$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153803.roa File: AS153803.roa (raw, json) Hash identifier: xGVCnnkvS428VNuDqqtUzq99aqvjSMIfwMBKCaMpYjo= Subject key identifier: C0:03:F3:74:85:D4:D4:1F:24:20:75:A9:C0:8A:A5:04:58:27:59:9B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4727A00516C98E83EC8A47070F37D1A1FB275D03 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153803.roa Signing time: Sat 02 May 2026 09:25:33 +0000 ROA not before: Sat 02 May 2026 09:20:33 +0000 ROA not after: Sat 01 May 2027 09:25:33 +0000 asID: 153803 IP address blocks: 163.227.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:27:a0:05:16:c9:8e:83:ec:8a:47:07:0f:37:d1:a1:fb:27:5d:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:33 2026 GMT Not After : May 1 09:25:33 2027 GMT Subject: CN=C003F37485D4D41F242075A9C08AA5045827599B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:02:24:04:f0:f8:a7:40:4b:bc:a7:ce:ee:a5: c4:cd:b5:f8:84:3d:c9:07:9f:27:d7:3c:23:df:62: 6e:95:d3:ce:fc:a0:78:0d:90:07:59:60:43:71:31: 53:2d:0b:95:06:53:7c:df:98:54:87:45:10:38:1d: ff:8e:0b:ed:20:09:98:d1:dc:e2:41:37:39:9b:17: aa:fd:ef:5f:94:31:3f:ed:f1:00:f0:33:f2:00:37: d9:15:1b:7e:47:67:dd:ad:48:76:a7:35:f0:51:0a: fd:2d:d1:15:cb:1a:1c:f4:ef:e0:ab:61:fe:f9:9a: 32:33:64:15:bb:b1:3f:c5:b9:e9:f6:50:c2:75:78: 24:34:ab:37:0e:fd:1c:a7:a4:61:a2:92:87:79:8c: 9e:48:71:bb:b9:a7:37:28:36:68:82:1f:75:8f:99: 93:3f:6a:f8:a0:fe:f7:c1:b4:43:1e:21:ba:7d:a5: 16:52:a6:4c:8e:bb:91:68:f7:ac:fd:78:13:64:4b: 5b:9d:07:24:95:75:03:46:62:90:ac:9e:c0:29:c8: 3f:be:ab:c9:1e:65:47:0b:96:e1:c5:70:07:25:42: 4c:38:3a:4c:5d:a7:1c:07:6e:e4:a8:05:b3:2e:16: a3:44:76:8a:e2:8f:8b:cd:fd:c0:b3:56:ec:92:d1: 78:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:03:F3:74:85:D4:D4:1F:24:20:75:A9:C0:8A:A5:04:58:27:59:9B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153803.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.67.0/24 Signature Algorithm: sha256WithRSAEncryption 81:3d:77:d5:a0:b8:4a:d1:fb:a0:25:ef:c0:33:84:57:5b:8d: b2:95:ff:92:7e:0c:c9:a8:34:00:0f:61:00:c8:e6:32:d1:44: 99:fb:3b:a9:92:32:3c:cb:10:3c:a3:39:91:98:94:87:3f:d0: ef:12:34:38:2b:38:50:5f:a6:f7:b4:a0:90:3f:b5:ae:a2:7a: 08:99:b6:d7:4d:c1:da:fe:0e:4e:35:2c:17:63:ce:38:ed:52: ee:48:1c:6c:a7:19:86:80:3b:39:df:49:3b:f5:d9:a1:e4:04: ff:32:ab:22:57:be:94:5b:ea:f9:ec:ad:07:d6:39:0e:5b:86: d0:b3:be:a2:35:3d:aa:fe:72:95:17:bd:dd:8a:fd:13:80:6d: 59:8f:dc:a2:ba:f5:cc:23:fa:88:cd:b3:3b:0a:db:48:24:5f: 76:e5:04:60:b7:97:e0:02:68:de:fb:ff:29:b0:91:40:62:02: ae:00:bd:ae:1d:76:02:19:8d:1d:18:1b:59:04:b0:22:d4:6d: 35:1f:98:ce:f5:bc:ad:7c:4e:cd:40:b8:50:24:0d:60:a2:9b: 88:2e:af:cb:86:31:52:1f:19:7e:45:eb:e6:ac:cf:81:97:f4: 89:44:ce:c3:8e:5c:87:7b:ee:17:b4:56:f0:28:2e:72:65:a5: 6c:d4:3d:f4 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURyegBRbJjoPsikcHDzfRofsnXQMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjAzM1oX DTI3MDUwMTA5MjUzM1owMzExMC8GA1UEAxMoQzAwM0YzNzQ4NUQ0RDQxRjI0MjA3 NUE5QzA4QUE1MDQ1ODI3NTk5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJcCJATw+KdAS7ynzu6lxM21+IQ9yQefJ9c8I99ibpXTzvygeA2QB1lgQ3Ex Uy0LlQZTfN+YVIdFEDgd/44L7SAJmNHc4kE3OZsXqv3vX5QxP+3xAPAz8gA32RUb fkdn3a1Idqc18FEK/S3RFcsaHPTv4Kth/vmaMjNkFbuxP8W56fZQwnV4JDSrNw79 HKekYaKSh3mMnkhxu7mnNyg2aIIfdY+Zkz9q+KD+98G0Qx4hun2lFlKmTI67kWj3 rP14E2RLW50HJJV1A0ZikKyewCnIP76ryR5lRwuW4cVwByVCTDg6TF2nHAdu5KgF sy4Wo0R2iuKPi839wLNW7JLReBECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTAA/N0 hdTUHyQgdanAiqUEWCdZmzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODAzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAo+NDMA0GCSqGSIb3DQEBCwUAA4IBAQCBPXfVoLhK0fugJe/AM4RXW42y lf+SfgzJqDQAD2EAyOYy0USZ+zupkjI8yxA8ozmRmJSHP9DvEjQ4KzhQX6b3tKCQ P7WuonoImbbXTcHa/g5ONSwXY8447VLuSBxspxmGgDs530k79dmh5AT/MqsiV76U W+r57K0H1jkOW4bQs76iNT2q/nKVF73div0TgG1Zj9yiuvXMI/qIzbM7CttIJF92 5QRgt5fgAmje+/8psJFAYgKuAL2uHXYCGY0dGBtZBLAi1G01H5jO9bytfE7NQLhQ JA1gopuILq/LhjFSHxl+RevmrM+Bl/SJRM7DjlyHe+4XtFbwKC5yZaVs1D30 -----END CERTIFICATE-----Generated at Sun May 3 01:44:03 2026 by rpki-client