$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153673.roa File: AS153673.roa (raw, json) Hash identifier: c3yIk6JsmmuMkcCLulNvurVGLPBz68juwdL6hCKovNw= Subject key identifier: 79:FB:D4:A4:AD:24:C7:0F:97:09:0F:51:0A:C7:6E:2D:F0:88:02:BF Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 24186E42EAE140CDB9C169E6DBF8AB5C129A462C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153673.roa Signing time: Sat 02 May 2026 09:26:35 +0000 ROA not before: Sat 02 May 2026 09:21:35 +0000 ROA not after: Sat 01 May 2027 09:26:35 +0000 asID: 153673 IP address blocks: 163.223.2.0/23 maxlen: 24 2001:df5:2ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:18:6e:42:ea:e1:40:cd:b9:c1:69:e6:db:f8:ab:5c:12:9a:46:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:35 2026 GMT Not After : May 1 09:26:35 2027 GMT Subject: CN=79FBD4A4AD24C70F97090F510AC76E2DF08802BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:79:cf:13:4c:bf:f9:5d:91:c8:fd:fc:d4:e3: 01:36:7f:d6:78:57:ca:8a:f0:13:58:85:81:63:a5: b1:52:45:82:64:f7:b0:8f:4b:38:c4:1e:65:e8:17: 7b:58:e4:68:86:e0:c9:95:ef:7a:b7:16:b0:95:4c: dd:73:d6:6b:32:41:bd:d6:e1:4d:c8:97:64:81:ec: 68:e8:7a:3e:6f:0e:99:10:9f:fb:a7:7f:ff:51:ec: 44:1c:b4:78:be:ae:03:3e:fe:59:37:f7:e9:02:70: 00:88:49:bb:fd:41:bc:0d:06:3e:be:89:62:0b:86: 5f:f7:e8:ed:50:36:f7:c8:d6:ca:9b:71:2f:7f:54: 07:42:ee:2b:6c:4f:82:88:87:32:27:ef:0d:49:59: 33:8d:b7:15:33:3e:65:45:54:68:ff:c8:80:c2:71: 06:22:e8:eb:9a:f0:e9:5a:e7:ca:db:2d:6f:c5:28: aa:d4:d8:0a:97:cd:9c:a0:1d:24:4d:c5:ee:f2:82: 6b:09:fd:75:4d:8f:66:30:06:ce:67:b8:ad:fa:d4: dc:fd:da:12:69:e2:cd:45:2e:97:cf:be:a4:e7:ce: 1f:09:97:62:e3:11:7f:7d:bc:4f:5f:55:a8:d1:59: 9b:a9:1a:84:b9:bc:ca:ad:2c:23:cf:7f:5a:44:da: ee:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FB:D4:A4:AD:24:C7:0F:97:09:0F:51:0A:C7:6E:2D:F0:88:02:BF X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153673.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.2.0/23 IPv6: 2001:df5:2ac0::/48 Signature Algorithm: sha256WithRSAEncryption 21:12:19:2d:84:dd:db:c2:a9:c6:e9:7f:e9:69:99:1b:f0:5d: 8e:26:93:b3:8a:d2:6e:2d:73:20:5f:ac:94:1e:3c:12:ed:9f: 21:74:45:9b:b4:7b:8c:ef:8d:23:35:18:e1:87:fc:2b:49:2f: 15:f9:75:57:f5:96:76:30:d0:38:1d:1a:0f:7d:ad:e7:1d:78: b3:e9:a0:67:3c:5b:97:81:0f:83:c9:fa:ea:a8:40:32:44:71: 82:23:05:3e:f2:f2:af:69:95:16:30:97:ba:41:aa:de:11:90: 0f:e0:c4:dc:59:f8:ff:12:85:cc:4b:bf:84:63:4a:f9:85:3b: a9:75:e0:c4:67:8b:80:9e:ce:02:06:73:08:2a:25:cf:11:9f: de:f3:a4:7e:8a:aa:47:8a:3a:80:bb:c8:a1:25:bb:a8:d4:af: 5b:42:fa:5f:c0:17:a6:c6:13:53:93:27:5f:7a:75:90:e4:1b: 0c:da:e7:7e:77:ec:60:78:3e:08:08:60:59:23:01:c2:df:5f: 87:0b:52:05:cd:08:e2:08:fc:d7:b7:60:62:96:3a:cd:e6:e0: 00:a6:45:6d:02:df:84:b1:26:76:40:3c:01:61:51:bc:fa:f3: 32:cd:dd:4c:fd:ce:87:96:1f:9d:0d:a0:65:7c:22:f6:7d:9b: 18:47:7c:31 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJBhuQurhQM25wWnm2/irXBKaRiwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEzNVoX DTI3MDUwMTA5MjYzNVowMzExMC8GA1UEAxMoNzlGQkQ0QTRBRDI0QzcwRjk3MDkw RjUxMEFDNzZFMkRGMDg4MDJCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPR5zxNMv/ldkcj9/NTjATZ/1nhXyorwE1iFgWOlsVJFgmT3sI9LOMQeZegX e1jkaIbgyZXvercWsJVM3XPWazJBvdbhTciXZIHsaOh6Pm8OmRCf+6d//1HsRBy0 eL6uAz7+WTf36QJwAIhJu/1BvA0GPr6JYguGX/fo7VA298jWyptxL39UB0LuK2xP goiHMifvDUlZM423FTM+ZUVUaP/IgMJxBiLo65rw6Vrnytstb8UoqtTYCpfNnKAd JE3F7vKCawn9dU2PZjAGzme4rfrU3P3aEmnizUUul8++pOfOHwmXYuMRf328T19V qNFZm6kahLm8yq0sI89/WkTa7skCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBR5+9Sk rSTHD5cJD1EKx24t8IgCvzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNjczLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo98CMA8EAgACMAkDBwAgAQ31KsAwDQYJKoZIhvcNAQELBQADggEBACES GS2E3dvCqcbpf+lpmRvwXY4mk7OK0m4tcyBfrJQePBLtnyF0RZu0e4zvjSM1GOGH /CtJLxX5dVf1lnYw0DgdGg99recdeLPpoGc8W5eBD4PJ+uqoQDJEcYIjBT7y8q9p lRYwl7pBqt4RkA/gxNxZ+P8ShcxLv4RjSvmFO6l14MRni4CezgIGcwgqJc8Rn97z pH6KqkeKOoC7yKElu6jUr1tC+l/AF6bGE1OTJ196dZDkGwza53537GB4PggIYFkj AcLfX4cLUgXNCOII/Ne3YGKWOs3m4ACmRW0C34SxJnZAPAFhUbz68zLN3Uz9zoeW H50NoGV8IvZ9mxhHfDE= -----END CERTIFICATE-----Generated at Sun May 3 01:44:01 2026 by rpki-client