$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153673.roa File: AS153673.roa (raw, json) Hash identifier: nEXNLv6t2Q/zUZFRI5IJsyaEwGey85ABUUkjgrj6a3s= Subject key identifier: 36:08:05:DC:9C:A5:D9:18:80:D4:19:6C:29:DE:1F:20:35:9B:66:29 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F67DA9ECDC09CAD15BC0AE8170B704FE939D048 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153673.roa Signing time: Tue 10 Feb 2026 01:00:00 +0000 ROA not before: Tue 10 Feb 2026 00:55:00 +0000 ROA not after: Tue 09 Feb 2027 01:00:00 +0000 asID: 153673 IP address blocks: 163.223.2.0/23 maxlen: 24 2001:df5:2ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:67:da:9e:cd:c0:9c:ad:15:bc:0a:e8:17:0b:70:4f:e9:39:d0:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 10 00:55:00 2026 GMT Not After : Feb 9 01:00:00 2027 GMT Subject: CN=360805DC9CA5D91880D4196C29DE1F20359B6629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9e:44:e0:82:3d:dc:0e:e3:dc:93:37:fa:ef: 1f:c4:2b:e3:ff:1e:73:88:76:97:83:54:14:89:ab: a6:aa:0e:30:9f:68:c8:4f:a1:0f:c1:fa:79:55:b3: b7:2b:f1:74:6b:57:d7:ca:82:e5:45:4c:bf:bb:07: a6:8a:bf:35:0f:fc:26:36:fd:2d:e6:69:68:4c:6b: 53:53:a3:db:3d:68:8e:37:32:0e:89:f7:fd:33:f4: 04:2c:70:da:93:65:66:23:87:37:2a:71:db:c8:17: 02:93:a6:b9:9e:1b:b1:af:eb:d4:89:b2:bf:08:14: c2:91:bb:b5:fc:91:6d:67:af:36:13:41:c8:3b:8f: 86:9e:f9:e1:74:4f:f4:27:3f:ea:a0:b6:e8:32:42: 8a:fb:99:68:09:69:dd:ac:75:2a:4b:18:7d:bc:b9: 52:f4:02:2e:fc:2e:0f:5e:33:8a:2a:67:0d:52:85: 23:4c:26:68:95:cc:89:c4:e2:ca:ec:d3:b8:a7:db: 75:e5:f3:82:38:10:d1:01:04:f8:9d:f2:41:78:5f: c1:bc:ef:6b:e5:41:1c:77:d9:fc:7d:99:02:05:49: 5e:24:b9:2b:f2:93:04:6e:e9:a5:08:13:67:a3:55: 61:38:40:97:1f:48:ca:31:08:e7:b9:af:99:4c:fc: f8:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:08:05:DC:9C:A5:D9:18:80:D4:19:6C:29:DE:1F:20:35:9B:66:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153673.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.2.0/23 IPv6: 2001:df5:2ac0::/48 Signature Algorithm: sha256WithRSAEncryption 71:0c:f8:b6:77:8d:1d:bf:a6:82:d0:7b:a5:17:11:d0:63:01: 28:84:5f:01:d2:eb:eb:21:4c:66:8f:21:05:68:8f:76:d0:aa: 55:8b:c7:1b:f8:44:33:40:b0:68:97:eb:e0:20:1c:85:a7:59: 6f:35:8d:bb:bd:3a:78:16:c1:d6:68:f3:2d:a1:fd:90:b8:71: 03:21:82:a4:2a:c5:4f:0f:50:07:37:4d:a4:25:fc:af:ba:3e: 79:f9:44:60:2a:41:77:b4:3f:d1:36:87:2a:1a:76:43:a7:5f: 0c:63:9c:37:d8:94:b5:95:68:e5:35:30:f5:57:83:b7:56:f6: 2b:b7:83:03:65:48:c0:39:f0:99:37:72:b7:f7:51:1a:f7:f8: 78:84:7a:a1:d2:ce:86:4b:fe:8c:f1:ce:b1:00:fa:d6:95:0f: 16:fc:9e:e7:f5:67:13:ce:04:b0:a7:be:c7:e1:56:c7:88:6a: 35:fc:15:4e:a8:98:13:c6:1c:12:84:4c:69:41:03:d7:7b:f4: 24:47:ef:8a:89:98:21:c7:2b:8d:ea:8d:30:8f:fb:91:97:7c: ee:9b:a7:2a:0e:b8:e2:a5:dc:3d:5c:bf:55:4c:e1:d5:c5:28: a8:54:f9:0d:36:d0:cb:1b:3e:32:ab:6f:5b:4f:16:9e:aa:fd: 8c:6f:a0:ad -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUX2fans3AnK0VvAroFwtwT+k50EgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIxMDAwNTUwMFoX DTI3MDIwOTAxMDAwMFowMzExMC8GA1UEAxMoMzYwODA1REM5Q0E1RDkxODgwRDQx OTZDMjlERTFGMjAzNTlCNjYyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGeROCCPdwO49yTN/rvH8Qr4/8ec4h2l4NUFImrpqoOMJ9oyE+hD8H6eVWz tyvxdGtX18qC5UVMv7sHpoq/NQ/8Jjb9LeZpaExrU1Oj2z1ojjcyDon3/TP0BCxw 2pNlZiOHNypx28gXApOmuZ4bsa/r1ImyvwgUwpG7tfyRbWevNhNByDuPhp754XRP 9Cc/6qC26DJCivuZaAlp3ax1KksYfby5UvQCLvwuD14ziipnDVKFI0wmaJXMicTi yuzTuKfbdeXzgjgQ0QEE+J3yQXhfwbzva+VBHHfZ/H2ZAgVJXiS5K/KTBG7ppQgT Z6NVYThAlx9IyjEI57mvmUz8+CUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQ2CAXc nKXZGIDUGWwp3h8gNZtmKTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzY3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPfAjAPBAIAAjAJAwcAIAEN9SrAMA0GCSqGSIb3DQEBCwUAA4IB AQBxDPi2d40dv6aC0HulFxHQYwEohF8B0uvrIUxmjyEFaI920KpVi8cb+EQzQLBo l+vgIByFp1lvNY27vTp4FsHWaPMtof2QuHEDIYKkKsVPD1AHN02kJfyvuj55+URg KkF3tD/RNocqGnZDp18MY5w32JS1lWjlNTD1V4O3VvYrt4MDZUjAOfCZN3K391Ea 9/h4hHqh0s6GS/6M8c6xAPrWlQ8W/J7n9WcTzgSwp77H4VbHiGo1/BVOqJgTxhwS hExpQQPXe/QkR++KiZghxyuN6o0wj/uRl3zum6cqDrjipdw9XL9VTOHVxSioVPkN NtDLGz4yq29bTxaeqv2Mb6Ct -----END CERTIFICATE-----Generated at Sun Mar 1 21:59:54 2026 by rpki-client