$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS153985.roa File: AS153985.roa (raw, json) Hash identifier: dUExJzbQ71nr1ZD/hEU/xkesedxJ+TGtAjxy5N/ItWg= Subject key identifier: 6E:E2:32:2C:38:12:15:D6:DD:DD:DE:98:2E:D4:E2:FA:3E:D1:D4:C1 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 619B6C6C6A860B81317577C1782E7E47C0FA6BB1 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153985.roa Signing time: Sat 02 May 2026 09:24:58 +0000 ROA not before: Sat 02 May 2026 09:19:58 +0000 ROA not after: Sat 01 May 2027 09:24:58 +0000 asID: 153985 IP address blocks: 165.101.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9b:6c:6c:6a:86:0b:81:31:75:77:c1:78:2e:7e:47:c0:fa:6b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:58 2026 GMT Not After : May 1 09:24:58 2027 GMT Subject: CN=6EE2322C381215D6DDDDDE982ED4E2FA3ED1D4C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2f:39:40:ee:6a:f2:94:1c:da:24:1a:b9:ed: d0:f4:6f:65:ec:84:f9:50:16:da:c5:f9:a4:a7:16: c4:08:0e:ed:e6:f3:e8:85:84:b6:80:47:60:06:80: 07:3c:6f:d4:de:18:5a:e9:b1:83:6f:b2:40:ea:6a: f3:b4:89:be:3c:f0:9d:62:dd:e6:e9:78:18:82:e2: 1e:cc:98:80:7e:ca:49:2b:5d:b1:9a:b8:f9:b2:50: 9b:ef:4a:9f:a7:9f:13:57:d0:a8:1e:44:3a:36:f3: e5:86:5c:aa:b8:79:15:e8:77:25:c7:5d:76:ff:32: b3:35:43:97:d2:06:4f:7e:a9:27:47:09:3f:92:87: 5a:b2:ec:62:f9:59:5a:57:f8:52:39:0c:28:c2:8f: 27:a4:ba:db:d6:90:85:d6:aa:32:b1:ad:52:a2:a5: 06:7c:4b:38:fd:ca:9a:68:1f:02:97:0e:1e:c8:0a: 50:10:99:b4:b6:a8:99:57:30:4e:60:49:a7:ee:62: 91:1a:13:06:d8:91:89:ee:48:d7:a3:19:59:2b:5a: 88:8e:04:3c:3d:d6:bf:1d:98:cd:4a:f3:ad:d5:b3: f3:e8:78:c7:2e:b0:38:a7:7d:5b:14:61:92:e8:b3: 38:a8:22:1e:e7:b6:88:82:49:f8:d8:94:aa:54:70: aa:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E2:32:2C:38:12:15:D6:DD:DD:DE:98:2E:D4:E2:FA:3E:D1:D4:C1 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS153985.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.18.0/24 Signature Algorithm: sha256WithRSAEncryption 75:f3:a5:ba:1c:d9:1f:17:e0:2c:70:2f:c2:eb:64:36:f3:42: a9:a0:a8:06:c3:7d:c4:4c:36:e4:18:0d:91:25:f3:3a:82:ff: 1a:65:38:71:e9:0e:6f:7e:e5:d4:41:ba:0f:33:e9:bc:56:18: 6b:2d:e6:95:d0:ad:b7:59:75:c5:8f:b7:ba:8b:db:17:e6:55: a6:bd:0d:3a:22:90:7d:df:fd:c4:78:e9:ad:41:d1:60:00:2c: 44:c1:90:41:5e:0b:76:d3:f2:f1:2f:39:e1:13:f4:d1:ef:50: ee:f3:55:11:b9:25:91:3a:77:04:d0:cc:24:78:02:db:dd:cb: a4:08:61:67:b4:26:c1:48:aa:0b:3a:17:cc:70:1b:91:e7:36: 0c:27:15:a3:d0:e1:5f:ef:56:b8:1c:fc:dd:59:86:1d:fc:05: 33:93:8c:d2:2b:fb:1f:25:21:57:14:6c:9e:b1:23:25:e6:fd: 56:dc:65:41:57:67:4e:32:6e:07:50:78:10:87:65:ef:32:de: 70:0a:44:09:b5:4b:d7:91:12:0c:58:48:07:e6:e4:32:b4:0c: d9:60:5d:cd:47:ac:7e:8d:08:4b:4c:ef:6b:62:8e:a6:e4:20: 7b:a6:d0:81:bc:1f:30:5b:13:58:f2:b9:1a:2b:4b:6b:83:90: 09:57:b1:8a -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUYZtsbGqGC4ExdXfBeC5+R8D6a7EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTk1OFoX DTI3MDUwMTA5MjQ1OFowMzExMC8GA1UEAxMoNkVFMjMyMkMzODEyMTVENkRERERE RTk4MkVENEUyRkEzRUQxRDRDMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQvOUDuavKUHNokGrnt0PRvZeyE+VAW2sX5pKcWxAgO7ebz6IWEtoBHYAaA Bzxv1N4YWumxg2+yQOpq87SJvjzwnWLd5ul4GILiHsyYgH7KSStdsZq4+bJQm+9K n6efE1fQqB5EOjbz5YZcqrh5Feh3Jcdddv8yszVDl9IGT36pJ0cJP5KHWrLsYvlZ Wlf4UjkMKMKPJ6S629aQhdaqMrGtUqKlBnxLOP3KmmgfApcOHsgKUBCZtLaomVcw TmBJp+5ikRoTBtiRie5I16MZWStaiI4EPD3Wvx2YzUrzrdWz8+h4xy6wOKd9WxRh kuizOKgiHue2iIJJ+NiUqlRwqlkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRu4jIs OBIV1t3d3pgu1OL6PtHUwTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTUzOTg1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQApWUSMA0GCSqGSIb3DQEBCwUAA4IBAQB186W6HNkfF+AscC/C62Q280Kp oKgGw33ETDbkGA2RJfM6gv8aZThx6Q5vfuXUQboPM+m8VhhrLeaV0K23WXXFj7e6 i9sX5lWmvQ06IpB93/3EeOmtQdFgACxEwZBBXgt20/LxLznhE/TR71Du81URuSWR OncE0MwkeALb3cukCGFntCbBSKoLOhfMcBuR5zYMJxWj0OFf71a4HPzdWYYd/AUz k4zSK/sfJSFXFGyesSMl5v1W3GVBV2dOMm4HUHgQh2XvMt5wCkQJtUvXkRIMWEgH 5uQytAzZYF3NR6x+jQhLTO9rYo6m5CB7ptCBvB8wWxNY8rkaK0trg5AJV7GK -----END CERTIFICATE-----Generated at Sat May 2 21:03:42 2026 by rpki-client