$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153863.roa File: AS153863.roa (raw, json) Hash identifier: e6sEQ6Cl4tPaUMFE5QdF4RKKeSr382WhyCyIEwPhJI8= Subject key identifier: 89:66:65:A8:11:59:48:BB:10:AD:80:FD:34:26:07:68:69:CE:54:07 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0A0268C96E7C081A65E3261EB0E174FCDBB5001B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153863.roa Signing time: Sat 02 May 2026 08:35:39 +0000 ROA not before: Sat 02 May 2026 08:30:39 +0000 ROA not after: Sat 01 May 2027 08:35:39 +0000 asID: 153863 IP address blocks: 163.227.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:02:68:c9:6e:7c:08:1a:65:e3:26:1e:b0:e1:74:fc:db:b5:00:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:39 2026 GMT Not After : May 1 08:35:39 2027 GMT Subject: CN=896665A8115948BB10AD80FD3426076869CE5407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b5:64:39:50:c1:de:e7:18:ce:90:ca:a6:8b: fc:e7:e1:ae:e9:18:5e:d0:1d:91:e9:6f:59:9f:02: c4:b3:77:df:45:c6:ed:5a:e7:46:fb:22:a9:1c:2e: a8:ae:62:31:d0:b4:c2:ce:63:45:cf:0d:ad:b1:d0: 0f:ef:c1:d2:f4:ea:62:4a:08:d2:a2:21:3a:dd:c8: c9:51:b6:a1:71:c6:61:8a:db:99:67:b3:3e:4a:94: 50:69:29:ba:59:16:d1:86:f1:82:fe:41:cf:58:85: fa:03:9d:15:90:9e:a1:c5:07:86:fb:a2:ce:ce:21: 76:4e:b7:21:03:0b:59:f0:9b:26:75:58:65:de:86: 22:c2:60:07:7d:eb:a1:dc:b0:db:2f:53:05:93:43: e1:ba:c5:3a:fc:8a:c7:e7:07:2e:f9:ef:a9:64:28: 32:8f:10:90:da:f1:4d:44:dc:f4:86:3b:91:25:4b: 28:88:10:ba:3c:c6:98:2b:c0:ff:94:e9:20:1d:59: 30:76:d8:af:4f:12:7d:99:bc:ba:e6:ba:60:15:a0: bd:ea:be:2a:07:d0:de:4a:57:6a:e4:0e:4d:1f:c8: 85:30:32:96:9d:67:9d:51:0a:36:34:e3:e5:54:99: 53:e1:e6:0a:99:c4:41:f9:20:78:ed:f2:c3:85:b6: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:66:65:A8:11:59:48:BB:10:AD:80:FD:34:26:07:68:69:CE:54:07 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153863.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.220.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:38:91:21:6a:e1:81:d5:91:e3:01:a6:f0:fd:9c:9b:54:1e: f8:62:b7:fb:98:58:9b:91:3a:89:02:81:c8:c8:4b:10:9f:6e: 46:28:6b:89:7d:e7:26:e2:4b:60:5f:ce:d9:35:ea:58:17:10: c4:c7:b0:57:74:e2:6b:ec:31:84:01:c0:eb:e5:5a:56:71:c9: 4e:82:83:0f:04:fe:3c:91:53:ea:a2:40:b9:8f:e3:d1:34:39: 29:d7:c9:3e:29:81:a6:24:7d:08:4a:72:46:3f:db:60:12:d9: ce:91:90:43:a0:a3:28:b1:2e:58:e2:1a:c1:33:7d:1e:58:cb: a2:ad:33:51:89:c9:84:2a:c2:ad:6e:f6:e9:61:60:6a:59:6d: ae:5f:80:4c:68:2f:c1:c6:02:78:da:a3:1a:4d:8a:6a:4e:a7: f6:f4:60:d7:6c:08:a0:d4:48:b5:17:ed:eb:fd:df:ee:11:47: dd:b7:26:68:66:c5:de:50:83:b5:04:30:41:f4:72:9e:2e:4b: c8:2a:a9:ea:87:e5:e0:05:7c:78:2c:d1:f1:71:6a:7b:9b:67: f0:5d:3d:a9:85:12:d2:d9:dd:8a:35:2c:01:0c:0c:df:15:ae: 84:d7:ca:52:f6:c0:71:9b:47:56:63:87:09:ec:ef:1b:f1:68: 54:b8:ec:1c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUCgJoyW58CBpl4yYesOF0/Nu1ABswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAzOVoX DTI3MDUwMTA4MzUzOVowMzExMC8GA1UEAxMoODk2NjY1QTgxMTU5NDhCQjEwQUQ4 MEZEMzQyNjA3Njg2OUNFNTQwNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMa1ZDlQwd7nGM6QyqaL/OfhrukYXtAdkelvWZ8CxLN330XG7VrnRvsiqRwu qK5iMdC0ws5jRc8NrbHQD+/B0vTqYkoI0qIhOt3IyVG2oXHGYYrbmWezPkqUUGkp ulkW0Ybxgv5Bz1iF+gOdFZCeocUHhvuizs4hdk63IQMLWfCbJnVYZd6GIsJgB33r odyw2y9TBZND4brFOvyKx+cHLvnvqWQoMo8QkNrxTUTc9IY7kSVLKIgQujzGmCvA /5TpIB1ZMHbYr08SfZm8uua6YBWgveq+KgfQ3kpXauQOTR/IhTAylp1nnVEKNjTj 5VSZU+HmCpnEQfkgeO3yw4W2Hx8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSJZmWo EVlIuxCtgP00Jgdoac5UBzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODYzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAo+PcMA0GCSqGSIb3DQEBCwUAA4IBAQB8OJEhauGB1ZHjAabw/ZybVB74 Yrf7mFibkTqJAoHIyEsQn25GKGuJfecm4ktgX87ZNepYFxDEx7BXdOJr7DGEAcDr 5VpWcclOgoMPBP48kVPqokC5j+PRNDkp18k+KYGmJH0ISnJGP9tgEtnOkZBDoKMo sS5Y4hrBM30eWMuirTNRicmEKsKtbvbpYWBqWW2uX4BMaC/BxgJ42qMaTYpqTqf2 9GDXbAig1Ei1F+3r/d/uEUfdtyZoZsXeUIO1BDBB9HKeLkvIKqnqh+XgBXx4LNHx cWp7m2fwXT2phRLS2d2KNSwBDAzfFa6E18pS9sBxm0dWY4cJ7O8b8WhUuOwc -----END CERTIFICATE-----Generated at Sun May 3 01:40:41 2026 by rpki-client