$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153840.roa File: AS153840.roa (raw, json) Hash identifier: h2VCbcUi36KKrvSN0zH9mXntPtL9y775VafmI6QNEjo= Subject key identifier: CC:DF:A3:7B:A2:80:59:7D:17:08:7C:E3:26:22:58:BC:07:2C:1A:86 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 77D8FF3BDB6A28C684C1DBDCBAAD7B0B765735EE Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153840.roa Signing time: Sat 02 May 2026 09:26:27 +0000 ROA not before: Sat 02 May 2026 09:21:27 +0000 ROA not after: Sat 01 May 2027 09:26:27 +0000 asID: 153840 IP address blocks: 163.227.149.0/24 maxlen: 24 2001:df5:70c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d8:ff:3b:db:6a:28:c6:84:c1:db:dc:ba:ad:7b:0b:76:57:35:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:27 2026 GMT Not After : May 1 09:26:27 2027 GMT Subject: CN=CCDFA37BA280597D17087CE3262258BC072C1A86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0b:3c:76:ad:4b:88:c1:21:22:85:ef:b5:0a: 74:94:92:39:6f:b9:01:b2:aa:49:37:f2:44:45:45: d5:2b:4f:c4:69:26:0f:5e:e7:05:45:4f:e9:af:65: 77:eb:91:30:25:17:96:7e:69:0e:01:3f:57:b2:f2: 45:c2:aa:09:5a:a0:82:75:de:38:b1:97:ee:bd:3f: 04:c4:4d:48:11:6b:e1:39:39:89:ce:fc:7a:42:91: 2f:e7:0e:be:49:8f:44:94:23:ca:5b:21:fc:d0:28: 7d:15:d3:a2:7d:0b:2b:52:df:bf:4a:6f:e0:a1:77: 65:a5:96:80:59:58:32:0f:b8:6f:c4:57:3f:5f:c4: 0b:7f:c3:73:f8:1a:ca:89:c6:19:e9:2d:73:be:74: 82:4b:67:51:c4:88:c0:ed:85:8b:ee:21:d0:9e:01: aa:bc:f6:36:c5:5d:6b:d0:03:9b:12:f5:c9:55:0a: 02:5c:c2:43:35:74:73:8c:10:93:84:fc:20:02:9f: 23:d1:b1:c1:bf:3c:78:e6:50:9e:bb:81:db:e4:59: db:c2:76:b5:73:9c:00:c3:41:ac:51:cd:e2:9d:b7: 48:6a:56:56:05:ed:e0:de:a5:83:8a:f2:00:56:5d: 53:ec:5d:b5:33:cc:f6:0d:1a:95:53:55:14:7c:d5: 28:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DF:A3:7B:A2:80:59:7D:17:08:7C:E3:26:22:58:BC:07:2C:1A:86 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.149.0/24 IPv6: 2001:df5:70c0::/48 Signature Algorithm: sha256WithRSAEncryption 3d:cd:21:33:84:b4:34:a2:b7:fb:a6:0c:88:c0:14:07:d9:33: 6a:e9:10:5e:22:0e:01:c8:54:b4:e0:4d:7b:d4:55:42:45:a2: 62:72:39:fc:aa:b6:bc:3a:d0:e1:91:97:cd:0f:88:1c:86:ab: 49:ce:a0:25:c2:a7:cb:6e:cc:bd:3c:47:04:04:8f:44:c0:61: e9:78:c4:e2:04:85:c6:e5:ac:ea:3e:5e:7e:f9:cd:c0:17:ba: 4e:6b:d5:37:a3:09:72:39:c3:00:12:e5:75:f0:2a:5e:47:6a: e1:de:d9:99:95:31:26:44:1b:3e:76:08:ff:0b:e1:b8:11:2a: 2e:a8:8c:35:6a:ff:3a:6d:99:0f:ed:3e:b8:32:36:e3:e4:ce: 29:be:51:47:7c:18:01:84:68:22:62:d7:15:2d:1d:b5:80:fb: 98:3c:9e:34:14:e4:06:2d:04:03:c5:ba:ab:b6:78:d2:de:3c: c1:bc:a3:04:76:a6:f7:92:2f:9f:da:82:e1:b3:9d:72:10:8c: a8:45:ec:b8:43:9c:76:3c:8f:9d:3c:9e:02:b8:86:12:ac:29: 3a:2a:14:30:a7:1b:b2:a8:d4:2e:74:3d:ba:87:ab:ec:24:9d: b4:24:8b:29:eb:57:99:64:bf:eb:49:11:1a:b8:77:46:15:ed: 3a:b4:7d:f6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd9j/O9tqKMaEwdvcuq17C3ZXNe4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEyN1oX DTI3MDUwMTA5MjYyN1owMzExMC8GA1UEAxMoQ0NERkEzN0JBMjgwNTk3RDE3MDg3 Q0UzMjYyMjU4QkMwNzJDMUE4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJILPHatS4jBISKF77UKdJSSOW+5AbKqSTfyREVF1StPxGkmD17nBUVP6a9l d+uRMCUXln5pDgE/V7LyRcKqCVqggnXeOLGX7r0/BMRNSBFr4Tk5ic78ekKRL+cO vkmPRJQjylsh/NAofRXTon0LK1Lfv0pv4KF3ZaWWgFlYMg+4b8RXP1/EC3/Dc/ga yonGGektc750gktnUcSIwO2Fi+4h0J4Bqrz2NsVda9ADmxL1yVUKAlzCQzV0c4wQ k4T8IAKfI9Gxwb88eOZQnruB2+RZ28J2tXOcAMNBrFHN4p23SGpWVgXt4N6lg4ry AFZdU+xdtTPM9g0alVNVFHzVKD8CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBTM36N7 ooBZfRcIfOMmIli8BywahjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODQwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo+OVMA8EAgACMAkDBwAgAQ31cMAwDQYJKoZIhvcNAQELBQADggEBAD3N ITOEtDSit/umDIjAFAfZM2rpEF4iDgHIVLTgTXvUVUJFomJyOfyqtrw60OGRl80P iByGq0nOoCXCp8tuzL08RwQEj0TAYel4xOIEhcblrOo+Xn75zcAXuk5r1TejCXI5 wwAS5XXwKl5HauHe2ZmVMSZEGz52CP8L4bgRKi6ojDVq/zptmQ/tPrgyNuPkzim+ UUd8GAGEaCJi1xUtHbWA+5g8njQU5AYtBAPFuqu2eNLePMG8owR2pveSL5/aguGz nXIQjKhF7LhDnHY8j508ngK4hhKsKToqFDCnG7Ko1C50PbqHq+wknbQkiynrV5lk v+tJERq4d0YV7Tq0ffY= -----END CERTIFICATE-----Generated at Sun May 3 01:40:39 2026 by rpki-client