$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153666.roa File: AS153666.roa (raw, json) Hash identifier: V7VmfiFLPJIi/jgu6zoEZ0CMFu40JM/pmGX9nD1QSPk= Subject key identifier: 26:9F:4D:66:E3:F3:85:31:F2:91:63:17:50:6D:3B:05:A9:BC:5F:DA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 721E66FFF66F6BB70C1DA1AFD94BEFBC5FF4CCA7 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153666.roa Signing time: Sat 02 May 2026 09:26:34 +0000 ROA not before: Sat 02 May 2026 09:21:34 +0000 ROA not after: Sat 01 May 2027 09:26:34 +0000 asID: 153666 IP address blocks: 163.61.224.0/24 maxlen: 24 2001:df5:23c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:1e:66:ff:f6:6f:6b:b7:0c:1d:a1:af:d9:4b:ef:bc:5f:f4:cc:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:34 2026 GMT Not After : May 1 09:26:34 2027 GMT Subject: CN=269F4D66E3F38531F2916317506D3B05A9BC5FDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:b5:97:77:12:c7:f5:9f:8d:68:a9:94:97: 9d:d2:ae:21:5b:0b:ec:bb:18:08:58:68:02:59:da: ae:42:33:27:eb:ce:00:69:7a:2a:32:d8:a2:43:64: a1:a7:81:94:77:b6:97:47:72:d4:a4:f2:a5:44:a2: 4d:6a:ed:e5:67:d6:ed:e4:6d:3c:62:36:0c:99:eb: 6f:eb:75:67:a2:4f:b4:28:fe:35:e0:17:a9:0f:45: 16:ab:47:5e:66:38:14:af:36:6a:6e:2f:5c:56:85: 82:d1:a7:43:4a:05:93:ea:91:83:80:3f:30:0d:fc: c2:69:6b:e6:af:38:b5:1c:cd:2e:72:a6:dc:06:f7: 74:47:5e:8c:d8:a0:74:dc:4d:01:06:f4:09:13:49: 14:80:90:69:15:9f:d3:8e:d6:08:cd:45:8a:ea:81: d1:cf:40:55:1a:04:e6:06:08:ec:25:63:d0:ca:cf: 2c:d9:f6:28:3e:1e:1d:ba:04:af:22:a2:84:4f:f7: 52:42:01:21:0a:3a:12:3c:4b:ca:d7:cd:a3:53:a7: 3f:1b:b9:22:5f:2f:7e:11:1f:9e:ce:cc:1b:0b:64: db:05:5f:64:07:16:32:03:01:a2:1c:77:81:1d:d1: be:36:18:20:e6:98:03:8c:0a:d8:72:2a:38:bd:a6: 00:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:9F:4D:66:E3:F3:85:31:F2:91:63:17:50:6D:3B:05:A9:BC:5F:DA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.224.0/24 IPv6: 2001:df5:23c0::/48 Signature Algorithm: sha256WithRSAEncryption 40:ba:06:5e:10:f4:0f:83:04:d7:56:12:26:e6:94:44:fe:84: 26:db:12:a3:69:a5:f2:88:f0:41:79:da:05:4c:9d:75:bd:b9: c9:d1:d9:27:e7:18:70:e5:85:cc:7c:00:ac:60:cc:b0:5e:24: 64:2d:cc:5e:52:b4:26:1d:c9:6a:2c:b9:67:08:3f:c2:a0:96: 9f:b5:c6:2c:50:6b:f3:a2:31:b6:75:ee:f4:b6:e8:54:91:4c: 2f:76:05:da:d4:d4:17:47:26:32:77:ac:06:b2:d1:73:68:d8: 0e:c4:ec:90:b1:8e:e2:1e:48:44:93:0d:22:6b:08:9a:6c:20: 98:82:f1:7b:3c:c3:40:ab:b7:bc:15:d2:de:ba:17:3d:f8:70: 2d:28:2e:65:42:ab:07:6a:36:8c:b4:2c:84:6c:21:10:86:7c: d8:af:9a:08:01:68:ad:5b:42:59:3a:1d:99:d7:8c:e5:a3:2e: 02:99:d2:96:12:0f:dc:47:8b:7b:58:42:06:c1:8b:df:24:92: 3a:98:d0:ed:3c:08:86:ff:48:cc:ce:62:39:bb:b3:db:c6:10: 3d:ca:72:b7:2c:75:5f:2e:19:bb:99:99:98:d5:71:55:18:c6: 56:be:55:3c:30:60:54:42:2f:7f:66:0c:51:c9:4a:6e:8f:9f: b4:d7:69:9d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUch5m//Zva7cMHaGv2UvvvF/0zKcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEzNFoX DTI3MDUwMTA5MjYzNFowMzExMC8GA1UEAxMoMjY5RjRENjZFM0YzODUzMUYyOTE2 MzE3NTA2RDNCMDVBOUJDNUZEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtftZd3Esf1n41oqZSXndKuIVsL7LsYCFhoAlnarkIzJ+vOAGl6KjLYokNk oaeBlHe2l0dy1KTypUSiTWrt5WfW7eRtPGI2DJnrb+t1Z6JPtCj+NeAXqQ9FFqtH XmY4FK82am4vXFaFgtGnQ0oFk+qRg4A/MA38wmlr5q84tRzNLnKm3Ab3dEdejNig dNxNAQb0CRNJFICQaRWf047WCM1FiuqB0c9AVRoE5gYI7CVj0MrPLNn2KD4eHboE ryKihE/3UkIBIQo6EjxLytfNo1OnPxu5Il8vfhEfns7MGwtk2wVfZAcWMgMBohx3 gR3RvjYYIOaYA4wK2HIqOL2mAIkCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQmn01m 4/OFMfKRYxdQbTsFqbxf2jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNjY2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAoz3gMA8EAgACMAkDBwAgAQ31I8AwDQYJKoZIhvcNAQELBQADggEBAEC6 Bl4Q9A+DBNdWEibmlET+hCbbEqNppfKI8EF52gVMnXW9ucnR2SfnGHDlhcx8AKxg zLBeJGQtzF5StCYdyWosuWcIP8Kglp+1xixQa/OiMbZ17vS26FSRTC92BdrU1BdH JjJ3rAay0XNo2A7E7JCxjuIeSESTDSJrCJpsIJiC8Xs8w0Crt7wV0t66Fz34cC0o LmVCqwdqNoy0LIRsIRCGfNivmggBaK1bQlk6HZnXjOWjLgKZ0pYSD9xHi3tYQgbB i98kkjqY0O08CIb/SMzOYjm7s9vGED3KcrcsdV8uGbuZmZjVcVUYxla+VTwwYFRC L39mDFHJSm6Pn7TXaZ0= -----END CERTIFICATE-----Generated at Sun May 3 00:39:47 2026 by rpki-client