$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153327.roa File: AS153327.roa (raw, json) Hash identifier: WWGDvks+LdgJaIm4fSJoHUF+vqGOIHQlM8RC+Ps8+20= Subject key identifier: 0C:A2:BA:6A:44:60:DE:8F:82:CD:A3:D0:A0:7C:0B:7A:1E:89:DE:56 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5498811220A769A9B89B13486D74025D571A0F07 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153327.roa Signing time: Tue 03 Feb 2026 06:07:01 +0000 ROA not before: Tue 03 Feb 2026 06:02:01 +0000 ROA not after: Tue 02 Feb 2027 06:07:01 +0000 asID: 153327 IP address blocks: 103.251.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:98:81:12:20:a7:69:a9:b8:9b:13:48:6d:74:02:5d:57:1a:0f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 3 06:02:01 2026 GMT Not After : Feb 2 06:07:01 2027 GMT Subject: CN=0CA2BA6A4460DE8F82CDA3D0A07C0B7A1E89DE56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:e8:07:1f:4d:37:6d:c1:3a:1c:74:4c:2d: 5a:ce:74:62:5b:f7:ef:de:32:d7:6a:8b:c4:c9:28: 07:32:24:f8:0a:3f:8c:34:e0:6b:67:cd:8a:27:2a: b1:ee:9e:12:c8:ae:28:a5:ec:c8:26:c0:86:ae:b7: 8a:2e:f3:41:ed:9b:78:ec:0f:49:8f:69:6a:6c:c2: 6e:97:cc:a3:a7:d0:62:b6:46:d3:a1:bf:6e:9c:14: 37:4e:f5:bb:55:cb:8d:25:54:75:3c:ac:4f:af:f1: af:75:bc:ff:05:4d:0b:f3:14:8e:df:3f:3a:0e:17: db:91:43:38:e2:19:9b:28:96:ae:aa:ec:d3:0f:23: f8:63:2f:27:4d:0b:3a:c8:16:be:bb:78:0b:9c:26: ab:bf:7e:ab:ba:1e:b8:dd:33:3d:59:bd:9a:76:e4: eb:a8:18:bb:74:9c:76:74:2d:bc:cd:11:39:4d:5a: 4f:ca:7e:a2:2e:86:65:d3:22:7c:c8:eb:b9:4d:6f: 1a:73:af:2f:e5:e4:c3:9c:de:f0:3e:b7:5b:3c:0d: 37:46:05:dd:37:3b:08:08:1b:3a:26:4c:94:6c:89: 82:a6:06:ed:42:8d:e8:5d:74:66:a8:34:53:08:d7: 98:33:b2:42:30:fd:df:98:f6:9d:ae:55:a5:5a:84: b1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A2:BA:6A:44:60:DE:8F:82:CD:A3:D0:A0:7C:0B:7A:1E:89:DE:56 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153327.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.251.152.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:e8:11:22:da:c9:f0:11:9b:38:cd:4d:af:90:03:9e:3f:2f: ec:14:dc:2a:7b:11:75:74:7d:06:7a:3c:f0:68:5b:ea:7b:7e: 56:db:65:5f:30:d5:16:62:cf:4b:54:7b:af:24:62:db:44:97: 15:59:32:12:6a:a0:a8:15:8e:1d:56:b3:07:05:47:d6:e3:59: 8a:de:28:71:2a:5e:e6:b9:6b:bf:74:01:ec:5b:9c:85:ad:a8: 3c:34:b6:ea:a5:5b:2f:f1:5c:06:3d:21:79:04:83:3a:94:2b: d7:b9:68:a4:a3:a9:1d:d9:60:19:11:0d:fc:7e:d6:6e:49:92: 4b:04:f0:eb:b8:2d:5e:c8:47:29:27:05:41:57:49:a0:ee:13: 33:5c:c8:0a:ef:ee:c4:9e:89:78:07:73:c8:13:be:57:d2:c2: 9f:25:a7:c9:97:72:e0:00:4b:ba:d9:b7:2a:af:90:6b:14:e7: bf:5d:99:7f:3b:ad:d2:37:25:f1:03:4e:2e:52:e0:59:26:ab: 6c:ef:88:2a:03:9d:6d:df:ef:8a:6f:40:19:16:3f:ed:be:de: c5:8c:3c:cb:bf:7c:46:2d:4f:ab:66:16:fe:3a:60:ab:ce:82: 90:7c:1a:08:71:46:f8:9c:a8:68:e4:c4:0e:a9:8e:ed:a8:b0: cd:74:4c:31 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVJiBEiCnaam4mxNIbXQCXVcaDwcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIwMzA2MDIwMVoX DTI3MDIwMjA2MDcwMVowMzExMC8GA1UEAxMoMENBMkJBNkE0NDYwREU4RjgyQ0RB M0QwQTA3QzBCN0ExRTg5REU1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5/6AcfTTdtwTocdEwtWs50Ylv3794y12qLxMkoBzIk+Ao/jDTga2fNiicq se6eEsiuKKXsyCbAhq63ii7zQe2beOwPSY9pamzCbpfMo6fQYrZG06G/bpwUN071 u1XLjSVUdTysT6/xr3W8/wVNC/MUjt8/Og4X25FDOOIZmyiWrqrs0w8j+GMvJ00L OsgWvrt4C5wmq79+q7oeuN0zPVm9mnbk66gYu3ScdnQtvM0ROU1aT8p+oi6GZdMi fMjruU1vGnOvL+Xkw5ze8D63WzwNN0YF3Tc7CAgbOiZMlGyJgqYG7UKN6F10Zqg0 UwjXmDOyQjD935j2na5VpVqEsUUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQMorpq RGDej4LNo9CgfAt6HoneVjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzMyNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf7mDANBgkqhkiG9w0BAQsFAAOCAQEAHegRItrJ8BGbOM1Nr5AD nj8v7BTcKnsRdXR9Bno88Ghb6nt+VttlXzDVFmLPS1R7ryRi20SXFVkyEmqgqBWO HVazBwVH1uNZit4ocSpe5rlrv3QB7Fucha2oPDS26qVbL/FcBj0heQSDOpQr17lo pKOpHdlgGREN/H7WbkmSSwTw67gtXshHKScFQVdJoO4TM1zICu/uxJ6JeAdzyBO+ V9LCnyWnyZdy4ABLutm3Kq+QaxTnv12Zfzut0jcl8QNOLlLgWSarbO+IKgOdbd/v im9AGRY/7b7exYw8y798Ri1Pq2YW/jpgq86CkHwaCHFG+JyoaOTEDqmO7aiwzXRM MQ== -----END CERTIFICATE-----Generated at Mon Mar 2 01:24:46 2026 by rpki-client