$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152019.roa File: AS152019.roa (raw, json) Hash identifier: 26nUoLKSdZfY9J+kM4N6Y+PLj2KzQnQ8P144tz4QGZE= Subject key identifier: 55:C0:F9:F5:0D:8B:6B:CB:D7:35:41:BB:F9:05:C9:65:E3:98:50:A5 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 11326FE523333E8E60A7FB55F7F36C3311AF0053 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152019.roa Signing time: Sat 02 May 2026 09:25:41 +0000 ROA not before: Sat 02 May 2026 09:20:41 +0000 ROA not after: Sat 01 May 2027 09:25:41 +0000 asID: 152019 IP address blocks: 180.131.130.0/24 maxlen: 24 2001:df3:6340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:32:6f:e5:23:33:3e:8e:60:a7:fb:55:f7:f3:6c:33:11:af:00:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:41 2026 GMT Not After : May 1 09:25:41 2027 GMT Subject: CN=55C0F9F50D8B6BCBD73541BBF905C965E39850A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:00:e7:47:f8:7b:ce:73:e8:d5:f1:34:65:96: 7d:dd:01:3b:cc:25:96:2e:e5:13:fd:c2:7d:39:7d: e1:69:dc:97:00:e6:13:62:0d:47:8c:86:d9:6a:c5: 23:f9:23:6f:33:1a:ec:69:cc:02:04:19:b4:ca:0f: 47:0b:ce:4f:11:b3:d8:0b:f3:65:a6:51:bd:44:a9: 51:96:a3:9a:ad:5e:dc:a1:c6:38:e4:a4:7b:38:05: ca:aa:07:2f:d2:c9:46:ca:d8:b3:61:34:06:da:43: 8a:51:a9:9e:35:f3:00:93:01:66:5f:bd:91:ad:80: 00:e8:aa:33:82:73:84:2d:5c:48:62:83:66:70:4a: f1:ed:11:4b:64:b4:8f:e7:37:23:b7:26:25:c1:bc: 7e:f7:20:52:96:e3:0a:56:31:91:a7:83:45:a2:40: 82:1d:ae:ae:8f:13:46:bf:89:35:10:06:1b:f0:27: ab:26:75:5e:ed:9d:fe:6d:c1:f0:82:19:c6:65:f2: ea:44:63:09:59:a6:c4:d6:e0:1b:a0:7c:0c:c9:cf: ee:f5:d3:84:a7:c2:36:24:12:4e:b9:9c:62:c5:38: 9a:1d:03:ee:aa:bd:c5:c6:ea:8a:00:61:a1:04:10: 84:37:f7:6a:8e:de:c7:dd:63:31:b3:92:67:b3:a8: 53:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C0:F9:F5:0D:8B:6B:CB:D7:35:41:BB:F9:05:C9:65:E3:98:50:A5 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152019.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.130.0/24 IPv6: 2001:df3:6340::/48 Signature Algorithm: sha256WithRSAEncryption 87:25:17:74:a6:9e:bc:b5:a0:5e:eb:95:42:c3:64:30:d4:16: ee:53:6c:a1:fb:ca:b5:87:aa:91:43:cf:ca:10:55:07:e1:1e: 35:00:a5:be:1c:69:ab:70:0e:56:9c:91:cc:e9:c1:ac:b1:a8: aa:85:25:fb:ba:c5:45:a4:17:f6:a0:c2:9c:0f:e0:ad:cb:d3: 4b:a5:63:c2:75:80:cf:14:c6:40:8b:f6:f8:59:e4:1e:42:c4: 70:28:0e:3e:8b:9f:8c:2f:97:62:3c:d7:83:9b:21:a3:07:0f: e9:61:c1:9d:0b:73:bd:91:ce:c6:e6:f6:fa:02:da:f0:ca:c6: c8:bd:e0:6f:3d:3f:4d:d9:8f:b6:b5:24:ac:50:b1:3b:82:2e: 45:33:83:d2:fa:b3:d2:f7:f7:1e:ae:73:c1:28:0d:40:00:18: 5f:2d:1a:6a:79:d3:44:49:f0:c1:59:94:a5:d1:cd:2f:8d:2b: bc:60:75:f8:dc:b2:79:83:cb:73:fc:61:8e:bd:4a:7b:9c:93: 1b:a7:1c:c1:b5:e6:02:7f:9a:10:87:c4:a1:48:ae:ec:53:4a: ad:06:7c:7c:64:0e:70:bd:3d:88:fb:6d:f2:4e:d4:e5:df:03: 1a:43:bf:fa:64:95:3d:a2:d6:b5:1d:ed:9c:fa:7f:1c:68:bd: ee:1b:e7:61 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUETJv5SMzPo5gp/tV9/NsMxGvAFMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjA0MVoX DTI3MDUwMTA5MjU0MVowMzExMC8GA1UEAxMoNTVDMEY5RjUwRDhCNkJDQkQ3MzU0 MUJCRjkwNUM5NjVFMzk4NTBBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJUA50f4e85z6NXxNGWWfd0BO8wlli7lE/3CfTl94WnclwDmE2INR4yG2WrF I/kjbzMa7GnMAgQZtMoPRwvOTxGz2AvzZaZRvUSpUZajmq1e3KHGOOSkezgFyqoH L9LJRsrYs2E0BtpDilGpnjXzAJMBZl+9ka2AAOiqM4JzhC1cSGKDZnBK8e0RS2S0 j+c3I7cmJcG8fvcgUpbjClYxkaeDRaJAgh2uro8TRr+JNRAGG/AnqyZ1Xu2d/m3B 8IIZxmXy6kRjCVmmxNbgG6B8DMnP7vXThKfCNiQSTrmcYsU4mh0D7qq9xcbqigBh oQQQhDf3ao7ex91jMbOSZ7OoU20CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRVwPn1 DYtry9c1Qbv5Bcll45hQpTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyMDE5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAtIOCMA8EAgACMAkDBwAgAQ3zY0AwDQYJKoZIhvcNAQELBQADggEBAIcl F3Smnry1oF7rlULDZDDUFu5TbKH7yrWHqpFDz8oQVQfhHjUApb4caatwDlackczp wayxqKqFJfu6xUWkF/agwpwP4K3L00ulY8J1gM8UxkCL9vhZ5B5CxHAoDj6Ln4wv l2I814ObIaMHD+lhwZ0Lc72Rzsbm9voC2vDKxsi94G89P03Zj7a1JKxQsTuCLkUz g9L6s9L39x6uc8EoDUAAGF8tGmp500RJ8MFZlKXRzS+NK7xgdfjcsnmDy3P8YY69 SnuckxunHMG15gJ/mhCHxKFIruxTSq0GfHxkDnC9PYj7bfJO1OXfAxpDv/pklT2i 1rUd7Zz6fxxove4b52E= -----END CERTIFICATE-----Generated at Sun May 3 01:40:40 2026 by rpki-client