$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153146.roa File: AS153146.roa (raw, json) Hash identifier: jVP9x8Y1wsqXJg1lOwzXPDVwj5sgKSP+a4uxpHFgJbQ= Subject key identifier: 56:5E:AD:02:67:A1:82:7D:CD:6E:D0:07:D5:FE:33:5C:49:5E:35:76 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0E8A3EBD63DADB78BE8846E7A6F51D80B94F857E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153146.roa Signing time: Tue 13 Jan 2026 07:00:00 +0000 ROA not before: Tue 13 Jan 2026 06:55:00 +0000 ROA not after: Tue 12 Jan 2027 07:00:00 +0000 asID: 153146 IP address blocks: 160.191.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:8a:3e:bd:63:da:db:78:be:88:46:e7:a6:f5:1d:80:b9:4f:85:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 13 06:55:00 2026 GMT Not After : Jan 12 07:00:00 2027 GMT Subject: CN=565EAD0267A1827DCD6ED007D5FE335C495E3576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:93:0a:4a:70:93:8b:74:1a:9d:f1:15:b6:25: 32:76:df:52:9d:ef:15:3b:ee:76:03:bb:1d:82:64: d9:c2:0b:ab:ea:5a:d8:44:2c:47:9b:99:8d:bf:8c: e1:59:08:cd:ad:f3:b4:50:59:1a:5d:1c:32:9e:c7: e8:fd:bd:79:92:54:be:7d:d3:33:7c:b4:47:19:6e: 11:28:55:80:b7:8d:9c:a6:4c:15:f1:f4:b7:88:f2: b0:cd:bf:11:eb:d8:bc:10:1e:ae:cb:94:7c:18:98: dd:57:5e:25:d2:62:c8:ed:d4:11:7b:1d:39:b9:ac: 78:36:25:5e:8e:c6:75:59:ac:3a:1b:75:c6:5a:86: 37:e3:19:7e:45:ba:36:c1:80:55:04:20:58:f0:36: 56:dc:be:aa:ff:02:87:5f:8a:81:cf:17:48:a1:a7: f0:34:2a:8f:76:fa:b5:29:40:a8:9b:67:46:8f:1e: 07:c2:e3:c4:77:f8:21:e1:09:cf:5c:c6:63:0b:a7: 0d:44:92:2a:32:63:82:72:6b:02:46:8d:b7:2e:1e: 54:1a:55:52:9c:e0:9c:e6:38:7f:7f:71:49:97:b9: e3:43:c4:b1:b1:b8:c0:e3:32:6f:f4:98:32:5a:b2: 51:88:81:f8:5f:39:9e:94:f4:47:0f:0d:cf:d4:b1: ee:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:5E:AD:02:67:A1:82:7D:CD:6E:D0:07:D5:FE:33:5C:49:5E:35:76 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153146.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.206.0/24 Signature Algorithm: sha256WithRSAEncryption 55:6c:e3:f7:3c:e9:1b:9d:7c:14:ff:3d:d7:cd:90:3c:80:03: 54:4a:17:57:32:d3:ab:aa:65:6d:59:22:24:1d:23:37:11:8a: 33:5f:4b:7d:13:bc:9e:65:39:b5:08:fa:d9:e4:28:fe:6b:7e: 01:1c:9a:fe:09:d0:f8:4b:9c:57:79:d1:ce:61:6c:b0:10:13: 5b:89:44:bb:31:fc:70:c7:0b:dd:4f:c2:69:13:6a:49:e4:36: 2f:d4:66:8d:a3:ac:ec:ed:24:75:9b:d1:7b:73:2f:c7:8c:7f: 8c:66:a8:5f:a5:08:82:e4:35:50:70:1e:23:62:42:01:d2:73: f2:a3:36:d7:3f:5c:ad:47:3f:bc:09:95:2b:4a:f6:7e:ba:72: 1c:02:9b:2d:12:fd:f3:0e:64:c9:28:1b:8a:18:1c:7e:ab:d7: 84:56:89:2a:0b:51:12:97:94:33:6c:47:76:fb:e9:92:ef:ed: 19:4f:b1:86:ff:f6:0a:b7:59:d3:72:0d:ef:d6:80:1a:a7:86: 04:8d:79:cd:a0:23:cf:43:13:48:f1:ca:87:5e:46:3f:bb:d3: 0a:92:68:31:f3:7c:8a:69:9f:72:82:ce:a4:f3:6c:de:b6:f7: 4e:6c:52:50:9c:d8:26:36:10:54:cb:a2:3e:24:8c:b5:15:aa: 24:b8:62:8e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDoo+vWPa23i+iEbnpvUdgLlPhX4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDExMzA2NTUwMFoX DTI3MDExMjA3MDAwMFowMzExMC8GA1UEAxMoNTY1RUFEMDI2N0ExODI3RENENkVE MDA3RDVGRTMzNUM0OTVFMzU3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKiTCkpwk4t0Gp3xFbYlMnbfUp3vFTvudgO7HYJk2cILq+pa2EQsR5uZjb+M 4VkIza3ztFBZGl0cMp7H6P29eZJUvn3TM3y0RxluEShVgLeNnKZMFfH0t4jysM2/ EevYvBAersuUfBiY3VdeJdJiyO3UEXsdObmseDYlXo7GdVmsOht1xlqGN+MZfkW6 NsGAVQQgWPA2Vty+qv8Ch1+Kgc8XSKGn8DQqj3b6tSlAqJtnRo8eB8LjxHf4IeEJ z1zGYwunDUSSKjJjgnJrAkaNty4eVBpVUpzgnOY4f39xSZe540PEsbG4wOMyb/SY MlqyUYiB+F85npT0Rw8Nz9Sx7lcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRWXq0C Z6GCfc1u0AfV/jNcSV41djAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzE0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKC/zjANBgkqhkiG9w0BAQsFAAOCAQEAVWzj9zzpG518FP89182Q PIADVEoXVzLTq6plbVkiJB0jNxGKM19LfRO8nmU5tQj62eQo/mt+ARya/gnQ+Euc V3nRzmFssBATW4lEuzH8cMcL3U/CaRNqSeQ2L9RmjaOs7O0kdZvRe3Mvx4x/jGao X6UIguQ1UHAeI2JCAdJz8qM21z9crUc/vAmVK0r2frpyHAKbLRL98w5kySgbihgc fqvXhFaJKgtREpeUM2xHdvvpku/tGU+xhv/2CrdZ03IN79aAGqeGBI15zaAjz0MT SPHKh15GP7vTCpJoMfN8immfcoLOpPNs3rb3TmxSUJzYJjYQVMuiPiSMtRWqJLhi jg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:37:26 2026 by rpki-client