$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153895.roa File: AS153895.roa (raw, json) Hash identifier: orgSKkhQq5AN753bquvj1KGeyOjgXdKKT3X8bx8Vqm8= Subject key identifier: 6B:1C:E3:D1:C0:39:4B:58:85:32:A7:B6:A7:B3:73:78:E5:73:66:01 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 25363B7A3B67CF8CEB1F13BC2840ADDA8996FF07 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153895.roa Signing time: Sat 02 May 2026 09:26:32 +0000 ROA not before: Sat 02 May 2026 09:21:32 +0000 ROA not after: Sat 01 May 2027 09:26:32 +0000 asID: 153895 IP address blocks: 163.227.248.0/23 maxlen: 24 2001:df5:7f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:36:3b:7a:3b:67:cf:8c:eb:1f:13:bc:28:40:ad:da:89:96:ff:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:32 2026 GMT Not After : May 1 09:26:32 2027 GMT Subject: CN=6B1CE3D1C0394B588532A7B6A7B37378E5736601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b4:57:ca:13:b7:ba:08:c4:57:11:df:3f:a2: b8:0a:cb:4e:2e:da:42:34:41:39:6f:2a:f7:3c:ce: 56:7d:b6:16:4b:ae:2e:b4:3c:cf:f5:60:f1:a3:d3: 87:64:2b:7a:8c:ca:ac:61:be:ed:92:7e:e6:5d:c4: 81:f1:c0:68:df:f7:c3:9c:d8:a1:35:5c:96:72:75: 25:b4:fa:f0:c5:dc:1f:0d:8e:3c:c5:7c:28:47:a5: 5b:51:80:93:64:9b:76:e6:74:3f:08:31:be:8e:b8: aa:48:65:13:7b:5d:15:b2:2c:cc:bc:3f:cb:02:22: 5f:93:92:77:6d:bc:ed:5c:a4:71:ae:35:63:71:42: 20:36:e6:f4:7f:77:e1:f7:08:b1:b7:ac:30:aa:77: 97:92:f4:22:fb:bb:0f:40:ee:f6:a1:8f:99:54:b7: 6f:b5:07:d9:c2:26:4a:05:e8:82:dd:c1:e4:2d:a3: cd:6e:ef:01:fd:27:d5:d6:91:d5:8a:23:05:e6:ba: 9a:68:5d:53:4b:00:53:3b:a6:16:43:e8:2d:0c:1c: 90:ba:d9:92:c3:14:8c:4e:39:74:96:8f:1e:2c:64: 48:57:48:f4:b6:df:f8:69:4e:7e:92:17:52:82:a1: 09:7f:e9:13:83:ba:71:6b:15:73:19:52:a1:86:67: 3c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1C:E3:D1:C0:39:4B:58:85:32:A7:B6:A7:B3:73:78:E5:73:66:01 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153895.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.248.0/23 IPv6: 2001:df5:7f40::/48 Signature Algorithm: sha256WithRSAEncryption a1:e4:22:56:68:ac:bc:ed:99:26:2c:0f:0f:71:4f:f8:60:cd: f7:32:51:d9:de:9d:56:a1:94:f3:cc:2e:61:84:a6:1b:a7:8e: bc:db:d7:b7:7e:13:b4:9e:6b:5e:bc:d7:82:d8:f2:39:ba:39: 02:3d:ad:2f:f0:1c:a3:68:76:d0:d9:87:d5:db:19:0b:b4:46: ef:2f:b9:7a:1c:72:b2:72:16:7f:8f:58:81:ff:7c:30:d9:97: 35:8d:88:3e:f7:50:ab:4a:12:13:61:1a:1a:54:6b:69:0b:1a: bf:02:18:dc:7c:52:8e:60:e8:4d:4c:49:78:2e:9b:f1:88:75: 9d:bd:5e:b7:72:03:88:86:74:38:1d:a2:2a:17:b3:53:e6:f5: 25:6d:25:83:c3:25:9d:47:26:21:f6:4c:6a:1f:5c:d5:1f:9c: 51:0a:05:38:e5:c1:89:7b:e5:bc:ca:f6:bf:ac:58:2a:e7:70: bd:93:19:e5:55:80:7c:b5:99:a2:04:8f:72:d6:bf:1e:c4:94: bc:ce:7d:31:b6:69:2b:63:ed:3c:14:27:db:c7:b6:94:b0:c7: 71:a0:39:55:38:30:61:8a:6d:25:2c:9c:ee:b7:7a:bc:20:be: ef:72:b7:36:c8:1c:71:f1:20:98:69:e7:c8:38:21:cc:5d:37: f5:51:5d:b5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJTY7ejtnz4zrHxO8KECt2omW/wcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEzMloX DTI3MDUwMTA5MjYzMlowMzExMC8GA1UEAxMoNkIxQ0UzRDFDMDM5NEI1ODg1MzJB N0I2QTdCMzczNzhFNTczNjYwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJy0V8oTt7oIxFcR3z+iuArLTi7aQjRBOW8q9zzOVn22FkuuLrQ8z/Vg8aPT h2QreozKrGG+7ZJ+5l3EgfHAaN/3w5zYoTVclnJ1JbT68MXcHw2OPMV8KEelW1GA k2SbduZ0Pwgxvo64qkhlE3tdFbIszLw/ywIiX5OSd2287Vykca41Y3FCIDbm9H93 4fcIsbesMKp3l5L0Ivu7D0Du9qGPmVS3b7UH2cImSgXogt3B5C2jzW7vAf0n1daR 1YojBea6mmhdU0sAUzumFkPoLQwckLrZksMUjE45dJaPHixkSFdI9Lbf+GlOfpIX UoKhCX/pE4O6cWsVcxlSoYZnPEsCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRrHOPR wDlLWIUyp7ans3N45XNmATAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzODk1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo+P4MA8EAgACMAkDBwAgAQ31f0AwDQYJKoZIhvcNAQELBQADggEBAKHk IlZorLztmSYsDw9xT/hgzfcyUdnenVahlPPMLmGEphunjrzb17d+E7Sea16814LY 8jm6OQI9rS/wHKNodtDZh9XbGQu0Ru8vuXoccrJyFn+PWIH/fDDZlzWNiD73UKtK EhNhGhpUa2kLGr8CGNx8Uo5g6E1MSXgum/GIdZ29XrdyA4iGdDgdoioXs1Pm9SVt JYPDJZ1HJiH2TGofXNUfnFEKBTjlwYl75bzK9r+sWCrncL2TGeVVgHy1maIEj3LW vx7ElLzOfTG2aStj7TwUJ9vHtpSwx3GgOVU4MGGKbSUsnO63erwgvu9ytzbIHHHx IJhp58g4IcxdN/VRXbU= -----END CERTIFICATE-----Generated at Sun May 3 00:40:28 2026 by rpki-client