$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153877.roa File: AS153877.roa (raw, json) Hash identifier: 08mMxxlQtD269QBhw/sfVHo8hAJ56KKSCy99llCumZE= Subject key identifier: EC:19:24:C6:75:E0:F7:6D:9B:0E:F2:C9:50:8C:AC:00:BF:2A:B4:98 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 726C60E8B9E74C8FF93916784DD6F2C67D4F369D Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153877.roa Signing time: Sat 02 May 2026 09:24:56 +0000 ROA not before: Sat 02 May 2026 09:19:56 +0000 ROA not after: Sat 01 May 2027 09:24:56 +0000 asID: 153877 IP address blocks: 144.79.177.0/24 maxlen: 24 165.99.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:6c:60:e8:b9:e7:4c:8f:f9:39:16:78:4d:d6:f2:c6:7d:4f:36:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:56 2026 GMT Not After : May 1 09:24:56 2027 GMT Subject: CN=EC1924C675E0F76D9B0EF2C9508CAC00BF2AB498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d2:5f:97:ed:b6:97:08:97:3d:9e:7a:2a:6f: 9a:ed:50:11:95:51:f5:4f:be:0b:51:94:73:d1:57: 44:da:42:c0:36:86:b7:01:de:f8:be:30:3c:08:0c: fe:25:e0:52:e8:2c:0d:dc:c5:45:58:1c:12:b3:22: 6b:5a:07:41:bb:59:cd:9f:30:88:10:3c:2d:85:e9: 07:ef:bf:e5:2c:48:60:b0:57:b3:5e:cf:85:dd:e7: 0e:0f:50:8a:60:a7:86:af:b8:fa:47:d8:10:83:e5: 8e:f3:6d:38:5c:0a:93:3b:d7:ee:23:5b:af:93:bc: 10:14:69:78:f7:82:04:74:14:4a:3a:ed:2f:55:5d: 65:0a:6f:68:a7:18:af:fb:5c:f6:ee:84:e7:46:84: 2d:22:fc:d2:b6:66:dd:4b:fc:f9:eb:01:e6:f3:8b: ed:84:82:34:a0:e7:b9:62:7d:a0:e9:c6:23:ee:f4: 7f:57:4c:c5:b8:8e:48:d3:cb:42:57:c2:cd:35:c8: 17:d7:bf:18:a6:07:23:12:1d:e7:dd:f4:c0:16:da: ee:c8:ae:c0:e9:3c:ff:3c:22:8d:71:b5:1c:00:1a: 45:0e:ea:b8:c4:88:e7:9a:a0:71:47:4c:ee:6a:00: 2f:7d:c6:5d:28:ce:01:a2:75:c4:4f:2a:e8:95:4e: 32:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:19:24:C6:75:E0:F7:6D:9B:0E:F2:C9:50:8C:AC:00:BF:2A:B4:98 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153877.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.177.0/24 165.99.19.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:c8:e7:13:a5:6c:07:39:ba:19:f6:01:37:7d:b8:a8:77:6f: 1d:1f:69:35:46:2d:97:67:a3:2c:84:6d:37:b2:d0:3f:9a:7a: d4:65:a4:64:e3:8a:53:a2:41:c9:83:00:ef:1d:83:b7:2e:2a: 92:5d:b9:ae:2a:61:7a:0b:18:ad:49:54:33:9b:cc:50:db:da: 90:bd:95:b7:59:a4:08:7d:99:0c:aa:87:9e:7e:c6:da:8d:76: e2:13:21:55:89:a2:12:b7:3d:37:6e:1d:a1:75:f1:60:2b:bd: bb:10:2a:d3:ce:4c:92:f4:df:3a:2b:ac:80:31:88:37:f0:30: 60:9e:08:e5:f7:bb:0f:88:6b:fd:62:0c:e8:bc:61:02:b7:ad: 7f:03:43:c9:cb:40:ff:e8:2f:19:4b:b0:67:65:c7:08:ba:66: 13:2f:16:33:e5:af:30:e9:b3:5b:e0:e9:f8:6e:2c:bd:d1:38: 8f:54:e1:1a:c0:98:2e:d4:01:80:c4:b3:34:0b:d2:2c:89:c9: b9:01:8b:33:a1:b4:21:73:bd:c7:f3:0b:bd:57:d0:a3:d1:6f: 1c:8f:34:41:c2:14:d1:ae:07:f9:a0:09:22:7d:3c:8f:80:50: 0e:54:d1:d9:3b:e4:16:5d:e5:46:84:5f:cc:fe:b6:99:cd:7d: 5d:c1:c1:6a -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUcmxg6LnnTI/5ORZ4Tdbyxn1PNp0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTk1NloX DTI3MDUwMTA5MjQ1NlowMzExMC8GA1UEAxMoRUMxOTI0QzY3NUUwRjc2RDlCMEVG MkM5NTA4Q0FDMDBCRjJBQjQ5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJTSX5fttpcIlz2eeipvmu1QEZVR9U++C1GUc9FXRNpCwDaGtwHe+L4wPAgM /iXgUugsDdzFRVgcErMia1oHQbtZzZ8wiBA8LYXpB++/5SxIYLBXs17Phd3nDg9Q imCnhq+4+kfYEIPljvNtOFwKkzvX7iNbr5O8EBRpePeCBHQUSjrtL1VdZQpvaKcY r/tc9u6E50aELSL80rZm3Uv8+esB5vOL7YSCNKDnuWJ9oOnGI+70f1dMxbiOSNPL QlfCzTXIF9e/GKYHIxId5930wBba7siuwOk8/zwijXG1HAAaRQ7quMSI55qgcUdM 7moAL33GXSjOAaJ1xE8q6JVOMssCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBTsGSTG deD3bZsO8slQjKwAvyq0mDAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzODc3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAkE+xAwQApWMTMA0GCSqGSIb3DQEBCwUAA4IBAQCOyOcTpWwHOboZ9gE3 fbiod28dH2k1Ri2XZ6MshG03stA/mnrUZaRk44pTokHJgwDvHYO3LiqSXbmuKmF6 CxitSVQzm8xQ29qQvZW3WaQIfZkMqoeefsbajXbiEyFViaIStz03bh2hdfFgK727 ECrTzkyS9N86K6yAMYg38DBgngjl97sPiGv9YgzovGECt61/A0PJy0D/6C8ZS7Bn ZccIumYTLxYz5a8w6bNb4On4biy90TiPVOEawJgu1AGAxLM0C9Isicm5AYszobQh c73H8wu9V9Cj0W8cjzRBwhTRrgf5oAkifTyPgFAOVNHZO+QWXeVGhF/M/raZzX1d wcFq -----END CERTIFICATE-----Generated at Sat May 2 21:03:43 2026 by rpki-client