$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS152769.roa File: AS152769.roa (raw, json) Hash identifier: OK8umdI4771hzpBZRtSfHXW23CESuS6t10d0XCpxG8U= Subject key identifier: C2:30:47:8E:E7:A2:3F:D3:ED:30:0F:9A:3C:1B:A2:1C:DD:85:30:3F Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 135B030648BE1D78F2D8C10B1BA6599A6E0A7F81 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152769.roa Signing time: Sat 02 May 2026 09:22:16 +0000 ROA not before: Sat 02 May 2026 09:17:16 +0000 ROA not after: Sat 01 May 2027 09:22:16 +0000 asID: 152769 IP address blocks: 117.18.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5b:03:06:48:be:1d:78:f2:d8:c1:0b:1b:a6:59:9a:6e:0a:7f:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:17:16 2026 GMT Not After : May 1 09:22:16 2027 GMT Subject: CN=C230478EE7A23FD3ED300F9A3C1BA21CDD85303F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c4:d7:8f:5f:24:a5:d2:8a:1b:67:3d:77:c3: 67:0f:41:f4:8d:5b:b3:7e:16:ee:61:9a:77:12:8e: c1:20:44:b1:8f:5c:eb:da:c7:49:e7:95:ea:9b:f1: b1:74:35:55:d1:4e:00:5d:75:48:15:dc:4e:23:e1: 81:be:96:30:64:3d:8a:02:b2:5e:de:df:88:4a:95: 52:b8:85:32:c5:d9:d4:d3:5b:b0:5d:26:e9:cc:e7: 2b:12:e8:5e:61:53:c7:59:c5:83:20:d8:22:7c:48: f8:83:67:e7:cf:81:85:c6:8d:2f:cc:37:88:e9:1c: c0:05:a8:44:e8:05:91:90:5d:d2:9e:13:6e:67:a5: 49:cd:57:b2:0d:8f:a8:85:b1:3c:95:8b:1e:d9:df: f9:cc:d1:71:90:82:f7:d5:bd:9e:39:41:48:7c:3c: a2:0c:bd:81:ee:83:5f:1a:95:b5:e4:05:0f:72:38: a3:07:25:b2:f4:57:b9:d5:97:dc:1d:2a:a6:4a:a7: 66:3f:11:ac:4a:7e:b6:11:7b:c7:f0:ac:46:bb:0a: c0:63:4e:ce:5c:bf:20:48:1e:11:21:5b:87:f6:fb: 9c:08:bb:66:56:77:08:d0:0f:27:1e:04:0d:6a:63: 80:06:04:b9:dd:94:bc:a0:bd:d3:ba:b8:05:29:9b: 3d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:30:47:8E:E7:A2:3F:D3:ED:30:0F:9A:3C:1B:A2:1C:DD:85:30:3F X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS152769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.18.16.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:41:0d:28:75:81:7c:1e:d2:16:93:5d:00:4c:c9:e0:c0:b9: 2b:a9:e8:37:e4:19:db:81:ce:9d:93:e4:48:6f:55:2b:83:09: ed:25:01:ad:15:36:91:6f:f3:98:8c:0d:b5:07:2a:e8:78:dc: 33:28:08:68:bf:d5:b9:89:fe:2e:49:18:ec:23:08:59:4a:a2: 92:bf:b7:84:27:7d:cb:d5:95:ff:71:d3:1a:c5:e0:92:92:ea: 32:e1:c8:94:25:8e:d0:5e:88:b9:4a:79:6a:5f:1a:7e:a4:35: 2b:26:13:ea:f8:ce:05:57:25:35:68:a5:45:55:3d:61:1b:8f: 5a:e0:54:10:71:43:de:2a:7b:07:ed:60:9c:a1:3e:89:d7:c8: 3c:0e:da:e7:20:ad:dd:9e:d2:1d:8e:6b:dd:82:39:9e:50:02: f4:98:7a:cd:96:77:26:0d:16:92:9b:c5:8d:72:29:80:e2:93: cb:62:fd:65:56:f1:95:74:cd:d8:78:14:1a:a8:7e:1b:d0:11: 14:ff:87:16:4f:19:94:67:9a:6d:6b:33:60:71:83:44:6d:3c: 31:c0:a4:15:9d:12:59:32:c1:7b:32:a8:18:1f:5c:ae:90:b9: aa:f8:9e:dc:ae:a3:b6:59:9c:b0:71:72:89:90:1b:3a:b7:2e: b9:d2:38:96 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUE1sDBki+HXjy2MELG6ZZmm4Kf4EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTcxNloX DTI3MDUwMTA5MjIxNlowMzExMC8GA1UEAxMoQzIzMDQ3OEVFN0EyM0ZEM0VEMzAw RjlBM0MxQkEyMUNERDg1MzAzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3E149fJKXSihtnPXfDZw9B9I1bs34W7mGadxKOwSBEsY9c69rHSeeV6pvx sXQ1VdFOAF11SBXcTiPhgb6WMGQ9igKyXt7fiEqVUriFMsXZ1NNbsF0m6cznKxLo XmFTx1nFgyDYInxI+INn58+BhcaNL8w3iOkcwAWoROgFkZBd0p4TbmelSc1Xsg2P qIWxPJWLHtnf+czRcZCC99W9njlBSHw8ogy9ge6DXxqVteQFD3I4owclsvRXudWX 3B0qpkqnZj8RrEp+thF7x/CsRrsKwGNOzly/IEgeESFbh/b7nAi7ZlZ3CNAPJx4E DWpjgAYEud2UvKC907q4BSmbPS8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTCMEeO 56I/0+0wD5o8G6Ic3YUwPzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUyNzY5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCdRIQMA0GCSqGSIb3DQEBCwUAA4IBAQA/QQ0odYF8HtIWk10ATMngwLkr qeg35Bnbgc6dk+RIb1UrgwntJQGtFTaRb/OYjA21ByroeNwzKAhov9W5if4uSRjs IwhZSqKSv7eEJ33L1ZX/cdMaxeCSkuoy4ciUJY7QXoi5SnlqXxp+pDUrJhPq+M4F VyU1aKVFVT1hG49a4FQQcUPeKnsH7WCcoT6J18g8DtrnIK3dntIdjmvdgjmeUAL0 mHrNlncmDRaSm8WNcimA4pPLYv1lVvGVdM3YeBQaqH4b0BEU/4cWTxmUZ5ptazNg cYNEbTwxwKQVnRJZMsF7MqgYH1yukLmq+J7crqO2WZywcXKJkBs6ty650jiW -----END CERTIFICATE-----Generated at Sun May 3 01:41:18 2026 by rpki-client