$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153074.roa File: AS153074.roa (raw, json) Hash identifier: BBx3s6o+JzNQ0dR4ebAwyylmZ67paA4LMyg8tpLamz4= Subject key identifier: EA:EE:95:5E:93:74:AA:B4:B4:C9:85:6E:F3:08:10:DB:29:E5:08:A3 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0EAC2B649A38D0F35A2076CFFC58C0AC476D16BE Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153074.roa Signing time: Thu 08 Jan 2026 11:00:00 +0000 ROA not before: Thu 08 Jan 2026 10:55:00 +0000 ROA not after: Thu 07 Jan 2027 11:00:00 +0000 asID: 153074 IP address blocks: 160.25.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ac:2b:64:9a:38:d0:f3:5a:20:76:cf:fc:58:c0:ac:47:6d:16:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:00 2026 GMT Not After : Jan 7 11:00:00 2027 GMT Subject: CN=EAEE955E9374AAB4B4C9856EF30810DB29E508A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:76:cd:07:91:9c:81:11:96:49:69:ae:55: a7:aa:cf:5c:20:79:57:09:ba:b0:f6:ac:be:d8:12: 89:10:9f:92:15:e0:ba:61:04:0d:a2:07:d6:1d:95: 1d:90:68:6b:aa:0a:39:33:2b:84:51:e4:7c:b4:d0: ff:3a:49:f6:49:a5:71:ab:31:3f:63:06:e0:3f:5c: 8f:06:4f:d4:08:7e:12:4b:c7:7a:73:a4:ab:fa:6a: 34:32:ba:77:9f:81:8f:81:ab:6d:a5:68:e9:ef:c2: 0c:fb:0a:24:d6:f5:d8:1f:5f:e0:c6:4d:ea:76:de: 7a:3a:9d:9d:2d:d1:59:3d:7c:78:9e:b1:64:c1:73: 3d:44:66:10:fe:f6:03:b7:8b:94:84:11:14:70:41: 59:1e:0d:42:8e:c8:ec:f2:63:61:e2:60:73:74:04: f0:6d:64:ea:06:b5:61:fb:ff:35:a0:3b:cf:82:59: c5:67:9d:16:68:65:c9:25:9e:67:61:21:b7:c0:1b: f8:29:ac:fd:b5:64:8e:70:49:c7:13:fb:5e:56:20: ae:70:3b:a9:52:fe:e6:41:05:85:88:7a:92:8f:84: 2c:ca:56:6f:b3:25:83:92:09:46:2e:01:1e:3c:b8: 31:e6:b6:c6:87:b0:bc:33:8c:34:75:e0:a9:d2:8a: ae:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:EE:95:5E:93:74:AA:B4:B4:C9:85:6E:F3:08:10:DB:29:E5:08:A3 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153074.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.176.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:75:b3:b2:06:9e:2b:a9:f8:1c:ec:1d:de:63:77:e3:0d:87: ac:9b:26:45:8d:7d:38:a7:86:d2:02:46:b1:37:13:85:51:19: 2c:c1:15:8e:7b:74:ad:4b:7e:95:8a:1a:8c:a1:1e:ea:93:56: 1b:43:fb:02:82:78:d6:c7:b8:36:57:24:56:ae:50:95:21:64: 8c:b0:8f:6a:c4:5c:96:79:7b:cf:0c:a9:fb:1c:c6:f6:f4:04: 95:40:14:6f:8c:b1:4c:35:af:81:ee:08:cb:f9:b9:19:43:26: b7:f8:fc:5a:86:97:3c:ef:7b:d2:3f:27:4e:08:30:86:84:1c: 89:ad:b1:c3:e3:32:8d:87:fb:cc:23:dd:78:5a:79:92:60:8a: 40:bb:72:d9:4c:7d:85:f4:e0:87:b0:a1:e9:cf:d5:26:bc:9e: ec:9c:06:06:d8:89:0e:e0:10:45:d2:d0:2c:84:a8:df:1d:a5: a3:eb:93:41:80:cb:0a:99:98:93:65:12:3c:cc:47:a9:69:15: b8:aa:18:a8:31:3f:3e:aa:58:a9:a3:52:49:97:31:d8:65:68: f1:10:cc:c4:2a:38:03:6d:38:f7:84:9a:34:a9:a4:a4:d0:76: 10:00:e0:29:2d:77:4e:a5:c0:fd:bb:7b:9e:32:f2:f7:34:41: 4b:a4:c4:9b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDqwrZJo40PNaIHbP/FjArEdtFr4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwMFoX DTI3MDEwNzExMDAwMFowMzExMC8GA1UEAxMoRUFFRTk1NUU5Mzc0QUFCNEI0Qzk4 NTZFRjMwODEwREIyOUU1MDhBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuKds0HkZyBEZZJaa5Vp6rPXCB5Vwm6sPasvtgSiRCfkhXgumEEDaIH1h2V HZBoa6oKOTMrhFHkfLTQ/zpJ9kmlcasxP2MG4D9cjwZP1Ah+EkvHenOkq/pqNDK6 d5+Bj4GrbaVo6e/CDPsKJNb12B9f4MZN6nbeejqdnS3RWT18eJ6xZMFzPURmEP72 A7eLlIQRFHBBWR4NQo7I7PJjYeJgc3QE8G1k6ga1Yfv/NaA7z4JZxWedFmhlySWe Z2Eht8Ab+Cms/bVkjnBJxxP7XlYgrnA7qVL+5kEFhYh6ko+ELMpWb7Mlg5IJRi4B Hjy4Mea2xoewvDOMNHXgqdKKrpECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTq7pVe k3SqtLTJhW7zCBDbKeUIozAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzA3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaAZsDANBgkqhkiG9w0BAQsFAAOCAQEAf3WzsgaeK6n4HOwd3mN3 4w2HrJsmRY19OKeG0gJGsTcThVEZLMEVjnt0rUt+lYoajKEe6pNWG0P7AoJ41se4 NlckVq5QlSFkjLCPasRclnl7zwyp+xzG9vQElUAUb4yxTDWvge4Iy/m5GUMmt/j8 WoaXPO970j8nTggwhoQcia2xw+MyjYf7zCPdeFp5kmCKQLty2Ux9hfTgh7Ch6c/V Jrye7JwGBtiJDuAQRdLQLISo3x2lo+uTQYDLCpmYk2USPMxHqWkVuKoYqDE/PqpY qaNSSZcx2GVo8RDMxCo4A20494SaNKmkpNB2EADgKS13TqXA/bt7njLy9zRBS6TE mw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:56:04 2026 by rpki-client