$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153699.roa File: AS153699.roa (raw, json) Hash identifier: 1iv8Eenrlvhe0E4GmPOQUzRYajf5MBPnFuoJGfLWaro= Subject key identifier: 72:A4:46:9E:13:2A:2A:CF:DD:59:64:4F:68:AC:41:1F:D3:48:89:A2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 36B49BC50CCB725731A085F306CD7E728CA8D101 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153699.roa Signing time: Tue 07 Apr 2026 04:00:00 +0000 ROA not before: Tue 07 Apr 2026 03:55:00 +0000 ROA not after: Tue 06 Apr 2027 04:00:00 +0000 asID: 153699 IP address blocks: 163.223.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b4:9b:c5:0c:cb:72:57:31:a0:85:f3:06:cd:7e:72:8c:a8:d1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 7 03:55:00 2026 GMT Not After : Apr 6 04:00:00 2027 GMT Subject: CN=72A4469E132A2ACFDD59644F68AC411FD34889A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d3:59:d4:12:85:98:7c:38:cb:c7:ce:97:d7: 2d:74:b0:f7:01:8c:f0:14:2b:8f:73:89:fb:77:64: 84:40:6a:bd:48:cc:f3:d5:e9:d1:b3:eb:4b:f5:6e: d7:36:9b:54:b7:81:a5:be:1e:63:c8:1b:f4:a9:f4: bd:ab:c3:aa:a9:05:2f:ab:7e:83:46:d7:16:2a:a4: 4a:1c:ca:39:68:20:56:4f:c3:94:8c:24:cd:44:98: a1:cc:39:33:ce:19:29:7b:78:32:d4:f4:19:7d:5d: fe:c1:0c:f0:55:a6:73:f0:d0:7d:91:8f:eb:24:15: 92:ff:01:97:71:b5:94:e0:8c:c5:8a:bc:9f:49:13: 99:0b:57:5d:74:96:a3:2f:8d:2d:0e:d2:b2:97:e0: 00:22:81:5b:63:91:8e:4c:c1:df:09:99:f7:62:cc: 91:c6:4a:67:60:ac:62:9f:a3:be:53:c8:ef:60:93: 5e:4c:d4:f9:ac:78:5e:e6:43:35:3b:7e:44:34:3c: f0:4d:2f:3f:43:d1:7a:ea:22:31:c8:d4:da:90:84: 53:86:74:90:ec:8c:83:dd:b4:02:2c:75:89:b8:32: 0c:f1:1c:01:d6:72:ca:55:e6:91:19:97:38:62:87: 27:1c:af:9f:ce:2b:76:8c:a8:44:96:5d:f1:c7:a8: 8a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A4:46:9E:13:2A:2A:CF:DD:59:64:4F:68:AC:41:1F:D3:48:89:A2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.113.0/24 Signature Algorithm: sha256WithRSAEncryption 73:bd:33:05:39:e2:04:5f:fe:b2:07:fa:58:c4:9c:63:1a:25: 18:d4:f3:cb:cd:0a:fb:e4:f6:9e:a4:8a:58:62:25:4c:79:08: 99:00:7f:11:4b:d4:01:bf:9f:ca:cc:aa:8a:fb:a3:54:90:b6: 7d:16:79:c5:a4:c2:c2:ab:89:1a:a2:2e:dd:8c:29:55:ac:09: 49:3c:0d:9c:2e:a2:4f:7d:c8:5d:29:9d:c7:ce:98:7a:68:29: e3:62:4e:0a:68:60:3d:cf:42:7b:95:83:cb:54:8e:83:c9:dc: d5:c8:67:a7:9b:bf:cf:7e:09:6b:98:86:80:98:11:89:bf:e0: 30:3c:8c:c4:f0:55:65:51:bd:12:24:db:fb:20:56:48:e2:f8: e5:85:2d:a1:78:3f:5b:34:cd:e7:09:9e:88:ea:da:ec:05:1d: e7:b2:39:51:fc:4a:a9:a9:04:0a:47:f8:69:4c:c9:4d:e5:25: 54:1d:91:9b:02:d5:a6:42:75:2f:a3:4b:42:fa:33:62:33:a1: 1e:8e:c1:a1:5a:ec:ed:ca:f2:78:7c:93:b2:7b:4b:21:80:d5: 2e:fb:5f:74:90:1f:ee:b7:05:0c:dc:22:d7:76:21:3b:a5:60: 1d:ce:01:f8:80:b1:62:08:9b:ea:c0:30:42:f4:8d:a8:53:1c: 4a:89:bb:9d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUNrSbxQzLclcxoIXzBs1+coyo0QEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwNzAzNTUwMFoX DTI3MDQwNjA0MDAwMFowMzExMC8GA1UEAxMoNzJBNDQ2OUUxMzJBMkFDRkRENTk2 NDRGNjhBQzQxMUZEMzQ4ODlBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOzTWdQShZh8OMvHzpfXLXSw9wGM8BQrj3OJ+3dkhEBqvUjM89Xp0bPrS/Vu 1zabVLeBpb4eY8gb9Kn0vavDqqkFL6t+g0bXFiqkShzKOWggVk/DlIwkzUSYocw5 M84ZKXt4MtT0GX1d/sEM8FWmc/DQfZGP6yQVkv8Bl3G1lOCMxYq8n0kTmQtXXXSW oy+NLQ7SspfgACKBW2ORjkzB3wmZ92LMkcZKZ2CsYp+jvlPI72CTXkzU+ax4XuZD NTt+RDQ88E0vP0PReuoiMcjU2pCEU4Z0kOyMg920Aix1ibgyDPEcAdZyylXmkRmX OGKHJxyvn84rdoyoRJZd8ceoipUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRypEae Eyoqz91ZZE9orEEf00iJojAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzY5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPfcTANBgkqhkiG9w0BAQsFAAOCAQEAc70zBTniBF/+sgf6WMSc YxolGNTzy80K++T2nqSKWGIlTHkImQB/EUvUAb+fysyqivujVJC2fRZ5xaTCwquJ GqIu3YwpVawJSTwNnC6iT33IXSmdx86Yemgp42JOCmhgPc9Ce5WDy1SOg8nc1chn p5u/z34Ja5iGgJgRib/gMDyMxPBVZVG9EiTb+yBWSOL45YUtoXg/WzTN5wmeiOra 7AUd57I5UfxKqakECkf4aUzJTeUlVB2RmwLVpkJ1L6NLQvozYjOhHo7BoVrs7cry eHyTsntLIYDVLvtfdJAf7rcFDNwi13YhO6VgHc4B+ICxYgib6sAwQvSNqFMcSom7 nQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:34:01 2026 by rpki-client