$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153573.roa File: AS153573.roa (raw, json) Hash identifier: 8eD91g/1tl5iwJ9hnFf9W6pP2ugl8XrxZUHbrZQmBks= Subject key identifier: 8B:C8:04:24:56:E8:A0:47:DE:1F:C4:0C:BF:08:C6:FB:0A:DB:C1:A1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D01CAC300D7D6E028E179A1B764C567B2749B74 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153573.roa Signing time: Tue 07 Apr 2026 05:00:00 +0000 ROA not before: Tue 07 Apr 2026 04:55:00 +0000 ROA not after: Tue 06 Apr 2027 05:00:00 +0000 asID: 153573 IP address blocks: 163.61.47.0/24 maxlen: 24 2001:df5:740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:01:ca:c3:00:d7:d6:e0:28:e1:79:a1:b7:64:c5:67:b2:74:9b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 7 04:55:00 2026 GMT Not After : Apr 6 05:00:00 2027 GMT Subject: CN=8BC8042456E8A047DE1FC40CBF08C6FB0ADBC1A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:6a:4e:46:fe:0e:1c:c0:8a:89:60:ea:49: 22:5c:e9:f1:07:72:02:8d:39:7f:ac:d6:72:78:a3: 4d:7d:eb:99:6b:55:23:4d:52:26:b0:60:72:a7:4b: 31:59:c2:2f:6d:ee:6f:46:47:77:dd:10:3b:9f:4d: 89:bc:f5:7c:97:9a:37:45:59:22:41:41:6c:01:17: a2:9b:04:11:61:77:3c:46:64:4a:99:b4:8b:43:da: ad:fa:73:4e:81:3b:c4:5b:d0:8d:e9:bc:e8:4a:7c: f3:24:86:7c:59:fb:71:dd:df:b9:45:c6:76:85:f7: 0c:45:f8:d0:db:07:0f:75:f3:fe:42:bc:89:5d:a1: 88:a0:94:cf:94:59:7e:73:a2:60:b7:44:d8:08:d0: 3a:f5:c7:fa:9b:db:e3:fa:6b:dd:c0:51:a0:63:ef: c6:d7:a6:69:8c:9b:ae:0e:3a:1a:13:68:bb:45:85: 4a:11:28:cf:db:4a:97:c6:9c:4c:d8:64:d4:c6:d4: ca:2d:84:cd:0d:84:1e:9a:3e:df:21:e9:21:20:10: 33:6a:e9:83:33:9c:40:69:98:54:b0:f6:86:9a:52: 0f:d0:de:e2:cd:52:6b:56:af:e1:ca:ff:85:6d:1d: 0a:0f:84:b0:1c:f6:37:f9:d1:dd:82:c1:8c:34:6e: 2d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C8:04:24:56:E8:A0:47:DE:1F:C4:0C:BF:08:C6:FB:0A:DB:C1:A1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153573.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.47.0/24 IPv6: 2001:df5:740::/48 Signature Algorithm: sha256WithRSAEncryption 87:dc:9d:0b:9f:46:b1:fd:04:77:00:84:08:82:2c:77:85:e0: 78:28:c9:6b:ae:31:09:b4:b0:04:66:fd:70:bb:5e:53:16:b4: fa:f0:7a:1d:9d:24:98:c4:5d:d3:15:42:60:bb:f2:b1:b0:1d: e7:e3:8e:2c:a8:b2:cd:2d:9e:f8:05:d7:a9:33:90:7b:3e:79: 33:63:d5:a6:8d:52:87:ba:10:6a:51:0e:62:b4:fc:b0:34:18: 9a:7b:43:33:94:96:96:8b:38:29:3c:83:37:ed:3e:30:77:b4: a3:e4:0b:4d:cd:fa:96:dc:52:8b:7d:71:55:6a:5c:64:3d:7e: 10:dd:07:c1:61:2c:12:09:5d:ec:73:49:6a:20:0d:c5:fa:71: e5:e2:5b:4f:95:4a:d6:07:b5:bb:ab:56:92:ae:73:ec:d3:63: cd:cd:c9:62:ac:6a:56:ed:48:a6:95:8a:5d:dc:87:03:44:95: 09:4a:e0:d5:65:71:a3:91:ca:58:89:70:6a:49:72:be:14:ec: 77:09:de:dc:e5:63:c1:d3:23:a7:9e:8f:aa:a3:1f:a6:50:44: 9a:5f:ae:ca:f6:8a:24:33:a1:01:e9:99:73:80:43:f1:2c:ba: 51:4d:92:62:3a:fc:eb:95:d4:ca:7e:98:38:48:56:76:25:23: 6e:ba:09:be -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUfQHKwwDX1uAo4Xmht2TFZ7J0m3QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwNzA0NTUwMFoX DTI3MDQwNjA1MDAwMFowMzExMC8GA1UEAxMoOEJDODA0MjQ1NkU4QTA0N0RFMUZD NDBDQkYwOEM2RkIwQURCQzFBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALL6ak5G/g4cwIqJYOpJIlzp8QdyAo05f6zWcnijTX3rmWtVI01SJrBgcqdL MVnCL23ub0ZHd90QO59Nibz1fJeaN0VZIkFBbAEXopsEEWF3PEZkSpm0i0Parfpz ToE7xFvQjem86Ep88ySGfFn7cd3fuUXGdoX3DEX40NsHD3Xz/kK8iV2hiKCUz5RZ fnOiYLdE2AjQOvXH+pvb4/pr3cBRoGPvxtemaYybrg46GhNou0WFShEoz9tKl8ac TNhk1MbUyi2EzQ2EHpo+3yHpISAQM2rpgzOcQGmYVLD2hppSD9De4s1Sa1av4cr/ hW0dCg+EsBz2N/nR3YLBjDRuLeMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSLyAQk VuigR94fxAy/CMb7CtvBoTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKM9LzAPBAIAAjAJAwcAIAEN9QdAMA0GCSqGSIb3DQEBCwUAA4IB AQCH3J0Ln0ax/QR3AIQIgix3heB4KMlrrjEJtLAEZv1wu15TFrT68HodnSSYxF3T FUJgu/KxsB3n444sqLLNLZ74BdepM5B7PnkzY9WmjVKHuhBqUQ5itPywNBiae0Mz lJaWizgpPIM37T4wd7Sj5AtNzfqW3FKLfXFValxkPX4Q3QfBYSwSCV3sc0lqIA3F +nHl4ltPlUrWB7W7q1aSrnPs02PNzclirGpW7UimlYpd3IcDRJUJSuDVZXGjkcpY iXBqSXK+FOx3Cd7c5WPB0yOnno+qox+mUESaX67K9ookM6EB6ZlzgEPxLLpRTZJi OvzrldTKfpg4SFZ2JSNuugm+ -----END CERTIFICATE-----Generated at Fri Apr 17 08:16:38 2026 by rpki-client