$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153583.roa File: AS153583.roa (raw, json) Hash identifier: QOny88j006kKgOszHOHl36TGUuz3Gt1GJ6IUh20lVUM= Subject key identifier: 41:DB:80:57:63:01:01:FE:9B:E2:EA:40:7E:28:4E:C6:E2:75:5A:48 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4070F38885225CC69F323C38B331A8531FD10400 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153583.roa Signing time: Mon 28 Jul 2025 03:51:05 +0000 ROA not before: Mon 28 Jul 2025 03:46:05 +0000 ROA not after: Mon 27 Jul 2026 03:51:05 +0000 asID: 153583 IP address blocks: 163.61.13.0/24 maxlen: 24 2001:df5:140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:70:f3:88:85:22:5c:c6:9f:32:3c:38:b3:31:a8:53:1f:d1:04:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 28 03:46:05 2025 GMT Not After : Jul 27 03:51:05 2026 GMT Subject: CN=41DB8057630101FE9BE2EA407E284EC6E2755A48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8b:0a:5d:7a:13:70:1d:43:0a:84:c2:58:99: 8f:73:02:70:c8:61:22:66:34:c3:50:4b:db:cd:59: a8:57:da:c2:8c:ec:47:7b:c0:b5:d7:db:6a:ab:59: 57:0d:45:00:7e:da:41:24:91:95:f6:44:97:cf:90: a5:aa:d2:13:cf:7f:48:0a:e8:c2:f4:45:30:24:c2: 36:a5:76:7c:1c:78:d6:f5:d1:00:44:3a:79:6d:df: 3f:a8:7f:51:66:3e:5e:7b:b2:d1:05:54:77:98:c7: f8:2e:21:f2:69:a1:54:27:78:ae:d8:6c:2c:8e:af: eb:13:14:a0:ef:8f:2f:a3:af:9c:dd:9b:ba:37:54: c8:19:7c:01:0f:81:de:07:88:52:0d:7f:dc:c8:e3: b7:2b:cf:62:51:33:86:fa:09:f4:30:8e:9a:be:d1: cc:09:5e:6c:29:93:0c:2f:e0:e5:63:5e:a6:96:e9: d5:d1:70:15:ab:8f:28:6b:2c:36:bd:c8:33:15:f2: 4f:3f:ad:9c:b7:f3:9f:eb:4b:56:3e:af:0e:57:e1: fb:8f:50:70:de:fe:77:3b:a2:49:98:3a:5d:fa:94: cc:08:18:44:d0:f5:96:94:fc:e2:19:f5:ad:3e:74: 60:45:0d:a8:66:65:78:7f:2a:8b:92:6b:1c:e0:70: f9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DB:80:57:63:01:01:FE:9B:E2:EA:40:7E:28:4E:C6:E2:75:5A:48 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153583.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.13.0/24 IPv6: 2001:df5:140::/48 Signature Algorithm: sha256WithRSAEncryption 4b:52:15:3a:96:ff:44:db:df:d7:95:52:52:b2:9f:2e:4d:6c: 35:c4:c7:34:9e:bf:45:bb:8e:9c:ce:dc:2a:56:c9:fb:49:84: d1:7a:ae:33:8a:fd:cb:c3:c8:c9:31:9d:1b:77:1d:f9:79:5c: 62:8f:ac:21:61:4b:28:fd:31:72:70:6f:d1:40:ad:2b:17:70: df:d1:a5:7a:3e:f9:c8:76:ef:d0:e1:4f:41:d0:25:e7:a3:08: 20:0e:9c:3b:0f:b9:e0:7e:47:80:ee:11:f7:c2:f8:6a:e4:6f: 1d:70:72:fd:9b:21:f7:ea:0c:1f:f6:29:43:e5:14:d5:bb:ab: ed:72:84:f9:c8:a3:ac:42:e5:c1:0e:02:d4:6d:2f:7f:bc:1c: 2e:35:a4:eb:43:4a:3b:8d:a0:e7:e4:21:8a:b5:cf:77:3c:b2: 57:b7:14:8d:30:89:87:1e:98:45:85:aa:ef:0c:d4:90:aa:71: cf:d0:d1:31:df:31:0a:69:19:31:04:14:b0:9e:d9:9d:05:0d: aa:93:7d:06:43:76:55:85:b1:5f:1f:3a:90:73:bb:a8:45:21: 4a:91:86:56:ff:6b:6d:92:30:4f:86:c2:79:d5:97:f1:36:a6: e5:21:17:3a:0c:57:f8:41:17:d6:92:2d:ce:58:72:ed:52:ba: 8a:87:2d:49 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUQHDziIUiXMafMjw4szGoUx/RBAAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyODAzNDYwNVoX DTI2MDcyNzAzNTEwNVowMzExMC8GA1UEAxMoNDFEQjgwNTc2MzAxMDFGRTlCRTJF QTQwN0UyODRFQzZFMjc1NUE0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqLCl16E3AdQwqEwliZj3MCcMhhImY0w1BL281ZqFfawozsR3vAtdfbaqtZ Vw1FAH7aQSSRlfZEl8+QparSE89/SArowvRFMCTCNqV2fBx41vXRAEQ6eW3fP6h/ UWY+Xnuy0QVUd5jH+C4h8mmhVCd4rthsLI6v6xMUoO+PL6OvnN2bujdUyBl8AQ+B 3geIUg1/3MjjtyvPYlEzhvoJ9DCOmr7RzAlebCmTDC/g5WNeppbp1dFwFauPKGss Nr3IMxXyTz+tnLfzn+tLVj6vDlfh+49QcN7+dzuiSZg6XfqUzAgYRND1lpT84hn1 rT50YEUNqGZleH8qi5JrHOBw+TECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRB24BX YwEB/pvi6kB+KE7G4nVaSDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKM9DTAPBAIAAjAJAwcAIAEN9QFAMA0GCSqGSIb3DQEBCwUAA4IB AQBLUhU6lv9E29/XlVJSsp8uTWw1xMc0nr9Fu46cztwqVsn7SYTReq4ziv3Lw8jJ MZ0bdx35eVxij6whYUso/TFycG/RQK0rF3Df0aV6PvnIdu/Q4U9B0CXnowggDpw7 D7ngfkeA7hH3wvhq5G8dcHL9myH36gwf9ilD5RTVu6vtcoT5yKOsQuXBDgLUbS9/ vBwuNaTrQ0o7jaDn5CGKtc93PLJXtxSNMImHHphFharvDNSQqnHP0NEx3zEKaRkx BBSwntmdBQ2qk30GQ3ZVhbFfHzqQc7uoRSFKkYZW/2ttkjBPhsJ51ZfxNqblIRc6 DFf4QRfWki3OWHLtUrqKhy1J -----END CERTIFICATE-----Generated at Wed Aug 6 03:57:56 2025 by rpki-client