$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153946.roa File: AS153946.roa (raw, json) Hash identifier: byOTHHtsReEWWUui50yqKZfXTZLJjCBD1taLyCtqBjo= Subject key identifier: 18:68:46:58:87:7F:73:0A:6D:3B:21:AE:0E:9C:3B:9D:7A:87:39:75 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1601D72EFA46A5080F670A03AAAAB96F22833988 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153946.roa Signing time: Wed 23 Jul 2025 06:34:26 +0000 ROA not before: Wed 23 Jul 2025 06:29:26 +0000 ROA not after: Wed 22 Jul 2026 06:34:26 +0000 asID: 153946 IP address blocks: 165.99.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 08:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:01:d7:2e:fa:46:a5:08:0f:67:0a:03:aa:aa:b9:6f:22:83:39:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 23 06:29:26 2025 GMT Not After : Jul 22 06:34:26 2026 GMT Subject: CN=18684658877F730A6D3B21AE0E9C3B9D7A873975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d8:b0:97:04:10:50:13:d3:61:44:9e:b7:71: fd:ed:fb:50:da:ef:8c:81:46:1b:06:e7:94:00:9c: a1:53:9e:d9:ed:99:bb:31:87:fd:2d:c7:98:e2:ce: 3d:dd:4e:80:22:1e:c2:5c:4c:72:68:20:0b:77:de: 5a:cb:15:ad:e1:e8:fa:5b:99:3a:4d:f3:1e:11:92: df:aa:b3:43:52:54:5c:5c:cd:9d:dd:fc:f1:65:b4: e0:63:48:ff:fb:26:ea:fb:6a:d5:bf:f8:0f:06:86: ad:dc:80:8f:66:cd:e8:a1:de:7f:e9:d8:49:e5:bb: 72:13:d0:3d:1d:42:5c:2b:2d:7c:94:e3:a4:c3:59: 5a:8b:8a:78:a9:ae:96:b8:43:45:d4:19:82:02:3d: bd:ca:f8:bd:6c:45:d8:17:a4:99:05:31:00:bd:72: 6e:c8:ad:c2:c4:65:1c:9f:f9:84:3c:e1:4c:d8:02: 5b:40:db:3d:f4:a0:93:5a:c4:34:e8:53:69:9b:7b: b8:11:70:0e:b3:e5:63:a0:16:d7:eb:dd:43:50:65: 0b:e6:f1:48:49:08:55:48:2a:fb:23:4d:0b:f6:95: a4:a4:54:84:d5:5f:75:f4:f7:0f:6b:3c:25:07:62: 3b:f6:b6:75:20:e3:c0:19:ab:29:36:29:7d:b4:4d: 8f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:68:46:58:87:7F:73:0A:6D:3B:21:AE:0E:9C:3B:9D:7A:87:39:75 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153946.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.108.0/24 Signature Algorithm: sha256WithRSAEncryption 39:23:3e:00:9f:05:fa:ce:15:1e:85:76:35:f0:66:9f:fb:3a: a7:f8:f5:dc:47:ff:6e:7d:ce:58:67:26:c1:c2:b6:28:d2:10: 05:9a:1b:eb:da:36:89:d2:31:83:f2:ef:d7:bc:f8:23:43:37: 4b:6a:99:cf:68:8d:2c:55:ad:09:75:4d:b9:6a:25:64:3b:a1: 95:d1:0e:bb:00:60:1b:53:3f:ed:2e:74:d9:96:72:1b:a4:c9: 0b:1c:50:48:f9:86:51:e3:f0:5a:5d:a5:13:b5:d9:a0:5d:85: 15:3e:c3:ae:09:fa:3d:57:dc:1e:11:23:e6:86:4d:1a:90:53: 7f:ad:76:c9:84:7c:73:8e:16:04:dd:bc:0d:5d:8c:0b:9f:16: 73:b9:64:e7:d8:b8:26:df:ad:4d:3d:1e:64:cd:2b:fd:29:ed: 24:4f:97:2f:5f:fc:b6:4d:14:e6:29:c4:90:e8:77:59:5a:d3: ea:e6:c3:be:8d:df:8e:a1:cd:81:7a:bc:ed:77:75:bd:64:60: 86:f1:0b:69:32:8a:0d:0f:db:5e:42:44:51:82:01:63:25:fd: 51:12:dc:ab:fb:e9:8c:3a:68:d7:11:8d:f6:74:e1:44:ef:cb: 55:06:c0:a2:f0:5c:bf:c6:48:25:39:f7:71:bf:88:7a:f9:f0: 15:94:82:b5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFgHXLvpGpQgPZwoDqqq5byKDOYgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDcyMzA2MjkyNloX DTI2MDcyMjA2MzQyNlowMzExMC8GA1UEAxMoMTg2ODQ2NTg4NzdGNzMwQTZEM0Iy MUFFMEU5QzNCOUQ3QTg3Mzk3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN3YsJcEEFAT02FEnrdx/e37UNrvjIFGGwbnlACcoVOe2e2ZuzGH/S3HmOLO Pd1OgCIewlxMcmggC3feWssVreHo+luZOk3zHhGS36qzQ1JUXFzNnd388WW04GNI //sm6vtq1b/4DwaGrdyAj2bN6KHef+nYSeW7chPQPR1CXCstfJTjpMNZWouKeKmu lrhDRdQZggI9vcr4vWxF2BekmQUxAL1ybsitwsRlHJ/5hDzhTNgCW0DbPfSgk1rE NOhTaZt7uBFwDrPlY6AW1+vdQ1BlC+bxSEkIVUgq+yNNC/aVpKRUhNVfdfT3D2s8 JQdiO/a2dSDjwBmrKTYpfbRNj1UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQYaEZY h39zCm07Ia4OnDudeoc5dTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1Mzk0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVjbDANBgkqhkiG9w0BAQsFAAOCAQEAOSM+AJ8F+s4VHoV2NfBm n/s6p/j13Ef/bn3OWGcmwcK2KNIQBZob69o2idIxg/Lv17z4I0M3S2qZz2iNLFWt CXVNuWolZDuhldEOuwBgG1M/7S502ZZyG6TJCxxQSPmGUePwWl2lE7XZoF2FFT7D rgn6PVfcHhEj5oZNGpBTf612yYR8c44WBN28DV2MC58Wc7lk59i4Jt+tTT0eZM0r /SntJE+XL1/8tk0U5inEkOh3WVrT6ubDvo3fjqHNgXq87Xd1vWRghvELaTKKDQ/b XkJEUYIBYyX9URLcq/vpjDpo1xGN9nThRO/LVQbAovBcv8ZIJTn3cb+IevnwFZSC tQ== -----END CERTIFICATE-----Generated at Tue Aug 5 08:10:16 2025 by rpki-client