$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS153904.roa File: AS153904.roa (raw, json) Hash identifier: GBoTc4/oxpsEDuKB9ODfPtCE4bUbDCZdh1q4ufWKNzo= Subject key identifier: 7B:97:3B:D7:BF:3B:32:91:DB:2C:31:B4:AE:F6:BC:32:4B:ED:03:2B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 52D6112529BA6F679BA4E9E6067EB5996162AA8C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153904.roa Signing time: Sat 02 May 2026 09:26:21 +0000 ROA not before: Sat 02 May 2026 09:21:21 +0000 ROA not after: Sat 01 May 2027 09:26:21 +0000 asID: 153904 IP address blocks: 163.227.253.0/24 maxlen: 24 2001:df5:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d6:11:25:29:ba:6f:67:9b:a4:e9:e6:06:7e:b5:99:61:62:aa:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:21 2026 GMT Not After : May 1 09:26:21 2027 GMT Subject: CN=7B973BD7BF3B3291DB2C31B4AEF6BC324BED032B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:27:17:8d:23:4d:8e:19:20:97:90:41:96:4e: c2:c3:09:4f:dd:ee:e2:a6:a9:6a:dc:2c:b0:4b:d2: 22:7f:00:c7:46:ea:25:3f:76:e0:49:87:97:05:3f: 5a:ef:af:00:ae:c3:11:45:fd:bf:a6:00:77:93:e9: 58:57:bb:5b:1c:b5:bb:13:99:a8:ad:cb:3d:fc:0a: ee:59:d4:83:da:b0:43:d0:18:ed:b0:6a:20:13:8c: 17:a9:3f:d9:ea:70:0e:6b:97:69:2e:9e:20:e1:75: d6:d0:ed:da:61:63:68:45:20:ca:d0:44:ae:cf:aa: ae:ff:84:16:ab:40:cf:19:13:a1:f2:af:e8:3c:1e: 15:6b:b0:7d:d1:8f:51:26:6d:06:55:71:71:f5:5a: fd:29:39:b7:88:d9:02:f8:40:86:cd:2b:03:ce:3d: d9:63:ef:56:ee:59:c2:5f:69:25:76:71:0b:f9:f6: 3c:60:67:f9:52:74:51:9f:0b:90:51:5f:84:52:18: db:4d:a6:e2:e7:c1:89:ec:ce:d0:98:38:aa:2b:55: 5f:47:52:c1:24:12:e5:c2:47:0e:9c:c5:6f:01:8c: e7:48:95:fe:b9:2b:50:c8:c5:d6:78:85:cb:27:dc: 7c:3c:27:98:47:c9:91:ff:c9:a7:e6:b0:da:35:ea: 51:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:97:3B:D7:BF:3B:32:91:DB:2C:31:B4:AE:F6:BC:32:4B:ED:03:2B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS153904.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.253.0/24 IPv6: 2001:df5:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 71:03:24:70:93:9f:6f:94:87:ee:47:6b:7e:49:b9:ef:ee:1e: 21:c7:2f:36:56:cf:2f:90:5e:a6:dc:ec:a6:a2:d9:bc:16:af: ed:90:83:8c:9e:4f:7f:01:dc:1d:fa:b9:32:e8:b0:44:1d:c9: e6:cb:58:74:be:a7:e0:52:19:d4:cc:69:1a:9c:31:55:5f:6d: 95:b9:d7:ef:2a:1a:19:06:ca:fd:da:d1:f2:90:aa:8c:2a:4e: f3:f1:23:d0:27:dd:74:77:f1:44:b4:0c:88:cb:0f:be:ed:99: ad:4e:4c:0e:be:18:73:61:92:2a:51:67:06:76:f3:35:d1:16: f0:88:84:f2:84:5b:46:e4:05:27:57:00:d9:2b:ef:24:a2:34: 76:03:c8:6e:f5:ba:ea:2b:d6:e0:9f:24:05:80:ce:60:21:29: af:20:c9:ef:2d:61:70:ad:31:83:0f:f0:28:a9:c5:81:b1:30: 03:1b:1f:2c:ee:4d:be:8f:f4:57:ba:1a:e0:e2:60:7a:61:2c: 7f:a4:0c:32:86:e5:91:82:a8:cc:ef:7b:43:ba:5c:63:d4:f0: ed:55:ed:46:0a:69:ae:6d:5d:ea:b0:33:49:e7:51:11:db:b7: 10:57:91:96:c8:8c:4e:6e:cf:71:9e:af:09:95:a5:ee:18:2a: 35:5d:db:90 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUtYRJSm6b2ebpOnmBn61mWFiqowwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEyMVoX DTI3MDUwMTA5MjYyMVowMzExMC8GA1UEAxMoN0I5NzNCRDdCRjNCMzI5MURCMkMz MUI0QUVGNkJDMzI0QkVEMDMyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIUnF40jTY4ZIJeQQZZOwsMJT93u4qapatwssEvSIn8Ax0bqJT924EmHlwU/ Wu+vAK7DEUX9v6YAd5PpWFe7Wxy1uxOZqK3LPfwK7lnUg9qwQ9AY7bBqIBOMF6k/ 2epwDmuXaS6eIOF11tDt2mFjaEUgytBErs+qrv+EFqtAzxkTofKv6DweFWuwfdGP USZtBlVxcfVa/Sk5t4jZAvhAhs0rA8492WPvVu5Zwl9pJXZxC/n2PGBn+VJ0UZ8L kFFfhFIY202m4ufBiezO0Jg4qitVX0dSwSQS5cJHDpzFbwGM50iV/rkrUMjF1niF yyfcfDwnmEfJkf/Jp+aw2jXqUTECAwEAAaOCAd0wggHZMB0GA1UdDgQWBBR7lzvX vzsykdssMbSu9rwyS+0DKzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUzOTA0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo+P9MA8EAgACMAkDBwAgAQ31gMAwDQYJKoZIhvcNAQELBQADggEBAHED JHCTn2+Uh+5Ha35Jue/uHiHHLzZWzy+QXqbc7Kai2bwWr+2Qg4yeT38B3B36uTLo sEQdyebLWHS+p+BSGdTMaRqcMVVfbZW51+8qGhkGyv3a0fKQqowqTvPxI9An3XR3 8US0DIjLD77tma1OTA6+GHNhkipRZwZ28zXRFvCIhPKEW0bkBSdXANkr7ySiNHYD yG71uuor1uCfJAWAzmAhKa8gye8tYXCtMYMP8CipxYGxMAMbHyzuTb6P9Fe6GuDi YHphLH+kDDKG5ZGCqMzve0O6XGPU8O1V7UYKaa5tXeqwM0nnURHbtxBXkZbIjE5u z3GerwmVpe4YKjVd25A= -----END CERTIFICATE-----Generated at Sun May 3 01:40:55 2026 by rpki-client