$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153559.roa File: AS153559.roa (raw, json) Hash identifier: lhSC3HbtzZFLvR3BiYT/h4ZNAKQNYN6Ogcd3adRrna4= Subject key identifier: C4:9D:CF:BB:DC:DE:BD:19:2E:4C:B6:A3:6B:89:D3:7D:5A:C9:1C:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 02600D0F694646C8812ABB1C97F357FED1C6D6DD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153559.roa Signing time: Fri 06 Feb 2026 02:00:00 +0000 ROA not before: Fri 06 Feb 2026 01:55:00 +0000 ROA not after: Fri 05 Feb 2027 02:00:00 +0000 asID: 153559 IP address blocks: 163.47.46.0/24 maxlen: 24 2001:df4:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:60:0d:0f:69:46:46:c8:81:2a:bb:1c:97:f3:57:fe:d1:c6:d6:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 6 01:55:00 2026 GMT Not After : Feb 5 02:00:00 2027 GMT Subject: CN=C49DCFBBDCDEBD192E4CB6A36B89D37D5AC91C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:3f:95:3c:ad:a0:15:06:39:a2:75:cb:e6:b6: 9f:ef:a5:44:05:8f:14:81:01:11:07:29:33:49:e5: 73:a2:70:c7:67:7f:01:ac:dd:f4:15:33:e5:e7:d4: ab:03:86:e6:9c:d4:78:b3:88:f3:49:d6:e6:d0:0c: 1c:7e:46:d1:5b:a5:53:3e:28:bd:af:6f:fb:4c:e8: 5e:39:bf:b5:5c:cf:68:ae:25:18:62:5b:ad:9b:de: a9:1f:39:7e:59:0c:51:a7:4e:92:a4:55:94:73:5f: 8e:5f:8b:ca:d3:55:ba:70:28:02:df:45:08:b5:52: f9:9c:34:f0:db:de:19:36:96:a7:c4:7b:ae:35:c2: f5:ae:c8:62:35:7c:c1:8e:79:4f:19:b9:21:47:eb: 33:ae:60:0b:67:6a:fb:76:4f:13:42:ef:7f:92:6a: e6:0d:b9:9c:d0:c6:41:a2:5b:77:83:93:fe:b4:41: 43:85:4b:33:fe:7a:d1:b4:b7:cc:9b:8b:7c:7e:fe: 37:bd:59:8e:09:73:c3:61:fa:b8:d2:3e:2b:7f:2c: a0:5e:7e:30:27:ce:35:9a:5a:c0:ef:bc:47:c6:4c: c7:56:92:b5:d4:83:bf:fc:1d:fd:45:05:d4:73:7d: 42:8e:d8:03:c7:cc:19:b7:03:1f:77:9f:8e:b5:f7: 85:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9D:CF:BB:DC:DE:BD:19:2E:4C:B6:A3:6B:89:D3:7D:5A:C9:1C:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153559.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.47.46.0/24 IPv6: 2001:df4:fec0::/48 Signature Algorithm: sha256WithRSAEncryption 70:88:d8:57:e1:ca:e5:3c:40:e1:97:d0:6e:47:02:29:22:86: 78:43:06:c2:44:ca:01:81:02:7e:d5:f1:13:8a:8a:73:43:05: af:a7:d4:a4:50:52:6c:31:ce:62:a7:d8:96:06:90:c7:af:bd: be:94:eb:d1:72:1b:fd:0e:95:a9:87:ec:43:b9:2a:db:c4:e3: d0:52:2d:a9:7e:03:fc:96:2a:65:c4:45:3c:9d:83:d4:37:bf: 2b:eb:b1:2d:a8:4e:fd:21:e2:8c:0a:5d:4a:54:6c:99:9e:d4: 67:05:eb:c1:3a:64:8b:b4:80:30:8b:cd:27:c9:d8:26:3a:95: 4e:ce:d3:37:ac:2f:aa:62:b3:aa:41:f6:a5:72:c3:6b:21:27: 85:d4:ec:73:f8:c1:06:45:64:79:ae:24:01:90:bc:9e:02:67: c4:86:c6:c3:9a:cc:df:a4:25:9c:2c:26:d6:f6:03:a1:82:12: 6a:ff:e9:aa:a7:b6:46:72:9b:bc:25:5c:9f:d4:92:c8:af:75: be:12:34:4a:dc:84:85:14:be:4a:7b:11:69:b9:d8:b6:af:70: e7:e8:d1:3c:de:85:fd:3c:92:c4:0c:f0:5c:a2:59:d1:26:33: 12:2e:40:47:d4:7a:b6:d8:65:75:5a:14:48:f5:17:11:3d:6e: 86:16:96:ef -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUAmAND2lGRsiBKrscl/NX/tHG1t0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIwNjAxNTUwMFoX DTI3MDIwNTAyMDAwMFowMzExMC8GA1UEAxMoQzQ5RENGQkJEQ0RFQkQxOTJFNENC NkEzNkI4OUQzN0Q1QUM5MUMyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOc/lTytoBUGOaJ1y+a2n++lRAWPFIEBEQcpM0nlc6Jwx2d/Aazd9BUz5efU qwOG5pzUeLOI80nW5tAMHH5G0VulUz4ova9v+0zoXjm/tVzPaK4lGGJbrZveqR85 flkMUadOkqRVlHNfjl+LytNVunAoAt9FCLVS+Zw08NveGTaWp8R7rjXC9a7IYjV8 wY55Txm5IUfrM65gC2dq+3ZPE0Lvf5Jq5g25nNDGQaJbd4OT/rRBQ4VLM/560bS3 zJuLfH7+N71Zjglzw2H6uNI+K38soF5+MCfONZpawO+8R8ZMx1aStdSDv/wd/UUF 1HN9Qo7YA8fMGbcDH3efjrX3hXMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTEnc+7 3N69GS5MtqNridN9WskcJzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKMvLjAPBAIAAjAJAwcAIAEN9P7AMA0GCSqGSIb3DQEBCwUAA4IB AQBwiNhX4crlPEDhl9BuRwIpIoZ4QwbCRMoBgQJ+1fETiopzQwWvp9SkUFJsMc5i p9iWBpDHr72+lOvRchv9DpWph+xDuSrbxOPQUi2pfgP8liplxEU8nYPUN78r67Et qE79IeKMCl1KVGyZntRnBevBOmSLtIAwi80nydgmOpVOztM3rC+qYrOqQfalcsNr ISeF1Oxz+MEGRWR5riQBkLyeAmfEhsbDmszfpCWcLCbW9gOhghJq/+mqp7ZGcpu8 JVyf1JLIr3W+EjRK3ISFFL5KexFpudi2r3Dn6NE83oX9PJLEDPBcolnRJjMSLkBH 1Hq22GV1WhRI9RcRPW6GFpbv -----END CERTIFICATE-----Generated at Mon Mar 2 03:01:45 2026 by rpki-client