$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153664.roa File: AS153664.roa (raw, json) Hash identifier: haZxnwCuWy8uzikSD8EFFMPyIhKFMzAcJBFNnmX684Q= Subject key identifier: 70:55:13:4C:0C:74:72:EB:0D:10:19:F2:F3:5A:82:9A:73:70:6F:3B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3602F280EF92CCED3F9C7257F48ACAFF90F9DC23 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153664.roa Signing time: Sat 02 May 2026 09:26:30 +0000 ROA not before: Sat 02 May 2026 09:21:30 +0000 ROA not after: Sat 01 May 2027 09:26:30 +0000 asID: 153664 IP address blocks: 163.61.244.0/23 maxlen: 24 2001:df5:24c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:02:f2:80:ef:92:cc:ed:3f:9c:72:57:f4:8a:ca:ff:90:f9:dc:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:30 2026 GMT Not After : May 1 09:26:30 2027 GMT Subject: CN=7055134C0C7472EB0D1019F2F35A829A73706F3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:5c:d8:1c:56:ef:14:23:18:f4:47:29:fd:af: 48:11:16:d7:ae:97:56:df:3d:e5:19:ec:96:72:e2: 7b:51:de:75:05:77:b1:73:82:f1:1f:3b:6c:a9:fa: a8:23:b0:07:59:85:f2:aa:81:4c:ea:e5:ff:78:b4: 33:d4:6b:35:31:17:54:bf:c4:d6:1b:de:c6:05:f8: 3f:07:cd:a3:7d:3d:3b:11:19:e9:78:d9:36:c8:b3: 87:9e:11:77:bd:df:c7:d7:b5:3c:71:cd:84:e6:c7: 2b:d3:71:96:4d:ea:96:57:89:58:cc:83:e1:33:7a: 07:dc:6a:8d:62:9e:56:86:22:48:38:89:86:73:54: ab:01:7a:c7:67:1c:a3:03:d4:76:36:6e:db:ac:3e: 04:7a:e6:0a:2f:71:02:46:30:50:d6:ae:9f:94:ef: 43:c6:9b:22:38:2f:10:82:8c:70:28:69:55:1d:8b: 9f:ba:b2:98:6a:25:7b:de:9d:7f:5a:34:53:e4:b7: 2d:73:5a:37:04:8f:ee:cd:f1:a8:db:d5:04:af:d0: 1b:ea:07:ac:4b:c2:3d:87:6b:2a:2c:07:bc:ef:47: 90:c6:0a:b3:e4:6c:79:20:d3:2f:c2:00:fe:3c:15: 7d:2f:27:ff:2d:4a:17:cd:fd:7f:ef:85:a7:b5:d4: a5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:55:13:4C:0C:74:72:EB:0D:10:19:F2:F3:5A:82:9A:73:70:6F:3B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153664.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.244.0/23 IPv6: 2001:df5:24c0::/48 Signature Algorithm: sha256WithRSAEncryption 4b:83:3e:a9:77:7b:4d:11:03:9f:17:cb:54:dd:af:59:05:49: b9:80:f6:b0:d9:e4:e4:01:bb:c9:e6:ef:b0:8c:9d:46:a9:ef: 43:ea:e2:58:d2:3e:b5:f6:de:01:1c:71:45:7b:50:22:6e:dc: fc:32:7c:bc:99:3a:bf:42:7b:bd:c7:4a:d0:1d:e3:30:ae:e5: 4a:b0:4c:18:68:c9:1d:ec:87:cc:ed:d3:2a:4b:06:dc:68:24: 01:9a:d4:ca:7b:f0:fc:d6:23:01:25:3f:c4:f5:ce:91:eb:5f: df:61:a7:70:8b:dd:80:2c:5a:68:74:ec:87:14:26:52:29:fc: ae:00:1b:eb:a1:e5:28:71:fd:0e:aa:4f:7e:50:ab:44:8b:9f: da:5b:6c:5c:cc:1a:8e:10:ec:3e:c9:48:5d:4b:a2:f2:bd:a5: 95:18:90:48:66:8b:40:52:c8:c3:17:35:37:c3:2c:1d:13:2a: 09:db:29:f5:86:bb:1d:09:1e:ec:b1:73:3b:2b:79:43:5c:a2: 6f:39:28:c2:89:13:c9:55:e1:61:7a:b3:86:33:a0:8f:0c:ba: 6e:09:91:df:df:df:4a:0d:2d:38:f3:8c:24:a2:eb:90:17:06: 8b:0a:8f:4e:08:de:bd:65:a3:ee:dd:37:63:a3:f9:23:ef:42: 92:eb:fd:0d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNgLygO+SzO0/nHJX9IrK/5D53CMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEzMFoX DTI3MDUwMTA5MjYzMFowMzExMC8GA1UEAxMoNzA1NTEzNEMwQzc0NzJFQjBEMTAx OUYyRjM1QTgyOUE3MzcwNkYzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJJc2BxW7xQjGPRHKf2vSBEW166XVt895RnslnLie1HedQV3sXOC8R87bKn6 qCOwB1mF8qqBTOrl/3i0M9RrNTEXVL/E1hvexgX4PwfNo309OxEZ6XjZNsizh54R d73fx9e1PHHNhObHK9Nxlk3qlleJWMyD4TN6B9xqjWKeVoYiSDiJhnNUqwF6x2cc owPUdjZu26w+BHrmCi9xAkYwUNaun5TvQ8abIjgvEIKMcChpVR2Ln7qymGole96d f1o0U+S3LXNaNwSP7s3xqNvVBK/QG+oHrEvCPYdrKiwHvO9HkMYKs+RseSDTL8IA /jwVfS8n/y1KF839f++Fp7XUpfMCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRwVRNM DHRy6w0QGfLzWoKac3BvOzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNjY0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBoz30MA8EAgACMAkDBwAgAQ31JMAwDQYJKoZIhvcNAQELBQADggEBAEuD Pql3e00RA58Xy1Tdr1kFSbmA9rDZ5OQBu8nm77CMnUap70Pq4ljSPrX23gEccUV7 UCJu3PwyfLyZOr9Ce73HStAd4zCu5UqwTBhoyR3sh8zt0ypLBtxoJAGa1Mp78PzW IwElP8T1zpHrX99hp3CL3YAsWmh07IcUJlIp/K4AG+uh5Shx/Q6qT35Qq0SLn9pb bFzMGo4Q7D7JSF1LovK9pZUYkEhmi0BSyMMXNTfDLB0TKgnbKfWGux0JHuyxczsr eUNcom85KMKJE8lV4WF6s4YzoI8Mum4Jkd/f30oNLTjzjCSi65AXBosKj04I3r1l o+7dN2Oj+SPvQpLr/Q0= -----END CERTIFICATE-----Generated at Sun May 3 00:40:26 2026 by rpki-client