$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152384.roa File: AS152384.roa (raw, json) Hash identifier: Evl6TFmcDoXZSCM0GGZEPHHrLi6b2USViQgtWgDRZrg= Subject key identifier: 6F:E8:22:EF:0B:C4:67:27:4B:79:08:C1:EC:AB:6A:12:80:F2:93:F0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 448CD41F946D4B7F14A7022B4EDF307C6190A348 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152384.roa Signing time: Sat 02 May 2026 09:26:41 +0000 ROA not before: Sat 02 May 2026 09:21:41 +0000 ROA not after: Sat 01 May 2027 09:26:41 +0000 asID: 152384 IP address blocks: 163.223.37.0/24 maxlen: 24 2001:df5:31c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:8c:d4:1f:94:6d:4b:7f:14:a7:02:2b:4e:df:30:7c:61:90:a3:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:41 2026 GMT Not After : May 1 09:26:41 2027 GMT Subject: CN=6FE822EF0BC467274B7908C1ECAB6A1280F293F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:08:99:7a:a1:7b:68:75:70:bc:85:ae:5c:3e: 0c:ac:eb:fa:65:05:54:f0:1a:27:ae:e1:39:6f:f5: 2f:c9:fe:7f:58:14:9c:e1:0a:34:9b:8f:6c:e9:b4: 85:18:4e:4a:4c:ae:b1:07:22:9a:06:49:0c:98:44: d5:ad:37:54:06:26:89:30:f4:12:83:b3:60:e3:29: c4:c4:8a:89:88:6c:dc:b6:b6:74:1e:1a:a3:88:a2: bd:24:e0:54:56:c6:1e:ff:d6:40:0c:05:62:ed:39: 63:3e:46:84:f6:de:77:93:96:6c:1c:3d:e5:04:d6: de:c3:49:c4:f9:92:aa:d0:7e:41:86:77:76:93:90: 49:7d:20:be:7b:29:37:4c:73:46:71:e5:d0:23:42: 22:80:03:c9:0e:dd:b5:99:56:55:45:9f:d3:36:2a: 59:2e:d2:63:1b:c8:04:02:9d:ab:9a:a3:fe:69:0b: 7e:be:7d:52:42:47:5a:20:f3:6a:e0:75:aa:67:8d: f7:01:17:52:0a:ef:8f:38:ca:0a:ab:3a:3b:97:d6: 43:91:fc:45:08:25:62:29:e1:1a:25:8b:1e:8f:ef: 34:55:02:91:90:0c:90:bc:f3:c7:2a:89:7c:00:9b: 33:e3:56:6e:e7:6f:4e:ac:e8:13:a4:fd:06:e4:9f: e7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E8:22:EF:0B:C4:67:27:4B:79:08:C1:EC:AB:6A:12:80:F2:93:F0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152384.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.37.0/24 IPv6: 2001:df5:31c0::/48 Signature Algorithm: sha256WithRSAEncryption 74:f6:36:0c:7f:e9:26:dd:a1:1a:f5:e2:d0:53:8b:7f:03:3b: 0a:80:80:f0:c1:af:5c:3c:a6:bc:bb:64:69:07:3c:d9:33:15: 7d:f8:ab:1a:fe:9e:4a:73:88:0c:8e:3f:77:68:dd:e6:3b:3e: ba:98:e6:20:8b:af:2a:3f:2a:0e:af:56:a6:dc:c2:f3:a0:97: 14:04:1b:74:7b:14:12:77:a5:31:39:d5:ab:70:24:67:de:9a: e9:9e:df:c6:0b:3f:1d:3a:0e:68:4f:8a:ca:a9:97:29:72:c1: 64:e1:59:ae:ee:82:da:d7:6d:0f:00:06:8d:08:ef:3c:e5:52: 09:06:db:65:69:8d:a5:e7:0e:f5:bc:96:9b:2c:3f:b8:1b:96: ad:41:59:a6:2e:60:b8:da:16:80:31:cd:ed:46:59:d4:6c:55: 8b:51:04:df:46:a8:4d:2a:e5:67:48:e1:7f:91:dd:24:0d:ba: e5:c6:2f:be:21:02:81:4e:ee:cb:ea:db:12:63:1d:2b:72:6d: 56:94:4d:05:34:70:d0:84:9a:44:4d:ba:1b:09:ae:72:f6:27: d0:c4:e2:fd:d4:86:98:41:b3:a6:33:d8:f1:7c:3e:37:d7:bf: 94:0e:67:c3:48:24:7c:41:b1:a0:9a:5f:49:26:e4:6b:fe:db: ff:82:b9:32 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURIzUH5RtS38UpwIrTt8wfGGQo0gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjE0MVoX DTI3MDUwMTA5MjY0MVowMzExMC8GA1UEAxMoNkZFODIyRUYwQkM0NjcyNzRCNzkw OEMxRUNBQjZBMTI4MEYyOTNGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsImXqhe2h1cLyFrlw+DKzr+mUFVPAaJ67hOW/1L8n+f1gUnOEKNJuPbOm0 hRhOSkyusQcimgZJDJhE1a03VAYmiTD0EoOzYOMpxMSKiYhs3La2dB4ao4iivSTg VFbGHv/WQAwFYu05Yz5GhPbed5OWbBw95QTW3sNJxPmSqtB+QYZ3dpOQSX0gvnsp N0xzRnHl0CNCIoADyQ7dtZlWVUWf0zYqWS7SYxvIBAKdq5qj/mkLfr59UkJHWiDz auB1qmeN9wEXUgrvjzjKCqs6O5fWQ5H8RQglYinhGiWLHo/vNFUCkZAMkLzzxyqJ fACbM+NWbudvTqzoE6T9BuSf52ECAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRv6CLv C8RnJ0t5CMHsq2oSgPKT8DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyMzg0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo98lMA8EAgACMAkDBwAgAQ31McAwDQYJKoZIhvcNAQELBQADggEBAHT2 Ngx/6SbdoRr14tBTi38DOwqAgPDBr1w8pry7ZGkHPNkzFX34qxr+nkpziAyOP3do 3eY7PrqY5iCLryo/Kg6vVqbcwvOglxQEG3R7FBJ3pTE51atwJGfemume38YLPx06 DmhPisqplylywWThWa7ugtrXbQ8ABo0I7zzlUgkG22VpjaXnDvW8lpssP7gblq1B WaYuYLjaFoAxze1GWdRsVYtRBN9GqE0q5WdI4X+R3SQNuuXGL74hAoFO7svq2xJj HStybVaUTQU0cNCEmkRNuhsJrnL2J9DE4v3UhphBs6Yz2PF8PjfXv5QOZ8NIJHxB saCaX0km5Gv+2/+CuTI= -----END CERTIFICATE-----Generated at Sun May 3 01:41:18 2026 by rpki-client