$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153114.roa File: AS153114.roa (raw, json) Hash identifier: x9iAqYqfNa4eonlZs40NkWPl1Dkn9NxI+KNQymc2OQQ= Subject key identifier: C2:10:49:53:94:5A:40:AA:26:49:66:FD:96:02:87:86:55:4A:B6:21 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: A8B95AB8F57FA3796ECF474CEFD75877D94FD2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153114.roa Signing time: Sat 02 May 2026 21:32:18 +0000 ROA not before: Sat 02 May 2026 21:27:18 +0000 ROA not after: Sat 01 May 2027 21:32:18 +0000 asID: 153114 IP address blocks: 103.60.97.0/24 maxlen: 24 2401:56e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a8:b9:5a:b8:f5:7f:a3:79:6e:cf:47:4c:ef:d7:58:77:d9:4f:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:27:18 2026 GMT Not After : May 1 21:32:18 2027 GMT Subject: CN=C2104953945A40AA264966FD96028786554AB621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:65:19:4f:c4:35:5b:e6:73:f1:81:e0:7d:2f: 59:fc:4a:94:06:2c:c5:c9:37:4a:3d:22:ea:c8:ba: 08:01:cb:57:43:6c:39:46:dc:ce:ba:fe:42:cc:ff: 09:67:70:d7:7d:e0:f8:32:51:38:29:f1:fc:6d:91: 94:1a:13:c4:41:5f:29:75:28:3f:4e:06:e0:fa:63: 45:3d:a0:ad:37:b0:ab:fc:8d:b0:0f:94:cd:9f:1e: 15:ea:4f:be:97:41:fa:40:58:9a:50:1b:d7:c9:9d: 36:26:87:6a:95:a4:04:40:62:3d:2b:2e:ea:87:d8: 67:9b:4b:ab:d6:ad:04:93:c4:b1:77:7d:f3:ff:80: f1:62:63:d7:33:78:34:23:1e:e1:ee:e1:98:83:df: ea:90:39:a9:6e:b1:37:9a:ed:58:85:d8:b8:a1:51: 50:97:e8:0f:a2:33:e6:ad:7f:a2:35:b2:68:d0:1d: 90:43:69:48:70:ff:ba:bc:7e:26:67:cb:90:03:1b: 9a:3a:58:74:5c:72:8b:91:91:22:49:ea:6f:d1:1c: 1b:27:f5:f4:f7:77:4d:ee:06:0d:38:26:b8:04:41: 04:4d:7b:2c:78:21:75:ed:6a:81:48:1a:c5:80:62: ad:ef:28:6e:48:ba:c2:f8:1b:26:ff:6c:ee:2c:cd: df:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:10:49:53:94:5A:40:AA:26:49:66:FD:96:02:87:86:55:4A:B6:21 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153114.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.97.0/24 IPv6: 2401:56e0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:c8:29:8e:b6:20:37:aa:9e:ed:63:d3:19:fa:1d:43:a3:e3: 41:60:04:48:65:7b:c3:7f:bf:a2:54:a0:87:f9:b6:67:25:a1: c6:32:da:60:bb:cd:04:47:d5:d8:60:74:50:33:81:5b:48:db: 11:02:35:38:52:43:d7:8f:b5:eb:72:e8:fc:65:7a:9c:02:b6: 82:06:21:03:0a:8d:eb:5e:88:9d:b9:78:29:d4:15:57:3a:19: 6b:38:53:67:22:08:0e:50:8b:cf:1a:f9:bf:49:6b:97:a9:3e: d1:8c:29:45:ef:9f:ba:32:28:df:0a:6b:4d:bc:10:a1:ac:69: 8e:13:60:84:66:a6:3e:7e:bb:ae:9b:0c:42:0f:85:61:77:c1: ba:29:02:38:9e:91:b9:4d:e4:48:ac:7c:3b:47:32:ed:a5:b7: ba:10:05:ef:f3:73:97:bf:82:cc:98:6b:08:75:10:0e:07:9c: 38:e4:47:48:d9:d6:2b:33:a4:85:c5:1e:44:08:df:0b:04:d1: 24:c6:07:cd:0a:8b:c6:c7:9d:2b:e8:24:32:3d:f3:5f:87:6f: 7e:67:78:9c:3a:bf:94:f2:da:34:e9:8e:d2:b0:3c:40:6e:af: e9:fa:fd:42:3d:75:65:a6:39:25:a1:1d:04:a9:2a:7a:39:07: 25:4f:8d:cb -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUAKi5Wrj1f6N5bs9HTO/XWHfZT9IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjcxOFoX DTI3MDUwMTIxMzIxOFowMzExMC8GA1UEAxMoQzIxMDQ5NTM5NDVBNDBBQTI2NDk2 NkZEOTYwMjg3ODY1NTRBQjYyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1lGU/ENVvmc/GB4H0vWfxKlAYsxck3Sj0i6si6CAHLV0NsOUbczrr+Qsz/ CWdw133g+DJROCnx/G2RlBoTxEFfKXUoP04G4PpjRT2grTewq/yNsA+UzZ8eFepP vpdB+kBYmlAb18mdNiaHapWkBEBiPSsu6ofYZ5tLq9atBJPEsXd98/+A8WJj1zN4 NCMe4e7hmIPf6pA5qW6xN5rtWIXYuKFRUJfoD6Iz5q1/ojWyaNAdkENpSHD/urx+ JmfLkAMbmjpYdFxyi5GRIknqb9EcGyf19Pd3Te4GDTgmuARBBE17LHghde1qgUga xYBire8obki6wvgbJv9s7izN3wsCAwEAAaOCAdswggHXMB0GA1UdDgQWBBTCEElT lFpAqiZJZv2WAoeGVUq2ITAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzMTE0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQAZzxhMA0EAgACMAcDBQAkAVbgMA0GCSqGSIb3DQEBCwUAA4IBAQBNyCmO tiA3qp7tY9MZ+h1Do+NBYARIZXvDf7+iVKCH+bZnJaHGMtpgu80ER9XYYHRQM4Fb SNsRAjU4UkPXj7Xrcuj8ZXqcAraCBiEDCo3rXoiduXgp1BVXOhlrOFNnIggOUIvP Gvm/SWuXqT7RjClF75+6MijfCmtNvBChrGmOE2CEZqY+fruumwxCD4Vhd8G6KQI4 npG5TeRIrHw7RzLtpbe6EAXv83OXv4LMmGsIdRAOB5w45EdI2dYrM6SFxR5ECN8L BNEkxgfNCovGx50r6CQyPfNfh29+Z3icOr+U8to06Y7SsDxAbq/p+v1CPXVlpjkl oR0EqSp6OQclT43L -----END CERTIFICATE-----Generated at Sun May 3 00:41:37 2026 by rpki-client