$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153877.roa File: AS153877.roa (raw, json) Hash identifier: sCfizZXHCXR4nuY1gtzWMBp5gS/vY0Sw4F/qqXO2r60= Subject key identifier: 0C:07:C1:8E:33:65:86:9B:01:6E:D0:A7:79:B0:36:BC:30:B6:38:37 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5C045E1CAB2E75458C32A7064256968C972E2CE3 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153877.roa Signing time: Sat 02 May 2026 08:35:58 +0000 ROA not before: Sat 02 May 2026 08:30:58 +0000 ROA not after: Sat 01 May 2027 08:35:58 +0000 asID: 153877 IP address blocks: 2001:df5:8440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:04:5e:1c:ab:2e:75:45:8c:32:a7:06:42:56:96:8c:97:2e:2c:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:58 2026 GMT Not After : May 1 08:35:58 2027 GMT Subject: CN=0C07C18E3365869B016ED0A779B036BC30B63837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5b:af:b6:4d:a8:d2:bb:d9:9b:d6:bd:ef:d4: 01:05:39:e7:5f:89:32:bc:13:d3:f3:61:51:65:3a: 46:a7:d2:7b:2a:fb:c0:99:19:10:b4:34:c9:e7:c6: 1a:3b:30:26:81:36:53:ca:27:c6:29:5e:44:e5:9b: 81:8b:3c:7a:50:d5:6d:d8:fd:c1:d2:39:aa:99:ef: 75:77:30:a9:44:f5:40:a0:4c:72:7c:0a:0e:78:3c: 80:50:81:51:9d:02:1a:16:96:7a:d0:98:43:08:5c: 6d:c9:0f:50:a6:cd:ae:ef:99:27:db:14:d6:36:c9: 28:a4:7b:a8:c7:ea:2c:82:c0:fd:d4:fd:b1:23:63: 6d:d4:f5:d8:2e:6f:45:1e:42:d8:db:9b:c5:54:15: d5:40:14:5d:c6:7e:8c:44:b8:15:c9:c6:f1:50:09: 17:66:d8:98:b9:22:bf:53:08:6b:76:37:29:b7:ef: 7b:3d:c8:66:08:6e:84:dd:04:5e:04:54:42:ba:67: b9:c1:ee:27:09:57:ee:1c:5c:ce:6c:a0:b7:c6:05: 13:da:c7:27:e3:52:2e:8b:68:db:cf:ff:f1:c9:27: e3:55:f2:8a:e2:e0:35:be:36:93:71:91:17:6c:f0: b0:30:41:fe:1e:dc:16:2d:07:65:53:73:47:e5:90: 0a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:07:C1:8E:33:65:86:9B:01:6E:D0:A7:79:B0:36:BC:30:B6:38:37 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153877.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:8440::/48 Signature Algorithm: sha256WithRSAEncryption 1c:34:6e:6d:80:72:7c:1c:69:7e:79:7d:6a:f3:63:20:6c:1c: 8d:11:7e:66:52:2e:59:29:91:14:d9:93:b8:c3:10:f8:84:56: 84:ab:33:7e:ab:38:57:c9:ed:e2:5b:f7:0a:e5:15:d0:e2:42: 08:39:ca:6a:54:61:a8:96:a3:de:f3:a6:84:a1:12:ef:eb:38: b6:53:45:4b:58:a9:55:58:90:17:2f:b8:5b:81:b6:92:ca:f5: 10:b9:5c:28:5c:bc:c4:33:32:41:e4:8f:c4:a6:6c:f6:e0:a6: 1a:c3:e9:30:6b:71:f9:be:55:0c:f2:ab:15:d9:e3:59:c6:a1: ff:2c:fa:94:fb:86:74:03:1d:16:f7:c7:37:91:e8:81:b4:97: 90:4b:37:fb:f7:f9:3c:e9:8b:b8:81:6c:69:6a:e4:0e:1a:5b: 2a:62:c2:65:63:d5:9f:97:c4:54:a0:52:7e:91:35:2e:7d:75: 5d:1d:e8:91:06:4a:25:9e:ff:1b:e4:e6:f6:04:de:71:cf:0d: bb:60:81:37:ee:01:1a:7e:a4:a8:4b:cd:11:41:78:d6:35:18: d3:92:ea:d6:b8:22:b6:88:c4:ed:1e:a8:65:f1:c5:c8:e5:b9: 3e:5b:d6:89:0f:74:cb:28:bb:c1:2f:86:f1:db:ed:9b:d9:48: 33:f8:01:ec -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUXAReHKsudUWMMqcGQlaWjJcuLOMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA1OFoX DTI3MDUwMTA4MzU1OFowMzExMC8GA1UEAxMoMEMwN0MxOEUzMzY1ODY5QjAxNkVE MEE3NzlCMDM2QkMzMEI2MzgzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlbr7ZNqNK72ZvWve/UAQU551+JMrwT0/NhUWU6RqfSeyr7wJkZELQ0yefG GjswJoE2U8onxileROWbgYs8elDVbdj9wdI5qpnvdXcwqUT1QKBMcnwKDng8gFCB UZ0CGhaWetCYQwhcbckPUKbNru+ZJ9sU1jbJKKR7qMfqLILA/dT9sSNjbdT12C5v RR5C2NubxVQV1UAUXcZ+jES4FcnG8VAJF2bYmLkiv1MIa3Y3Kbfvez3IZghuhN0E XgRUQrpnucHuJwlX7hxczmygt8YFE9rHJ+NSLoto28//8ckn41XyiuLgNb42k3GR F2zwsDBB/h7cFi0HZVNzR+WQChECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQMB8GO M2WGmwFu0Kd5sDa8MLY4NzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODc3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9YRAMA0GCSqGSIb3DQEBCwUAA4IBAQAcNG5tgHJ8HGl+eX1q82Mg bByNEX5mUi5ZKZEU2ZO4wxD4hFaEqzN+qzhXye3iW/cK5RXQ4kIIOcpqVGGolqPe 86aEoRLv6zi2U0VLWKlVWJAXL7hbgbaSyvUQuVwoXLzEMzJB5I/Epmz24KYaw+kw a3H5vlUM8qsV2eNZxqH/LPqU+4Z0Ax0W98c3keiBtJeQSzf79/k86Yu4gWxpauQO GlsqYsJlY9Wfl8RUoFJ+kTUufXVdHeiRBkolnv8b5Ob2BN5xzw27YIE37gEafqSo S80RQXjWNRjTkurWuCK2iMTtHqhl8cXI5bk+W9aJD3TLKLvBL4bx2+2b2Ugz+AHs -----END CERTIFICATE-----Generated at Sun May 3 00:39:34 2026 by rpki-client