$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152070.roa File: AS152070.roa (raw, json) Hash identifier: ZGJ1nW/NMrQyoUYrfnzxIZgabv0+J0dCZuGqV3Ezbws= Subject key identifier: 01:A4:57:EC:8A:D6:11:4D:D5:79:1D:D8:5B:0B:83:03:18:6B:34:CE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 410839B150600A578C8EDCABD85A345CE26F7EEF Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152070.roa Signing time: Sat 02 May 2026 08:36:07 +0000 ROA not before: Sat 02 May 2026 08:31:07 +0000 ROA not after: Sat 01 May 2027 08:36:07 +0000 asID: 152070 IP address blocks: 36.50.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:08:39:b1:50:60:0a:57:8c:8e:dc:ab:d8:5a:34:5c:e2:6f:7e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:31:07 2026 GMT Not After : May 1 08:36:07 2027 GMT Subject: CN=01A457EC8AD6114DD5791DD85B0B8303186B34CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a7:8d:92:24:ef:9d:be:d2:fe:25:ce:48:79: 77:c3:15:6f:e9:29:c8:4a:eb:d1:2b:76:b1:b6:45: f9:3e:df:78:41:c4:3f:5b:de:8e:a8:26:2f:08:66: 47:e8:0b:9a:92:39:23:3c:05:ec:1a:0c:77:fc:9f: 46:44:c7:0e:f2:16:c5:bb:87:1c:c3:c2:3c:7f:d9: 4a:9b:38:fd:d9:8b:68:98:2a:97:bc:fa:c5:85:6a: 36:16:ff:d9:d6:8f:ad:f9:4c:c5:8f:13:96:81:0c: dc:c1:a4:f9:cd:8e:57:4d:8a:bd:09:e2:3b:43:16: 9a:8e:73:31:82:6a:40:a5:d7:73:ea:16:e6:38:82: 53:de:9e:c4:e7:6c:50:9a:67:ef:7e:2c:7f:4c:ce: 8d:8c:e7:8c:b6:41:31:5e:df:55:2f:b7:a3:04:02: a3:cb:90:4e:23:45:18:4b:15:df:7e:57:8a:1a:93: f8:5c:34:af:8d:55:fc:92:56:17:33:f2:2c:ab:a2: bf:fe:32:22:48:20:54:62:8f:ac:97:b2:1e:a7:d7: 3a:88:ee:03:f7:85:5d:42:26:49:30:a7:59:35:95: 38:ee:08:cc:89:a7:d4:f2:a1:ab:cb:c9:27:ec:14: 9c:76:50:71:fd:38:cc:c7:87:1c:18:60:f1:04:f0: 5f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A4:57:EC:8A:D6:11:4D:D5:79:1D:D8:5B:0B:83:03:18:6B:34:CE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152070.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.219.0/24 Signature Algorithm: sha256WithRSAEncryption 35:27:53:05:6a:44:00:48:9b:cd:8e:c3:0a:8a:70:06:43:89: a8:50:c9:15:f2:4c:99:2d:88:2e:02:fb:2e:cc:a1:15:de:fd: 9d:01:46:40:0f:bf:2d:12:ef:78:15:fb:0a:bf:87:e6:11:ff: 60:27:0e:c9:30:8a:6b:75:f6:f4:49:65:7a:58:98:9d:d4:f5: d0:6f:b4:29:58:e7:a9:4c:78:16:93:d2:c9:fa:97:29:89:e5: d5:01:df:68:fa:d1:ad:a3:f4:5a:81:ab:a8:3f:e4:cd:5a:c4: b5:a5:94:30:18:59:b2:eb:20:4f:de:9e:cd:98:d2:d0:09:c9: 28:22:21:72:25:aa:53:03:c6:92:87:eb:25:04:63:90:13:6f: 77:95:69:19:55:57:e3:cc:d9:84:1d:ba:92:25:00:71:0b:ad: 47:8a:ab:da:3a:95:a7:10:87:9c:ba:13:e8:3f:07:b1:51:43: f5:f4:f9:a8:b1:c1:d9:88:51:19:4d:0d:3f:4e:8c:a4:77:5a: da:62:25:31:51:00:3a:5f:ff:24:77:97:db:d9:eb:52:66:bf: d0:49:41:e6:a0:d4:78:95:ea:7e:8c:b2:6c:2e:2f:27:75:b3: 4f:96:8d:4d:73:00:3c:55:35:02:59:5c:c9:31:17:cb:38:cf: 92:69:15:0b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUQQg5sVBgCleMjtyr2Fo0XOJvfu8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzEwN1oX DTI3MDUwMTA4MzYwN1owMzExMC8GA1UEAxMoMDFBNDU3RUM4QUQ2MTE0REQ1Nzkx REQ4NUIwQjgzMDMxODZCMzRDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJinjZIk752+0v4lzkh5d8MVb+kpyErr0St2sbZF+T7feEHEP1vejqgmLwhm R+gLmpI5IzwF7BoMd/yfRkTHDvIWxbuHHMPCPH/ZSps4/dmLaJgql7z6xYVqNhb/ 2daPrflMxY8TloEM3MGk+c2OV02KvQniO0MWmo5zMYJqQKXXc+oW5jiCU96exOds UJpn734sf0zOjYznjLZBMV7fVS+3owQCo8uQTiNFGEsV335XihqT+Fw0r41V/JJW FzPyLKuiv/4yIkggVGKPrJeyHqfXOojuA/eFXUImSTCnWTWVOO4IzImn1PKhq8vJ J+wUnHZQcf04zMeHHBhg8QTwX60CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQBpFfs itYRTdV5HdhbC4MDGGs0zjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyMDcwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAJDLbMA0GCSqGSIb3DQEBCwUAA4IBAQA1J1MFakQASJvNjsMKinAGQ4mo UMkV8kyZLYguAvsuzKEV3v2dAUZAD78tEu94FfsKv4fmEf9gJw7JMIprdfb0SWV6 WJid1PXQb7QpWOepTHgWk9LJ+pcpieXVAd9o+tGto/RagauoP+TNWsS1pZQwGFmy 6yBP3p7NmNLQCckoIiFyJapTA8aSh+slBGOQE293lWkZVVfjzNmEHbqSJQBxC61H iqvaOpWnEIecuhPoPwexUUP19PmoscHZiFEZTQ0/Toykd1raYiUxUQA6X/8kd5fb 2etSZr/QSUHmoNR4lep+jLJsLi8ndbNPlo1NcwA8VTUCWVzJMRfLOM+SaRUL -----END CERTIFICATE-----Generated at Sun May 3 00:39:48 2026 by rpki-client