$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152440.roa File: AS152440.roa (raw, json) Hash identifier: Mig4SiPejLnmaTZ5n2MkNEAplPx+Vos5dAQ1lmNxcdA= Subject key identifier: 92:BB:2B:56:75:8D:2A:64:25:DB:16:E7:90:F3:FD:73:94:E1:28:EE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4AF65725391EE3A38C9D8DA7932C35B394897896 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152440.roa Signing time: Sat 02 May 2026 18:18:05 +0000 ROA not before: Sat 02 May 2026 18:13:05 +0000 ROA not after: Sat 01 May 2027 18:18:05 +0000 asID: 152440 IP address blocks: 175.184.236.0/24 maxlen: 24 2001:df3:c240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f6:57:25:39:1e:e3:a3:8c:9d:8d:a7:93:2c:35:b3:94:89:78:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 18:13:05 2026 GMT Not After : May 1 18:18:05 2027 GMT Subject: CN=92BB2B56758D2A6425DB16E790F3FD7394E128EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8e:34:e3:f7:7f:6b:65:79:01:0a:3e:91:d2: e8:a0:52:1d:53:12:81:9a:2f:51:40:63:a5:3b:46: 4e:a1:fd:b8:6c:dd:da:f0:a7:05:34:0a:f1:e1:b7: 6a:16:e8:35:cd:f8:14:a8:2e:dc:43:e4:1c:84:ae: 22:ec:4f:e0:b5:2f:70:a1:e2:62:ec:d5:a8:48:16: 34:4e:a4:d1:3a:75:de:55:0d:03:eb:af:e0:d9:d7: f0:08:d6:0b:42:1e:80:fb:50:31:48:21:65:9c:6c: 63:8e:b2:7a:93:8a:ba:06:59:46:6e:eb:b4:cb:bb: a7:51:24:69:ac:0d:10:b7:dd:92:f0:41:20:f2:9a: ab:02:e5:0c:7e:d4:71:d0:67:d6:bc:7f:b5:cd:e1: 06:a9:1e:bd:91:f2:6b:a2:cc:81:6c:d1:f2:70:05: 97:74:ba:0a:58:d3:40:5a:98:6a:e1:ee:02:5e:c3: 13:e3:60:dd:20:a0:ea:0e:7e:ba:b6:33:80:a4:28: 5c:b4:93:3e:69:07:15:be:b1:7d:9e:76:09:fa:d2: 2f:16:0c:c1:b7:fb:a1:6e:a9:bf:99:3f:bb:d6:e5: f4:79:cd:ae:d9:7a:74:01:c1:2c:d3:96:a7:ef:0e: 3d:a5:b7:9a:5f:98:a9:40:83:b2:f1:ba:62:1a:4a: 2d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:BB:2B:56:75:8D:2A:64:25:DB:16:E7:90:F3:FD:73:94:E1:28:EE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152440.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.184.236.0/24 IPv6: 2001:df3:c240::/48 Signature Algorithm: sha256WithRSAEncryption 1c:dd:22:06:57:f6:9a:ec:8c:38:f2:4f:a0:02:55:35:41:fb: 3b:c3:d1:ba:89:f0:f0:cd:c7:0c:14:61:b4:b9:1c:58:b7:b5: 3b:9b:c3:78:15:31:fb:dc:57:d2:04:54:c7:20:ef:9c:71:46: a7:1f:68:6a:c3:51:d4:f7:aa:ca:66:08:1e:81:e1:ea:12:73: 8b:bb:dd:6a:2c:df:61:27:cb:6e:4f:33:eb:96:25:ab:9c:14: 53:cd:08:e1:9c:2c:a9:f7:3a:9a:6b:ac:2b:26:70:12:df:54: 14:65:45:24:af:bf:98:15:89:c5:93:75:cc:b4:ba:7d:46:b6: 2b:2d:07:89:f6:d1:09:15:fe:98:af:b0:b4:c2:fb:c1:a3:c0: b5:1c:88:66:b5:1b:6a:2f:ac:d9:f1:77:f6:75:73:96:6d:76: c6:14:a5:90:ce:1a:ff:cc:b8:18:b9:77:eb:5c:64:1f:79:75: 8b:7a:5a:09:91:42:58:f9:71:ba:31:58:0a:32:54:1f:11:2d: 34:fa:dd:b3:9b:07:48:68:04:78:8a:82:52:37:24:35:5c:bb: 64:ed:b3:d0:1e:89:b7:aa:3d:a1:62:00:3a:c9:fa:cf:56:92: 93:0a:80:dd:b6:83:df:f7:a6:45:38:61:d4:06:2d:f5:f3:61: bd:2c:d2:24 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSvZXJTke46OMnY2nkyw1s5SJeJYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE4MTMwNVoX DTI3MDUwMTE4MTgwNVowMzExMC8GA1UEAxMoOTJCQjJCNTY3NThEMkE2NDI1REIx NkU3OTBGM0ZENzM5NEUxMjhFRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKCONOP3f2tleQEKPpHS6KBSHVMSgZovUUBjpTtGTqH9uGzd2vCnBTQK8eG3 ahboNc34FKgu3EPkHISuIuxP4LUvcKHiYuzVqEgWNE6k0Tp13lUNA+uv4NnX8AjW C0IegPtQMUghZZxsY46yepOKugZZRm7rtMu7p1EkaawNELfdkvBBIPKaqwLlDH7U cdBn1rx/tc3hBqkevZHya6LMgWzR8nAFl3S6CljTQFqYauHuAl7DE+Ng3SCg6g5+ urYzgKQoXLSTPmkHFb6xfZ52CfrSLxYMwbf7oW6pv5k/u9bl9HnNrtl6dAHBLNOW p+8OPaW3ml+YqUCDsvG6YhpKLSkCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSSuytW dY0qZCXbFueQ8/1zlOEo7jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyNDQwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAr7jsMA8EAgACMAkDBwAgAQ3zwkAwDQYJKoZIhvcNAQELBQADggEBABzd IgZX9prsjDjyT6ACVTVB+zvD0bqJ8PDNxwwUYbS5HFi3tTubw3gVMfvcV9IEVMcg 75xxRqcfaGrDUdT3qspmCB6B4eoSc4u73Wos32Eny25PM+uWJaucFFPNCOGcLKn3 OpprrCsmcBLfVBRlRSSvv5gVicWTdcy0un1GtistB4n20QkV/pivsLTC+8GjwLUc iGa1G2ovrNnxd/Z1c5ZtdsYUpZDOGv/MuBi5d+tcZB95dYt6WgmRQlj5cboxWAoy VB8RLTT63bObB0hoBHiKglI3JDVcu2Tts9AeibeqPaFiADrJ+s9WkpMKgN22g9/3 pkU4YdQGLfXzYb0s0iQ= -----END CERTIFICATE-----Generated at Sun May 3 00:40:18 2026 by rpki-client