$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153682.roa File: AS153682.roa (raw, json) Hash identifier: EmzDk9FMa8iqNY/WCLAH6UXbe5+c6OuCrU+nSKjypP4= Subject key identifier: 68:4D:D5:09:99:AA:80:2E:E3:A2:E8:CB:CC:DD:10:D7:07:72:56:CE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1E097F87EE7FDDE36DB270580D02B791E5C96491 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153682.roa Signing time: Sat 02 May 2026 08:35:41 +0000 ROA not before: Sat 02 May 2026 08:30:41 +0000 ROA not after: Sat 01 May 2027 08:35:41 +0000 asID: 153682 IP address blocks: 163.223.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:09:7f:87:ee:7f:dd:e3:6d:b2:70:58:0d:02:b7:91:e5:c9:64:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:41 2026 GMT Not After : May 1 08:35:41 2027 GMT Subject: CN=684DD50999AA802EE3A2E8CBCCDD10D7077256CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:99:33:53:9d:bd:0a:35:83:c1:17:2f:ea:9e: c4:cf:30:6d:9c:65:62:f0:c5:95:59:dc:98:8a:c6: 6b:de:f9:eb:c8:1e:83:e0:25:4f:9f:5f:8d:e2:5f: f7:fb:9e:0d:6e:b3:1d:dc:ae:2c:99:69:b8:74:ec: dd:fa:aa:99:ba:f1:81:40:cf:a7:82:d9:b0:b9:b7: e3:fb:16:70:b1:41:cc:1c:6a:13:3d:cc:ce:76:58: 87:59:5f:01:97:8c:8b:55:3a:af:fe:b1:14:b8:bc: eb:4c:23:13:f0:05:f4:0d:11:95:53:bc:d3:48:cc: 2b:d1:4e:46:a5:90:78:b6:73:53:1d:49:72:a3:30: 2b:bd:d3:0e:87:bd:cb:ca:41:fa:bc:1b:1a:1d:9e: b8:de:a4:cd:cd:d4:23:52:c8:09:37:bc:40:e7:64: a1:54:ff:f2:19:08:d4:d6:92:2c:be:36:82:6b:45: 75:55:a1:ce:e4:dc:79:49:84:4b:53:c3:23:c7:92: aa:dd:6b:13:6e:63:b8:5c:95:d3:4c:01:de:37:d0: 59:45:0f:56:95:d9:08:b6:ee:b7:35:77:da:51:36: 5c:74:e5:24:c4:e1:e0:20:87:09:53:3a:94:c2:ea: b2:93:21:bc:39:09:0e:fa:09:0f:b7:e3:e6:17:b3: 35:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4D:D5:09:99:AA:80:2E:E3:A2:E8:CB:CC:DD:10:D7:07:72:56:CE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153682.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.24.0/24 Signature Algorithm: sha256WithRSAEncryption 23:bf:a6:49:25:4b:0f:6e:35:3f:e2:27:c7:e8:41:f3:2c:dc: 4f:1f:3e:b7:fd:08:49:d1:46:83:54:6e:5b:21:0a:bb:1b:8e: 93:e3:3e:43:c0:8c:bf:57:4e:e6:5f:b7:49:61:00:00:89:2b: c4:b5:d0:49:0f:70:c1:72:5a:99:ed:d1:71:80:8e:b1:b8:bd: 9d:e9:3c:b0:17:08:6a:67:af:f5:74:b1:eb:4b:09:e2:21:ed: 16:3f:dd:d2:d8:11:33:18:69:9f:9d:4b:54:17:cc:09:1e:76: 03:15:d1:1d:29:9d:ae:79:c4:0a:38:0c:d4:68:23:ae:78:65: 2d:77:a8:eb:d4:61:cf:22:0b:25:81:c0:4e:ca:ee:3c:65:6e: 43:a3:ba:5d:35:77:23:4f:ea:1b:f9:4f:8d:3d:de:94:b4:13: 64:ff:01:59:35:60:1c:a8:cb:fd:ce:45:3e:98:db:5a:bc:58: 27:83:be:9d:4f:c7:98:61:f3:a6:c3:5e:cc:da:6f:40:43:fa: 0b:6c:62:91:8b:ff:57:bd:1e:c6:96:68:6f:9b:44:8f:84:58: d9:05:05:b2:f3:bc:42:09:7c:e2:f8:5e:63:4f:0a:6d:26:f3: 81:e5:fd:4f:07:d9:e8:69:4a:d3:e3:bf:68:a3:28:9e:dd:81: 48:21:26:8b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUHgl/h+5/3eNtsnBYDQK3keXJZJEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA0MVoX DTI3MDUwMTA4MzU0MVowMzExMC8GA1UEAxMoNjg0REQ1MDk5OUFBODAyRUUzQTJF OENCQ0NERDEwRDcwNzcyNTZDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKuZM1OdvQo1g8EXL+qexM8wbZxlYvDFlVncmIrGa97568geg+AlT59fjeJf 9/ueDW6zHdyuLJlpuHTs3fqqmbrxgUDPp4LZsLm34/sWcLFBzBxqEz3MznZYh1lf AZeMi1U6r/6xFLi860wjE/AF9A0RlVO800jMK9FORqWQeLZzUx1JcqMwK73TDoe9 y8pB+rwbGh2euN6kzc3UI1LICTe8QOdkoVT/8hkI1NaSLL42gmtFdVWhzuTceUmE S1PDI8eSqt1rE25juFyV00wB3jfQWUUPVpXZCLbutzV32lE2XHTlJMTh4CCHCVM6 lMLqspMhvDkJDvoJD7fj5hezNQkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRoTdUJ maqALuOi6MvM3RDXB3JWzjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNjgyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAo98YMA0GCSqGSIb3DQEBCwUAA4IBAQAjv6ZJJUsPbjU/4ifH6EHzLNxP Hz63/QhJ0UaDVG5bIQq7G46T4z5DwIy/V07mX7dJYQAAiSvEtdBJD3DBclqZ7dFx gI6xuL2d6TywFwhqZ6/1dLHrSwniIe0WP93S2BEzGGmfnUtUF8wJHnYDFdEdKZ2u ecQKOAzUaCOueGUtd6jr1GHPIgslgcBOyu48ZW5Do7pdNXcjT+ob+U+NPd6UtBNk /wFZNWAcqMv9zkU+mNtavFgng76dT8eYYfOmw17M2m9AQ/oLbGKRi/9XvR7Glmhv m0SPhFjZBQWy87xCCXzi+F5jTwptJvOB5f1PB9noaUrT479ooyie3YFIISaL -----END CERTIFICATE-----Generated at Sun May 3 01:40:37 2026 by rpki-client