$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153576.roa File: AS153576.roa (raw, json) Hash identifier: kRQkkrEX4XCOqubYN2hFUuXixHHriNlIaXddXW4tahg= Subject key identifier: 36:A7:F4:EE:49:A2:E6:46:8D:1B:BB:D2:C5:19:81:BF:41:B6:D7:17 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 61A7C1FD6F9977AC4E09E24FCA511835FE03BBDA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153576.roa Signing time: Wed 15 Apr 2026 10:16:44 +0000 ROA not before: Wed 15 Apr 2026 10:11:44 +0000 ROA not after: Wed 14 Apr 2027 10:16:44 +0000 asID: 153576 IP address blocks: 163.61.82.0/23 maxlen: 24 2001:df5:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:a7:c1:fd:6f:99:77:ac:4e:09:e2:4f:ca:51:18:35:fe:03:bb:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 15 10:11:44 2026 GMT Not After : Apr 14 10:16:44 2027 GMT Subject: CN=36A7F4EE49A2E6468D1BBBD2C51981BF41B6D717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:39:08:12:ae:99:05:43:10:ad:0c:93:e4:b0: 25:9d:8f:42:ee:1f:a9:ea:8f:d6:b8:ed:0b:db:90: 2f:85:60:2e:78:89:fe:5e:9d:70:5e:47:95:a6:f8: b6:bb:68:6a:6b:8d:81:ca:33:d9:1c:c1:ea:02:b9: 6b:9b:26:02:0c:42:b7:58:08:f3:75:2a:56:93:25: b3:b3:19:9a:fb:db:2f:c1:0c:fe:33:71:2f:75:b8: 6d:7c:d2:96:20:2a:e8:ba:c6:22:a6:4f:69:ab:df: a1:d3:8d:33:d1:35:7c:80:b8:e6:8e:94:c6:c3:15: 12:e5:c4:b5:80:44:c8:33:72:cb:76:d3:7b:8e:b5: f2:52:a3:48:01:70:6b:ef:72:c9:83:b4:d6:66:6b: c6:9c:1a:58:76:bf:fb:f7:05:53:02:ad:25:1e:55: 94:5c:eb:68:73:f0:00:c9:15:41:a8:b2:53:ec:b6: 72:f5:77:31:2d:56:a6:29:15:08:0d:db:ec:fe:d1: 6e:b1:44:88:89:80:18:45:0a:58:25:38:d7:65:f3: d9:67:de:da:0b:7a:43:85:2c:a6:c1:b7:0f:bc:46: 8a:a3:45:f4:c0:23:0b:57:7a:e5:bf:8b:85:83:69: 0d:ab:b6:3e:94:66:0a:c8:10:54:90:81:91:03:a2: f4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A7:F4:EE:49:A2:E6:46:8D:1B:BB:D2:C5:19:81:BF:41:B6:D7:17 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.82.0/23 IPv6: 2001:df5:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 64:f2:d0:3e:73:05:c4:ef:a8:0e:9b:55:08:9d:7d:28:8f:ad: 42:fa:62:8b:0f:db:2c:e9:7d:6d:61:36:a7:75:d0:b2:41:02: 37:56:79:24:32:4c:d5:d8:6a:7c:69:61:f4:2d:51:86:29:91: 6d:02:c0:46:5a:2c:a5:7f:2c:60:63:f8:cc:36:e8:d6:31:e3: 84:97:03:1a:8d:c3:f9:54:54:7e:f2:b1:72:f8:40:76:72:54: ae:23:34:54:5e:ee:47:10:92:e8:23:63:95:62:d8:75:54:69: 27:a5:75:8b:8a:99:c1:f6:ed:58:86:16:80:fd:36:85:9f:03: 74:d8:2d:0f:4e:84:86:a9:24:1f:2b:85:b5:a2:29:f3:ce:41: 0b:33:a3:22:9a:54:ca:b7:45:e5:93:79:83:30:51:01:26:74: f8:95:af:c9:ae:8a:aa:ec:5c:92:1d:62:0a:83:7a:40:30:8d: 0f:b3:0a:fa:8d:51:d5:7a:53:e8:96:88:e6:24:89:38:ba:8f: 69:0d:f9:fd:c6:3e:90:ee:40:85:19:e9:ab:cb:8a:6e:ce:07: 2e:a5:09:78:2e:67:b3:dd:e2:a3:e8:60:f3:40:b3:cc:ed:1d: 1f:6c:00:93:1b:35:61:24:4a:37:53:37:06:14:19:49:c1:94: c3:64:15:46 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUYafB/W+Zd6xOCeJPylEYNf4Du9owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQxNTEwMTE0NFoX DTI3MDQxNDEwMTY0NFowMzExMC8GA1UEAxMoMzZBN0Y0RUU0OUEyRTY0NjhEMUJC QkQyQzUxOTgxQkY0MUI2RDcxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ5CBKumQVDEK0Mk+SwJZ2PQu4fqeqP1rjtC9uQL4VgLniJ/l6dcF5Hlab4 trtoamuNgcoz2RzB6gK5a5smAgxCt1gI83UqVpMls7MZmvvbL8EM/jNxL3W4bXzS liAq6LrGIqZPaavfodONM9E1fIC45o6UxsMVEuXEtYBEyDNyy3bTe4618lKjSAFw a+9yyYO01mZrxpwaWHa/+/cFUwKtJR5VlFzraHPwAMkVQaiyU+y2cvV3MS1WpikV CA3b7P7RbrFEiImAGEUKWCU412Xz2Wfe2gt6Q4UspsG3D7xGiqNF9MAjC1d65b+L hYNpDau2PpRmCsgQVJCBkQOi9N8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQ2p/Tu SaLmRo0bu9LFGYG/QbbXFzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaM9UjAPBAIAAjAJAwcAIAEN9RDAMA0GCSqGSIb3DQEBCwUAA4IB AQBk8tA+cwXE76gOm1UInX0oj61C+mKLD9ss6X1tYTanddCyQQI3VnkkMkzV2Gp8 aWH0LVGGKZFtAsBGWiylfyxgY/jMNujWMeOElwMajcP5VFR+8rFy+EB2clSuIzRU Xu5HEJLoI2OVYth1VGknpXWLipnB9u1YhhaA/TaFnwN02C0PToSGqSQfK4W1oinz zkELM6MimlTKt0Xlk3mDMFEBJnT4la/Jroqq7FySHWIKg3pAMI0Pswr6jVHVelPo lojmJIk4uo9pDfn9xj6Q7kCFGemry4puzgcupQl4Lmez3eKj6GDzQLPM7R0fbACT GzVhJEo3UzcGFBlJwZTDZBVG -----END CERTIFICATE-----Generated at Fri Apr 17 16:02:53 2026 by rpki-client