$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153822.roa File: AS153822.roa (raw, json) Hash identifier: FObcK8qRql8hKXLGvRUWf9wQRAmmrEGMr5QJN33/ibQ= Subject key identifier: CB:09:D5:5F:54:2C:21:F5:3D:BD:EB:85:79:B5:AB:97:39:5E:FF:DD Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 59E9F73EB02308CA66CC30A0A59F536868EFE233 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153822.roa Signing time: Sat 02 May 2026 08:35:48 +0000 ROA not before: Sat 02 May 2026 08:30:48 +0000 ROA not after: Sat 01 May 2027 08:35:48 +0000 asID: 153822 IP address blocks: 163.227.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e9:f7:3e:b0:23:08:ca:66:cc:30:a0:a5:9f:53:68:68:ef:e2:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:48 2026 GMT Not After : May 1 08:35:48 2027 GMT Subject: CN=CB09D55F542C21F53DBDEB8579B5AB97395EFFDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e1:28:22:1e:37:cd:a6:cb:16:77:eb:95:4d: 87:ba:bc:eb:a4:66:3e:6e:57:ea:0e:cd:70:3c:09: 63:36:ad:19:d5:18:ec:f3:d7:4a:61:a7:a2:dc:b6: 33:ed:fc:ac:f7:34:8d:7d:e5:b8:b2:83:cb:99:99: 37:57:69:cf:48:a6:2e:60:68:1b:ab:5f:a3:a7:e1: 69:8d:25:ed:44:17:24:8e:15:07:64:58:30:2b:3e: 45:fb:d7:43:4f:4c:48:c8:0c:76:88:4b:e2:aa:99: 45:56:4b:a9:e8:63:d1:de:39:5b:19:d7:b7:b7:22: b5:56:68:a8:3c:d7:e6:b1:6a:8d:20:6a:75:f6:b3: 10:df:31:5c:22:f0:06:66:9f:71:13:e6:c2:74:29: 38:3a:66:04:1e:4b:6c:8d:10:b6:5c:99:d6:fe:68: 22:85:dd:35:eb:27:16:ca:24:87:2f:ee:92:71:a3: b0:16:7e:eb:8c:77:c3:b5:49:47:af:07:c2:8d:7b: ce:c3:88:1d:87:93:8e:f5:fa:27:ac:b8:33:15:7a: 02:aa:e7:80:4d:2a:af:12:27:d2:49:c6:9d:ca:79: 8d:fb:b4:6e:f5:12:42:a5:f9:b0:9b:b9:31:3c:b5: 41:d9:40:86:9e:94:e2:40:9c:2a:9f:b9:9c:19:a2: 3b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:09:D5:5F:54:2C:21:F5:3D:BD:EB:85:79:B5:AB:97:39:5E:FF:DD X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153822.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.135.0/24 Signature Algorithm: sha256WithRSAEncryption 24:68:79:65:a7:d0:be:e9:79:37:b1:37:7f:2d:fb:b6:69:4d: 55:4b:30:25:e7:b9:4a:1b:ec:b4:90:b3:08:2a:04:80:36:20: cd:50:50:e3:b0:86:4f:44:16:ab:ed:6f:08:b4:79:76:df:92: 82:c1:97:bb:fe:ff:29:c2:68:0b:28:f0:cc:43:89:f3:c0:e3: b5:ac:0e:bd:a4:62:e1:39:0e:8b:ad:a1:c3:28:5f:47:20:4e: ea:22:d4:ea:7f:d7:57:3a:bc:cf:aa:14:81:a3:3f:a5:35:a5: a9:07:fc:6b:0f:49:cd:6f:1e:8e:df:86:a2:2c:39:3c:3b:2a: 8f:e7:82:32:7b:98:3a:9a:7e:d2:b5:37:e6:5b:75:ea:f2:69: 6a:bb:1e:57:81:46:29:90:6e:d4:1a:65:a2:86:63:cc:c6:3c: 18:c3:b6:35:1f:89:05:3c:9b:f8:04:9b:4e:75:64:f1:1f:b2: 24:ee:4f:b5:da:e2:51:ec:73:c3:69:ac:5b:6d:31:91:2c:af: e1:db:e6:f1:9d:64:05:6e:57:53:76:9a:fb:b3:a7:d4:5f:f9: 19:39:29:62:cf:2a:9a:77:19:4f:78:9e:69:c7:fc:6d:29:30: 8d:42:df:8f:26:67:1a:79:1b:10:e0:1b:32:97:4d:56:15:21: 38:ab:02:21 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWen3PrAjCMpmzDCgpZ9TaGjv4jMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA0OFoX DTI3MDUwMTA4MzU0OFowMzExMC8GA1UEAxMoQ0IwOUQ1NUY1NDJDMjFGNTNEQkRF Qjg1NzlCNUFCOTczOTVFRkZERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANThKCIeN82myxZ365VNh7q866RmPm5X6g7NcDwJYzatGdUY7PPXSmGnoty2 M+38rPc0jX3luLKDy5mZN1dpz0imLmBoG6tfo6fhaY0l7UQXJI4VB2RYMCs+RfvX Q09MSMgMdohL4qqZRVZLqehj0d45WxnXt7citVZoqDzX5rFqjSBqdfazEN8xXCLw BmafcRPmwnQpODpmBB5LbI0QtlyZ1v5oIoXdNesnFsokhy/uknGjsBZ+64x3w7VJ R68Hwo17zsOIHYeTjvX6J6y4MxV6AqrngE0qrxIn0knGncp5jfu0bvUSQqX5sJu5 MTy1QdlAhp6U4kCcKp+5nBmiO1MCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTLCdVf VCwh9T2964V5tauXOV7/3TAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODIyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAo+OHMA0GCSqGSIb3DQEBCwUAA4IBAQAkaHllp9C+6Xk3sTd/Lfu2aU1V SzAl57lKG+y0kLMIKgSANiDNUFDjsIZPRBar7W8ItHl235KCwZe7/v8pwmgLKPDM Q4nzwOO1rA69pGLhOQ6LraHDKF9HIE7qItTqf9dXOrzPqhSBoz+lNaWpB/xrD0nN bx6O34aiLDk8OyqP54Iye5g6mn7StTfmW3Xq8mlqux5XgUYpkG7UGmWihmPMxjwY w7Y1H4kFPJv4BJtOdWTxH7Ik7k+12uJR7HPDaaxbbTGRLK/h2+bxnWQFbldTdpr7 s6fUX/kZOSlizyqadxlPeJ5px/xtKTCNQt+PJmcaeRsQ4Bsyl01WFSE4qwIh -----END CERTIFICATE-----Generated at Sun May 3 01:40:56 2026 by rpki-client