$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153144.roa File: AS153144.roa (raw, json) Hash identifier: mLu714EZ5C6tgDoU+W1Jx5E0E8oyeqklGVuCthufP5g= Subject key identifier: 0F:6E:30:AF:3C:EA:0E:78:F1:02:69:77:C4:8A:BF:90:A6:82:89:B5 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6DD5DB8559044E338033BB985F4211FB0A751FE8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153144.roa Signing time: Thu 08 Jan 2026 11:00:04 +0000 ROA not before: Thu 08 Jan 2026 10:55:04 +0000 ROA not after: Thu 07 Jan 2027 11:00:04 +0000 asID: 153144 IP address blocks: 160.187.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:d5:db:85:59:04:4e:33:80:33:bb:98:5f:42:11:fb:0a:75:1f:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:04 2026 GMT Not After : Jan 7 11:00:04 2027 GMT Subject: CN=0F6E30AF3CEA0E78F1026977C48ABF90A68289B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fe:bd:0f:65:43:48:35:b4:0e:61:4a:fe:05: 45:0c:82:65:1c:db:ae:5d:8b:b4:c6:61:af:86:32: f5:e7:30:1a:4d:4e:2e:f4:12:d1:92:32:7b:fc:c2: 5f:14:28:6a:bc:4e:20:44:fc:72:f2:d4:f1:a5:91: 58:c0:71:cd:2d:31:4a:93:b8:bb:57:5b:e9:7e:c8: 38:7e:27:4e:40:24:85:68:be:95:01:86:5c:15:34: 59:2d:98:73:78:2c:ed:30:7f:ef:02:93:79:8e:69: 78:ee:48:b7:59:ba:93:7d:ac:7e:db:af:64:63:13: e0:5f:73:88:86:b7:66:d4:8b:fb:18:6e:7f:bb:1f: 84:38:49:1c:5f:9e:35:94:a7:8b:23:64:32:7e:05: e7:e0:b5:71:c2:96:03:d0:db:e9:aa:68:f6:8b:cb: 94:71:a9:49:f9:3e:70:18:8f:56:f8:35:15:bd:5b: 5b:f4:19:ad:a6:93:52:5a:2e:b3:10:cd:41:18:f8: b4:34:5c:b1:b5:8a:80:0e:6d:e6:de:0c:f9:da:c2: 8e:c3:ac:24:4e:a2:97:8a:04:bf:e4:0a:c6:f2:48: 19:1c:47:da:4c:ec:4a:a9:29:0e:ba:97:ce:23:01: b1:ae:43:a2:2d:c6:0d:c3:fb:6c:cc:b2:9b:b7:8f: 3b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6E:30:AF:3C:EA:0E:78:F1:02:69:77:C4:8A:BF:90:A6:82:89:B5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153144.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.204.0/23 Signature Algorithm: sha256WithRSAEncryption 56:7b:fb:4e:3d:74:4b:a5:06:40:8b:77:07:7b:67:33:f5:0a: 35:8d:72:c8:8e:8f:d5:d2:07:9e:53:2b:27:1a:09:26:27:f5: 69:ed:14:b7:a8:3a:29:62:ce:96:55:53:9e:4f:be:eb:90:ea: 9a:27:ba:a2:c3:ab:6b:0d:8b:8c:20:c1:3a:dc:a3:8a:3f:af: e1:12:ba:dd:c4:3a:6b:ea:67:5d:75:15:47:83:51:72:fa:cf: 0b:2c:e9:3e:01:ec:29:64:d4:aa:7c:de:8f:b5:21:df:28:d7: 5d:c5:9c:72:82:ad:49:d6:be:53:b7:32:43:ee:df:04:b3:71: 44:e5:98:9d:e7:9d:b1:f3:f6:a3:5a:c6:a3:52:18:42:59:4e: f4:90:3f:23:a2:ef:23:00:05:74:25:09:ce:c7:b6:7f:c8:3f: dc:07:d6:07:8c:22:52:e7:24:28:91:57:61:46:74:ed:48:7a: b4:d5:a3:b9:4d:9c:24:36:24:53:9c:84:14:79:ab:6c:c2:5d: a6:dc:72:23:ab:2b:67:ef:74:cb:23:68:06:59:b5:c8:76:73: 19:d3:98:e4:e2:2c:7f:aa:ef:38:a1:4e:36:23:65:2a:79:84: ed:7a:63:87:a2:85:1b:99:81:44:33:66:70:ee:45:b3:9f:bf: 3c:7a:06:65 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbdXbhVkETjOAM7uYX0IR+wp1H+gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNFoX DTI3MDEwNzExMDAwNFowMzExMC8GA1UEAxMoMEY2RTMwQUYzQ0VBMEU3OEYxMDI2 OTc3QzQ4QUJGOTBBNjgyODlCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALP+vQ9lQ0g1tA5hSv4FRQyCZRzbrl2LtMZhr4Yy9ecwGk1OLvQS0ZIye/zC XxQoarxOIET8cvLU8aWRWMBxzS0xSpO4u1db6X7IOH4nTkAkhWi+lQGGXBU0WS2Y c3gs7TB/7wKTeY5peO5It1m6k32sftuvZGMT4F9ziIa3ZtSL+xhuf7sfhDhJHF+e NZSniyNkMn4F5+C1ccKWA9Db6apo9ovLlHGpSfk+cBiPVvg1Fb1bW/QZraaTUlou sxDNQRj4tDRcsbWKgA5t5t4M+drCjsOsJE6il4oEv+QKxvJIGRxH2kzsSqkpDrqX ziMBsa5Doi3GDcP7bMyym7ePO2ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQPbjCv POoOePECaXfEir+QpoKJtTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzE0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC7zDANBgkqhkiG9w0BAQsFAAOCAQEAVnv7Tj10S6UGQIt3B3tn M/UKNY1yyI6P1dIHnlMrJxoJJif1ae0Ut6g6KWLOllVTnk++65Dqmie6osOraw2L jCDBOtyjij+v4RK63cQ6a+pnXXUVR4NRcvrPCyzpPgHsKWTUqnzej7Uh3yjXXcWc coKtSda+U7cyQ+7fBLNxROWYneedsfP2o1rGo1IYQllO9JA/I6LvIwAFdCUJzse2 f8g/3AfWB4wiUuckKJFXYUZ07Uh6tNWjuU2cJDYkU5yEFHmrbMJdptxyI6srZ+90 yyNoBlm1yHZzGdOY5OIsf6rvOKFONiNlKnmE7Xpjh6KFG5mBRDNmcO5Fs5+/PHoG ZQ== -----END CERTIFICATE-----Generated at Mon Mar 2 12:59:46 2026 by rpki-client