$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153839.roa File: AS153839.roa (raw, json) Hash identifier: Xi8gCeXc0J0meXLnXB4qcSsW5Z6fV7f4Z5VBiRKsd0w= Subject key identifier: 58:B6:DE:1B:73:64:21:6E:0A:61:B6:14:72:4E:E7:D4:2A:E0:45:6B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 67876FA48402053BECFC529D7B6BBE101EAC8C55 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153839.roa Signing time: Sat 02 May 2026 09:26:31 +0000 ROA not before: Sat 02 May 2026 09:21:31 +0000 ROA not after: Sat 01 May 2027 09:26:31 +0000 asID: 153839 IP address blocks: 163.227.100.0/24 maxlen: 24 2001:df5:61c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:87:6f:a4:84:02:05:3b:ec:fc:52:9d:7b:6b:be:10:1e:ac:8c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:31 2026 GMT Not After : May 1 09:26:31 2027 GMT Subject: CN=58B6DE1B7364216E0A61B614724EE7D42AE0456B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:de:15:24:e4:6f:1c:fb:6b:b4:5f:a7:a7:13: c2:94:ad:7e:d7:c9:64:21:16:1d:40:6a:34:e1:32: 34:e8:e7:49:4d:38:e8:7a:74:98:ef:f9:0c:28:c9: fe:6a:93:c9:c3:3e:ed:62:e6:98:0b:54:cc:5a:bc: 82:a9:1b:dd:22:da:10:b1:94:2d:2f:35:ac:a6:0b: 1c:06:b6:ea:1b:87:2b:71:b1:a1:db:61:98:1f:90: d2:35:58:aa:32:e0:d0:9c:9d:7f:e7:6d:cc:e7:5a: 95:65:73:df:74:ab:44:7e:5f:6d:42:17:d1:5b:37: c9:89:c8:5d:e1:69:e4:c8:52:54:ed:cd:b0:51:cd: 76:2e:64:e8:fa:ba:3e:9f:ca:d3:14:c8:ef:9d:b7: bb:d1:36:3d:e2:89:d0:eb:f7:eb:bf:59:35:92:41: e3:db:84:0c:11:6a:78:d2:09:56:5c:cc:09:af:29: f1:16:ba:f3:33:cc:19:a4:c6:3a:08:ae:ee:4f:43: 25:77:4f:f8:4a:eb:a0:fb:08:0a:71:f1:17:19:ac: 18:61:1d:9a:8e:57:a5:c8:3b:08:11:f2:d4:43:1f: d0:d4:83:a6:4d:1a:c3:3e:46:41:d5:1b:ac:67:f7: 68:58:44:30:99:c9:ab:66:ba:bf:20:e0:08:ab:ef: c9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B6:DE:1B:73:64:21:6E:0A:61:B6:14:72:4E:E7:D4:2A:E0:45:6B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.100.0/24 IPv6: 2001:df5:61c0::/48 Signature Algorithm: sha256WithRSAEncryption 4c:68:9d:72:8a:f9:62:48:d2:1e:46:b1:08:f1:f0:75:80:ce: 16:9d:92:df:8d:2c:d1:8c:e8:97:68:6c:83:92:19:10:21:bb: d2:84:52:65:a0:20:80:b6:52:a1:30:63:07:a5:fb:7d:a9:95: 25:73:f0:56:fa:e9:15:a5:1a:d4:5a:6c:5f:dc:f8:26:8f:85: fe:40:37:84:99:5a:91:b4:64:97:3d:8d:d7:2d:87:79:e7:a0: 11:88:fe:10:f5:38:7c:38:14:1d:f6:2c:98:a3:65:ee:86:64: 01:4a:8a:6c:27:3f:e4:61:4c:29:46:f0:0c:04:0f:bc:df:60: 8f:70:d8:0c:5b:31:7e:f8:8b:eb:ea:db:85:f1:02:62:ee:45: 8f:d1:a2:41:da:79:c7:b8:17:fd:e4:2b:95:c2:7d:f1:3d:38: f9:d8:3f:50:0e:32:72:0e:1d:ce:01:9b:ab:1f:93:a3:23:83: 17:24:64:30:82:b3:a9:11:09:bb:19:ce:43:98:2c:f6:ad:7f: d5:c6:c2:d3:d9:f9:c2:6c:1b:37:2f:b1:69:b9:5d:5c:0d:cc: 37:90:b3:aa:5c:78:17:67:cf:78:56:e3:05:4d:dd:71:59:8a: 6e:12:22:67:31:ce:0a:c3:19:83:2b:b2:e4:b1:7f:fa:95:60: 06:f8:de:d2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ4dvpIQCBTvs/FKde2u+EB6sjFUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEzMVoX DTI3MDUwMTA5MjYzMVowMzExMC8GA1UEAxMoNThCNkRFMUI3MzY0MjE2RTBBNjFC NjE0NzI0RUU3RDQyQUUwNDU2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAODeFSTkbxz7a7Rfp6cTwpStftfJZCEWHUBqNOEyNOjnSU046Hp0mO/5DCjJ /mqTycM+7WLmmAtUzFq8gqkb3SLaELGULS81rKYLHAa26huHK3GxodthmB+Q0jVY qjLg0Jydf+dtzOdalWVz33SrRH5fbUIX0Vs3yYnIXeFp5MhSVO3NsFHNdi5k6Pq6 Pp/K0xTI7523u9E2PeKJ0Ov3679ZNZJB49uEDBFqeNIJVlzMCa8p8Ra68zPMGaTG Ogiu7k9DJXdP+ErroPsICnHxFxmsGGEdmo5Xpcg7CBHy1EMf0NSDpk0awz5GQdUb rGf3aFhEMJnJq2a6vyDgCKvvyQ0CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRYtt4b c2QhbgphthRyTufUKuBFazAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo+NkMA8EAgACMAkDBwAgAQ31YcAwDQYJKoZIhvcNAQELBQADggEBAExo nXKK+WJI0h5GsQjx8HWAzhadkt+NLNGM6JdobIOSGRAhu9KEUmWgIIC2UqEwYwel +32plSVz8Fb66RWlGtRabF/c+CaPhf5AN4SZWpG0ZJc9jdcth3nnoBGI/hD1OHw4 FB32LJijZe6GZAFKimwnP+RhTClG8AwED7zfYI9w2AxbMX74i+vq24XxAmLuRY/R okHaece4F/3kK5XCffE9OPnYP1AOMnIOHc4Bm6sfk6MjgxckZDCCs6kRCbsZzkOY LPatf9XGwtPZ+cJsGzcvsWm5XVwNzDeQs6pceBdnz3hW4wVN3XFZim4SImcxzgrD GYMrsuSxf/qVYAb43tI= -----END CERTIFICATE-----Generated at Sun May 3 00:42:30 2026 by rpki-client