$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153729.roa File: AS153729.roa (raw, json) Hash identifier: KO8p6VEHzVLkv4NJSP+DYV4mnwlIWt6erwqfO2/6o3k= Subject key identifier: A3:AC:98:AD:56:6D:CE:68:FF:E8:AF:30:E4:16:78:A3:FC:5F:08:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 23185B14ED41CCB9080020D7EAF2B7AC5D81AB08 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153729.roa Signing time: Wed 01 Apr 2026 05:00:00 +0000 ROA not before: Wed 01 Apr 2026 04:55:00 +0000 ROA not after: Wed 31 Mar 2027 05:00:00 +0000 asID: 153729 IP address blocks: 163.223.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:18:5b:14:ed:41:cc:b9:08:00:20:d7:ea:f2:b7:ac:5d:81:ab:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 1 04:55:00 2026 GMT Not After : Mar 31 05:00:00 2027 GMT Subject: CN=A3AC98AD566DCE68FFE8AF30E41678A3FC5F0890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:86:ec:8a:d7:be:fc:7b:2c:e4:4c:43:dd:71: 13:78:c9:5f:06:cf:26:da:19:6c:bf:52:1e:7d:ee: ac:1d:fa:fb:5f:cf:88:7b:42:66:92:b3:e0:da:c1: 6c:69:0b:6f:d0:98:d3:35:f1:fd:c0:57:0d:94:a9: 2c:3d:e5:58:1a:52:aa:d9:42:b8:d4:3b:f3:08:0c: 6a:de:52:c5:0f:d4:38:c2:1b:9b:b7:03:7a:93:7a: d1:1c:ea:7d:23:06:f9:85:02:99:c0:2b:ce:17:29: f7:93:3d:fd:1f:02:f2:6d:d4:97:1a:f4:8d:04:ff: cf:b6:83:cc:f5:b0:60:56:40:e3:68:25:01:94:6c: db:0d:8c:d4:fb:3c:c0:5a:17:1a:f2:8a:7a:7d:e3: 07:e7:5e:4a:8e:4d:fa:71:48:0d:65:13:ca:7a:76: cf:1f:fe:2a:9d:a8:53:35:80:f4:33:8f:d3:c6:df: aa:56:34:38:2e:a8:22:c2:e2:57:2e:9f:b1:51:45: 34:75:97:dc:e7:ec:1b:a5:0f:20:48:8e:61:c7:c0: fd:d5:46:58:75:b0:9c:66:b7:a6:31:d1:c3:b4:5d: 8d:ee:46:21:d5:5d:35:9d:59:4a:ea:69:10:99:1d: 71:42:07:2b:c5:d4:f1:eb:75:43:73:85:84:e2:eb: f3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AC:98:AD:56:6D:CE:68:FF:E8:AF:30:E4:16:78:A3:FC:5F:08:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153729.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.112.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:54:e0:e9:36:30:b7:4e:92:0f:1e:ee:cb:91:fb:87:70:0c: 9e:75:ba:c2:bd:11:ab:d3:87:f7:c6:a2:6f:d3:42:f4:c8:a6: dc:1e:85:37:6b:de:f6:73:55:62:76:bf:c6:1d:e5:57:0a:db: 57:2f:c8:63:d0:87:4f:7e:af:61:22:a4:0a:9f:98:bc:aa:75: 63:97:be:1e:8a:57:bf:b6:b8:20:6f:08:27:a3:71:b9:d0:b6: b6:ce:fd:8d:ee:b0:b7:58:e8:f7:43:7d:a6:69:57:8a:80:54: b7:a8:df:5e:4f:9c:5a:41:2a:aa:92:6c:bc:0d:f6:34:44:6a: 5b:78:19:05:86:51:cf:51:d2:4a:c9:c8:52:b3:d0:d4:70:a6: e0:c4:5f:72:70:72:db:58:a0:28:08:4b:73:75:38:3b:86:2f: 25:9c:3d:64:e4:39:ff:e9:9c:05:fd:79:6e:b8:3e:ca:23:86: 8e:ca:62:da:2f:11:1e:d3:de:37:56:1c:b7:ee:78:9d:a2:ca: 4e:fd:0f:72:6c:76:df:26:a7:98:1c:d9:a8:99:f3:87:62:8d: 75:27:1e:fd:3e:cc:aa:13:cd:7f:ae:b7:93:dc:a4:df:82:84: 3f:3d:49:f8:ec:2e:ad:85:c4:1e:1f:ed:c4:4f:22:d7:3f:7e: dd:bd:de:d1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIxhbFO1BzLkIACDX6vK3rF2BqwgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwMTA0NTUwMFoX DTI3MDMzMTA1MDAwMFowMzExMC8GA1UEAxMoQTNBQzk4QUQ1NjZEQ0U2OEZGRThB RjMwRTQxNjc4QTNGQzVGMDg5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGG7IrXvvx7LORMQ91xE3jJXwbPJtoZbL9SHn3urB36+1/PiHtCZpKz4NrB bGkLb9CY0zXx/cBXDZSpLD3lWBpSqtlCuNQ78wgMat5SxQ/UOMIbm7cDepN60Rzq fSMG+YUCmcArzhcp95M9/R8C8m3Ulxr0jQT/z7aDzPWwYFZA42glAZRs2w2M1Ps8 wFoXGvKKen3jB+deSo5N+nFIDWUTynp2zx/+Kp2oUzWA9DOP08bfqlY0OC6oIsLi Vy6fsVFFNHWX3OfsG6UPIEiOYcfA/dVGWHWwnGa3pjHRw7Rdje5GIdVdNZ1ZSupp EJkdcUIHK8XU8et1Q3OFhOLr8xkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSjrJit Vm3OaP/orzDkFnij/F8IkDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzcyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPfcDANBgkqhkiG9w0BAQsFAAOCAQEAnFTg6TYwt06SDx7uy5H7 h3AMnnW6wr0Rq9OH98aib9NC9Mim3B6FN2ve9nNVYna/xh3lVwrbVy/IY9CHT36v YSKkCp+YvKp1Y5e+HopXv7a4IG8IJ6NxudC2ts79je6wt1jo90N9pmlXioBUt6jf Xk+cWkEqqpJsvA32NERqW3gZBYZRz1HSSsnIUrPQ1HCm4MRfcnBy21igKAhLc3U4 O4YvJZw9ZOQ5/+mcBf15brg+yiOGjspi2i8RHtPeN1Yct+54naLKTv0Pcmx23yan mBzZqJnzh2KNdSce/T7MqhPNf663k9yk34KEPz1J+OwurYXEHh/txE8i1z9+3b3e 0Q== -----END CERTIFICATE-----Generated at Sun Apr 19 08:36:35 2026 by rpki-client