$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153107.roa File: AS153107.roa (raw, json) Hash identifier: Nn0V4wyGxiyu8rc+sZlc7jeKqmgzCHfjFMF5/D2ogKU= Subject key identifier: 13:7C:67:90:86:1E:28:B3:C4:78:EC:34:02:4E:E3:6E:A2:A2:2C:72 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7BC09A365063FA4833C6421B8676744C40742F44 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153107.roa Signing time: Sat 02 May 2026 21:33:12 +0000 ROA not before: Sat 02 May 2026 21:28:12 +0000 ROA not after: Sat 01 May 2027 21:33:12 +0000 asID: 153107 IP address blocks: 2402:4520::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c0:9a:36:50:63:fa:48:33:c6:42:1b:86:76:74:4c:40:74:2f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:28:12 2026 GMT Not After : May 1 21:33:12 2027 GMT Subject: CN=137C6790861E28B3C478EC34024EE36EA2A22C72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0f:08:63:56:df:99:41:d5:13:b8:f3:4c:5c: 99:0d:22:b4:29:9d:d2:ce:fd:8a:e2:db:7d:1f:b6: 13:8d:dd:02:af:a0:76:16:ce:73:51:cd:a1:fd:46: 1a:d8:84:b7:34:f4:df:30:3c:b4:37:80:a9:39:f1: c5:c0:ab:44:70:02:33:79:8b:78:dd:42:19:32:2e: 43:40:66:91:9c:75:a3:0e:e2:f7:e8:dd:1f:5f:92: 39:08:55:72:46:6c:0a:51:c9:41:02:1e:d5:a3:b8: ba:41:71:cb:59:1c:d3:18:14:d6:33:d3:83:6b:3f: f3:0b:43:c6:7f:c3:e6:b3:57:7a:41:3e:11:9c:87: 8e:ae:9b:4e:45:0d:0c:6d:3e:1f:fe:c1:7f:b3:77: 7a:32:a5:75:a0:64:48:2e:68:27:bc:82:91:ff:30: a2:f5:fe:3c:7e:82:c3:58:92:5f:a0:8d:8f:2a:23: d3:7d:41:68:5f:d7:fb:bf:8c:8f:9b:05:65:c8:23: 3b:cb:28:31:84:2a:11:11:76:31:e2:fd:de:89:4f: a8:31:34:18:fd:68:26:64:2d:8a:e0:1e:57:ff:7e: 6a:08:af:42:bf:92:d3:15:0d:5b:96:e2:72:ab:7f: 19:ff:f7:bd:d7:ab:b1:b2:04:f0:3a:8e:d8:13:36: 81:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7C:67:90:86:1E:28:B3:C4:78:EC:34:02:4E:E3:6E:A2:A2:2C:72 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4520::/32 Signature Algorithm: sha256WithRSAEncryption 46:c3:b5:64:9b:73:80:90:06:fd:93:66:38:55:00:1e:cc:85: 7e:08:a5:bb:bf:bb:6b:d2:ee:af:57:4e:ff:fa:11:e4:7c:ad: aa:6f:e5:04:80:24:42:81:0c:01:ef:68:e9:59:fd:96:89:77: 25:f8:6a:0e:3d:92:33:f0:fc:13:d4:f0:b3:36:20:3b:10:03: ec:39:e5:d0:27:bf:fa:40:e0:3e:7b:fc:14:e4:d3:09:21:8a: d1:c4:73:f4:91:a0:4e:50:19:8c:45:1e:9e:3f:33:b5:41:12: 24:17:ea:fb:b5:6a:d7:a1:59:43:8a:94:25:7b:3d:cc:e0:be: bf:1b:94:d5:d0:68:e1:e7:5f:dc:5b:a5:ac:58:73:35:40:b0: 40:e8:5e:d2:6d:8d:5a:00:4a:8f:e7:74:5f:33:fe:48:8e:f4: d6:bf:e4:54:b6:5d:e0:15:6d:1e:02:0d:21:4a:8d:72:27:04: d1:73:5d:1c:1e:9e:2d:29:03:76:76:63:d5:ad:00:73:c3:36: e4:89:73:d7:2e:58:08:ad:dd:11:3a:32:27:cd:d3:1e:a7:a0: 04:24:91:30:ea:97:6c:ef:23:5a:33:e1:d0:93:47:25:2b:fa: 5c:88:99:d5:59:c8:4d:ce:d7:a9:2b:39:2c:ed:d6:f3:6a:37: e6:e3:ae:15 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUe8CaNlBj+kgzxkIbhnZ0TEB0L0QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjgxMloX DTI3MDUwMTIxMzMxMlowMzExMC8GA1UEAxMoMTM3QzY3OTA4NjFFMjhCM0M0NzhF QzM0MDI0RUUzNkVBMkEyMkM3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0PCGNW35lB1RO480xcmQ0itCmd0s79iuLbfR+2E43dAq+gdhbOc1HNof1G GtiEtzT03zA8tDeAqTnxxcCrRHACM3mLeN1CGTIuQ0BmkZx1ow7i9+jdH1+SOQhV ckZsClHJQQIe1aO4ukFxy1kc0xgU1jPTg2s/8wtDxn/D5rNXekE+EZyHjq6bTkUN DG0+H/7Bf7N3ejKldaBkSC5oJ7yCkf8wovX+PH6Cw1iSX6CNjyoj031BaF/X+7+M j5sFZcgjO8soMYQqERF2MeL93olPqDE0GP1oJmQtiuAeV/9+agivQr+S0xUNW5bi cqt/Gf/3vdersbIE8DqO2BM2gUMCAwEAAaOCAc0wggHJMB0GA1UdDgQWBBQTfGeQ hh4os8R47DQCTuNuoqIscjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzMTA3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAJFIDANBgkqhkiG9w0BAQsFAAOCAQEARsO1ZJtzgJAG/ZNmOFUAHsyF fgilu7+7a9Lur1dO//oR5Hytqm/lBIAkQoEMAe9o6Vn9lol3JfhqDj2SM/D8E9Tw szYgOxAD7Dnl0Ce/+kDgPnv8FOTTCSGK0cRz9JGgTlAZjEUenj8ztUESJBfq+7Vq 16FZQ4qUJXs9zOC+vxuU1dBo4edf3FulrFhzNUCwQOhe0m2NWgBKj+d0XzP+SI70 1r/kVLZd4BVtHgINIUqNcicE0XNdHB6eLSkDdnZj1a0Ac8M25Ilz1y5YCK3dEToy J83THqegBCSRMOqXbO8jWjPh0JNHJSv6XIiZ1VnITc7XqSs5LO3W82o35uOuFQ== -----END CERTIFICATE-----Generated at Sun May 3 01:44:45 2026 by rpki-client