$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152045.roa File: AS152045.roa (raw, json) Hash identifier: eg4JjmXmMaLcNfIxPx37yPUZn/4zj6oTBa5i9tASBgA= Subject key identifier: 64:56:5A:46:7B:D7:4F:E8:BD:86:73:23:47:74:00:6B:3D:D3:59:29 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7E76F935AF5EE24E18174894DF1D4FC981E8E825 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152045.roa Signing time: Sat 02 May 2026 21:31:00 +0000 ROA not before: Sat 02 May 2026 21:26:00 +0000 ROA not after: Sat 01 May 2027 21:31:00 +0000 asID: 152045 IP address blocks: 210.79.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:76:f9:35:af:5e:e2:4e:18:17:48:94:df:1d:4f:c9:81:e8:e8:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:26:00 2026 GMT Not After : May 1 21:31:00 2027 GMT Subject: CN=64565A467BD74FE8BD8673234774006B3DD35929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fe:ee:b1:fd:20:48:7d:3c:83:6a:d2:60:eb: 25:d4:ea:cc:5e:2d:86:5a:bd:5c:fe:47:a3:18:a2: 46:69:09:b9:d6:62:ea:ce:bf:62:3a:e8:f6:89:d5: d8:12:4a:65:34:0c:14:52:43:84:f4:41:be:59:ca: 22:cf:b8:95:51:97:97:81:7c:e5:84:bf:83:92:74: df:28:af:bd:65:62:d1:56:b6:ee:3b:fe:5c:88:50: 27:21:96:0b:52:ef:72:d0:0c:68:a3:e5:a0:ac:59: 6a:a1:83:6c:b2:b3:27:3a:a3:f5:8f:a7:26:a2:4c: 48:3e:f8:55:eb:df:57:c8:ed:b2:cd:7d:80:ff:ce: 28:03:b2:a2:56:1f:ec:59:ee:11:03:a0:85:97:b4: 64:34:e3:b8:f9:97:2b:a9:3c:0b:dc:30:27:ba:e9: c6:90:bc:7f:29:cf:98:47:26:b1:b8:9a:bd:3c:18: 8e:5e:6f:29:06:86:e0:ec:51:d6:c4:41:b8:9f:cb: 01:0e:bc:69:dd:ee:9a:26:0c:b3:d6:6d:59:6e:f1: 72:00:98:00:a5:a4:2c:f5:74:d7:a1:f9:d4:9a:cc: 5b:6a:68:04:3a:b8:53:d1:d6:8c:60:4f:03:b8:13: ad:4c:72:00:82:18:8b:00:a3:2b:06:7f:e8:0f:ce: 9f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:56:5A:46:7B:D7:4F:E8:BD:86:73:23:47:74:00:6B:3D:D3:59:29 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152045.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.146.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:5a:de:0c:5f:c1:5f:88:ec:5d:1d:6c:f0:56:28:bd:d2:44: ff:43:4a:d5:89:7f:42:a7:90:9d:50:71:66:78:ea:a9:1c:a3: 1e:51:51:8d:f2:5e:0e:79:e7:c4:98:01:76:a0:75:78:03:45: f6:b5:59:d4:79:ef:75:0b:37:94:0f:f3:1e:c5:91:98:d2:c4: ac:66:94:ad:e7:77:f6:55:7f:62:35:ec:79:d7:a8:7c:58:26: 89:2c:19:e6:78:44:a1:aa:cd:62:98:cb:77:d4:df:b7:07:66: b3:e9:c7:61:51:8a:6d:70:64:aa:33:78:25:55:4b:c4:5a:46: 1b:5f:b6:28:b0:21:89:3a:a1:f5:d4:12:e1:5f:e7:bd:0e:48: 5e:45:d2:46:c9:77:44:a6:8a:c6:d2:37:09:d3:8f:8c:8d:41: 93:45:f8:cf:d6:0f:3a:4e:d6:8f:62:ad:b5:65:c1:21:6f:3a: 9e:ed:fb:44:82:25:3c:d6:07:e0:f8:26:a3:c6:42:c4:4e:91: f8:b0:48:71:bf:52:ea:af:b0:47:8b:e6:1f:0b:3f:94:3d:8d: 7d:a0:29:43:bf:d5:18:3f:08:ab:da:d5:0c:ba:f4:43:e3:c9: 83:e4:5f:e1:9c:ff:bf:51:6f:07:99:e8:f0:c4:e2:a8:04:40: 68:51:d7:6a -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUfnb5Na9e4k4YF0iU3x1PyYHo6CUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjYwMFoX DTI3MDUwMTIxMzEwMFowMzExMC8GA1UEAxMoNjQ1NjVBNDY3QkQ3NEZFOEJEODY3 MzIzNDc3NDAwNkIzREQzNTkyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMD+7rH9IEh9PINq0mDrJdTqzF4thlq9XP5HoxiiRmkJudZi6s6/Yjro9onV 2BJKZTQMFFJDhPRBvlnKIs+4lVGXl4F85YS/g5J03yivvWVi0Va27jv+XIhQJyGW C1LvctAMaKPloKxZaqGDbLKzJzqj9Y+nJqJMSD74VevfV8jtss19gP/OKAOyolYf 7FnuEQOghZe0ZDTjuPmXK6k8C9wwJ7rpxpC8fynPmEcmsbiavTwYjl5vKQaG4OxR 1sRBuJ/LAQ68ad3umiYMs9ZtWW7xcgCYAKWkLPV016H51JrMW2poBDq4U9HWjGBP A7gTrUxyAIIYiwCjKwZ/6A/On48CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRkVlpG e9dP6L2GcyNHdABrPdNZKTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyMDQ1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQB0k+SMA0GCSqGSIb3DQEBCwUAA4IBAQCcWt4MX8FfiOxdHWzwVii90kT/ Q0rViX9Cp5CdUHFmeOqpHKMeUVGN8l4OeefEmAF2oHV4A0X2tVnUee91CzeUD/Me xZGY0sSsZpSt53f2VX9iNex516h8WCaJLBnmeEShqs1imMt31N+3B2az6cdhUYpt cGSqM3glVUvEWkYbX7YosCGJOqH11BLhX+e9DkheRdJGyXdEporG0jcJ04+MjUGT RfjP1g86TtaPYq21ZcEhbzqe7ftEgiU81gfg+CajxkLETpH4sEhxv1Lqr7BHi+Yf Cz+UPY19oClDv9UYPwir2tUMuvRD48mD5F/hnP+/UW8HmejwxOKoBEBoUddq -----END CERTIFICATE-----Generated at Sun May 3 00:39:44 2026 by rpki-client