$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153327.roa File: AS153327.roa (raw, json) Hash identifier: N7W7xY0X0KFrTN+Xd9bUj4kG0fAp8GZQ+rqnSqrWjPY= Subject key identifier: 9B:15:1F:62:AC:A5:58:B5:8D:21:E6:CA:32:92:FA:4B:0E:F0:C8:E5 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 24500AA25B9EFAF7DEBA33098BAF422969054EF4 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153327.roa Signing time: Sat 02 May 2026 21:18:36 +0000 ROA not before: Sat 02 May 2026 21:13:36 +0000 ROA not after: Sat 01 May 2027 21:18:36 +0000 asID: 153327 IP address blocks: 103.251.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:50:0a:a2:5b:9e:fa:f7:de:ba:33:09:8b:af:42:29:69:05:4e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:13:36 2026 GMT Not After : May 1 21:18:36 2027 GMT Subject: CN=9B151F62ACA558B58D21E6CA3292FA4B0EF0C8E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:59:ea:d5:28:d1:3b:a1:c2:48:f1:4b:8a: d4:40:93:89:e8:1d:54:8c:2c:ac:22:7c:76:8f:a6: f1:ce:76:c2:63:55:43:fa:85:83:f2:43:b7:a9:73: 4c:a6:99:0f:db:c7:d7:66:97:9a:1e:a8:2f:30:ec: 76:ca:07:28:75:11:cf:90:8f:17:45:47:c9:f3:b4: b7:bf:ee:41:db:cc:79:85:aa:b1:f3:ea:86:c1:ac: af:07:02:0e:9a:e5:2e:a0:0f:29:32:55:9d:1f:09: 01:6b:1a:b6:47:02:47:b8:04:b8:79:7d:5b:31:23: 0b:63:79:d4:ec:81:e7:eb:6f:2f:6c:b9:38:c7:c0: 0a:0d:13:dc:88:32:8d:85:78:18:6f:cc:ae:93:92: 85:07:b1:18:a3:03:cd:5d:bd:74:51:17:bf:27:c3: 42:7f:34:32:1d:44:fe:0a:0a:59:47:98:df:eb:f5: 6a:1d:f6:ec:7a:2e:f8:49:33:d1:8a:cc:cf:aa:1f: 7e:85:21:4e:d2:99:f4:bd:65:58:9d:76:bd:08:7a: 1e:00:dd:af:a5:ab:f9:33:95:82:39:be:44:5a:1e: 98:4f:d8:6f:89:9b:f5:eb:50:70:dc:bb:b7:b4:e0: f0:e1:55:85:79:3a:1f:9e:b1:b7:20:89:5d:56:31: 45:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:15:1F:62:AC:A5:58:B5:8D:21:E6:CA:32:92:FA:4B:0E:F0:C8:E5 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153327.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.251.152.0/24 Signature Algorithm: sha256WithRSAEncryption 59:d8:ee:fc:ea:45:d2:0f:d9:3d:39:a4:ee:61:90:ae:95:99: 54:6d:45:ca:37:2c:eb:45:bc:fa:90:73:c9:e2:96:dc:16:66: 0e:6d:f4:54:41:46:d8:51:ca:a0:31:2d:46:91:c6:fa:ee:8a: 42:a0:86:62:b7:2d:5e:f7:ff:da:19:4e:37:f1:56:20:b1:42: 2c:20:e9:6d:37:a8:18:68:36:db:4e:3e:17:2f:fb:40:94:ea: d7:ae:1b:fc:48:72:30:d5:94:e0:b2:e3:9c:a0:3c:9f:78:97: 0f:f7:c0:62:72:3e:e7:52:93:dc:42:a0:66:18:99:68:b7:20: e2:c4:fe:4d:d7:9d:6b:8b:1e:5f:6a:50:d8:c4:f1:6d:e0:cf: 50:8b:5d:62:f2:30:a8:5a:db:fe:3f:59:ce:a3:a7:6f:82:15: 98:21:ad:e3:ae:05:f3:78:b8:7e:be:ac:1e:71:6b:dc:c6:36: af:4d:74:9a:a1:f3:72:dc:83:7b:66:f2:c6:11:7e:8e:9e:51: 5f:44:e2:28:92:fd:68:6b:47:99:86:ad:cb:36:c7:08:ae:16: e3:90:23:e6:14:0e:98:ef:71:93:b5:8f:65:c4:34:1d:23:28: 0d:02:bc:5b:db:e0:92:ae:7b:64:b2:68:a8:d4:b7:37:d5:7b: 7e:e4:79:bb -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUJFAKolue+vfeujMJi69CKWkFTvQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTMzNloX DTI3MDUwMTIxMTgzNlowMzExMC8GA1UEAxMoOUIxNTFGNjJBQ0E1NThCNThEMjFF NkNBMzI5MkZBNEIwRUYwQzhFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjoWerVKNE7ocJI8UuK1ECTiegdVIwsrCJ8do+m8c52wmNVQ/qFg/JDt6lz TKaZD9vH12aXmh6oLzDsdsoHKHURz5CPF0VHyfO0t7/uQdvMeYWqsfPqhsGsrwcC DprlLqAPKTJVnR8JAWsatkcCR7gEuHl9WzEjC2N51OyB5+tvL2y5OMfACg0T3Igy jYV4GG/MrpOShQexGKMDzV29dFEXvyfDQn80Mh1E/goKWUeY3+v1ah327Hou+Ekz 0YrMz6offoUhTtKZ9L1lWJ12vQh6HgDdr6Wr+TOVgjm+RFoemE/Yb4mb9etQcNy7 t7Tg8OFVhXk6H56xtyCJXVYxRZ0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSbFR9i rKVYtY0h5soykvpLDvDI5TAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzMzI3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ/uYMA0GCSqGSIb3DQEBCwUAA4IBAQBZ2O786kXSD9k9OaTuYZCulZlU bUXKNyzrRbz6kHPJ4pbcFmYObfRUQUbYUcqgMS1Gkcb67opCoIZity1e9//aGU43 8VYgsUIsIOltN6gYaDbbTj4XL/tAlOrXrhv8SHIw1ZTgsuOcoDyfeJcP98Bicj7n UpPcQqBmGJlotyDixP5N151rix5falDYxPFt4M9Qi11i8jCoWtv+P1nOo6dvghWY Ia3jrgXzeLh+vqwecWvcxjavTXSaofNy3IN7ZvLGEX6OnlFfROIokv1oa0eZhq3L NscIrhbjkCPmFA6Y73GTtY9lxDQdIygNArxb2+CSrntksmio1Lc31Xt+5Hm7 -----END CERTIFICATE-----Generated at Sun May 3 01:41:17 2026 by rpki-client