$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153849.roa File: AS153849.roa (raw, json) Hash identifier: WA0v9LDb4jV57t/fCVYcZD9gjUdo4JVb8XT+HOvc09A= Subject key identifier: 2C:C6:F4:75:8E:2B:C8:E7:F3:01:86:8B:A2:7A:72:3E:9B:B9:C8:DE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 71565EB5AAC34ACA204BFCE33FAAD55040211492 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153849.roa Signing time: Sat 02 May 2026 09:26:26 +0000 ROA not before: Sat 02 May 2026 09:21:26 +0000 ROA not after: Sat 01 May 2027 09:26:26 +0000 asID: 153849 IP address blocks: 163.227.166.0/24 maxlen: 24 2001:df5:74c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:56:5e:b5:aa:c3:4a:ca:20:4b:fc:e3:3f:aa:d5:50:40:21:14:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:26 2026 GMT Not After : May 1 09:26:26 2027 GMT Subject: CN=2CC6F4758E2BC8E7F301868BA27A723E9BB9C8DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:90:2c:7b:c5:da:85:c3:ff:8c:38:db:a5:2a: a0:6c:d8:17:b4:3a:a8:3a:9f:a2:19:b8:b3:cb:ed: 7e:42:3c:d6:64:44:1d:be:3c:3a:11:fd:52:e8:27: e4:8f:8f:33:de:26:46:82:8b:cb:9d:38:a6:14:1b: 04:16:f3:24:8f:27:f4:c6:b9:6f:95:f8:60:01:f8: 57:23:7e:4a:7e:c5:4f:ea:10:dd:82:a6:4e:3c:16: db:da:e0:5f:67:fe:75:d8:08:4c:96:51:58:93:02: 8a:71:dc:95:8e:39:70:2a:3d:0d:ee:79:b4:ce:e3: 92:8c:e7:3c:c7:48:77:da:52:57:82:a1:73:29:dd: 1e:d5:da:c1:67:5a:be:34:ef:db:30:dc:d2:fe:17: 43:b5:33:eb:46:25:37:ab:cf:7e:8e:30:57:e2:59: 3a:73:e7:b0:27:6c:d0:eb:f3:82:64:6d:98:71:c7: fa:b3:06:54:0c:c0:f3:74:a4:c5:c0:84:6c:ca:a7: 14:a7:a3:65:37:43:e7:21:77:2c:50:d1:5c:75:d8: ef:ee:e5:70:82:29:39:0e:d5:35:9e:4f:90:06:3f: 6b:46:e4:60:b4:b5:c8:c3:43:3d:67:03:0b:48:d5: 78:4f:61:20:f2:e6:ac:f8:f6:18:fa:53:c3:70:b3: 7c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C6:F4:75:8E:2B:C8:E7:F3:01:86:8B:A2:7A:72:3E:9B:B9:C8:DE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153849.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.166.0/24 IPv6: 2001:df5:74c0::/48 Signature Algorithm: sha256WithRSAEncryption a3:89:0d:70:16:be:88:46:dc:1b:90:f6:d1:7e:79:4e:e2:85: 53:b4:a1:66:27:f0:ca:cb:f6:7c:85:90:d1:ee:30:b7:9d:47: ac:17:f7:04:85:be:74:ab:e8:38:90:51:91:ea:91:8c:0b:9d: 91:07:85:2a:03:23:a2:6f:bb:fb:ec:ce:d3:ae:e5:1d:47:7f: 65:37:ff:91:66:08:6f:5f:86:5b:ba:3d:cf:3e:e9:93:05:a8: 23:d5:1a:f4:88:61:a4:98:ef:20:24:fd:92:ad:37:7a:d8:1e: 85:6f:e2:0b:43:63:24:18:c7:f5:c1:63:96:45:f7:6c:55:88: 94:93:5b:2a:42:2f:82:7c:c2:ec:87:45:01:54:ac:1d:be:91: 74:17:2c:25:0e:e7:a1:ae:0f:9e:d4:57:e7:cc:d1:46:6e:cc: b8:10:27:40:11:1a:94:fa:a9:ce:0a:4d:b0:87:82:8e:e1:e7: 92:5c:80:0e:de:db:0f:83:db:d7:6c:e3:e9:34:66:2d:8f:77: e3:0c:52:78:6c:2b:15:58:e9:f4:7f:f4:55:b8:e8:20:5f:a4: 3f:6b:fb:0d:a8:0e:a9:9e:df:ba:92:ca:c0:dd:63:6f:06:86: fd:ba:09:1c:3e:33:f0:17:d5:ce:51:ad:96:70:9e:7d:d9:9d: 83:58:1d:cb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcVZetarDSsogS/zjP6rVUEAhFJIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEyNloX DTI3MDUwMTA5MjYyNlowMzExMC8GA1UEAxMoMkNDNkY0NzU4RTJCQzhFN0YzMDE4 NjhCQTI3QTcyM0U5QkI5QzhERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSQLHvF2oXD/4w426UqoGzYF7Q6qDqfohm4s8vtfkI81mREHb48OhH9Uugn 5I+PM94mRoKLy504phQbBBbzJI8n9Ma5b5X4YAH4VyN+Sn7FT+oQ3YKmTjwW29rg X2f+ddgITJZRWJMCinHclY45cCo9De55tM7jkoznPMdId9pSV4KhcyndHtXawWda vjTv2zDc0v4XQ7Uz60YlN6vPfo4wV+JZOnPnsCds0OvzgmRtmHHH+rMGVAzA83Sk xcCEbMqnFKejZTdD5yF3LFDRXHXY7+7lcIIpOQ7VNZ5PkAY/a0bkYLS1yMNDPWcD C0jVeE9hIPLmrPj2GPpTw3CzfCcCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQsxvR1 jivI5/MBhouienI+m7nI3jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo+OmMA8EAgACMAkDBwAgAQ31dMAwDQYJKoZIhvcNAQELBQADggEBAKOJ DXAWvohG3BuQ9tF+eU7ihVO0oWYn8MrL9nyFkNHuMLedR6wX9wSFvnSr6DiQUZHq kYwLnZEHhSoDI6Jvu/vsztOu5R1Hf2U3/5FmCG9fhlu6Pc8+6ZMFqCPVGvSIYaSY 7yAk/ZKtN3rYHoVv4gtDYyQYx/XBY5ZF92xViJSTWypCL4J8wuyHRQFUrB2+kXQX LCUO56GuD57UV+fM0UZuzLgQJ0ARGpT6qc4KTbCHgo7h55JcgA7e2w+D29ds4+k0 Zi2Pd+MMUnhsKxVY6fR/9FW46CBfpD9r+w2oDqme37qSysDdY28Ghv26CRw+M/AX 1c5RrZZwnn3ZnYNYHcs= -----END CERTIFICATE-----Generated at Sun May 3 00:39:52 2026 by rpki-client