$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152364.roa File: AS152364.roa (raw, json) Hash identifier: oI3J2Wu+2V/PP/4/7mj56xMNN71cZx7r0drAK2YOkRI= Subject key identifier: B5:2A:42:43:BB:D3:26:55:F4:6C:30:D4:10:10:55:49:53:FC:8E:5F Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 331488959DD4727D0A7729DD1161D2B2BA121874 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152364.roa Signing time: Thu 08 Jan 2026 11:00:06 +0000 ROA not before: Thu 08 Jan 2026 10:55:06 +0000 ROA not after: Thu 07 Jan 2027 11:00:06 +0000 asID: 152364 IP address blocks: 157.15.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:14:88:95:9d:d4:72:7d:0a:77:29:dd:11:61:d2:b2:ba:12:18:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:06 2026 GMT Not After : Jan 7 11:00:06 2027 GMT Subject: CN=B52A4243BBD32655F46C30D41010554953FC8E5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ff:07:20:dc:2a:78:c2:69:6a:54:b6:b9:4c: ae:29:d4:9c:92:d8:2b:5a:72:be:97:b2:c6:be:41: 92:ef:61:75:a3:0f:cc:4e:f5:66:19:4d:60:1b:e5: 5c:d6:9a:03:ad:85:50:3e:d0:48:1f:32:ea:e6:f7: 17:17:48:9f:b8:fc:c8:af:18:76:71:3c:40:01:b7: a0:a8:f2:59:1b:bb:17:44:44:f4:ff:28:5c:8e:e1: 04:8e:48:bd:02:dc:4d:c0:36:52:7b:c5:b2:0b:04: eb:52:33:d2:bb:f7:b6:1d:83:55:45:36:99:f8:88: 41:73:84:dc:b5:0c:ab:f4:07:39:22:8f:39:7c:61: 46:41:fb:9c:e1:73:23:7a:84:2b:93:e1:98:8c:30: fc:9f:52:9e:3a:f8:78:b3:50:a4:e9:b0:8a:28:c9: c9:b3:e7:8b:95:93:a6:ba:ec:20:ca:83:b0:8b:fc: e9:48:9e:44:34:77:2b:78:9c:f2:7f:74:19:f0:91: 5c:e0:69:5a:85:ae:13:95:d4:7b:9e:57:03:42:14: a6:ce:5a:da:73:64:bc:28:33:6b:0f:a4:4f:b9:fb: f3:60:20:87:85:c0:7e:d3:70:81:65:9d:da:5b:53: b5:91:dc:58:8c:46:44:be:06:0e:68:de:8a:a2:63: c6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2A:42:43:BB:D3:26:55:F4:6C:30:D4:10:10:55:49:53:FC:8E:5F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.96.0/23 Signature Algorithm: sha256WithRSAEncryption 89:cf:c6:72:46:2b:92:99:0b:d7:6a:66:eb:80:e4:31:5a:fa: 21:96:a4:6e:6a:e4:c5:e5:58:df:b2:71:00:a6:73:c6:0f:a0: 07:9d:f6:63:97:b5:f4:2d:e9:70:1a:7d:9e:70:35:d9:b1:e3: 46:b0:f1:b1:f9:74:d3:11:01:74:15:2d:35:d1:ac:5b:14:fe: e2:f8:36:15:22:c5:f2:72:7a:c2:ec:62:9e:f6:54:3d:7f:a1: be:29:2d:36:87:f0:7c:67:67:de:6c:6c:78:ef:8a:66:6d:48: 2d:15:75:59:ab:1f:4f:fe:af:47:62:80:08:25:87:be:ac:db: 5c:b4:5c:85:4c:5c:b0:84:13:67:d1:d0:8a:e3:52:f4:ff:0b: b2:c9:00:da:ac:e4:16:10:c6:c5:04:e8:b5:f7:13:46:1a:fb: ea:0f:60:a2:d3:fa:db:03:a9:d0:87:9d:6d:a8:55:df:70:6a: 51:cf:23:4f:73:cb:cf:59:e8:d3:ad:fb:51:ab:be:ed:7a:97: 68:3b:66:b4:f5:38:2b:ad:95:82:b4:a4:e5:d8:15:c0:c5:a2: ff:9f:ba:6d:12:69:68:8b:97:7f:45:de:d4:15:55:3e:ce:03: 97:ee:6e:90:cc:aa:54:af:90:bd:4e:fa:53:4b:6f:24:45:fb: a1:08:24:96 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMxSIlZ3Ucn0KdyndEWHSsroSGHQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNloX DTI3MDEwNzExMDAwNlowMzExMC8GA1UEAxMoQjUyQTQyNDNCQkQzMjY1NUY0NkMz MEQ0MTAxMDU1NDk1M0ZDOEU1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANH/ByDcKnjCaWpUtrlMrinUnJLYK1pyvpeyxr5Bku9hdaMPzE71ZhlNYBvl XNaaA62FUD7QSB8y6ub3FxdIn7j8yK8YdnE8QAG3oKjyWRu7F0RE9P8oXI7hBI5I vQLcTcA2UnvFsgsE61Iz0rv3th2DVUU2mfiIQXOE3LUMq/QHOSKPOXxhRkH7nOFz I3qEK5PhmIww/J9Snjr4eLNQpOmwiijJybPni5WTprrsIMqDsIv86UieRDR3K3ic 8n90GfCRXOBpWoWuE5XUe55XA0IUps5a2nNkvCgzaw+kT7n782Agh4XAftNwgWWd 2ltTtZHcWIxGRL4GDmjeiqJjxqMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS1KkJD u9MmVfRsMNQQEFVJU/yOXzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PYDANBgkqhkiG9w0BAQsFAAOCAQEAic/GckYrkpkL12pm64Dk MVr6IZakbmrkxeVY37JxAKZzxg+gB532Y5e19C3pcBp9nnA12bHjRrDxsfl00xEB dBUtNdGsWxT+4vg2FSLF8nJ6wuxinvZUPX+hviktNofwfGdn3mxseO+KZm1ILRV1 WasfT/6vR2KACCWHvqzbXLRchUxcsIQTZ9HQiuNS9P8LsskA2qzkFhDGxQTotfcT Rhr76g9gotP62wOp0IedbahV33BqUc8jT3PLz1no0637Uau+7XqXaDtmtPU4K62V grSk5dgVwMWi/5+6bRJpaIuXf0Xe1BVVPs4Dl+5ukMyqVK+QvU76U0tvJEX7oQgk lg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:56:10 2026 by rpki-client