$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152079.roa File: AS152079.roa (raw, json) Hash identifier: iILznOUymD9ApRzdl1hFzVfALLY7R3luU9PwCPckx+s= Subject key identifier: E8:AD:E1:1B:CC:BB:79:91:E7:72:F4:8E:27:BB:9E:89:27:1F:B5:E9 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1C10849AD0D90E4EF56A59C0E063926908D7346F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152079.roa Signing time: Thu 08 Jan 2026 11:00:08 +0000 ROA not before: Thu 08 Jan 2026 10:55:08 +0000 ROA not after: Thu 07 Jan 2027 11:00:08 +0000 asID: 152079 IP address blocks: 157.10.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:10:84:9a:d0:d9:0e:4e:f5:6a:59:c0:e0:63:92:69:08:d7:34:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:08 2026 GMT Not After : Jan 7 11:00:08 2027 GMT Subject: CN=E8ADE11BCCBB7991E772F48E27BB9E89271FB5E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:80:dc:80:23:8d:13:1b:30:42:5a:40:09:e3: dd:af:4a:5c:d9:c5:9e:84:1c:f8:b6:94:0a:6b:5d: 7e:6e:a8:4b:71:0e:80:8b:11:ee:81:60:a2:d4:ec: a0:cc:8e:d6:57:56:e4:ab:6f:37:ab:83:0c:82:3a: 54:e9:5f:22:2c:3a:22:0d:8b:4c:46:e8:fa:a1:33: 6c:11:a4:57:71:a3:04:dc:bb:25:48:47:79:b4:4a: 99:87:69:0c:cc:b0:0f:9e:65:d9:86:e2:1a:c5:b7: 12:dc:fe:de:1e:38:78:1b:e3:b4:90:c7:0c:37:0e: cf:dd:5d:d6:55:0e:22:e5:6c:dd:be:1a:22:c4:62: 92:af:81:fd:4c:08:69:15:53:c1:85:29:ae:71:ac: bd:b9:07:f0:be:ee:c7:16:e1:04:9e:54:27:5d:4a: c7:4d:ad:10:bf:dd:25:5b:16:04:f8:20:ab:75:91: d5:65:f0:e9:45:e9:eb:c9:56:ab:75:6a:ab:04:24: 5b:91:0d:bf:99:9a:00:ba:39:3f:a9:1c:6f:c7:28: 61:b6:94:87:4d:51:7e:3c:2a:4c:eb:46:2b:e7:f1: 6a:9e:da:f2:03:e4:8b:f7:ef:98:04:00:b8:f3:98: 2f:75:91:0b:27:f6:e0:28:5c:e2:9f:f2:e6:bf:fa: 46:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AD:E1:1B:CC:BB:79:91:E7:72:F4:8E:27:BB:9E:89:27:1F:B5:E9 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:95:f5:a8:f9:80:18:dc:bf:1f:5f:b9:37:75:d2:ed:72:57: 65:25:45:ec:6c:8c:cd:81:fe:14:79:06:ca:96:39:d0:9c:e6: b8:7a:2a:0b:50:d0:52:9d:5b:ad:a1:e7:91:ef:0e:b8:ee:74: b4:35:1e:71:f0:21:24:0f:2d:08:ec:78:66:24:13:60:31:f3: 2b:6d:b9:6d:67:d2:b5:b0:dc:4e:e4:1c:51:9c:43:f0:6b:de: 7f:90:c9:fe:47:17:92:45:27:6a:fa:d3:da:25:7b:d0:66:cc: 1d:19:2a:7b:18:00:79:bd:f3:13:0c:ab:74:fe:12:b1:3b:c6: db:6b:0f:8c:92:2c:22:24:ab:86:90:21:56:e5:52:e0:88:c5: 5b:99:19:e6:f4:e3:7e:37:e0:5a:3a:4d:56:b7:85:79:6f:67: 9a:44:70:d4:65:4a:c5:a1:a4:f1:38:a4:72:df:4e:cd:5c:33: 9f:1e:3e:cd:1f:98:12:df:ca:81:4b:f6:b0:b0:a1:5e:6f:51: b9:f2:e6:58:22:92:5f:01:b4:5c:90:3c:86:cc:70:83:cb:8a: 6e:cc:cb:e5:d7:80:ab:7c:75:27:20:87:a9:9d:8a:02:50:e5: 70:db:c9:ea:00:9c:fb:9e:0e:eb:bd:28:b4:ff:de:ec:38:1d: 46:64:23:16 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHBCEmtDZDk71alnA4GOSaQjXNG8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwOFoX DTI3MDEwNzExMDAwOFowMzExMC8GA1UEAxMoRThBREUxMUJDQ0JCNzk5MUU3NzJG NDhFMjdCQjlFODkyNzFGQjVFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOSA3IAjjRMbMEJaQAnj3a9KXNnFnoQc+LaUCmtdfm6oS3EOgIsR7oFgotTs oMyO1ldW5KtvN6uDDII6VOlfIiw6Ig2LTEbo+qEzbBGkV3GjBNy7JUhHebRKmYdp DMywD55l2YbiGsW3Etz+3h44eBvjtJDHDDcOz91d1lUOIuVs3b4aIsRikq+B/UwI aRVTwYUprnGsvbkH8L7uxxbhBJ5UJ11Kx02tEL/dJVsWBPggq3WR1WXw6UXp68lW q3VqqwQkW5ENv5maALo5P6kcb8coYbaUh01RfjwqTOtGK+fxap7a8gPki/fvmAQA uPOYL3WRCyf24Chc4p/y5r/6Ri8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBToreEb zLt5kedy9I4nu56JJx+16TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjA3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0KADANBgkqhkiG9w0BAQsFAAOCAQEALpX1qPmAGNy/H1+5N3XS 7XJXZSVF7GyMzYH+FHkGypY50JzmuHoqC1DQUp1braHnke8OuO50tDUecfAhJA8t COx4ZiQTYDHzK225bWfStbDcTuQcUZxD8Gvef5DJ/kcXkkUnavrT2iV70GbMHRkq exgAeb3zEwyrdP4SsTvG22sPjJIsIiSrhpAhVuVS4IjFW5kZ5vTjfjfgWjpNVreF eW9nmkRw1GVKxaGk8Tikct9OzVwznx4+zR+YEt/KgUv2sLChXm9RufLmWCKSXwG0 XJA8hsxwg8uKbszL5deAq3x1JyCHqZ2KAlDlcNvJ6gCc+54O670otP/e7DgdRmQj Fg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:56:06 2026 by rpki-client