$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153893.roa File: AS153893.roa (raw, json) Hash identifier: g3to2geWYF3V79/I7+uhdQoTOnQQefAdLUvEQu+BwsM= Subject key identifier: 29:5F:40:C1:2B:8C:70:B1:F0:CE:17:E6:75:A6:4A:AD:A8:5F:80:0D Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 29267667DF18A8E0710A802FDB17723BEA8D2A6E Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153893.roa Signing time: Sat 02 May 2026 09:25:08 +0000 ROA not before: Sat 02 May 2026 09:20:08 +0000 ROA not after: Sat 01 May 2027 09:25:08 +0000 asID: 153893 IP address blocks: 165.99.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:26:76:67:df:18:a8:e0:71:0a:80:2f:db:17:72:3b:ea:8d:2a:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:08 2026 GMT Not After : May 1 09:25:08 2027 GMT Subject: CN=295F40C12B8C70B1F0CE17E675A64AADA85F800D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2a:e0:8f:66:bc:7d:2e:ba:3a:01:63:06:97: f9:79:9b:16:73:8a:d8:78:bd:c4:d1:b6:e4:a4:9d: 1c:0c:93:1a:43:5d:09:44:38:60:79:ce:6c:fb:df: 9f:0f:36:02:73:7a:ea:bd:14:45:ea:c1:3d:71:56: f4:78:de:f0:2c:4f:1a:dc:13:44:e2:da:97:70:75: 1e:ea:ad:4a:10:49:05:96:c0:d8:ca:b5:ba:b3:84: a0:7d:98:04:46:18:18:fc:42:7c:50:26:41:73:5a: 8a:f5:8a:4c:b5:ab:fe:2c:46:74:5d:e2:25:2d:7e: c7:43:9b:0c:03:5b:52:e7:3c:40:a0:8a:1a:33:4a: 02:a1:2f:d0:d2:7c:58:f0:02:e0:2b:1f:99:a8:5a: b9:1d:92:bd:65:d9:66:52:5b:53:73:d7:2f:26:05: 2e:f9:b5:5e:fd:df:65:1d:db:32:5f:96:e1:bc:0e: 8d:06:6b:71:4d:81:1a:4a:f8:ce:70:23:9e:1b:63: 5e:40:80:c6:ae:07:17:3e:ac:eb:83:c9:58:f9:24: eb:f5:b2:aa:05:c8:f5:d0:81:dd:e6:21:c9:ea:5a: f6:43:45:ba:f0:53:aa:88:ac:ba:6b:8d:d2:23:6a: 52:e4:58:83:be:c6:82:9d:79:b6:8f:a1:a5:7a:d1: ea:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:5F:40:C1:2B:8C:70:B1:F0:CE:17:E6:75:A6:4A:AD:A8:5F:80:0D X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153893.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.56.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:d0:28:4b:b2:ad:11:03:5e:39:57:0e:19:eb:de:be:79:09: 5c:9d:42:fd:76:8c:1a:b3:c3:0f:7b:c9:c6:1f:06:e0:57:d8: 1b:6a:79:cd:4a:4e:28:fe:b4:0f:45:84:bc:8d:54:6b:27:f7: 63:ac:72:48:d1:b9:62:fc:18:09:19:6c:55:2c:97:73:e5:4d: e7:1d:17:80:1f:12:c5:b6:8f:91:7c:73:37:f3:e9:2a:c2:49: ef:84:e3:12:4a:1f:d4:86:96:0b:79:2b:d9:5f:74:9a:09:09: aa:67:87:b7:3f:39:1f:0b:41:9e:47:e2:20:4e:d6:bd:52:88: 2b:1f:61:af:8c:0a:6b:5b:49:d7:96:2e:6b:c0:33:db:38:43: d6:0a:c1:6a:51:af:50:b1:03:ea:b5:a0:9a:c8:94:e1:99:38: a4:61:30:31:00:9e:6a:89:9c:62:04:72:08:6b:f7:dd:ef:fe: 98:60:ee:d7:e2:13:a4:25:5e:4a:f4:b6:1a:82:d8:63:89:1c: 7d:44:9f:9f:fb:2a:0f:c7:b9:42:43:98:2f:fe:63:14:8a:38: 9b:1f:9f:87:38:38:a5:9d:a5:31:a7:e1:57:4f:e5:c3:52:f9: 8e:c0:34:6e:7f:2c:5c:ab:9d:3a:ea:c6:c3:f1:5f:87:4f:c7: 89:9e:58:0b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUKSZ2Z98YqOBxCoAv2xdyO+qNKm4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAwOFoX DTI3MDUwMTA5MjUwOFowMzExMC8GA1UEAxMoMjk1RjQwQzEyQjhDNzBCMUYwQ0Ux N0U2NzVBNjRBQURBODVGODAwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMkq4I9mvH0uujoBYwaX+XmbFnOK2Hi9xNG25KSdHAyTGkNdCUQ4YHnObPvf nw82AnN66r0URerBPXFW9Hje8CxPGtwTROLal3B1HuqtShBJBZbA2Mq1urOEoH2Y BEYYGPxCfFAmQXNaivWKTLWr/ixGdF3iJS1+x0ObDANbUuc8QKCKGjNKAqEv0NJ8 WPAC4CsfmahauR2SvWXZZlJbU3PXLyYFLvm1Xv3fZR3bMl+W4bwOjQZrcU2BGkr4 znAjnhtjXkCAxq4HFz6s64PJWPkk6/WyqgXI9dCB3eYhyepa9kNFuvBTqoisumuN 0iNqUuRYg77Ggp15to+hpXrR6i0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQpX0DB K4xwsfDOF+Z1pkqtqF+ADTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzODkzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQApWM4MA0GCSqGSIb3DQEBCwUAA4IBAQAM0ChLsq0RA145Vw4Z696+eQlc nUL9dowas8MPe8nGHwbgV9gbannNSk4o/rQPRYS8jVRrJ/djrHJI0bli/BgJGWxV LJdz5U3nHReAHxLFto+RfHM38+kqwknvhOMSSh/UhpYLeSvZX3SaCQmqZ4e3Pzkf C0GeR+IgTta9UogrH2GvjAprW0nXli5rwDPbOEPWCsFqUa9QsQPqtaCayJThmTik YTAxAJ5qiZxiBHIIa/fd7/6YYO7X4hOkJV5K9LYagthjiRx9RJ+f+yoPx7lCQ5gv /mMUijibH5+HODilnaUxp+FXT+XDUvmOwDRufyxcq5066sbD8V+HT8eJnlgL -----END CERTIFICATE-----Generated at Sat May 2 21:04:35 2026 by rpki-client