$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153805.roa File: AS153805.roa (raw, json) Hash identifier: s8x3iXugZdVCLz35L/jtCNTpani5fsbZaPt60LgPiuY= Subject key identifier: 9B:69:6E:B8:F8:59:CD:08:F5:31:73:99:D0:55:BE:21:17:B0:54:63 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 569CD2A895B595674E2CFD0F83630A98858233A1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153805.roa Signing time: Wed 04 Jun 2025 06:30:16 +0000 ROA not before: Wed 04 Jun 2025 06:25:16 +0000 ROA not after: Wed 03 Jun 2026 06:30:16 +0000 asID: 153805 IP address blocks: 163.227.66.0/24 maxlen: 24 2001:df5:5cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:9c:d2:a8:95:b5:95:67:4e:2c:fd:0f:83:63:0a:98:85:82:33:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 4 06:25:16 2025 GMT Not After : Jun 3 06:30:16 2026 GMT Subject: CN=9B696EB8F859CD08F5317399D055BE2117B05463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a0:2f:fc:4d:5d:7a:92:b4:56:66:a1:e0:2c: 5f:87:13:25:b0:cc:f3:e7:5c:c9:52:5d:9d:34:dc: ef:d6:05:b4:80:41:89:c2:ad:ae:5c:0c:ce:a1:38: 36:40:fb:d2:ad:09:ec:49:36:c0:47:30:a3:35:64: 27:e4:23:3e:3a:20:9b:a4:9a:92:18:91:c3:54:c2: b2:ae:66:a8:3c:3a:a3:75:75:1b:d9:ec:22:a4:ed: 5c:9a:96:da:99:c9:88:03:33:87:fa:c4:57:9a:fd: 68:de:9f:b4:28:24:93:5d:11:ec:89:8b:ba:93:dd: 8a:e7:d8:f3:3e:e7:0b:73:64:4d:ae:e6:d3:37:bc: b2:6d:ea:a1:1c:b0:55:3c:32:59:20:e2:70:2d:e2: 13:6d:8b:9c:ab:45:7e:68:18:ae:29:2e:99:46:5c: 43:0d:7a:4c:9c:91:b9:57:a4:72:24:aa:f0:1e:29: 3a:32:8a:a0:26:6c:3b:36:b3:eb:e5:fb:da:97:b5: 7f:32:1a:19:41:6c:e7:f5:47:d1:bb:e1:8e:b8:0f: 5b:7a:a2:87:a2:a6:36:cf:70:45:ee:00:cc:5a:4e: 9c:8d:83:de:ba:1e:d5:b2:e7:9f:c3:6c:a0:f6:53: 9a:ff:fb:fd:5a:bb:aa:17:3c:0a:c1:4c:bd:b3:c6: 52:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:69:6E:B8:F8:59:CD:08:F5:31:73:99:D0:55:BE:21:17:B0:54:63 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153805.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.66.0/24 IPv6: 2001:df5:5cc0::/48 Signature Algorithm: sha256WithRSAEncryption 67:06:d8:0e:09:c7:4e:f3:72:8a:11:7c:0c:e7:da:7d:c8:a8: 41:79:04:c3:4e:c3:76:db:0b:3e:33:b6:b2:e4:ea:4c:d2:7c: b4:e6:7f:c4:ac:4d:f1:63:4c:3a:b6:e8:36:9e:33:26:84:1f: 42:e1:ea:39:06:38:be:6b:f8:60:18:8a:e5:88:1a:4e:dc:60: d2:8b:fc:56:43:8c:98:2c:86:ad:3a:28:1d:50:49:50:1c:7e: 8e:b5:be:4b:ba:e5:8d:43:6d:68:54:42:34:8a:66:c1:f3:22: bc:a0:c2:9c:24:7b:bc:15:a3:3f:49:32:2e:74:d6:1e:a8:a8: 92:ae:b4:2b:b0:4c:d5:26:9f:81:6e:16:3d:88:ba:5c:06:e1: a7:98:ab:ab:aa:71:59:c8:f6:44:97:75:75:1f:3d:9d:96:27: 2b:72:64:80:22:27:78:e4:fc:e0:08:98:67:69:b0:ee:d9:64: 04:1b:cf:7b:11:c0:3e:2f:fe:0a:8a:a0:5c:04:57:69:26:ee: 39:cf:bf:fa:71:1d:d9:dd:c4:ad:1e:0c:1e:db:2f:52:b2:17: 72:ff:b0:01:02:e6:e9:ee:87:46:24:8c:25:1f:58:78:af:3c: 15:78:19:9a:6d:c3:12:78:18:9f:4d:ea:19:6c:47:12:12:a8: f5:29:95:1b -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUVpzSqJW1lWdOLP0Pg2MKmIWCM6EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNDA2MjUxNloX DTI2MDYwMzA2MzAxNlowMzExMC8GA1UEAxMoOUI2OTZFQjhGODU5Q0QwOEY1MzE3 Mzk5RDA1NUJFMjExN0IwNTQ2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmgL/xNXXqStFZmoeAsX4cTJbDM8+dcyVJdnTTc79YFtIBBicKtrlwMzqE4 NkD70q0J7Ek2wEcwozVkJ+QjPjogm6SakhiRw1TCsq5mqDw6o3V1G9nsIqTtXJqW 2pnJiAMzh/rEV5r9aN6ftCgkk10R7ImLupPdiufY8z7nC3NkTa7m0ze8sm3qoRyw VTwyWSDicC3iE22LnKtFfmgYrikumUZcQw16TJyRuVekciSq8B4pOjKKoCZsOzaz 6+X72pe1fzIaGUFs5/VH0bvhjrgPW3qih6KmNs9wRe4AzFpOnI2D3roe1bLnn8Ns oPZTmv/7/Vq7qhc8CsFMvbPGUs0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSbaW64 +FnNCPUxc5nQVb4hF7BUYzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzgwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKPjQjAPBAIAAjAJAwcAIAEN9VzAMA0GCSqGSIb3DQEBCwUAA4IB AQBnBtgOCcdO83KKEXwM59p9yKhBeQTDTsN22ws+M7ay5OpM0ny05n/ErE3xY0w6 tug2njMmhB9C4eo5Bji+a/hgGIrliBpO3GDSi/xWQ4yYLIatOigdUElQHH6Otb5L uuWNQ21oVEI0imbB8yK8oMKcJHu8FaM/STIudNYeqKiSrrQrsEzVJp+BbhY9iLpc BuGnmKurqnFZyPZEl3V1Hz2dlicrcmSAIid45PzgCJhnabDu2WQEG897EcA+L/4K iqBcBFdpJu45z7/6cR3Z3cStHgwe2y9Sshdy/7ABAubp7odGJIwlH1h4rzwVeBma bcMSeBifTeoZbEcSEqj1KZUb -----END CERTIFICATE-----Generated at Mon Jun 16 00:23:44 2025 by rpki-client