$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153565.roa File: AS153565.roa (raw, json) Hash identifier: GPa6tSUTG1EM23sQiu3tzNC2fMyftT80vbwiNGHx1Pg= Subject key identifier: B4:30:CB:0C:74:10:9B:BA:8F:8E:F2:05:2A:76:13:F0:F1:CF:5E:52 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7DD46AECF03B80D65140472EA9AFCC3FE5375001 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153565.roa Signing time: Fri 13 Feb 2026 06:00:00 +0000 ROA not before: Fri 13 Feb 2026 05:55:00 +0000 ROA not after: Fri 12 Feb 2027 06:00:00 +0000 asID: 153565 IP address blocks: 2001:df4:f2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d4:6a:ec:f0:3b:80:d6:51:40:47:2e:a9:af:cc:3f:e5:37:50:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 13 05:55:00 2026 GMT Not After : Feb 12 06:00:00 2027 GMT Subject: CN=B430CB0C74109BBA8F8EF2052A7613F0F1CF5E52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:05:82:12:da:9f:f6:9c:0e:e1:b5:a7:33:ef: a0:fe:0a:10:d9:02:5b:1f:ac:c4:dd:69:db:f5:0e: 28:9b:42:77:71:c7:d4:03:64:68:f0:23:cb:84:b9: 45:8f:16:e6:f6:8a:69:2b:4f:47:19:d0:a8:58:e9: 2f:41:61:1c:e6:16:f0:c1:59:0d:f2:ca:41:be:32: 1e:f3:f9:4f:60:d0:0c:19:44:27:f8:7e:20:33:a1: a6:c2:a5:ad:cc:e7:eb:4c:ce:59:07:60:30:71:8b: 26:66:52:3d:67:e8:cd:15:00:be:f4:16:3d:c6:b7: ea:16:d1:02:af:b2:ad:13:f2:7f:37:23:9f:0c:4e: 38:67:6f:26:b9:3b:63:f9:26:d5:9d:f8:19:d1:6f: e7:5a:a9:e6:de:45:47:08:5c:7c:0d:96:c4:ed:49: d6:1b:82:ac:fd:6f:71:06:f6:c1:34:9c:ba:72:eb: c4:46:91:8b:74:00:02:0f:e4:f3:75:1b:4f:df:cb: bc:61:fd:bd:26:83:f8:4a:55:e6:64:69:a1:94:2f: 06:11:b8:ff:e1:0d:69:40:3c:d8:5e:27:a8:e7:59: 82:e3:bf:0c:a4:5d:ff:7a:25:fc:54:e7:1e:78:7a: b3:73:3d:c5:a2:d6:55:20:db:49:6f:e3:e6:cf:f8: 3a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:30:CB:0C:74:10:9B:BA:8F:8E:F2:05:2A:76:13:F0:F1:CF:5E:52 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153565.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f2c0::/48 Signature Algorithm: sha256WithRSAEncryption 29:3e:07:6a:5a:03:94:77:7d:f1:1a:d3:b3:68:be:33:16:0b: 94:4e:51:a0:6a:9a:22:70:0e:b0:3e:7f:49:e0:45:18:e5:0f: 1d:1e:dc:23:29:ce:fa:b9:41:af:41:59:e2:53:d0:65:14:63: a1:bd:40:24:3b:f4:e9:dd:0b:9c:c7:03:f2:0f:14:db:33:39: 77:3d:dc:fe:75:25:6b:a1:cc:01:6b:fd:eb:0b:2b:15:e1:18: 32:d8:8f:b5:cc:b3:72:2c:ba:b5:5b:9c:87:9e:30:33:53:d5: d4:55:75:65:bc:f6:cb:62:7a:1f:71:a4:f4:d5:5e:6d:3c:23: 3c:2e:7f:35:bd:66:c2:6b:80:5d:3f:c3:0e:fe:7f:fc:e9:db: 97:17:c1:af:d1:60:3b:a5:ec:45:4b:60:d2:8a:14:e8:02:1e: e2:15:7e:a2:7d:6e:49:af:1f:73:97:78:5d:9c:37:46:5b:15: 89:cf:8d:ae:6e:bb:ad:85:ba:ac:3d:04:90:e3:ad:6e:8b:fb: 5d:7b:be:e1:3b:51:10:06:8b:e8:dd:c3:11:38:ed:10:10:4f: 3d:47:3f:52:1e:4b:46:5f:34:4a:54:ee:25:fe:af:12:e1:70: 50:af:83:12:91:cd:a5:1a:90:83:a0:b1:fb:9f:b8:e7:38:83: f6:7d:de:b0 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUfdRq7PA7gNZRQEcuqa/MP+U3UAEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIxMzA1NTUwMFoX DTI3MDIxMjA2MDAwMFowMzExMC8GA1UEAxMoQjQzMENCMEM3NDEwOUJCQThGOEVG MjA1MkE3NjEzRjBGMUNGNUU1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0FghLan/acDuG1pzPvoP4KENkCWx+sxN1p2/UOKJtCd3HH1ANkaPAjy4S5 RY8W5vaKaStPRxnQqFjpL0FhHOYW8MFZDfLKQb4yHvP5T2DQDBlEJ/h+IDOhpsKl rczn60zOWQdgMHGLJmZSPWfozRUAvvQWPca36hbRAq+yrRPyfzcjnwxOOGdvJrk7 Y/km1Z34GdFv51qp5t5FRwhcfA2WxO1J1huCrP1vcQb2wTScunLrxEaRi3QAAg/k 83UbT9/LvGH9vSaD+EpV5mRpoZQvBhG4/+ENaUA82F4nqOdZguO/DKRd/3ol/FTn Hnh6s3M9xaLWVSDbSW/j5s/4Os8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBS0MMsM dBCbuo+O8gUqdhPw8c9eUjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfTywDANBgkqhkiG9w0BAQsFAAOCAQEAKT4HaloDlHd98RrT s2i+MxYLlE5RoGqaInAOsD5/SeBFGOUPHR7cIynO+rlBr0FZ4lPQZRRjob1AJDv0 6d0LnMcD8g8U2zM5dz3c/nUla6HMAWv96wsrFeEYMtiPtcyzciy6tVuch54wM1PV 1FV1Zbz2y2J6H3Gk9NVebTwjPC5/Nb1mwmuAXT/DDv5//OnblxfBr9FgO6XsRUtg 0ooU6AIe4hV+on1uSa8fc5d4XZw3RlsVic+Nrm67rYW6rD0EkOOtbov7XXu+4TtR EAaL6N3DETjtEBBPPUc/Uh5LRl80SlTuJf6vEuFwUK+DEpHNpRqQg6Cx+5+45ziD 9n3esA== -----END CERTIFICATE-----Generated at Mon Mar 2 03:02:10 2026 by rpki-client