$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153767.roa File: AS153767.roa (raw, json) Hash identifier: a+6/iEsC2QBmm45CXRdJoodfkpNNKL5I3qpQv9W3w/U= Subject key identifier: A8:2C:5C:EC:D5:6B:12:FD:01:3C:6F:01:DF:3D:DE:AD:38:BB:65:84 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4513F51A2BF9A02123D8B716CD9A58785E0DDD69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153767.roa Signing time: Wed 30 Jul 2025 01:03:29 +0000 ROA not before: Wed 30 Jul 2025 00:58:29 +0000 ROA not after: Wed 29 Jul 2026 01:03:29 +0000 asID: 153767 IP address blocks: 163.223.97.0/24 maxlen: 24 2001:df5:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:13:f5:1a:2b:f9:a0:21:23:d8:b7:16:cd:9a:58:78:5e:0d:dd:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 00:58:29 2025 GMT Not After : Jul 29 01:03:29 2026 GMT Subject: CN=A82C5CECD56B12FD013C6F01DF3DDEAD38BB6584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:91:bf:11:9b:52:24:bd:4b:92:8a:83:59:9d: 04:d4:43:2c:14:44:08:00:a1:9c:13:65:9b:ea:d2: cf:0c:26:f9:4a:5c:68:59:44:29:62:f0:05:2b:2f: bd:9a:e9:a2:fc:f3:99:f2:c3:54:31:4c:b0:7b:f2: c9:55:bd:e4:ff:5c:f9:ac:b0:61:50:1e:70:66:20: 8e:cc:3e:d9:49:34:84:b7:5e:4d:fa:9c:69:ba:94: 8b:1d:94:63:a6:11:10:72:79:55:c5:4a:6f:38:b6: 25:74:28:09:90:de:7f:67:3a:d4:1e:b6:37:b8:6c: 22:58:d7:28:6b:53:96:1b:3a:b7:d0:d9:6b:0d:89: 94:f9:67:5c:ee:93:67:5d:94:9a:e0:76:e1:3b:1d: 6a:61:94:24:f0:ae:ad:98:f5:7f:9d:86:7e:64:41: 7a:c0:9a:1e:6c:06:56:83:1e:57:71:54:de:1d:b8: b9:a7:ea:99:75:60:eb:51:db:be:b8:b5:1b:bc:41: 01:01:bf:bb:92:9e:06:fe:22:74:a5:a9:ee:ab:bf: d5:2e:92:39:d9:0f:52:ec:8e:df:c6:3d:4e:88:2a: 68:69:7e:3d:10:4f:4d:8d:81:e0:03:e5:b4:5d:a9: b1:05:9d:12:2b:0e:45:da:29:86:b4:f8:28:7d:50: fd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2C:5C:EC:D5:6B:12:FD:01:3C:6F:01:DF:3D:DE:AD:38:BB:65:84 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153767.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.97.0/24 IPv6: 2001:df5:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 7b:82:8b:05:a8:1d:e8:42:3e:5d:3a:2d:26:0a:30:c5:0f:28: ac:e8:58:b7:9c:9f:fa:3d:44:cf:77:ed:fb:f4:01:3f:9c:0d: 2e:d2:1f:c6:52:57:65:d9:59:42:13:26:cd:9d:f7:64:af:77: 3f:f2:84:1a:4b:6e:c2:18:5c:c8:d4:8b:f5:f2:a6:8e:ab:58: df:88:eb:aa:ec:33:04:e8:8c:ea:29:2b:49:82:f8:6d:96:77: 14:8f:12:99:42:29:cc:74:d1:f6:02:5d:20:d4:df:c0:14:cb: a8:a9:8b:1e:3c:bd:fa:8a:a7:10:02:60:fd:c9:b3:35:2e:0f: 5f:6b:6d:0d:10:85:2f:5e:54:ac:65:be:be:b0:ad:51:cf:0a: 96:7a:5c:2b:ba:21:06:4b:6a:a5:0f:3e:af:e8:58:39:fc:43: f0:7b:05:1f:b0:ef:d4:39:1e:93:66:0b:5f:3c:d4:61:1f:f4: 25:0d:32:74:01:1c:4b:9c:61:4d:61:a7:86:f4:0c:83:49:62: fe:c8:c2:7b:59:93:17:42:00:d2:4e:1b:fb:21:f2:61:7e:16: 44:a6:99:6a:66:a8:b3:43:82:71:2f:51:44:64:7e:01:0d:05: 26:df:d1:ac:0b:d4:1e:d7:96:b3:4f:7b:3b:6d:c8:ff:29:98: 5b:d3:d0:63 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIURRP1Giv5oCEj2LcWzZpYeF4N3WkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDczMDAwNTgyOVoX DTI2MDcyOTAxMDMyOVowMzExMC8GA1UEAxMoQTgyQzVDRUNENTZCMTJGRDAxM0M2 RjAxREYzRERFQUQzOEJCNjU4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALiRvxGbUiS9S5KKg1mdBNRDLBRECAChnBNlm+rSzwwm+UpcaFlEKWLwBSsv vZrpovzzmfLDVDFMsHvyyVW95P9c+aywYVAecGYgjsw+2Uk0hLdeTfqcabqUix2U Y6YREHJ5VcVKbzi2JXQoCZDef2c61B62N7hsIljXKGtTlhs6t9DZaw2JlPlnXO6T Z12UmuB24TsdamGUJPCurZj1f52GfmRBesCaHmwGVoMeV3FU3h24uafqmXVg61Hb vri1G7xBAQG/u5KeBv4idKWp7qu/1S6SOdkPUuyO38Y9TogqaGl+PRBPTY2B4APl tF2psQWdEisORdophrT4KH1Q/ZkCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSoLFzs 1WsS/QE8bwHfPd6tOLtlhDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1Mzc2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKPfYTAPBAIAAjAJAwcAIAEN9TpAMA0GCSqGSIb3DQEBCwUAA4IB AQB7gosFqB3oQj5dOi0mCjDFDyis6Fi3nJ/6PUTPd+379AE/nA0u0h/GUldl2VlC EybNnfdkr3c/8oQaS27CGFzI1Iv18qaOq1jfiOuq7DME6IzqKStJgvhtlncUjxKZ QinMdNH2Al0g1N/AFMuoqYsePL36iqcQAmD9ybM1Lg9fa20NEIUvXlSsZb6+sK1R zwqWelwruiEGS2qlDz6v6Fg5/EPwewUfsO/UOR6TZgtfPNRhH/QlDTJ0ARxLnGFN YaeG9AyDSWL+yMJ7WZMXQgDSThv7IfJhfhZEpplqZqizQ4JxL1FEZH4BDQUm39Gs C9Qe15azT3s7bcj/KZhb09Bj -----END CERTIFICATE-----Generated at Wed Aug 6 05:51:13 2025 by rpki-client