$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152766.roa File: AS152766.roa (raw, json) Hash identifier: Hqy3MBNrA65GVwymSRC8zvGJBO9Z61RgCbXsYzK8TIo= Subject key identifier: 60:E2:70:01:A0:70:85:CD:87:23:F4:4F:A0:AD:A9:99:4B:02:6A:0C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 772DF10C6F360D36D6FD6A1955D06D85CE715C4E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152766.roa Signing time: Thu 08 Jan 2026 11:00:05 +0000 ROA not before: Thu 08 Jan 2026 10:55:05 +0000 ROA not after: Thu 07 Jan 2027 11:00:05 +0000 asID: 152766 IP address blocks: 160.19.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:2d:f1:0c:6f:36:0d:36:d6:fd:6a:19:55:d0:6d:85:ce:71:5c:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:05 2026 GMT Not After : Jan 7 11:00:05 2027 GMT Subject: CN=60E27001A07085CD8723F44FA0ADA9994B026A0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:06:5f:ee:ad:a8:ed:91:fe:75:a2:4e:49:40: b2:9d:3a:e6:33:3e:af:6c:b6:a4:87:13:d5:08:14: a0:da:89:dc:fe:2f:d2:83:fd:45:c0:d3:03:01:5e: 9d:e5:a2:37:a0:3a:09:9e:de:7a:b5:f5:80:f8:68: 61:00:52:a2:e0:12:d1:00:b8:22:46:5d:32:0b:6b: c4:3a:26:5f:a7:c5:d4:45:f3:84:3f:12:9a:43:ce: c5:96:e8:2d:ec:b7:33:a4:23:64:35:8b:5d:72:bc: 6e:d7:a7:f8:8a:8d:ee:78:d1:48:73:02:9d:f4:d0: 71:e3:3f:cf:20:9b:85:3e:e4:6d:f8:80:14:e9:44: 8f:1b:2c:6c:f7:ee:92:73:93:57:3c:6c:e2:30:e7: 84:f4:5a:70:92:46:f2:3b:1c:90:75:fb:64:19:dc: a7:1b:80:98:80:cc:0e:25:f5:ed:ec:e0:69:34:83: 09:90:48:40:a7:50:fa:1c:2c:06:47:0c:5a:32:65: 04:98:1e:90:df:fb:d8:d2:89:48:cd:ae:23:98:0d: 1e:4f:54:79:6d:5e:f1:09:64:60:c7:38:00:bc:ef: 7d:34:d0:3e:46:de:10:83:b5:d4:32:1f:dc:58:f7: 04:58:1d:03:c9:6e:8f:c0:bb:51:45:c9:36:38:64: 35:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E2:70:01:A0:70:85:CD:87:23:F4:4F:A0:AD:A9:99:4B:02:6A:0C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.184.0/23 Signature Algorithm: sha256WithRSAEncryption 71:c3:9d:91:8c:40:59:91:40:21:d6:98:f2:1f:c1:fa:20:b1: 37:a8:b1:de:de:db:6b:d0:66:07:42:75:2d:e8:0b:d5:77:51: 61:e5:54:42:f1:5f:2c:ca:84:f5:3a:56:10:07:00:a3:83:7f: db:41:f3:38:e8:14:a4:c9:27:87:12:08:f7:b0:43:37:ea:3a: bb:69:a0:91:70:ed:b9:3e:ea:67:00:7b:ed:0f:b6:8b:92:27: b8:c0:21:b1:14:7f:34:9b:42:06:54:8b:b4:cc:ef:be:a6:da: 44:86:49:06:6a:98:f9:11:aa:e5:61:95:da:1d:82:a6:b9:e4: 1b:d1:a4:04:3d:c1:d4:ed:df:60:5f:e7:02:62:90:27:50:99: c7:a7:95:bd:b8:05:d2:51:8b:ec:bd:cc:54:25:31:e1:e2:c9: 7d:b4:c8:cc:e6:55:91:c0:7e:37:20:5b:6d:98:bc:25:47:d4: ad:bf:c7:c1:f4:fa:f6:af:36:3a:6e:83:e7:0f:14:07:31:98: b6:59:70:71:33:9a:ff:89:59:89:86:b4:51:75:62:6b:2e:1c: fe:47:70:14:57:ae:cd:71:88:f2:d9:22:38:d9:be:fd:f0:ae: 76:08:05:67:fc:4a:1c:42:76:c1:a8:0d:19:b4:97:39:e8:7f: 6a:77:9d:a8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdy3xDG82DTbW/WoZVdBthc5xXE4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNVoX DTI3MDEwNzExMDAwNVowMzExMC8GA1UEAxMoNjBFMjcwMDFBMDcwODVDRDg3MjNG NDRGQTBBREE5OTk0QjAyNkEwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwGX+6tqO2R/nWiTklAsp065jM+r2y2pIcT1QgUoNqJ3P4v0oP9RcDTAwFe neWiN6A6CZ7eerX1gPhoYQBSouAS0QC4IkZdMgtrxDomX6fF1EXzhD8SmkPOxZbo Ley3M6QjZDWLXXK8bten+IqN7njRSHMCnfTQceM/zyCbhT7kbfiAFOlEjxssbPfu knOTVzxs4jDnhPRacJJG8jsckHX7ZBncpxuAmIDMDiX17ezgaTSDCZBIQKdQ+hws BkcMWjJlBJgekN/72NKJSM2uI5gNHk9UeW1e8QlkYMc4ALzvfTTQPkbeEIO11DIf 3Fj3BFgdA8luj8C7UUXJNjhkNYUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRg4nAB oHCFzYcj9E+gramZSwJqDDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1Mjc2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaATuDANBgkqhkiG9w0BAQsFAAOCAQEAccOdkYxAWZFAIdaY8h/B +iCxN6ix3t7ba9BmB0J1LegL1XdRYeVUQvFfLMqE9TpWEAcAo4N/20HzOOgUpMkn hxII97BDN+o6u2mgkXDtuT7qZwB77Q+2i5InuMAhsRR/NJtCBlSLtMzvvqbaRIZJ BmqY+RGq5WGV2h2CprnkG9GkBD3B1O3fYF/nAmKQJ1CZx6eVvbgF0lGL7L3MVCUx 4eLJfbTIzOZVkcB+NyBbbZi8JUfUrb/HwfT69q82Om6D5w8UBzGYtllwcTOa/4lZ iYa0UXViay4c/kdwFFeuzXGI8tkiONm+/fCudggFZ/xKHEJ2wagNGbSXOeh/aned qA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:37:27 2026 by rpki-client