$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153126.roa File: AS153126.roa (raw, json) Hash identifier: iFU8doavntAp4FImIF5ZBPoqw7xv8SKKPgXvWQP1JOA= Subject key identifier: 18:EA:EF:E6:D7:A3:C7:B6:3A:0D:C8:79:FE:25:95:51:F9:70:AB:6E Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 17C887AB3F893F14963D80EC47B3A12D47018C20 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153126.roa Signing time: Sat 02 May 2026 09:23:58 +0000 ROA not before: Sat 02 May 2026 09:18:58 +0000 ROA not after: Sat 01 May 2027 09:23:58 +0000 asID: 153126 IP address blocks: 160.187.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c8:87:ab:3f:89:3f:14:96:3d:80:ec:47:b3:a1:2d:47:01:8c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:58 2026 GMT Not After : May 1 09:23:58 2027 GMT Subject: CN=18EAEFE6D7A3C7B63A0DC879FE259551F970AB6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c7:82:94:03:97:d1:a0:80:ad:90:9f:da:44: 91:02:39:70:9d:02:f8:62:5e:ee:38:c8:28:51:95: b1:c2:3b:c9:5a:ea:b8:f9:04:ca:ca:95:ac:1e:35: 17:4a:5f:fa:4f:c8:75:3f:30:25:8e:30:7d:76:cc: ad:60:45:20:62:8a:06:cd:a7:2b:d0:24:c2:74:f4: 17:1e:2f:d6:e1:26:68:ae:cf:c6:7a:32:0e:7e:ec: f8:8f:0a:99:4a:13:98:b1:77:4f:c2:52:ad:87:43: 05:33:ff:96:b3:2d:e9:5c:4d:81:4c:d6:6a:88:a2: 0e:78:11:0a:04:df:11:2e:32:44:7e:a3:03:ba:64: 9c:13:ca:17:25:a6:4e:bc:23:c6:26:29:7a:fe:26: 43:5d:2d:d4:fc:6b:9f:90:a3:d3:ef:cb:b1:89:b8: 1f:54:92:b5:31:fd:f7:41:22:5c:7f:e4:9d:98:74: 31:0b:cf:fb:3d:cb:fd:af:ec:e0:18:e2:51:99:8e: b5:27:13:c8:54:6a:bd:98:e1:dd:db:0d:e4:72:0a: bf:e1:da:7b:a7:de:d6:ac:e7:48:3e:c7:b6:ad:70: e0:9a:6f:35:a1:8b:ae:f0:aa:53:e5:ae:50:ef:9c: 39:92:90:b8:dd:eb:5b:f7:84:a2:58:3b:8d:8c:52: 0f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EA:EF:E6:D7:A3:C7:B6:3A:0D:C8:79:FE:25:95:51:F9:70:AB:6E X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153126.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.86.0/24 Signature Algorithm: sha256WithRSAEncryption 67:18:52:2c:7e:44:83:a2:c1:a1:b0:37:90:4d:25:d7:48:25: 5f:64:38:97:6b:dd:ba:39:ce:27:11:c0:e5:4a:3e:9c:99:c3: b0:87:b2:20:ea:53:88:2d:b5:b4:30:9c:64:c2:14:3f:54:24: a3:f9:22:ee:2c:76:3b:72:6b:4a:21:57:90:8c:bb:de:61:e4: c6:c7:f6:52:08:e8:21:a3:48:ac:16:c5:05:e0:f8:b3:33:c8: 43:22:1a:7e:77:f0:4c:99:30:d9:99:42:c2:a5:27:96:4d:27: 5d:c2:f8:2a:55:b8:9b:32:76:91:e1:da:60:ef:f5:47:ba:34: 73:e4:38:bc:cb:c9:9b:7a:d8:0f:6f:7c:ee:01:6e:b2:f1:8e: d2:83:08:5c:e7:2e:c4:5e:f5:8b:f5:e0:a6:7d:fe:90:7d:9a: 91:ec:1d:bc:32:a7:13:db:3e:1d:0d:02:39:69:f3:07:5d:ec: 9e:2a:64:58:70:17:fc:03:49:8d:46:5e:c8:df:f4:17:07:d3: ef:cf:52:30:bd:ff:1a:c7:cd:3d:d3:64:23:fe:bd:76:1c:52: 7d:9e:61:e8:b6:7a:09:2b:64:a5:45:76:fe:a5:56:3f:b6:48: 66:8b:f8:e5:34:38:6a:ee:16:69:4e:7d:f1:45:db:ed:9b:0a: 4d:2a:f3:59 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUF8iHqz+JPxSWPYDsR7OhLUcBjCAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTg1OFoX DTI3MDUwMTA5MjM1OFowMzExMC8GA1UEAxMoMThFQUVGRTZEN0EzQzdCNjNBMERD ODc5RkUyNTk1NTFGOTcwQUI2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLHgpQDl9GggK2Qn9pEkQI5cJ0C+GJe7jjIKFGVscI7yVrquPkEysqVrB41 F0pf+k/IdT8wJY4wfXbMrWBFIGKKBs2nK9AkwnT0Fx4v1uEmaK7PxnoyDn7s+I8K mUoTmLF3T8JSrYdDBTP/lrMt6VxNgUzWaoiiDngRCgTfES4yRH6jA7pknBPKFyWm TrwjxiYpev4mQ10t1Pxrn5Cj0+/LsYm4H1SStTH990EiXH/knZh0MQvP+z3L/a/s 4BjiUZmOtScTyFRqvZjh3dsN5HIKv+Hae6fe1qznSD7Htq1w4JpvNaGLrvCqU+Wu UO+cOZKQuN3rW/eEolg7jYxSD30CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQY6u/m 16PHtjoNyHn+JZVR+XCrbjAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzMTI2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAoLtWMA0GCSqGSIb3DQEBCwUAA4IBAQBnGFIsfkSDosGhsDeQTSXXSCVf ZDiXa926Oc4nEcDlSj6cmcOwh7Ig6lOILbW0MJxkwhQ/VCSj+SLuLHY7cmtKIVeQ jLveYeTGx/ZSCOgho0isFsUF4PizM8hDIhp+d/BMmTDZmULCpSeWTSddwvgqVbib MnaR4dpg7/VHujRz5Di8y8mbetgPb3zuAW6y8Y7Sgwhc5y7EXvWL9eCmff6QfZqR 7B28MqcT2z4dDQI5afMHXeyeKmRYcBf8A0mNRl7I3/QXB9Pvz1Iwvf8ax80902Qj /r12HFJ9nmHotnoJK2SlRXb+pVY/tkhmi/jlNDhq7hZpTn3xRdvtmwpNKvNZ -----END CERTIFICATE-----Generated at Sat May 2 21:05:17 2026 by rpki-client