$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153636.roa File: AS153636.roa (raw, json) Hash identifier: y4aa0low7HVOSj4bgbgZPNUAdLVpLHlwp9FPiRhZfqU= Subject key identifier: BA:4C:AC:D4:C3:61:66:9D:40:07:21:BA:6A:F1:93:64:ED:66:33:2F Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1E66D68901E83220E83FB214A35BF69FA2E84836 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153636.roa Signing time: Sat 02 May 2026 09:26:19 +0000 ROA not before: Sat 02 May 2026 09:21:19 +0000 ROA not after: Sat 01 May 2027 09:26:19 +0000 asID: 153636 IP address blocks: 163.61.50.0/23 maxlen: 24 2001:df5:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:66:d6:89:01:e8:32:20:e8:3f:b2:14:a3:5b:f6:9f:a2:e8:48:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:19 2026 GMT Not After : May 1 09:26:19 2027 GMT Subject: CN=BA4CACD4C361669D400721BA6AF19364ED66332F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:63:c0:9b:5b:10:33:a5:27:c2:21:c8:d2:47: 8a:c9:4c:d6:3f:fb:67:d9:92:a9:7f:ad:cd:3b:ff: 19:1c:6d:4b:f0:c2:cd:6d:62:ed:96:81:16:a7:d0: 25:d1:de:61:37:e8:f0:7a:27:ba:80:72:3e:ac:57: 06:b3:03:04:5a:d9:a8:4c:d5:44:cd:ce:96:76:46: c4:3b:a6:f7:55:43:f5:fc:3b:6b:35:48:c0:f9:53: db:8e:50:51:06:91:e3:0d:10:79:98:fb:a4:86:7b: 3f:e3:08:2c:41:a0:64:f6:bd:43:9e:0b:59:ac:b0: 68:9f:6a:88:1a:db:cb:4e:87:38:56:39:4c:4a:03: 12:96:b8:d1:d9:c1:1d:78:b7:40:ef:22:66:5f:84: 7a:f7:ab:9b:ae:0f:7d:bc:b8:55:71:f0:c1:6b:41: fe:74:22:eb:32:1d:24:8a:1e:bd:10:da:cf:78:cd: 60:20:44:36:98:54:53:79:16:fa:b7:06:72:b1:de: 42:62:80:ef:93:bb:e6:a8:11:b0:2d:80:fb:0a:4c: b7:75:06:8b:8e:51:39:28:93:d8:91:26:80:72:59: 6b:56:56:ab:85:34:56:eb:f2:84:d0:36:b9:a1:34: 07:0f:27:9a:d3:1b:2b:b1:d3:c3:c7:6c:82:6a:b7: 4a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4C:AC:D4:C3:61:66:9D:40:07:21:BA:6A:F1:93:64:ED:66:33:2F X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.50.0/23 IPv6: 2001:df5:940::/48 Signature Algorithm: sha256WithRSAEncryption 63:f0:12:03:cd:60:14:93:fe:d3:68:bb:1e:47:17:61:0f:ff: 92:85:d9:64:ef:20:59:26:5c:6a:96:61:04:71:4c:72:76:27: d3:d0:ff:14:0b:fd:0c:3f:9b:be:06:fb:e6:dc:fa:b2:7d:9f: 69:4a:c2:3e:b1:3f:81:5f:74:42:bd:91:ca:61:8b:ab:6f:55: e3:ac:0c:ae:b0:91:61:c9:09:64:95:97:d8:7c:ba:e8:be:52: d8:08:85:94:7f:af:0e:5c:69:4c:4a:9f:6a:10:4e:50:42:45: b0:da:74:c0:89:8c:a3:ce:72:10:bc:ff:f0:d6:d2:79:5f:72: 05:24:87:32:54:8e:19:f0:66:e3:f4:36:31:1b:1a:2a:a0:a2: 6c:8a:6b:3e:34:59:82:41:87:84:67:69:3b:58:fc:00:dd:1c: 5a:f7:50:96:cb:54:2b:85:2d:94:fd:87:ca:22:39:e2:33:3d: cd:77:bd:e9:91:a4:f9:aa:e2:26:f1:d8:7c:73:9a:f0:ca:73: 23:e0:48:fd:2f:10:b2:97:97:3e:29:37:04:be:f6:1c:48:e2: 84:d8:e4:30:5b:ab:71:94:ca:af:b7:e0:9c:a2:2d:95:8d:e9: f4:ab:30:cd:2f:f6:2b:de:cf:ce:d1:bd:4a:36:09:05:a2:36: d1:70:35:c4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHmbWiQHoMiDoP7IUo1v2n6LoSDYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjExOVoX DTI3MDUwMTA5MjYxOVowMzExMC8GA1UEAxMoQkE0Q0FDRDRDMzYxNjY5RDQwMDcy MUJBNkFGMTkzNjRFRDY2MzMyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZjwJtbEDOlJ8IhyNJHislM1j/7Z9mSqX+tzTv/GRxtS/DCzW1i7ZaBFqfQ JdHeYTfo8HonuoByPqxXBrMDBFrZqEzVRM3OlnZGxDum91VD9fw7azVIwPlT245Q UQaR4w0QeZj7pIZ7P+MILEGgZPa9Q54LWaywaJ9qiBrby06HOFY5TEoDEpa40dnB HXi3QO8iZl+Eeverm64Pfby4VXHwwWtB/nQi6zIdJIoevRDaz3jNYCBENphUU3kW +rcGcrHeQmKA75O75qgRsC2A+wpMt3UGi45ROSiT2JEmgHJZa1ZWq4U0VuvyhNA2 uaE0Bw8nmtMbK7HTw8dsgmq3SoMCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBS6TKzU w2FmnUAHIbpq8ZNk7WYzLzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNjM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBoz0yMA8EAgACMAkDBwAgAQ31CUAwDQYJKoZIhvcNAQELBQADggEBAGPw EgPNYBST/tNoux5HF2EP/5KF2WTvIFkmXGqWYQRxTHJ2J9PQ/xQL/Qw/m74G++bc +rJ9n2lKwj6xP4FfdEK9kcphi6tvVeOsDK6wkWHJCWSVl9h8uui+UtgIhZR/rw5c aUxKn2oQTlBCRbDadMCJjKPOchC8//DW0nlfcgUkhzJUjhnwZuP0NjEbGiqgomyK az40WYJBh4RnaTtY/ADdHFr3UJbLVCuFLZT9h8oiOeIzPc13vemRpPmq4ibx2Hxz mvDKcyPgSP0vELKXlz4pNwS+9hxI4oTY5DBbq3GUyq+34JyiLZWN6fSrMM0v9ive z87RvUo2CQWiNtFwNcQ= -----END CERTIFICATE-----Generated at Sun May 3 01:40:55 2026 by rpki-client