$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153577.roa File: AS153577.roa (raw, json) Hash identifier: 0EZsZ0GLmbhbFcTnJh1DMDQVSAAzACNB7AdzEmQdaB0= Subject key identifier: 53:B3:ED:96:04:11:64:58:6C:50:4E:3F:9B:70:D8:20:60:CD:3A:DA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 079AB1EBE05939DB263810CE0495A065945A195B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153577.roa Signing time: Wed 01 Apr 2026 05:00:00 +0000 ROA not before: Wed 01 Apr 2026 04:55:00 +0000 ROA not after: Wed 31 Mar 2027 05:00:00 +0000 asID: 153577 IP address blocks: 163.61.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:9a:b1:eb:e0:59:39:db:26:38:10:ce:04:95:a0:65:94:5a:19:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 1 04:55:00 2026 GMT Not After : Mar 31 05:00:00 2027 GMT Subject: CN=53B3ED96041164586C504E3F9B70D82060CD3ADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:37:3e:0f:37:35:78:48:48:b5:c3:04:4b:e0: b2:6d:8d:52:df:68:90:b2:db:22:7d:15:64:fc:1e: ce:fe:de:79:5b:bb:98:27:41:fb:72:76:86:08:2b: d6:46:04:db:73:fa:65:23:84:88:69:16:41:28:db: c4:df:c4:e2:7b:b0:71:8d:ff:14:f3:8b:11:84:3c: c7:35:15:c3:25:37:fe:23:3f:b8:98:9f:75:3c:be: 42:af:2d:74:60:ff:e4:e5:66:ac:58:dd:d8:b4:3b: b0:f2:26:b0:14:9c:9a:12:88:b2:66:58:ca:8f:eb: 2e:dc:f5:7d:07:23:e7:e4:b2:ca:15:05:1e:2c:10: f9:8e:9c:d2:14:a1:b0:3f:bd:5c:12:59:1f:37:2e: c9:40:a3:9a:99:bb:bd:af:f3:e4:f7:a2:97:0b:1a: 34:73:06:cc:0f:e4:fd:c4:58:fd:f7:4b:55:59:89: 09:74:28:94:76:82:50:85:7a:5b:0c:eb:47:9f:03: b0:70:50:04:74:cf:96:c2:9e:31:21:ea:91:e0:0b: b1:9c:d9:d0:cd:42:59:27:a8:09:0d:dc:51:58:29: 95:a9:53:69:12:4a:7b:7a:00:8c:78:c3:76:6b:31: b2:0e:3b:6f:77:0a:bf:38:ab:b0:9b:f8:b1:ff:ba: e6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B3:ED:96:04:11:64:58:6C:50:4E:3F:9B:70:D8:20:60:CD:3A:DA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153577.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.54.0/24 Signature Algorithm: sha256WithRSAEncryption 64:98:6f:f8:54:c2:ad:1d:d0:99:3a:23:03:75:35:dc:44:60: 77:c1:9c:1c:82:6c:95:4d:5e:81:d8:58:54:5a:7d:f5:50:58: 1a:42:13:3b:a1:25:10:a0:8b:51:fd:af:00:5c:02:1a:2d:d8: d9:fe:ff:d5:4d:a0:41:db:00:50:e6:d3:8a:f7:9a:c7:d9:ea: 33:9f:4d:dc:6b:b8:bc:62:54:9a:b9:fc:53:17:e0:e9:f2:cc: 36:40:07:5d:62:0a:15:92:1b:12:2d:c0:e5:6d:9d:35:13:48: 71:93:ac:db:57:7b:6e:ca:9f:d3:84:b6:4f:03:51:2b:8c:ca: f0:af:6c:11:ec:64:45:8d:2e:70:30:0b:ba:66:13:73:6c:ff: a2:2a:0a:5b:f6:7c:36:ce:3b:58:37:cc:6c:7e:b8:33:df:5e: 5f:f8:ef:70:de:ee:23:a5:a6:c8:01:33:f1:24:e6:d4:bf:3d: c3:ea:07:67:9a:09:01:67:65:6a:e1:98:60:96:c1:e1:e5:b4: be:0a:94:3e:40:05:4b:a0:77:6c:75:bf:41:8a:e7:ed:2f:2a: f8:19:68:0b:e0:ae:c2:41:f1:bf:cf:19:27:5a:c7:7a:86:85: 9a:19:25:74:14:9d:79:b3:a2:ac:cd:f9:4d:c9:ef:f4:23:54: ad:35:1a:b2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB5qx6+BZOdsmOBDOBJWgZZRaGVswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwMTA0NTUwMFoX DTI3MDMzMTA1MDAwMFowMzExMC8GA1UEAxMoNTNCM0VEOTYwNDExNjQ1ODZDNTA0 RTNGOUI3MEQ4MjA2MENEM0FEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL03Pg83NXhISLXDBEvgsm2NUt9okLLbIn0VZPwezv7eeVu7mCdB+3J2hggr 1kYE23P6ZSOEiGkWQSjbxN/E4nuwcY3/FPOLEYQ8xzUVwyU3/iM/uJifdTy+Qq8t dGD/5OVmrFjd2LQ7sPImsBScmhKIsmZYyo/rLtz1fQcj5+SyyhUFHiwQ+Y6c0hSh sD+9XBJZHzcuyUCjmpm7va/z5PeilwsaNHMGzA/k/cRY/fdLVVmJCXQolHaCUIV6 WwzrR58DsHBQBHTPlsKeMSHqkeALsZzZ0M1CWSeoCQ3cUVgplalTaRJKe3oAjHjD dmsxsg47b3cKvzirsJv4sf+65t0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRTs+2W BBFkWGxQTj+bcNggYM062jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU3Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKM9NjANBgkqhkiG9w0BAQsFAAOCAQEAZJhv+FTCrR3QmTojA3U1 3ERgd8GcHIJslU1egdhYVFp99VBYGkITO6ElEKCLUf2vAFwCGi3Y2f7/1U2gQdsA UObTiveax9nqM59N3Gu4vGJUmrn8Uxfg6fLMNkAHXWIKFZIbEi3A5W2dNRNIcZOs 21d7bsqf04S2TwNRK4zK8K9sEexkRY0ucDALumYTc2z/oioKW/Z8Ns47WDfMbH64 M99eX/jvcN7uI6WmyAEz8STm1L89w+oHZ5oJAWdlauGYYJbB4eW0vgqUPkAFS6B3 bHW/QYrn7S8q+BloC+CuwkHxv88ZJ1rHeoaFmhkldBSdebOirM35Tcnv9CNUrTUa sg== -----END CERTIFICATE-----Generated at Fri Apr 17 08:15:17 2026 by rpki-client