$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153682.roa File: AS153682.roa (raw, json) Hash identifier: pGiWs1Y7gQ0sGAxlWmUcMy0URo4CCVYrOdApfjLg6GI= Subject key identifier: 83:5E:B9:6D:4C:4B:9F:96:38:ED:88:EB:67:E6:A6:B0:2B:E6:CB:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 68EFF8E9CE6F3B7343D51D8F7E4CBF9D5148E784 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153682.roa Signing time: Mon 02 Jun 2025 07:35:58 +0000 ROA not before: Mon 02 Jun 2025 07:30:58 +0000 ROA not after: Mon 01 Jun 2026 07:35:58 +0000 asID: 153682 IP address blocks: 163.223.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 09:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ef:f8:e9:ce:6f:3b:73:43:d5:1d:8f:7e:4c:bf:9d:51:48:e7:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 2 07:30:58 2025 GMT Not After : Jun 1 07:35:58 2026 GMT Subject: CN=835EB96D4C4B9F9638ED88EB67E6A6B02BE6CB90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:ef:0d:36:84:05:be:a4:b5:59:cf:5a:47: 22:2d:e6:5e:53:ef:9a:83:87:18:63:9d:ca:af:95: 85:dc:23:df:2f:82:ba:ea:de:9f:62:4d:9c:57:4e: 8f:d0:95:c3:02:f9:0d:98:45:4f:83:bb:2e:4a:ef: 4a:90:e0:f8:7a:83:d2:fd:6a:86:81:b6:07:82:2a: dd:1c:b9:38:6e:2d:96:c8:62:54:07:e4:8a:7a:4d: ab:ee:50:61:8b:c4:0a:b8:73:03:39:58:88:ac:42: ee:96:12:2a:00:8f:80:6d:b8:0a:dd:b7:66:51:9f: 6c:a1:c1:63:bc:e1:6b:90:43:93:90:e4:f6:04:88: 18:74:63:14:dd:e5:02:13:a1:37:0c:32:5d:bd:50: 70:17:e4:d2:94:39:b8:26:7c:d9:66:36:58:a9:db: b8:ca:db:54:c8:c2:04:0e:02:04:2c:6a:14:aa:cf: 5b:00:b7:12:b0:0a:d3:14:34:87:3b:76:bf:4b:fa: dd:d5:fe:b6:12:4f:fa:fa:3f:1d:5e:77:41:12:87: 06:9d:a7:25:5a:38:09:68:be:15:da:2a:54:da:87: de:1b:f0:2d:6c:a2:5a:0f:f3:05:4e:ff:10:ce:da: 3b:56:62:81:8a:39:be:bd:db:85:37:8b:c5:81:68: a2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:5E:B9:6D:4C:4B:9F:96:38:ED:88:EB:67:E6:A6:B0:2B:E6:CB:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153682.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.24.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:c4:92:da:0e:74:11:60:ee:47:4d:9e:5e:e0:e4:ff:67:ca: ab:ff:13:c3:58:34:2b:56:38:d2:93:50:f5:bd:7e:f8:7a:f6: 6e:ad:cf:c7:79:2f:18:44:43:07:cc:0b:76:d4:68:db:3e:f0: ff:92:20:89:eb:c2:36:ed:1c:90:49:d7:81:e7:1c:a3:ba:58: c2:3d:60:dc:6d:d7:02:bc:8d:e4:3f:69:3b:5a:ac:c4:2a:fa: f0:99:83:4c:76:bd:a6:5f:32:30:2b:7d:62:a5:fd:4f:18:51: 28:7f:4d:2c:0a:86:4a:4f:14:24:27:66:f0:81:48:79:03:87: 9a:a3:fc:ff:dd:c6:46:0f:e9:b2:81:df:d2:40:e6:02:7a:a0: 8b:12:fe:e3:23:2b:58:fb:2d:92:ca:f5:a8:a4:62:a3:ab:be: 6c:d0:a5:74:f4:f7:de:3e:e7:d6:78:c8:f8:24:9c:15:9c:4a: 69:42:4b:a2:c1:fd:2f:45:99:ed:fa:d3:d3:8c:12:ae:9f:7a: d8:6c:bf:88:c6:b1:04:88:9f:00:26:c8:47:5f:c8:ac:1b:0d: b3:ec:95:b5:1d:16:6b:a7:fe:64:fa:c0:dc:c7:85:a6:d0:8a: 07:07:5f:bb:89:8f:09:2b:62:ce:f6:be:e3:a9:aa:6a:1c:9f: e7:52:a0:8a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUaO/46c5vO3ND1R2Pfky/nVFI54QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMjA3MzA1OFoX DTI2MDYwMTA3MzU1OFowMzExMC8GA1UEAxMoODM1RUI5NkQ0QzRCOUY5NjM4RUQ4 OEVCNjdFNkE2QjAyQkU2Q0I5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnQ7w02hAW+pLVZz1pHIi3mXlPvmoOHGGOdyq+Vhdwj3y+Cuuren2JNnFdO j9CVwwL5DZhFT4O7LkrvSpDg+HqD0v1qhoG2B4Iq3Ry5OG4tlshiVAfkinpNq+5Q YYvECrhzAzlYiKxC7pYSKgCPgG24Ct23ZlGfbKHBY7zha5BDk5Dk9gSIGHRjFN3l AhOhNwwyXb1QcBfk0pQ5uCZ82WY2WKnbuMrbVMjCBA4CBCxqFKrPWwC3ErAK0xQ0 hzt2v0v63dX+thJP+vo/HV53QRKHBp2nJVo4CWi+FdoqVNqH3hvwLWyiWg/zBU7/ EM7aO1ZigYo5vr3bhTeLxYFoouMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSDXrlt TEufljjtiOtn5qawK+bLkDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzY4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPfGDANBgkqhkiG9w0BAQsFAAOCAQEAbsSS2g50EWDuR02eXuDk /2fKq/8Tw1g0K1Y40pNQ9b1++Hr2bq3Px3kvGERDB8wLdtRo2z7w/5IgievCNu0c kEnXgecco7pYwj1g3G3XAryN5D9pO1qsxCr68JmDTHa9pl8yMCt9YqX9TxhRKH9N LAqGSk8UJCdm8IFIeQOHmqP8/93GRg/psoHf0kDmAnqgixL+4yMrWPstksr1qKRi o6u+bNCldPT33j7n1njI+CScFZxKaUJLosH9L0WZ7frT04wSrp962Gy/iMaxBIif ACbIR1/IrBsNs+yVtR0Wa6f+ZPrA3MeFptCKBwdfu4mPCStizva+46mqahyf51Kg ig== -----END CERTIFICATE-----Generated at Sun Jun 15 06:19:00 2025 by rpki-client