$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153555.roa File: AS153555.roa (raw, json) Hash identifier: +znbeJ670ZY9Va0oV2E8dLnpvvsge5Jo6Zjk3eQ2c8E= Subject key identifier: F6:7F:BC:71:75:59:1E:48:1E:95:0C:2D:71:99:40:5E:DE:63:84:81 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 18F74646FD6796D30D48AC381A73AA1B71AFF6B2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153555.roa Signing time: Sat 02 May 2026 09:26:34 +0000 ROA not before: Sat 02 May 2026 09:21:34 +0000 ROA not after: Sat 01 May 2027 09:26:34 +0000 asID: 153555 IP address blocks: 163.47.25.0/24 maxlen: 24 2001:df4:fb40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f7:46:46:fd:67:96:d3:0d:48:ac:38:1a:73:aa:1b:71:af:f6:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:34 2026 GMT Not After : May 1 09:26:34 2027 GMT Subject: CN=F67FBC7175591E481E950C2D7199405EDE638481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fc:92:86:55:7e:fc:6a:db:54:c9:b1:f2:48: 45:21:ff:35:14:96:dc:a4:dc:ff:d9:02:2b:03:03: 3f:67:34:90:f1:bd:08:a5:ee:87:64:f7:7d:39:f8: a1:37:7a:55:b6:33:a3:9e:8a:e4:94:40:8b:6e:1a: 1d:9a:0e:95:44:77:c6:bd:50:e3:3b:04:73:0c:63: 8a:f4:8b:89:60:5f:34:46:d2:39:34:bf:70:ec:44: ff:05:0e:9c:9c:fb:ad:b0:fd:f9:9c:31:68:f7:19: 94:52:a3:18:01:42:71:83:1a:04:12:5c:4b:c5:4a: ad:ba:57:5b:67:81:06:cc:26:e1:05:0b:08:b3:31: a2:f3:6c:2b:69:ca:7c:2f:d5:26:68:8b:fa:b0:98: 2f:62:bd:04:f2:4e:7a:c2:e6:d2:d6:5e:72:d3:0a: 09:c3:ad:d3:5f:ac:62:f2:a4:96:df:2f:41:df:bb: e0:07:51:56:aa:c7:11:cf:40:45:32:1a:0b:3f:05: e8:8d:85:e7:a6:10:f5:a0:64:9d:87:16:08:6a:8a: 80:d7:68:f9:14:9d:d8:8a:53:bf:04:02:d9:e2:f9: 7c:05:ca:e1:62:66:d1:2f:24:e7:37:66:18:af:00: f7:f2:a3:a3:cf:a6:54:ac:1b:61:69:58:88:75:2d: 60:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:7F:BC:71:75:59:1E:48:1E:95:0C:2D:71:99:40:5E:DE:63:84:81 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153555.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.47.25.0/24 IPv6: 2001:df4:fb40::/48 Signature Algorithm: sha256WithRSAEncryption 47:c7:6b:9d:60:df:c3:86:c9:90:b0:d3:d0:d6:70:79:76:b3: 71:e2:96:00:8b:35:d0:b0:39:4c:d9:90:e5:7b:3c:9d:54:3c: 57:99:14:dc:a0:7f:f2:49:83:46:1e:a7:24:cd:0b:6a:74:49: 4b:ba:fb:67:85:27:2f:94:aa:bd:1b:ef:bd:ea:a2:5a:0b:eb: 59:5d:37:b9:de:2f:a2:e5:5d:0c:e7:0d:b7:4d:f8:3d:52:73: 45:7c:b6:7a:e6:e0:f8:90:17:fe:85:8c:83:f3:59:09:d1:32: 49:fd:9a:33:06:16:9d:24:f6:78:f8:9c:24:61:24:94:8e:b7: aa:67:cf:09:08:4c:5f:cc:d2:83:e8:bf:c0:03:96:f4:48:bd: f6:55:53:e4:5c:fb:de:0a:d9:66:be:ff:16:0a:13:14:9a:c1: dd:32:3d:5b:8d:6d:2c:4d:88:d7:37:96:26:33:39:13:df:e3: 0e:cd:22:f5:6f:43:75:e4:ea:aa:75:e3:4d:fc:1a:85:f7:ea: fe:49:77:c4:3f:87:88:e6:05:29:4f:85:da:be:32:aa:e2:bb: ca:d2:2f:8e:d9:9f:6a:cb:82:09:97:08:2a:a2:7e:f9:24:88: 68:1f:f9:65:d1:c9:1d:4d:51:0d:ef:8e:1d:67:29:35:31:33: 74:3d:f2:83 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGPdGRv1nltMNSKw4GnOqG3Gv9rIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEzNFoX DTI3MDUwMTA5MjYzNFowMzExMC8GA1UEAxMoRjY3RkJDNzE3NTU5MUU0ODFFOTUw QzJENzE5OTQwNUVERTYzODQ4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALr8koZVfvxq21TJsfJIRSH/NRSW3KTc/9kCKwMDP2c0kPG9CKXuh2T3fTn4 oTd6VbYzo56K5JRAi24aHZoOlUR3xr1Q4zsEcwxjivSLiWBfNEbSOTS/cOxE/wUO nJz7rbD9+ZwxaPcZlFKjGAFCcYMaBBJcS8VKrbpXW2eBBswm4QULCLMxovNsK2nK fC/VJmiL+rCYL2K9BPJOesLm0tZectMKCcOt01+sYvKklt8vQd+74AdRVqrHEc9A RTIaCz8F6I2F56YQ9aBknYcWCGqKgNdo+RSd2IpTvwQC2eL5fAXK4WJm0S8k5zdm GK8A9/Kjo8+mVKwbYWlYiHUtYFUCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBT2f7xx dVkeSB6VDC1xmUBe3mOEgTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNTU1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAoy8ZMA8EAgACMAkDBwAgAQ30+0AwDQYJKoZIhvcNAQELBQADggEBAEfH a51g38OGyZCw09DWcHl2s3HilgCLNdCwOUzZkOV7PJ1UPFeZFNygf/JJg0YepyTN C2p0SUu6+2eFJy+Uqr0b773qoloL61ldN7neL6LlXQznDbdN+D1Sc0V8tnrm4PiQ F/6FjIPzWQnRMkn9mjMGFp0k9nj4nCRhJJSOt6pnzwkITF/M0oPov8ADlvRIvfZV U+Rc+94K2Wa+/xYKExSawd0yPVuNbSxNiNc3liYzORPf4w7NIvVvQ3Xk6qp14038 GoX36v5Jd8Q/h4jmBSlPhdq+Mqriu8rSL47Zn2rLggmXCCqifvkkiGgf+WXRyR1N UQ3vjh1nKTUxM3Q98oM= -----END CERTIFICATE-----Generated at Sun May 3 00:39:32 2026 by rpki-client