$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152047.roa File: AS152047.roa (raw, json) Hash identifier: 0x+PX+4wV9gTC7HkMaWzfHCii4oLf6ucy2+RZNJQR/4= Subject key identifier: 51:69:27:79:C5:3F:23:73:07:9E:FA:C8:5A:21:10:98:84:79:67:18 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 445E15FF11F2C5FCBC0D5E83DB6F68B44370527A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152047.roa Signing time: Sat 02 May 2026 21:30:58 +0000 ROA not before: Sat 02 May 2026 21:25:58 +0000 ROA not after: Sat 01 May 2027 21:30:58 +0000 asID: 152047 IP address blocks: 210.79.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:5e:15:ff:11:f2:c5:fc:bc:0d:5e:83:db:6f:68:b4:43:70:52:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:25:58 2026 GMT Not After : May 1 21:30:58 2027 GMT Subject: CN=51692779C53F2373079EFAC85A21109884796718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ea:f4:be:bb:46:86:d5:26:43:5f:1b:5c:21: af:57:93:5b:f2:46:03:4f:37:5b:b9:a2:07:7c:48: cb:10:46:dd:c1:fc:a5:43:48:44:1a:86:80:bc:d6: 54:7e:9c:69:11:d6:34:32:94:ea:b7:e3:29:24:42: 55:8b:ea:aa:2d:4f:fa:78:b5:e2:f2:30:6a:28:fc: b0:62:c3:cc:3d:2b:c4:ae:3a:39:90:01:5a:84:bf: 81:2b:29:d3:c7:bf:c1:2d:1c:28:a4:d4:7e:3d:32: 52:67:7e:8b:6d:73:d6:ae:c5:ac:d4:be:fc:84:61: 70:5c:f3:dc:f6:6f:85:ce:b6:47:11:d0:cd:41:f4: d5:95:be:b3:b8:93:a1:7b:af:20:17:34:9f:4d:98: 14:f6:f7:48:fc:76:65:61:77:15:ed:2c:a3:2f:fb: d7:52:27:2e:24:c7:7e:de:ad:7c:87:2c:41:7b:2d: 75:4e:86:11:6a:3c:d9:d0:11:5b:de:e4:a6:61:5e: 62:8a:4c:6b:f0:ed:5a:27:75:e6:c0:f1:60:58:62: 90:14:18:06:d7:51:40:33:96:66:44:c7:a7:11:91: 79:fe:0a:21:8c:d8:57:4e:b2:92:c2:83:58:05:13: b2:a0:55:d1:b4:b9:93:af:4f:72:29:67:9e:d8:22: ba:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:69:27:79:C5:3F:23:73:07:9E:FA:C8:5A:21:10:98:84:79:67:18 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152047.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.144.0/24 Signature Algorithm: sha256WithRSAEncryption 97:e1:6d:1d:8e:35:60:81:cf:c3:8d:7c:5c:84:3f:e2:07:14: 16:b5:2a:ad:98:e8:ee:d8:7f:76:ba:9a:3d:3b:5c:2d:a9:61: fd:1b:4b:15:82:71:d8:f7:a8:c8:7e:08:31:8c:00:c2:e7:17: 06:97:53:63:a5:a4:9d:f8:9a:d3:d2:3e:a3:59:81:2f:da:d7: e4:78:94:49:60:cd:a4:95:3e:82:3c:5b:fa:98:a4:9a:32:9c: 2a:95:67:13:6d:10:38:c8:e3:9d:f0:87:67:67:7b:78:78:17: 28:6c:6a:e5:a1:bd:51:b0:38:f7:4c:e1:56:55:72:cc:82:90: 42:68:a0:21:05:b5:53:7e:27:ab:4c:8f:d6:26:80:20:fe:43: 41:c7:4a:27:64:4d:ac:4b:66:29:cf:49:ec:74:ca:8d:48:6e: 96:2d:8e:ab:e9:b3:46:ee:d9:5a:7b:dc:b6:b5:2c:c1:ee:ef: 2d:8e:34:f3:df:61:80:ec:ee:59:93:b3:cf:e1:90:32:51:53: dc:23:41:d7:8f:42:ba:4a:1f:24:b6:78:b7:67:58:5d:ab:7e: e9:71:c4:b2:60:e1:cd:06:77:f5:22:f5:ea:37:0b:53:47:2a: ac:74:b3:9c:fe:dd:be:39:de:a9:f9:8a:7e:30:e5:f5:52:92: 81:07:cd:fd -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURF4V/xHyxfy8DV6D229otENwUnowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjU1OFoX DTI3MDUwMTIxMzA1OFowMzExMC8GA1UEAxMoNTE2OTI3NzlDNTNGMjM3MzA3OUVG QUM4NUEyMTEwOTg4NDc5NjcxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjq9L67RobVJkNfG1whr1eTW/JGA083W7miB3xIyxBG3cH8pUNIRBqGgLzW VH6caRHWNDKU6rfjKSRCVYvqqi1P+ni14vIwaij8sGLDzD0rxK46OZABWoS/gSsp 08e/wS0cKKTUfj0yUmd+i21z1q7FrNS+/IRhcFzz3PZvhc62RxHQzUH01ZW+s7iT oXuvIBc0n02YFPb3SPx2ZWF3Fe0soy/711InLiTHft6tfIcsQXstdU6GEWo82dAR W97kpmFeYopMa/DtWid15sDxYFhikBQYBtdRQDOWZkTHpxGRef4KIYzYV06yksKD WAUTsqBV0bS5k69PcilnntgiussCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRRaSd5 xT8jcwee+shaIRCYhHlnGDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyMDQ3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQA0k+QMA0GCSqGSIb3DQEBCwUAA4IBAQCX4W0djjVggc/DjXxchD/iBxQW tSqtmOju2H92upo9O1wtqWH9G0sVgnHY96jIfggxjADC5xcGl1NjpaSd+JrT0j6j WYEv2tfkeJRJYM2klT6CPFv6mKSaMpwqlWcTbRA4yOOd8IdnZ3t4eBcobGrlob1R sDj3TOFWVXLMgpBCaKAhBbVTfierTI/WJoAg/kNBx0onZE2sS2Ypz0nsdMqNSG6W LY6r6bNG7tlae9y2tSzB7u8tjjTz32GA7O5Zk7PP4ZAyUVPcI0HXj0K6Sh8ktni3 Z1hdq37pccSyYOHNBnf1IvXqNwtTRyqsdLOc/t2+Od6p+Yp+MOX1UpKBB839 -----END CERTIFICATE-----Generated at Sun May 3 00:39:54 2026 by rpki-client