$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153486.roa File: AS153486.roa (raw, json) Hash identifier: aWrxT+yzGC7ng01vXD5HGGtAiYN0j4zn7ME6jhfYWzk= Subject key identifier: 00:7F:79:C5:2D:11:B2:57:F7:14:55:E9:A7:63:74:E2:FD:46:5B:56 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 62F54B7291CFA31864DD76A10AE0F51A867A85E6 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153486.roa Signing time: Sat 02 May 2026 09:24:08 +0000 ROA not before: Sat 02 May 2026 09:19:08 +0000 ROA not after: Sat 01 May 2027 09:24:08 +0000 asID: 153486 IP address blocks: 160.250.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f5:4b:72:91:cf:a3:18:64:dd:76:a1:0a:e0:f5:1a:86:7a:85:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:08 2026 GMT Not After : May 1 09:24:08 2027 GMT Subject: CN=007F79C52D11B257F71455E9A76374E2FD465B56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:a7:d3:54:cb:de:d8:35:6c:c4:77:03:44:4e: b5:36:69:de:58:5f:df:17:44:3f:1d:99:d2:21:ea: 74:e0:0b:ef:35:72:9a:d0:32:e2:83:d7:f8:a3:40: cf:6a:ee:83:a0:f7:36:b9:0c:4c:dd:35:64:69:a5: 4f:9f:a6:cd:33:1b:ac:db:11:d0:94:c9:e6:08:d8: 58:5d:fc:c2:0a:a4:01:4f:37:53:18:4f:43:fd:31: 48:60:6f:4c:ee:24:a7:90:9c:9b:69:ba:ff:56:e0: f0:d6:f0:16:45:5c:f3:0b:ad:82:45:23:08:f8:b2: 10:b1:7d:da:9e:59:12:d1:d0:56:82:ad:71:3f:ef: 8a:5a:df:be:6f:0c:73:7d:b5:2a:47:94:e6:02:da: 2b:17:cd:93:e3:4e:62:22:fe:5d:a3:5a:35:d8:3a: e9:3f:8f:8c:7f:47:7e:28:d8:e3:3f:df:d0:4f:50: c0:77:0e:38:6d:9d:45:0f:3e:15:c0:53:30:0c:0e: b0:7d:28:49:f0:fc:cc:f1:7e:05:c0:61:3c:c0:15: 8e:37:b1:05:45:c4:96:08:b0:33:6f:db:ea:fc:06: e4:f6:a4:98:34:3a:af:13:0c:b2:af:83:00:dd:a7: 87:d4:de:8b:61:2f:fe:7b:81:7c:f4:a9:ba:a6:0c: e5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7F:79:C5:2D:11:B2:57:F7:14:55:E9:A7:63:74:E2:FD:46:5B:56 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153486.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.250.194.0/23 Signature Algorithm: sha256WithRSAEncryption 66:a5:94:da:4c:4d:78:20:fe:e1:a2:2a:94:50:19:fc:0a:7b: a1:59:75:64:3e:59:93:95:6e:bc:48:c9:93:38:bf:23:e6:5a: 7f:a6:5f:2d:02:c7:55:1b:0d:54:60:0e:85:dd:0f:47:34:b3: 2a:6e:99:76:14:b4:07:ac:ca:43:b6:39:d8:d3:a5:ed:de:f6: c0:fa:18:b6:00:7b:79:89:91:71:bc:1f:60:37:61:c5:63:33: db:55:18:ce:8f:c1:8a:01:6a:3d:18:18:46:56:15:2a:d8:e0: 62:fe:56:9d:bf:d7:a3:d9:c5:a7:85:56:a6:be:2b:1e:6e:5a: 0d:e1:49:ad:6c:31:5a:05:f1:3a:48:18:b7:43:29:f3:31:30: ad:b3:3a:84:03:4a:f3:d5:74:81:6b:be:c6:49:88:69:32:87: 7a:c1:94:31:4d:ac:ed:1c:08:e4:00:04:25:fd:23:79:07:35: e9:9b:9f:49:1f:df:2c:99:af:1b:49:dd:f9:f3:b0:6d:5b:4d: 27:2c:0b:66:76:24:66:74:ac:84:c5:3f:93:86:e0:73:75:bc: 50:b8:3c:5c:88:5a:c3:39:51:4a:f5:04:1c:22:fd:7e:a0:27: ae:63:be:3a:c6:3b:da:38:6b:1f:e7:6e:6a:2d:18:a3:a6:36: 1b:06:be:0d -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUYvVLcpHPoxhk3XahCuD1GoZ6heYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkwOFoX DTI3MDUwMTA5MjQwOFowMzExMC8GA1UEAxMoMDA3Rjc5QzUyRDExQjI1N0Y3MTQ1 NUU5QTc2Mzc0RTJGRDQ2NUI1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI2n01TL3tg1bMR3A0ROtTZp3lhf3xdEPx2Z0iHqdOAL7zVymtAy4oPX+KNA z2rug6D3NrkMTN01ZGmlT5+mzTMbrNsR0JTJ5gjYWF38wgqkAU83UxhPQ/0xSGBv TO4kp5Ccm2m6/1bg8NbwFkVc8wutgkUjCPiyELF92p5ZEtHQVoKtcT/vilrfvm8M c321KkeU5gLaKxfNk+NOYiL+XaNaNdg66T+PjH9HfijY4z/f0E9QwHcOOG2dRQ8+ FcBTMAwOsH0oSfD8zPF+BcBhPMAVjjexBUXElgiwM2/b6vwG5PakmDQ6rxMMsq+D AN2nh9Tei2Ev/nuBfPSpuqYM5SsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQAf3nF LRGyV/cUVemnY3Ti/UZbVjAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzNDg2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBoPrCMA0GCSqGSIb3DQEBCwUAA4IBAQBmpZTaTE14IP7hoiqUUBn8Cnuh WXVkPlmTlW68SMmTOL8j5lp/pl8tAsdVGw1UYA6F3Q9HNLMqbpl2FLQHrMpDtjnY 06Xt3vbA+hi2AHt5iZFxvB9gN2HFYzPbVRjOj8GKAWo9GBhGVhUq2OBi/ladv9ej 2cWnhVamvisebloN4UmtbDFaBfE6SBi3QynzMTCtszqEA0rz1XSBa77GSYhpMod6 wZQxTaztHAjkAAQl/SN5BzXpm59JH98sma8bSd3587BtW00nLAtmdiRmdKyExT+T huBzdbxQuDxciFrDOVFK9QQcIv1+oCeuY746xjvaOGsf525qLRijpjYbBr4N -----END CERTIFICATE-----Generated at Sat May 2 21:03:43 2026 by rpki-client