$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153134.roa File: AS153134.roa (raw, json) Hash identifier: dlgkhTjTGif+XBtFCX75nDn9Q18WD9+bklpyk9Su2Kc= Subject key identifier: B0:70:EF:B3:55:CB:98:AB:EB:2A:94:38:47:BE:10:BE:A4:DD:E5:AA Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1AC158800FC28F896699456A9B8E6C030B4781DF Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153134.roa Signing time: Sun 11 Jan 2026 08:00:00 +0000 ROA not before: Sun 11 Jan 2026 07:55:00 +0000 ROA not after: Sun 10 Jan 2027 08:00:00 +0000 asID: 153134 IP address blocks: 160.191.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c1:58:80:0f:c2:8f:89:66:99:45:6a:9b:8e:6c:03:0b:47:81:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 11 07:55:00 2026 GMT Not After : Jan 10 08:00:00 2027 GMT Subject: CN=B070EFB355CB98ABEB2A943847BE10BEA4DDE5AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:47:2e:6f:95:0b:ec:a1:0d:85:7c:09:17:b1: f1:fa:c2:5c:65:f2:f1:1d:69:e3:fa:97:50:f3:fa: 52:af:36:87:16:f8:49:09:53:b5:d5:f6:0e:20:ab: be:e8:f5:45:3b:a5:cf:af:b6:55:f9:6e:6f:96:0b: 18:18:06:9e:59:ea:6d:03:b8:2c:ad:af:52:d8:21: ee:58:2b:97:d3:26:4c:37:4d:6e:2e:a0:82:9b:e5: 14:ea:d8:2a:68:2a:ee:a6:71:f5:f5:ef:8e:18:54: dc:cf:39:8d:72:10:33:4f:62:36:a6:6a:d9:da:4a: 4a:76:0f:03:b3:67:91:43:2b:22:af:e0:57:1f:20: 6d:34:0e:ab:1a:c4:70:e8:7b:86:ed:19:7f:fb:b0: 81:f9:05:9d:a5:1a:00:04:4e:cd:59:28:6f:88:c5: dd:92:e1:73:ac:97:3e:5b:13:44:98:29:8e:5f:85: 63:3a:a4:f1:ed:f8:ca:8b:4b:71:ac:72:89:aa:bc: a4:c4:e9:43:8f:81:2d:1b:93:7e:45:4d:39:a3:b7: d1:79:a3:2d:83:03:10:9b:28:52:ab:1d:ed:e6:d0: a2:bb:15:72:aa:ce:7c:c4:18:38:6a:a7:39:42:72: 9b:b0:4e:ee:4f:76:0a:59:00:bc:26:f3:fa:92:8f: ba:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:70:EF:B3:55:CB:98:AB:EB:2A:94:38:47:BE:10:BE:A4:DD:E5:AA X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.56.0/24 Signature Algorithm: sha256WithRSAEncryption 68:87:27:f5:1d:32:0e:99:d4:cb:ce:fc:e3:2e:1d:e2:5f:df: 9e:2f:17:60:49:c1:9c:f8:ac:30:be:66:dc:63:d3:17:81:b7: e6:2d:b6:79:b0:19:59:31:89:ef:22:7f:f7:5d:9c:07:60:c2: b9:21:e7:ef:75:ba:34:fd:3e:15:dc:38:53:12:db:80:cb:4e: 14:8c:dc:b8:8c:d2:cb:76:a7:93:54:f2:c4:54:90:f7:8d:0d: 2c:34:be:f3:70:4c:95:ae:d8:2b:a6:85:19:21:99:f1:fd:2a: 9b:82:a3:d5:d3:72:30:15:39:48:cd:03:ba:d2:d8:d4:a3:7d: 00:b8:37:eb:5c:9a:4a:e0:1f:da:03:ad:ba:c6:25:1a:c0:58: 10:19:73:48:0f:71:db:fc:c6:09:f1:02:94:d5:67:c8:f9:cd: a9:d7:02:4d:19:0d:22:a6:e2:45:3c:31:91:97:24:64:b6:ed: 0e:a3:48:7b:40:83:4d:81:fe:bd:5d:b7:3a:23:4f:03:e6:61: 62:36:c6:23:c7:1e:28:f6:17:18:aa:be:a8:15:a0:22:ad:49: 6a:46:81:75:54:c8:40:d2:95:8c:42:77:28:ce:6c:ee:26:af: 6b:94:68:1f:42:20:55:0b:59:88:ba:13:51:a1:4b:f4:ae:2e: 1c:cc:1a:40 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGsFYgA/Cj4lmmUVqm45sAwtHgd8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDExMTA3NTUwMFoX DTI3MDExMDA4MDAwMFowMzExMC8GA1UEAxMoQjA3MEVGQjM1NUNCOThBQkVCMkE5 NDM4NDdCRTEwQkVBNERERTVBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOlHLm+VC+yhDYV8CRex8frCXGXy8R1p4/qXUPP6Uq82hxb4SQlTtdX2DiCr vuj1RTulz6+2Vflub5YLGBgGnlnqbQO4LK2vUtgh7lgrl9MmTDdNbi6ggpvlFOrY Kmgq7qZx9fXvjhhU3M85jXIQM09iNqZq2dpKSnYPA7NnkUMrIq/gVx8gbTQOqxrE cOh7hu0Zf/uwgfkFnaUaAAROzVkob4jF3ZLhc6yXPlsTRJgpjl+FYzqk8e34yotL caxyiaq8pMTpQ4+BLRuTfkVNOaO30XmjLYMDEJsoUqsd7ebQorsVcqrOfMQYOGqn OUJym7BO7k92ClkAvCbz+pKPupkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSwcO+z VcuYq+sqlDhHvhC+pN3lqjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzEzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKC/ODANBgkqhkiG9w0BAQsFAAOCAQEAaIcn9R0yDpnUy8784y4d 4l/fni8XYEnBnPisML5m3GPTF4G35i22ebAZWTGJ7yJ/912cB2DCuSHn73W6NP0+ Fdw4UxLbgMtOFIzcuIzSy3ank1TyxFSQ940NLDS+83BMla7YK6aFGSGZ8f0qm4Kj 1dNyMBU5SM0DutLY1KN9ALg361yaSuAf2gOtusYlGsBYEBlzSA9x2/zGCfEClNVn yPnNqdcCTRkNIqbiRTwxkZckZLbtDqNIe0CDTYH+vV23OiNPA+ZhYjbGI8ceKPYX GKq+qBWgIq1JakaBdVTIQNKVjEJ3KM5s7iava5RoH0IgVQtZiLoTUaFL9K4uHMwa QA== -----END CERTIFICATE-----Generated at Mon Mar 2 12:59:54 2026 by rpki-client