$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153820.roa File: AS153820.roa (raw, json) Hash identifier: cI9XnUEsuDfcUlBasJ/LqTkesNtFSBc7dkZkcNpeyus= Subject key identifier: E0:74:8C:E7:8B:B6:F8:FF:4E:34:69:B9:2D:E2:81:30:8B:74:C0:DB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6F968C2C695AE5A554101574AD2EF6827A17171F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153820.roa Signing time: Fri 03 Apr 2026 02:00:00 +0000 ROA not before: Fri 03 Apr 2026 01:55:00 +0000 ROA not after: Fri 02 Apr 2027 02:00:00 +0000 asID: 153820 IP address blocks: 163.227.146.0/23 maxlen: 24 2001:df5:6ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:96:8c:2c:69:5a:e5:a5:54:10:15:74:ad:2e:f6:82:7a:17:17:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 3 01:55:00 2026 GMT Not After : Apr 2 02:00:00 2027 GMT Subject: CN=E0748CE78BB6F8FF4E3469B92DE281308B74C0DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:55:1c:f9:4e:34:b1:fd:ed:1a:cd:f2:53:fc: 10:3d:bd:f4:e7:55:77:e4:88:3b:4a:32:99:9c:31: 9f:50:6d:4d:b8:1a:eb:d9:00:42:9d:de:33:e8:87: 37:09:4e:20:04:fe:12:37:a0:b1:29:31:65:93:63: 3a:2c:20:49:78:be:51:96:17:3d:4c:73:14:04:fb: a7:ed:70:89:e7:03:e6:4e:14:7d:1b:00:56:0f:da: 64:f5:3b:8a:41:6d:75:e4:88:19:5a:81:a3:96:bb: 94:40:9b:17:d7:91:32:02:91:69:4f:e4:a9:1b:9d: 0a:36:e6:8d:f6:7f:35:8d:d7:c2:13:f8:31:a4:22: 74:4b:5b:dd:be:df:45:09:2d:42:c2:19:59:f1:c1: b3:aa:1c:3a:93:48:00:c5:f9:79:84:73:af:e8:6a: ee:64:eb:35:a7:95:3a:60:d2:2a:ab:3b:3a:4d:fc: 7e:d6:88:c7:97:59:25:e2:91:ba:d7:93:80:c8:a2: 01:b5:03:56:56:12:67:d3:42:c1:1f:86:eb:5b:db: 12:4a:39:05:88:4e:69:be:5e:72:90:c4:41:fc:f0: 70:41:9e:c7:9a:8c:58:23:2a:61:a3:71:5b:1d:70: 37:8a:e7:a2:98:48:dc:e8:ee:34:8f:08:12:62:17: cc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:74:8C:E7:8B:B6:F8:FF:4E:34:69:B9:2D:E2:81:30:8B:74:C0:DB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153820.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.146.0/23 IPv6: 2001:df5:6ec0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:09:93:41:dd:a2:b3:c7:fe:56:cc:1c:48:8f:29:7c:66:1a: 7e:5a:6b:bc:05:e1:9f:4b:39:89:69:0e:e8:12:ec:07:25:ea: ad:18:67:92:bb:4c:00:1a:c8:0b:e3:8c:b0:6d:b2:ca:af:8f: b1:4a:1d:f3:a4:36:89:f7:bc:d8:1c:db:04:e3:2f:3a:5e:ff: 05:b3:d3:22:18:4b:cb:07:98:25:8a:97:bf:38:bd:08:12:ff: a4:ba:e2:da:ab:18:14:1a:2f:12:ff:55:0a:52:22:e0:a0:b2: 60:d5:09:dd:aa:2d:ce:ae:d5:f6:f3:e9:8e:18:54:1c:69:93: 1d:00:b0:71:13:74:48:c5:53:e1:db:43:bd:22:7c:56:81:d6: f0:4e:d9:54:5e:0b:d6:4d:51:fd:65:80:64:87:e9:c7:c0:f7: a3:11:20:e7:67:af:e8:60:c5:21:23:99:bf:1e:ab:84:7a:0c: 5f:b3:ec:0c:30:98:eb:d6:85:ad:63:98:cd:d8:37:e7:58:5e: 63:21:01:98:14:26:67:1f:24:9b:3a:3a:67:bc:09:31:4a:34: 04:84:58:c0:56:f6:0d:e4:d4:b2:1a:13:eb:54:5e:1c:23:fb: 6a:4c:dd:bf:51:c5:71:68:f1:ea:75:4d:f1:2f:1b:5a:27:3a: 65:73:7b:12 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUb5aMLGla5aVUEBV0rS72gnoXFx8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwMzAxNTUwMFoX DTI3MDQwMjAyMDAwMFowMzExMC8GA1UEAxMoRTA3NDhDRTc4QkI2RjhGRjRFMzQ2 OUI5MkRFMjgxMzA4Qjc0QzBEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZVHPlONLH97RrN8lP8ED299OdVd+SIO0oymZwxn1BtTbga69kAQp3eM+iH NwlOIAT+EjegsSkxZZNjOiwgSXi+UZYXPUxzFAT7p+1wiecD5k4UfRsAVg/aZPU7 ikFtdeSIGVqBo5a7lECbF9eRMgKRaU/kqRudCjbmjfZ/NY3XwhP4MaQidEtb3b7f RQktQsIZWfHBs6ocOpNIAMX5eYRzr+hq7mTrNaeVOmDSKqs7Ok38ftaIx5dZJeKR uteTgMiiAbUDVlYSZ9NCwR+G61vbEko5BYhOab5ecpDEQfzwcEGex5qMWCMqYaNx Wx1wN4rnophI3OjuNI8IEmIXzBMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTgdIzn i7b4/040abkt4oEwi3TA2zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzgyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPjkjAPBAIAAjAJAwcAIAEN9W7AMA0GCSqGSIb3DQEBCwUAA4IB AQA6CZNB3aKzx/5WzBxIjyl8Zhp+Wmu8BeGfSzmJaQ7oEuwHJeqtGGeSu0wAGsgL 44ywbbLKr4+xSh3zpDaJ97zYHNsE4y86Xv8Fs9MiGEvLB5glipe/OL0IEv+kuuLa qxgUGi8S/1UKUiLgoLJg1Qndqi3OrtX28+mOGFQcaZMdALBxE3RIxVPh20O9InxW gdbwTtlUXgvWTVH9ZYBkh+nHwPejESDnZ6/oYMUhI5m/HquEegxfs+wMMJjr1oWt Y5jN2DfnWF5jIQGYFCZnHySbOjpnvAkxSjQEhFjAVvYN5NSyGhPrVF4cI/tqTN2/ UcVxaPHqdU3xLxtaJzplc3sS -----END CERTIFICATE-----Generated at Fri Apr 17 13:33:45 2026 by rpki-client