$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153729.roa File: AS153729.roa (raw, json) Hash identifier: jJ3TAsQKSK5DLuLfAL5BspnJ5rudciRSNjwMwdEtdjg= Subject key identifier: 9E:CA:A8:0F:7D:83:6D:2F:49:58:8A:D0:32:FF:C9:97:F3:05:DD:B1 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6B0E1BF15AD2750D1AF175809E787E3F1CD1D7F0 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153729.roa Signing time: Sat 02 May 2026 09:24:44 +0000 ROA not before: Sat 02 May 2026 09:19:44 +0000 ROA not after: Sat 01 May 2027 09:24:44 +0000 asID: 153729 IP address blocks: 163.223.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:0e:1b:f1:5a:d2:75:0d:1a:f1:75:80:9e:78:7e:3f:1c:d1:d7:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:44 2026 GMT Not After : May 1 09:24:44 2027 GMT Subject: CN=9ECAA80F7D836D2F49588AD032FFC997F305DDB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6f:41:dc:9b:10:54:e1:01:64:29:d3:8b:92: 59:1c:2a:68:c9:2b:9a:66:09:43:21:82:da:8b:3d: a6:86:e9:7f:9e:a8:b6:f6:a2:41:91:36:dd:19:6c: 6f:d5:1e:90:e8:c9:0d:09:0f:ba:d7:3d:d2:61:70: 59:78:11:1c:7a:ca:b7:e9:88:ab:2d:c8:13:c2:d6: 87:92:04:af:cc:e2:5b:5c:4e:8e:c4:dc:a1:b6:3f: 59:4a:6a:4d:d0:60:4c:a3:43:d3:11:ab:99:b3:29: c4:e6:d8:3f:f0:ed:b7:5d:ba:19:98:bf:80:c4:67: 1b:cf:84:c1:33:6c:69:f5:2b:f2:bc:bd:b6:45:82: 65:91:e2:d7:f4:87:0a:fe:7b:87:49:48:eb:a4:69: be:75:1e:86:c6:9f:8f:ef:1c:4e:4b:68:53:0b:d0: ab:24:59:45:e0:b6:0e:d8:7f:1d:6e:82:3e:2c:7c: a2:52:0a:9c:e1:28:13:ce:f1:bd:40:4f:95:1e:66: ab:51:8f:97:da:fb:3f:34:fd:5b:f2:c9:28:98:17: 7e:e2:17:fc:9f:27:1c:50:30:b1:be:96:65:54:b2: fc:42:d2:74:8e:a7:b4:42:54:92:bb:29:50:ed:c6: e4:2b:97:cc:f2:4e:76:52:c7:71:9f:64:86:c8:bb: 64:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:CA:A8:0F:7D:83:6D:2F:49:58:8A:D0:32:FF:C9:97:F3:05:DD:B1 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153729.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.112.0/24 Signature Algorithm: sha256WithRSAEncryption 19:f5:2d:40:68:fb:b6:3c:68:d8:29:f0:ad:49:3b:75:27:43: 0f:c3:d5:51:b7:a9:48:9c:b5:92:cf:9c:a8:fa:4c:82:7e:74: 7a:08:89:0a:ff:85:62:b1:3e:73:ea:bc:71:ba:a1:12:a1:8b: b1:9d:65:2e:f0:4d:19:15:d3:9b:0d:75:d6:29:3a:09:8f:6a: ea:97:1e:a3:53:2c:71:aa:b6:2d:77:5b:e2:76:5e:a2:ac:3a: 72:d9:5f:5e:64:a8:b5:2a:22:bf:79:a1:99:11:35:a7:ab:00: c8:e4:fa:b0:ae:cb:8a:62:d3:78:ba:4b:c2:63:84:a1:f2:90: 71:14:f2:38:d2:26:ce:00:8d:6a:7e:e0:f9:af:1d:4b:83:c0: a1:c4:7e:f1:79:87:12:1e:fe:e8:f8:24:86:de:8a:2a:71:c3: 49:f1:6c:86:3d:dc:91:7c:d7:e5:bd:67:aa:6a:de:0d:32:40: 82:23:87:a2:62:81:db:1d:47:04:f1:75:27:40:c2:e0:9c:6b: 29:62:62:26:91:0a:be:7a:d2:2c:12:68:04:10:c9:36:00:0e: 28:8a:87:c2:4a:46:2b:40:05:ed:3a:76:90:17:39:53:36:02: 7e:32:5e:d6:2a:13:a2:61:8c:2d:04:db:89:90:98:2e:70:67: ed:1b:59:b5 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUaw4b8VrSdQ0a8XWAnnh+PxzR1/AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTk0NFoX DTI3MDUwMTA5MjQ0NFowMzExMC8GA1UEAxMoOUVDQUE4MEY3RDgzNkQyRjQ5NTg4 QUQwMzJGRkM5OTdGMzA1RERCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKRvQdybEFThAWQp04uSWRwqaMkrmmYJQyGC2os9pobpf56otvaiQZE23Rls b9UekOjJDQkPutc90mFwWXgRHHrKt+mIqy3IE8LWh5IEr8ziW1xOjsTcobY/WUpq TdBgTKND0xGrmbMpxObYP/Dtt126GZi/gMRnG8+EwTNsafUr8ry9tkWCZZHi1/SH Cv57h0lI66RpvnUehsafj+8cTktoUwvQqyRZReC2Dth/HW6CPix8olIKnOEoE87x vUBPlR5mq1GPl9r7PzT9W/LJKJgXfuIX/J8nHFAwsb6WZVSy/ELSdI6ntEJUkrsp UO3G5CuXzPJOdlLHcZ9khsi7ZHUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSeyqgP fYNtL0lYitAy/8mX8wXdsTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzNzI5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAo99wMA0GCSqGSIb3DQEBCwUAA4IBAQAZ9S1AaPu2PGjYKfCtSTt1J0MP w9VRt6lInLWSz5yo+kyCfnR6CIkK/4VisT5z6rxxuqESoYuxnWUu8E0ZFdObDXXW KToJj2rqlx6jUyxxqrYtd1vidl6irDpy2V9eZKi1KiK/eaGZETWnqwDI5PqwrsuK YtN4ukvCY4Sh8pBxFPI40ibOAI1qfuD5rx1Lg8ChxH7xeYcSHv7o+CSG3ooqccNJ 8WyGPdyRfNflvWeqat4NMkCCI4eiYoHbHUcE8XUnQMLgnGspYmImkQq+etIsEmgE EMk2AA4oiofCSkYrQAXtOnaQFzlTNgJ+Ml7WKhOiYYwtBNuJkJgucGftG1m1 -----END CERTIFICATE-----Generated at Sun May 3 01:40:40 2026 by rpki-client