$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153863.roa File: AS153863.roa (raw, json) Hash identifier: S4t3DAdugQNNvEM9kUpbzDyyXxTxGFeNTQHMnDDmUAo= Subject key identifier: 34:A4:7A:6B:86:26:9E:E2:62:E3:26:58:A2:5F:A0:B8:C1:26:93:2A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 516CD093CD8A5B68D4C6EE8C5DB950F91E4BFA48 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153863.roa Signing time: Thu 09 Apr 2026 04:00:00 +0000 ROA not before: Thu 09 Apr 2026 03:55:00 +0000 ROA not after: Thu 08 Apr 2027 04:00:00 +0000 asID: 153863 IP address blocks: 163.227.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:6c:d0:93:cd:8a:5b:68:d4:c6:ee:8c:5d:b9:50:f9:1e:4b:fa:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 9 03:55:00 2026 GMT Not After : Apr 8 04:00:00 2027 GMT Subject: CN=34A47A6B86269EE262E32658A25FA0B8C126932A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:88:93:3f:f7:b2:1f:f9:ac:0d:04:8d:48:12: 1f:a1:62:f1:ce:6e:a3:d7:3d:04:30:66:3b:81:a2: 94:45:86:15:f6:68:79:b1:57:22:4f:b8:45:76:50: 23:2f:d1:18:12:9a:cb:10:e3:98:22:c3:c9:7d:bc: bd:71:07:81:95:e2:36:b2:48:35:cc:26:39:46:30: 01:00:2a:07:69:d0:09:b5:14:c6:fd:3b:b3:a7:86: c6:53:d7:33:4d:ff:96:21:d2:32:35:e1:39:92:1c: 9e:83:8a:b0:ee:9e:da:3e:65:e7:b5:d6:62:c3:7c: a1:eb:fd:24:a3:ab:b9:b4:79:8e:97:53:ff:c5:b9: d1:9f:9d:41:51:ca:39:06:ac:d8:fa:71:53:26:2b: 19:59:a2:15:e2:29:31:9e:61:b6:2f:3e:c4:7e:ed: a3:22:fe:df:c6:66:f1:7d:ba:ca:88:b2:c2:54:41: ac:18:c1:3c:de:48:2b:5f:96:f6:dc:19:02:30:e3: 44:eb:a4:99:9c:90:92:de:90:de:0d:9a:b5:8b:f9: 24:15:36:5e:3b:64:38:fd:ff:cb:e0:05:8d:c7:ad: bd:9b:55:10:9a:60:b1:a0:81:01:fd:77:4c:9e:ce: 7f:bb:dc:34:6c:e9:2f:52:5d:93:cf:bf:92:7e:01: 0e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A4:7A:6B:86:26:9E:E2:62:E3:26:58:A2:5F:A0:B8:C1:26:93:2A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153863.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.220.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:cb:08:d0:b4:a1:ce:38:43:a4:c9:d5:47:62:0b:b2:e7:9b: 6b:a1:18:4b:af:94:6c:fb:fd:0a:4d:0e:47:83:35:37:ba:c6: b3:9c:ac:b8:a9:07:20:8e:cf:ca:c5:df:52:7d:25:0d:43:03: 7a:21:5e:06:d3:3a:7c:05:2d:02:61:ac:c3:0c:5c:32:c3:08: c1:34:ab:a4:86:d1:a3:4a:1a:2d:78:fc:c6:a7:1d:e1:bd:88: 14:2a:99:0a:a3:5d:33:be:9e:f1:0b:b3:e1:7e:a6:0b:1c:1a: f8:72:8a:09:ef:f2:a8:b4:64:ff:f7:70:1a:18:ed:06:f9:71: 9c:b0:2a:c0:9a:f3:32:0c:84:5b:19:d5:f9:25:95:c2:ca:a1: 42:2d:64:26:97:03:a9:e3:87:d0:f1:e4:b8:32:95:6b:51:cf: 00:20:45:f7:ea:31:b1:5c:91:4f:45:7d:ec:17:87:10:87:ad: 34:55:70:80:54:35:ee:a8:45:1f:21:eb:3d:4e:c6:76:17:91: ae:cc:23:f0:29:7d:e5:92:08:ac:f8:72:3b:9c:ab:7f:41:7e: 21:80:e5:cf:2c:f1:8c:79:61:12:8b:78:27:39:df:13:ec:4a: e3:ae:8d:3b:09:97:be:22:f8:68:65:9b:d7:93:66:90:d7:bd: 70:9e:9e:a1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUWzQk82KW2jUxu6MXblQ+R5L+kgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwOTAzNTUwMFoX DTI3MDQwODA0MDAwMFowMzExMC8GA1UEAxMoMzRBNDdBNkI4NjI2OUVFMjYyRTMy NjU4QTI1RkEwQjhDMTI2OTMyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+Ikz/3sh/5rA0EjUgSH6Fi8c5uo9c9BDBmO4GilEWGFfZoebFXIk+4RXZQ Iy/RGBKayxDjmCLDyX28vXEHgZXiNrJINcwmOUYwAQAqB2nQCbUUxv07s6eGxlPX M03/liHSMjXhOZIcnoOKsO6e2j5l57XWYsN8oev9JKOrubR5jpdT/8W50Z+dQVHK OQas2PpxUyYrGVmiFeIpMZ5hti8+xH7toyL+38Zm8X26yoiywlRBrBjBPN5IK1+W 9twZAjDjROukmZyQkt6Q3g2atYv5JBU2XjtkOP3/y+AFjcetvZtVEJpgsaCBAf13 TJ7Of7vcNGzpL1Jdk8+/kn4BDikCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ0pHpr hiae4mLjJliiX6C4wSaTKjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1Mzg2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKPj3DANBgkqhkiG9w0BAQsFAAOCAQEAi8sI0LShzjhDpMnVR2IL sueba6EYS6+UbPv9Ck0OR4M1N7rGs5ysuKkHII7PysXfUn0lDUMDeiFeBtM6fAUt AmGswwxcMsMIwTSrpIbRo0oaLXj8xqcd4b2IFCqZCqNdM76e8Quz4X6mCxwa+HKK Ce/yqLRk//dwGhjtBvlxnLAqwJrzMgyEWxnV+SWVwsqhQi1kJpcDqeOH0PHkuDKV a1HPACBF9+oxsVyRT0V97BeHEIetNFVwgFQ17qhFHyHrPU7GdheRrswj8Cl95ZII rPhyO5yrf0F+IYDlzyzxjHlhEot4JznfE+xK466NOwmXviL4aGWb15NmkNe9cJ6e oQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:33:53 2026 by rpki-client