$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153155.roa File: AS153155.roa (raw, json) Hash identifier: trIGRwVgtdKkQwqny08yxRBQ/4S4qlmNwHTO4S0ezT4= Subject key identifier: 73:EC:19:EF:50:CF:92:24:71:D8:29:92:6E:A6:0D:11:84:78:75:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 401E7F7F031CB3796273BD9C247F9504AF8EA08C Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153155.roa Signing time: Sat 02 May 2026 09:22:54 +0000 ROA not before: Sat 02 May 2026 09:17:54 +0000 ROA not after: Sat 01 May 2027 09:22:54 +0000 asID: 153155 IP address blocks: 160.191.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:1e:7f:7f:03:1c:b3:79:62:73:bd:9c:24:7f:95:04:af:8e:a0:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:17:54 2026 GMT Not After : May 1 09:22:54 2027 GMT Subject: CN=73EC19EF50CF922471D829926EA60D1184787562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:55:1e:f2:74:00:bc:72:59:d7:8e:71:f5:55: 0b:0f:df:56:1b:1b:31:d3:ee:53:88:27:39:51:7d: df:8f:67:d8:5d:cb:ca:e1:43:88:db:71:5a:a3:f4: ed:04:4d:27:12:e8:33:4a:00:83:88:43:8b:0c:cf: 1b:9e:74:18:6d:00:34:d2:c3:00:5a:71:cc:7b:78: 78:8d:ef:0c:d6:87:db:74:73:89:ef:30:9d:83:68: d3:d1:fe:18:99:e9:6a:b9:64:4d:42:e9:f9:55:3d: c6:64:39:d3:de:8d:82:6d:95:10:5e:e6:7c:79:61: 59:ec:a0:46:78:ba:8e:84:bb:d8:bd:53:3c:38:57: fc:3b:da:14:40:59:46:b7:f8:77:1c:c8:c8:6e:75: 16:5f:e4:d9:1a:5d:92:16:af:bd:8b:e6:c9:49:87: 5e:a2:17:47:77:01:fc:62:d6:22:39:8b:b0:50:ce: 5f:51:38:21:30:4c:c7:3f:42:6a:af:82:c4:10:a1: b7:f0:36:81:18:ae:f7:38:66:90:0a:99:87:98:82: 59:50:72:46:03:0d:81:0d:97:04:bf:0b:6d:12:13: 98:b8:c7:a3:7f:f3:40:b6:82:d0:a8:5f:81:86:96: 4f:c4:29:fa:a9:da:b8:77:96:b2:1e:72:91:f2:0f: bb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EC:19:EF:50:CF:92:24:71:D8:29:92:6E:A6:0D:11:84:78:75:62 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153155.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.192.0/23 Signature Algorithm: sha256WithRSAEncryption 31:26:a7:a0:07:17:d9:e3:02:75:23:fd:9d:c2:4c:1d:c6:79: 72:bd:11:72:71:0f:bc:91:a4:17:65:41:17:f6:d8:b4:6b:ec: 05:01:a0:f5:a1:e2:9c:72:cf:eb:e7:6d:3d:74:a2:34:f4:ce: 2e:51:e6:0b:19:b3:3d:a1:1b:16:4f:94:25:1c:60:be:10:57: 9a:15:7a:8f:2f:fa:a1:c7:59:f6:31:39:3b:55:83:10:4b:fe: 8b:1a:3c:f9:b2:77:73:65:b4:e4:56:31:d8:da:83:13:90:a1: 7e:8b:99:60:a2:1b:c5:e2:d4:27:44:77:1e:29:66:a5:e4:ca: 77:eb:2d:53:1a:ee:a5:8a:3b:3f:37:50:73:31:79:28:49:e2: a2:9b:10:aa:b7:3b:59:f9:bb:2a:d3:f5:7c:42:3a:30:2b:ab: d0:df:bc:3f:2d:57:a5:b3:1f:83:6a:83:5b:f3:40:cc:8f:6a: b5:68:c4:63:64:75:26:9d:3c:42:e0:4f:b8:9d:f6:24:04:5e: 20:e8:2c:89:8e:4c:f9:42:93:84:af:c3:23:bd:d3:53:3c:d0: 60:5b:75:ee:9d:f6:fc:5c:d7:e6:5f:4e:4a:08:2f:15:36:ca: ca:73:ae:36:3f:82:01:a5:c0:19:65:54:17:69:ab:92:c0:92: 38:33:42:af -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUQB5/fwMcs3lic72cJH+VBK+OoIwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTc1NFoX DTI3MDUwMTA5MjI1NFowMzExMC8GA1UEAxMoNzNFQzE5RUY1MENGOTIyNDcxRDgy OTkyNkVBNjBEMTE4NDc4NzU2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN9VHvJ0ALxyWdeOcfVVCw/fVhsbMdPuU4gnOVF9349n2F3LyuFDiNtxWqP0 7QRNJxLoM0oAg4hDiwzPG550GG0ANNLDAFpxzHt4eI3vDNaH23Rzie8wnYNo09H+ GJnparlkTULp+VU9xmQ5096Ngm2VEF7mfHlhWeygRni6joS72L1TPDhX/DvaFEBZ Rrf4dxzIyG51Fl/k2RpdkhavvYvmyUmHXqIXR3cB/GLWIjmLsFDOX1E4ITBMxz9C aq+CxBCht/A2gRiu9zhmkAqZh5iCWVByRgMNgQ2XBL8LbRITmLjHo3/zQLaC0Khf gYaWT8Qp+qnauHeWsh5ykfIPu7sCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRz7Bnv UM+SJHHYKZJupg0RhHh1YjAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzMTU1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBoL/AMA0GCSqGSIb3DQEBCwUAA4IBAQAxJqegBxfZ4wJ1I/2dwkwdxnly vRFycQ+8kaQXZUEX9ti0a+wFAaD1oeKccs/r5209dKI09M4uUeYLGbM9oRsWT5Ql HGC+EFeaFXqPL/qhx1n2MTk7VYMQS/6LGjz5sndzZbTkVjHY2oMTkKF+i5lgohvF 4tQnRHceKWal5Mp36y1TGu6lijs/N1BzMXkoSeKimxCqtztZ+bsq0/V8QjowK6vQ 37w/LVelsx+DaoNb80DMj2q1aMRjZHUmnTxC4E+4nfYkBF4g6CyJjkz5QpOEr8Mj vdNTPNBgW3Xunfb8XNfmX05KCC8VNsrKc642P4IBpcAZZVQXaauSwJI4M0Kv -----END CERTIFICATE-----Generated at Sat May 2 21:04:49 2026 by rpki-client