6: 37:6b:3d:eb:df:35:3a:4b:20:de:75:a0:bb:47:72:89:7c:92: 30:77:fc:01:80:7e:1d:bb:c8:06:a0:96:bc:5e:e3:23:8a:40: 14:5f:4c:e0:fd:ed:1a:8b:92:06:ea:5c:98:6c:d6:1c:71:21: 7a:14:67:57:14:92:83:20:93:30:56:30:fc:f8:b8:e0:11:b1: 64:cf:53:22:00:c0:7a:4b:69:6b:6c:a5:7b:a6:e5:6a:b1:2e: c4:af:19:20:1c:96:a5:26:77:07:26:f9:d0:56:47:1e:42:fd: 6b:6b:28:a0:cb:6e:c8:8b:3c:e8:96:8d:0c:96:a6:f5:e2:ee: d0:8a:49:62:5a:50:fd:47:bc:66:3f:95:3f:a9:b6:f4:63:f9: 61:42:77:07:36:30:b7:d6:14:89:d7:a5:35:ac:a6:19:09:3e: 62:82:40:68:e3:91:6d:2e:bd:41:da:34:3c:0c:40:cb:8c:d7: b3:21:d0:49:eb:91:32:1b:0e:71:80:9b:73:a5:2e:7c:88:ed: cf:25:52:a2 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUI4xllvFwz4WXxAOC5ZRI4HlXPYYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTg1MloX DTI3MDUwMTA5MjM1MlowMzExMC8GA1UEAxMoNTU5MThCNzM2NTY4RDA0RkY1OERF Q0VCNjI5RjU3QkIwODE2ODI5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJR+g7dQoniWdehMYYI2eLjiis2ib4sji5b4I44WhLNn+mxHbG40dPzkPbbw v+WQ34e+VULpDXLN+BfJOneWKsVPJZ8t1aU1VgX4ZtJnC80eqz99mU/eXAd6XN5J 1FtlJ57eNV7qY6H2OzMb77qLdKiGXkquxLPjM7t9MWcxZ/zylSYzvS8cU0RGz7QJ a52kT92zNGu5bIEUxAa2MZlRnpjpIGLRufAsD+GnsYWWOKf7BeuG9HyFw4iqgfyE 0bE0RiNUEt6ZPK2tm6S4dZZ0VgJGPOW2m5uRPIr0huskSTgOIcro6cf8LEySq8xD QESjudt/ar2Rgp1iF4h4/2QuDYECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRVkYtz ZWjQT/WN7Otin1e7CBaCnzAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzMTE1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnRQwMA0GCSqGSIb3DQEBCwUAA4IBAQAeNUS7AbQ70UcKwFgCCoaK2RS3 Zu1UVfr8NzayNH8+IeNLqWwT3j/MZ77PM3SgVJUy0l8bI+Y3az3r3zU6SyDedaC7 R3KJfJIwd/wBgH4du8gGoJa8XuMjikAUX0zg/e0ai5IG6lyYbNYccSF6FGdXFJKD IJMwVjD8+LjgEbFkz1MiAMB6S2lrbKV7puVqsS7ErxkgHJalJncHJvnQVkceQv1r ayigy27Iizzolo0Mlqb14u7QikliWlD9R7xmP5U/qbb0Y/lhQncHNjC31hSJ16U1 rKYZCT5igkBo45FtLr1B2jQ8DEDLjNezIdBJ65EyGw5xgJtzpS58iO3PJVKi -----END CERTIFICATE-----Generated at Sat May 2 21:05:02 2026 by rpki-client