$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153146.roa File: AS153146.roa (raw, json) Hash identifier: 3oLN7ncPodRy4aFdfZ6F+W9SdZFaQE97Udzc4mQQ0jw= Subject key identifier: F0:E8:ED:EE:E9:04:62:36:17:26:0A:12:7B:51:DA:03:24:EA:02:61 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 062B484112C80E20FC72491E59A328E5529D8010 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153146.roa Signing time: Tue 11 Feb 2025 06:35:34 +0000 ROA not before: Tue 11 Feb 2025 06:30:34 +0000 ROA not after: Tue 10 Feb 2026 06:35:34 +0000 asID: 153146 IP address blocks: 160.191.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:2b:48:41:12:c8:0e:20:fc:72:49:1e:59:a3:28:e5:52:9d:80:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 11 06:30:34 2025 GMT Not After : Feb 10 06:35:34 2026 GMT Subject: CN=F0E8EDEEE904623617260A127B51DA0324EA0261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0a:85:88:6f:a9:e1:1a:d5:cd:4b:61:4d:93: 0f:f9:de:b9:52:69:28:2e:6d:8c:f8:1a:05:0a:29: 1a:9a:07:da:4d:c5:82:3b:45:bb:c3:56:47:e3:84: ea:e4:fe:ed:c0:be:9f:55:d6:86:e0:26:da:39:9a: 27:82:9d:bd:c0:ca:74:25:b3:af:dd:83:ee:31:0f: c0:e2:70:81:62:af:6a:e5:ff:9e:bf:f6:a7:26:5e: 61:14:24:d1:49:6d:e6:ca:00:58:2b:c6:0c:f8:19: 6d:a0:07:36:3d:1a:1a:eb:2d:e0:ac:7c:f8:ba:b3: 11:fc:28:3e:7b:7b:c8:96:00:6b:f3:66:1a:7e:c3: aa:49:0c:34:00:c9:d8:97:85:a3:04:6f:54:fe:c8: 0a:0c:54:f0:87:78:d9:51:0d:f6:1b:ea:16:9a:c8: fa:e2:c3:b3:8a:cd:5e:dc:d3:71:66:c4:d8:76:ee: 6c:3f:1d:25:23:7c:4b:a5:5d:d1:5b:f5:b1:44:13: 46:f7:23:c3:84:1b:15:e3:2c:f1:f1:3a:5e:b7:95: 53:de:60:a0:ab:17:4c:2b:19:56:99:26:1b:84:ed: 56:54:44:6e:fa:6e:c4:44:55:67:a5:63:2d:4e:29: ba:1f:81:48:72:ed:4d:db:e7:3d:dc:3b:df:9d:ff: d1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E8:ED:EE:E9:04:62:36:17:26:0A:12:7B:51:DA:03:24:EA:02:61 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153146.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.206.0/24 Signature Algorithm: sha256WithRSAEncryption 05:f5:86:4c:a4:00:61:4d:36:a2:e1:9d:5f:18:f5:8f:25:98: 6b:9f:2a:d8:26:d9:c8:fb:8b:d1:7f:c2:cf:ed:f1:5d:d5:09: 5f:0c:3b:c3:a0:0e:60:b1:da:bd:30:a6:d0:41:e4:c9:7e:1e: 91:e1:01:d5:ec:5e:59:f3:df:49:09:cf:d9:7a:d9:9f:da:98: a1:53:b6:2a:11:b9:6b:1b:fb:ba:91:e1:51:1d:9a:47:3b:2e: 10:3f:aa:cf:d4:87:ac:2d:61:78:97:fb:f7:6b:40:eb:bf:51: 44:4c:76:fe:80:58:a5:21:42:f3:65:e3:f3:90:17:6b:6b:11: 95:16:98:02:41:28:90:ca:e3:b6:8f:7a:ff:40:9f:3d:bf:c3: 14:d4:d6:cb:fe:9a:cb:5d:96:c7:8f:8b:31:07:c7:5f:22:97: c3:2b:a4:89:39:56:6c:be:bf:9e:e1:e0:f0:a8:82:cd:f8:78: eb:37:58:ad:44:ae:dc:e7:67:30:19:e6:d7:60:4b:89:1d:f5: 28:c2:97:d0:69:aa:4d:08:dc:52:ba:66:9b:68:9d:45:13:3c: 88:70:a3:d1:7c:7e:a0:47:04:24:55:f8:9a:1f:02:e3:40:a4: ed:d1:aa:a9:22:39:cf:4a:8e:18:b2:3a:37:0d:11:8d:5c:05: cd:d9:1a:15 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBitIQRLIDiD8ckkeWaMo5VKdgBAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIxMTA2MzAzNFoX DTI2MDIxMDA2MzUzNFowMzExMC8GA1UEAxMoRjBFOEVERUVFOTA0NjIzNjE3MjYw QTEyN0I1MURBMDMyNEVBMDI2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0KhYhvqeEa1c1LYU2TD/neuVJpKC5tjPgaBQopGpoH2k3FgjtFu8NWR+OE 6uT+7cC+n1XWhuAm2jmaJ4KdvcDKdCWzr92D7jEPwOJwgWKvauX/nr/2pyZeYRQk 0Ult5soAWCvGDPgZbaAHNj0aGust4Kx8+LqzEfwoPnt7yJYAa/NmGn7DqkkMNADJ 2JeFowRvVP7ICgxU8Id42VEN9hvqFprI+uLDs4rNXtzTcWbE2HbubD8dJSN8S6Vd 0Vv1sUQTRvcjw4QbFeMs8fE6XreVU95goKsXTCsZVpkmG4TtVlREbvpuxERVZ6Vj LU4puh+BSHLtTdvnPdw7353/0RkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTw6O3u 6QRiNhcmChJ7UdoDJOoCYTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzE0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKC/zjANBgkqhkiG9w0BAQsFAAOCAQEABfWGTKQAYU02ouGdXxj1 jyWYa58q2CbZyPuL0X/Cz+3xXdUJXww7w6AOYLHavTCm0EHkyX4ekeEB1exeWfPf SQnP2XrZn9qYoVO2KhG5axv7upHhUR2aRzsuED+qz9SHrC1heJf792tA679RREx2 /oBYpSFC82Xj85AXa2sRlRaYAkEokMrjto96/0CfPb/DFNTWy/6ay12Wx4+LMQfH XyKXwyukiTlWbL6/nuHg8KiCzfh46zdYrUSu3OdnMBnm12BLiR31KMKX0GmqTQjc Urpmm2idRRM8iHCj0Xx+oEcEJFX4mh8C40Ck7dGqqSI5z0qOGLI6Nw0RjVwFzdka FQ== -----END CERTIFICATE-----Generated at Tue Nov 4 18:32:46 2025 by rpki-client