$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153936.roa File: AS153936.roa (raw, json) Hash identifier: fW6Ed80t+WUzmBYgxtBkLqt4wWKxGTaYiiD0SNA5eKg= Subject key identifier: 48:FB:F9:F4:30:99:C3:83:AF:70:87:17:1D:73:70:6B:7C:3D:93:78 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 5D955C78C94647B3573753029C698367F7EBDA41 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153936.roa Signing time: Sat 02 May 2026 09:22:32 +0000 ROA not before: Sat 02 May 2026 09:17:32 +0000 ROA not after: Sat 01 May 2027 09:22:32 +0000 asID: 153936 IP address blocks: 165.99.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:95:5c:78:c9:46:47:b3:57:37:53:02:9c:69:83:67:f7:eb:da:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:17:32 2026 GMT Not After : May 1 09:22:32 2027 GMT Subject: CN=48FBF9F43099C383AF7087171D73706B7C3D9378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:45:7e:b5:a6:75:b9:6e:1c:43:a8:c8:fc:ee: cc:4e:78:7e:5a:1e:48:ee:4a:e1:c9:bd:27:1e:55: 4b:f6:8f:b8:f3:2a:3e:55:0b:1f:6b:0b:14:b8:8b: a7:86:82:ca:25:e8:0b:f6:67:b4:40:7a:14:86:81: f7:d0:a3:f6:86:ba:94:ae:e9:62:7b:d6:26:13:fe: 1a:d1:ad:43:32:dc:17:e3:e4:5f:6b:70:21:73:18: 3f:8d:87:b5:59:e1:95:9c:b0:f1:b2:4b:96:8b:b3: 5b:f2:dc:05:6f:5a:b4:73:f7:35:e0:5d:e3:3e:c8: d5:d3:99:65:41:fd:1d:4f:66:05:3b:9c:4e:76:1e: d3:26:36:47:09:b1:98:7f:56:14:7e:0d:cb:84:9b: 93:43:d4:22:05:09:62:cc:8b:97:8f:01:41:82:cc: 7f:2d:f1:48:16:ac:81:53:02:44:a2:19:d9:63:1d: fe:72:ca:7a:71:ee:21:e1:54:bc:92:96:5e:1a:95: 44:ee:1e:c8:eb:19:9f:a9:cd:86:28:84:79:a0:c3: ce:fb:55:29:8c:8f:66:4f:04:3d:44:d3:d7:db:7f: 20:70:9f:fd:69:3e:1f:d0:17:d2:37:c1:22:8b:a2: f8:c9:0f:07:7f:ed:ad:2b:e7:13:40:8b:f7:35:cd: d0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:FB:F9:F4:30:99:C3:83:AF:70:87:17:1D:73:70:6B:7C:3D:93:78 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.162.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:b2:56:7b:e3:ce:e3:76:17:cc:75:c0:b0:3a:0e:86:a5:f5: 00:a5:31:8a:b7:f7:c7:69:08:8e:ce:44:43:bd:d6:3c:ce:84: 87:c9:16:5c:65:7f:0e:84:8b:f4:10:ee:37:6e:af:48:c9:56: 4c:20:49:3a:30:95:24:d6:e2:d0:56:e2:f3:eb:e1:08:52:08: 86:ce:ee:1f:1e:a1:44:5b:72:18:14:c8:f2:13:fd:c3:f0:de: 15:f7:38:4a:ae:55:b3:30:da:50:cd:02:ea:e2:ac:7a:9f:34: 0c:2a:8e:f7:21:49:7f:35:a1:98:00:ed:b6:6c:d5:3b:f4:25: 57:32:73:57:76:b2:5a:5a:14:8d:13:23:8c:39:c6:35:28:a5: 08:04:bd:19:de:03:e5:88:54:e4:4f:aa:60:c2:7f:30:e6:a7: 6e:07:72:95:dc:ee:73:95:24:c2:80:79:7e:65:f4:1b:3c:dd: 67:6f:0a:9b:2f:fb:1c:86:32:0f:86:73:e0:06:1f:d3:a0:20: 13:36:df:d9:fd:28:06:68:df:86:3e:ae:8e:89:72:20:ee:9c: b5:31:46:5d:c6:da:32:84:3f:d8:f2:71:b5:ba:0d:38:06:e3: 0e:43:06:d3:a0:80:c6:15:f5:c3:b9:c6:41:55:64:1e:0e:62: 99:b5:c9:eb -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUXZVceMlGR7NXN1MCnGmDZ/fr2kEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTczMloX DTI3MDUwMTA5MjIzMlowMzExMC8GA1UEAxMoNDhGQkY5RjQzMDk5QzM4M0FGNzA4 NzE3MUQ3MzcwNkI3QzNEOTM3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJJFfrWmdbluHEOoyPzuzE54floeSO5K4cm9Jx5VS/aPuPMqPlULH2sLFLiL p4aCyiXoC/ZntEB6FIaB99Cj9oa6lK7pYnvWJhP+GtGtQzLcF+PkX2twIXMYP42H tVnhlZyw8bJLlouzW/LcBW9atHP3NeBd4z7I1dOZZUH9HU9mBTucTnYe0yY2Rwmx mH9WFH4Ny4Sbk0PUIgUJYsyLl48BQYLMfy3xSBasgVMCRKIZ2WMd/nLKenHuIeFU vJKWXhqVRO4eyOsZn6nNhiiEeaDDzvtVKYyPZk8EPUTT19t/IHCf/Wk+H9AX0jfB Ioui+MkPB3/trSvnE0CL9zXN0NsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRI+/n0 MJnDg69whxcdc3BrfD2TeDAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzOTM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBpWOiMA0GCSqGSIb3DQEBCwUAA4IBAQA7slZ7487jdhfMdcCwOg6GpfUA pTGKt/fHaQiOzkRDvdY8zoSHyRZcZX8OhIv0EO43bq9IyVZMIEk6MJUk1uLQVuLz 6+EIUgiGzu4fHqFEW3IYFMjyE/3D8N4V9zhKrlWzMNpQzQLq4qx6nzQMKo73IUl/ NaGYAO22bNU79CVXMnNXdrJaWhSNEyOMOcY1KKUIBL0Z3gPliFTkT6pgwn8w5qdu B3KV3O5zlSTCgHl+ZfQbPN1nbwqbL/schjIPhnPgBh/ToCATNt/Z/SgGaN+GPq6O iXIg7py1MUZdxtoyhD/Y8nG1ug04BuMOQwbToIDGFfXDucZBVWQeDmKZtcnr -----END CERTIFICATE-----Generated at Sat May 2 21:04:36 2026 by rpki-client