$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153480.roa File: AS153480.roa (raw, json) Hash identifier: 9CEnWnZ9USRNry51Vh4BvugeDAhE2SubCFC20xI6Wco= Subject key identifier: A0:7B:F2:5E:77:A8:2F:C0:57:1C:BD:54:B3:0B:57:F5:BC:03:AA:3D Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 5AAE44B0512B33F4347E8A1E12ADCAAF522A680D Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153480.roa Signing time: Sat 02 May 2026 09:23:56 +0000 ROA not before: Sat 02 May 2026 09:18:56 +0000 ROA not after: Sat 01 May 2027 09:23:56 +0000 asID: 153480 IP address blocks: 160.191.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ae:44:b0:51:2b:33:f4:34:7e:8a:1e:12:ad:ca:af:52:2a:68:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:56 2026 GMT Not After : May 1 09:23:56 2027 GMT Subject: CN=A07BF25E77A82FC0571CBD54B30B57F5BC03AA3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e3:9d:69:56:7c:6d:1b:93:a4:75:d5:8d:c9: d4:ac:19:61:ea:c3:c7:c4:3c:a4:9e:7a:08:10:76: 66:00:9f:f3:8b:c5:16:2a:5c:13:6e:ea:56:4b:5a: 36:f6:bd:07:e3:eb:0e:68:0a:21:5a:ca:50:eb:d5: 08:80:db:ff:e8:91:5a:8e:a0:c6:9b:70:9b:a2:96: 02:a4:2c:80:21:d9:6a:5a:c9:d5:58:cc:f4:14:65: e3:6e:74:62:23:60:8f:c7:66:0e:85:54:5a:e2:c4: 21:fd:cc:9a:89:d5:02:e5:83:3e:0e:9d:00:b0:33: db:b9:55:8e:31:28:b0:52:a1:c0:3c:90:7e:93:e6: 66:58:22:1e:a1:48:76:6c:56:67:29:fa:3f:30:6e: 6e:08:28:6e:d7:ff:0b:4e:58:10:02:52:98:ae:67: 6b:7d:a5:23:50:5c:20:54:40:14:d7:c9:39:cc:9b: a6:99:38:67:87:fd:b0:c6:f2:a2:69:0c:74:67:9e: 86:27:43:52:f2:01:b1:74:42:67:a2:31:ee:27:7e: 7b:15:0f:b6:33:5a:90:cf:30:09:2d:b1:97:48:60: 51:e7:44:e5:86:b3:e1:07:b6:20:da:8e:a6:ea:e8: af:c4:d8:f9:b6:df:a5:8b:f7:78:d5:29:6f:bf:46: ea:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:7B:F2:5E:77:A8:2F:C0:57:1C:BD:54:B3:0B:57:F5:BC:03:AA:3D X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.232.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:24:b3:70:94:5d:d1:26:89:fc:cf:75:f3:3c:96:68:90:db: 6f:65:14:56:1e:01:d0:60:05:50:75:32:6b:6d:23:61:53:25: 6f:3f:05:02:a2:92:b5:b4:26:ad:dc:eb:ad:a4:dc:8d:26:da: 3d:79:60:b9:b5:a4:82:0d:e9:1f:bb:da:5e:2c:81:66:de:34: b0:1b:af:89:d7:6b:47:3a:38:2e:ab:d3:83:7a:8a:f6:b4:f7: fd:f7:ab:96:5a:d0:8b:54:a5:ab:98:0e:31:6e:ff:e1:58:fc: 66:c3:a6:7f:9a:d3:0b:45:14:05:a3:4c:b4:2e:a0:8b:70:aa: 05:c2:17:f1:09:23:44:90:eb:33:b9:db:8c:30:a7:5e:cc:17: 18:5e:b5:8b:a9:ea:2e:59:29:6a:2a:4a:21:a5:08:ae:68:c8: 75:4c:22:7a:40:a7:89:bd:d3:d9:62:11:11:d7:cc:cf:03:d8: 6e:7e:0e:8c:42:87:fd:15:5a:16:1a:fc:ff:8c:13:d8:bd:10: 19:25:3c:e0:ac:7f:dd:9b:8b:02:d1:0a:ed:5c:b4:19:2f:0e: 0b:c5:73:6f:e3:48:e6:fc:33:20:a3:0f:6a:96:fc:98:1f:91: 51:36:13:a6:08:8b:1c:ed:95:7b:be:49:1d:16:fe:02:2b:b7: 8c:cb:88:46 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWq5EsFErM/Q0fooeEq3Kr1IqaA0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTg1NloX DTI3MDUwMTA5MjM1NlowMzExMC8GA1UEAxMoQTA3QkYyNUU3N0E4MkZDMDU3MUNC RDU0QjMwQjU3RjVCQzAzQUEzRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALHjnWlWfG0bk6R11Y3J1KwZYerDx8Q8pJ56CBB2ZgCf84vFFipcE27qVkta Nva9B+PrDmgKIVrKUOvVCIDb/+iRWo6gxptwm6KWAqQsgCHZalrJ1VjM9BRl4250 YiNgj8dmDoVUWuLEIf3MmonVAuWDPg6dALAz27lVjjEosFKhwDyQfpPmZlgiHqFI dmxWZyn6PzBubggobtf/C05YEAJSmK5na32lI1BcIFRAFNfJOcybppk4Z4f9sMby omkMdGeehidDUvIBsXRCZ6Ix7id+exUPtjNakM8wCS2xl0hgUedE5Yaz4Qe2INqO puror8TY+bbfpYv3eNUpb79G6v0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSge/Je d6gvwFccvVSzC1f1vAOqPTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzNDgwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBoL/oMA0GCSqGSIb3DQEBCwUAA4IBAQB6JLNwlF3RJon8z3XzPJZokNtv ZRRWHgHQYAVQdTJrbSNhUyVvPwUCopK1tCat3OutpNyNJto9eWC5taSCDekfu9pe LIFm3jSwG6+J12tHOjguq9ODeor2tPf996uWWtCLVKWrmA4xbv/hWPxmw6Z/mtML RRQFo0y0LqCLcKoFwhfxCSNEkOszuduMMKdezBcYXrWLqeouWSlqKkohpQiuaMh1 TCJ6QKeJvdPZYhER18zPA9hufg6MQof9FVoWGvz/jBPYvRAZJTzgrH/dm4sC0Qrt XLQZLw4LxXNv40jm/DMgow9qlvyYH5FRNhOmCIsc7ZV7vkkdFv4CK7eMy4hG -----END CERTIFICATE-----Generated at Sat May 2 21:03:43 2026 by rpki-client