$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153600.roa File: AS153600.roa (raw, json) Hash identifier: YLhRb7Sc/CkwPV4kQAajaenEIXoL+lPLy7U1ZwaczqE= Subject key identifier: E8:EE:71:F9:5B:42:3A:8F:BB:1C:E7:FB:78:B9:F7:64:8A:F2:EF:06 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 2C66076C829425A453AB7341B217B8EAA4A2FE23 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153600.roa Signing time: Sat 02 May 2026 09:25:31 +0000 ROA not before: Sat 02 May 2026 09:20:31 +0000 ROA not after: Sat 01 May 2027 09:25:31 +0000 asID: 153600 IP address blocks: 163.61.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:66:07:6c:82:94:25:a4:53:ab:73:41:b2:17:b8:ea:a4:a2:fe:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:31 2026 GMT Not After : May 1 09:25:31 2027 GMT Subject: CN=E8EE71F95B423A8FBB1CE7FB78B9F7648AF2EF06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ce:39:2e:2b:fd:7d:08:55:4f:e4:4b:ae:af: bf:05:00:94:70:d4:05:05:6c:91:66:f9:df:0f:57: 47:64:12:ee:a3:6c:01:fe:b4:6e:98:25:6c:99:d7: d1:e8:97:d1:b2:aa:f8:85:0d:d2:f8:63:bc:1f:91: 7e:83:8e:85:25:ec:85:f3:2b:13:40:61:18:fd:34: 0e:79:38:27:60:1f:33:7e:f0:7c:fc:3c:0b:a0:09: 74:3a:78:89:7d:55:2d:af:32:ef:e8:f3:26:eb:02: b5:ac:16:83:da:ef:92:e9:81:e0:a7:33:8e:c6:af: ac:5b:e5:3c:62:30:c5:9c:a5:f0:02:3a:65:39:9f: 04:44:17:7a:98:11:a9:5b:64:e3:19:85:cc:67:20: 46:9a:23:7b:97:b9:dd:03:85:4f:c7:79:8d:73:64: 7a:24:5f:08:10:36:2f:57:28:31:ef:74:40:7b:48: ba:0a:bc:cd:f3:22:7c:e3:7f:ce:29:4d:18:ac:de: fa:de:5a:76:4d:f0:bc:e3:d7:c7:91:36:c2:8e:7a: 5e:12:a6:ce:48:71:22:fa:cf:f0:4a:81:37:35:83: b7:8c:a0:b4:a1:f8:88:c2:ea:32:21:98:0b:66:3b: 0c:e2:54:ee:d3:8f:e2:e3:0a:70:cf:3f:da:d2:b4: 4a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:EE:71:F9:5B:42:3A:8F:BB:1C:E7:FB:78:B9:F7:64:8A:F2:EF:06 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153600.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.112.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:6b:74:3d:c2:69:56:c3:87:e7:32:53:84:d8:4b:d8:f2:b2: 2d:b2:63:34:60:a7:5d:48:d2:5f:40:51:f5:75:73:e3:ef:6c: 3f:b5:73:66:0e:16:1a:7a:96:50:da:2c:72:30:6a:1f:bb:0b: b3:ef:40:2e:79:d7:3f:c4:df:7e:e1:1d:16:02:c0:89:2a:e9: a9:91:76:ee:7f:ef:b0:80:b2:14:13:57:ad:05:5f:d0:b6:2e: 1f:d5:ce:7d:02:e9:12:49:6b:3b:79:06:e2:45:12:42:22:b6: 73:5a:b4:e4:bd:fc:ad:28:80:ef:f6:09:4c:e9:88:58:cc:02: b0:23:6a:2d:df:1b:21:2b:b7:11:ae:d1:9e:ed:e7:d3:ec:94: cc:f4:9d:5e:16:13:68:9f:60:d0:fd:d1:3d:1f:ab:7f:de:98: 2e:72:fa:1e:05:e6:59:5a:ef:2a:11:4d:2f:a7:9b:81:b3:f6: f9:3e:36:bf:62:d4:35:bc:13:87:48:c7:da:aa:62:45:46:93: 46:28:95:ea:13:4c:b6:29:21:8c:5b:fa:ae:2a:f6:09:56:04: 02:35:90:5e:52:60:96:70:32:85:58:3a:09:ce:94:10:ad:9d: 31:ca:30:3a:7a:8a:5f:6c:f0:9c:e5:e7:22:42:1b:dc:74:44: 8b:07:2e:a9 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIULGYHbIKUJaRTq3NBshe46qSi/iMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjAzMVoX DTI3MDUwMTA5MjUzMVowMzExMC8GA1UEAxMoRThFRTcxRjk1QjQyM0E4RkJCMUNF N0ZCNzhCOUY3NjQ4QUYyRUYwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbOOS4r/X0IVU/kS66vvwUAlHDUBQVskWb53w9XR2QS7qNsAf60bpglbJnX 0eiX0bKq+IUN0vhjvB+RfoOOhSXshfMrE0BhGP00Dnk4J2AfM37wfPw8C6AJdDp4 iX1VLa8y7+jzJusCtawWg9rvkumB4KczjsavrFvlPGIwxZyl8AI6ZTmfBEQXepgR qVtk4xmFzGcgRpoje5e53QOFT8d5jXNkeiRfCBA2L1coMe90QHtIugq8zfMifON/ zilNGKze+t5adk3wvOPXx5E2wo56XhKmzkhxIvrP8EqBNzWDt4ygtKH4iMLqMiGY C2Y7DOJU7tOP4uMKcM8/2tK0SicCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTo7nH5 W0I6j7sc5/t4ufdkivLvBjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNjAwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAoz1wMA0GCSqGSIb3DQEBCwUAA4IBAQBLa3Q9wmlWw4fnMlOE2EvY8rIt smM0YKddSNJfQFH1dXPj72w/tXNmDhYaepZQ2ixyMGofuwuz70Auedc/xN9+4R0W AsCJKumpkXbuf++wgLIUE1etBV/Qti4f1c59AukSSWs7eQbiRRJCIrZzWrTkvfyt KIDv9glM6YhYzAKwI2ot3xshK7cRrtGe7efT7JTM9J1eFhNon2DQ/dE9H6t/3pgu cvoeBeZZWu8qEU0vp5uBs/b5Pja/YtQ1vBOHSMfaqmJFRpNGKJXqE0y2KSGMW/qu KvYJVgQCNZBeUmCWcDKFWDoJzpQQrZ0xyjA6eopfbPCc5eciQhvcdESLBy6p -----END CERTIFICATE-----Generated at Sun May 3 00:42:15 2026 by rpki-client