$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152072.roa File: AS152072.roa (raw, json) Hash identifier: J9BN6rNBJJbBnW/VmPYXSu30ZnVX3U//f9sN2bXAN1c= Subject key identifier: 23:DC:E9:A6:51:CC:80:B1:B0:FC:AA:38:49:3F:AB:2E:79:BD:47:8C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7F917BB9E27E90FD623DF6828741595E677C7803 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152072.roa Signing time: Sat 02 May 2026 21:37:15 +0000 ROA not before: Sat 02 May 2026 21:32:15 +0000 ROA not after: Sat 01 May 2027 21:37:15 +0000 asID: 152072 IP address blocks: 36.50.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:91:7b:b9:e2:7e:90:fd:62:3d:f6:82:87:41:59:5e:67:7c:78:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:32:15 2026 GMT Not After : May 1 21:37:15 2027 GMT Subject: CN=23DCE9A651CC80B1B0FCAA38493FAB2E79BD478C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:33:c8:09:69:f9:dd:67:65:be:5e:9d:3b:01: 97:98:24:05:64:3b:2b:cc:b5:ab:42:1f:88:b3:34: 08:45:74:ef:ef:a3:90:e4:ec:07:98:8c:78:03:7c: 64:35:18:0f:a8:f2:2f:85:a9:6c:98:a0:af:e6:28: 7d:56:d5:d8:6d:e3:18:4c:88:e3:c8:94:1f:f7:ec: e6:73:7f:20:a7:6d:c2:22:6c:fb:d2:d1:8e:06:8f: 9b:1e:62:55:8d:8b:3b:84:b8:5f:8c:fc:ae:1b:75: d8:37:d6:65:da:c1:07:a3:46:d4:f2:39:4f:a8:01: e9:62:82:12:0a:30:3f:a0:c4:7b:72:27:82:e4:d3: a9:ae:e9:e6:67:6e:63:00:25:6f:d6:63:84:9a:69: 00:a5:2c:b7:d9:96:3c:1c:a8:6e:1e:94:dd:c6:09: 8e:3d:56:54:8a:64:67:47:b9:b6:8f:70:05:fd:3a: d3:2f:73:f1:90:73:02:fb:83:cd:75:08:cf:8a:51: 28:77:f6:bd:48:62:e7:12:46:d3:ec:c3:a2:ce:83: 62:bc:20:fb:32:5d:21:cd:51:e6:c5:87:a6:40:13: a9:b7:81:80:55:05:79:28:7c:87:ad:e3:59:44:c5: af:60:28:7b:b1:ee:dc:d7:49:ce:02:a2:c7:c2:05: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DC:E9:A6:51:CC:80:B1:B0:FC:AA:38:49:3F:AB:2E:79:BD:47:8C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.218.0/24 Signature Algorithm: sha256WithRSAEncryption 01:0a:ad:5e:8a:74:a9:13:74:7d:75:49:62:e2:ec:f6:bc:90: e2:52:fe:a4:36:93:4d:f7:be:e0:ed:6c:52:c8:2d:25:9f:a3: 01:3f:77:8c:9f:a2:26:28:87:a2:9e:1a:d7:62:f1:98:c3:b1: 45:a1:bd:1c:8c:3e:9d:b0:18:ca:a1:29:c7:f1:bf:0c:be:68: a1:d7:6b:92:1d:1e:61:40:b4:1c:07:70:dc:f9:4b:dc:60:78: 55:eb:ee:3e:1c:7b:76:36:d3:90:7f:08:eb:cf:a3:1b:f5:63: 10:56:6b:a8:ae:44:91:cb:70:ff:3c:c9:fd:38:b4:34:61:9c: c5:3d:73:16:a1:55:f5:b0:1c:0a:bb:c2:95:5c:ab:c0:16:c5: 6d:0b:b8:5a:16:92:3e:8d:20:39:ae:94:37:07:26:c8:31:e6: 3a:90:1f:ef:f5:2e:bc:de:4d:39:59:05:92:03:0c:15:75:6f: e2:2e:67:14:97:e4:aa:15:28:34:fa:65:cd:22:d2:cb:00:8e: 2b:d8:98:4e:58:af:ea:c0:69:c7:26:35:7b:2f:8a:14:d9:23: dc:2b:a7:18:e2:e7:87:e9:ad:cf:93:fa:1e:21:8d:70:15:5f: af:d4:f4:02:77:c0:50:e2:31:48:fe:0c:c0:15:4e:8c:2e:74: f4:b8:37:dc -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUf5F7ueJ+kP1iPfaCh0FZXmd8eAMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMzIxNVoX DTI3MDUwMTIxMzcxNVowMzExMC8GA1UEAxMoMjNEQ0U5QTY1MUNDODBCMUIwRkNB QTM4NDkzRkFCMkU3OUJENDc4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkzyAlp+d1nZb5enTsBl5gkBWQ7K8y1q0IfiLM0CEV07++jkOTsB5iMeAN8 ZDUYD6jyL4WpbJigr+YofVbV2G3jGEyI48iUH/fs5nN/IKdtwiJs+9LRjgaPmx5i VY2LO4S4X4z8rht12DfWZdrBB6NG1PI5T6gB6WKCEgowP6DEe3InguTTqa7p5mdu YwAlb9ZjhJppAKUst9mWPByobh6U3cYJjj1WVIpkZ0e5to9wBf060y9z8ZBzAvuD zXUIz4pRKHf2vUhi5xJG0+zDos6DYrwg+zJdIc1R5sWHpkATqbeBgFUFeSh8h63j WUTFr2Aoe7Hu3NdJzgKix8IFbAECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQj3Omm UcyAsbD8qjhJP6sueb1HjDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyMDcyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAJDLaMA0GCSqGSIb3DQEBCwUAA4IBAQABCq1einSpE3R9dUli4uz2vJDi Uv6kNpNN977g7WxSyC0ln6MBP3eMn6ImKIeinhrXYvGYw7FFob0cjD6dsBjKoSnH 8b8Mvmih12uSHR5hQLQcB3Dc+UvcYHhV6+4+HHt2NtOQfwjrz6Mb9WMQVmuorkSR y3D/PMn9OLQ0YZzFPXMWoVX1sBwKu8KVXKvAFsVtC7haFpI+jSA5rpQ3BybIMeY6 kB/v9S683k05WQWSAwwVdW/iLmcUl+SqFSg0+mXNItLLAI4r2JhOWK/qwGnHJjV7 L4oU2SPcK6cY4ueH6a3Pk/oeIY1wFV+v1PQCd8BQ4jFI/gzAFU6MLnT0uDfc -----END CERTIFICATE-----Generated at Sun May 3 01:40:06 2026 by rpki-client