$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153871.roa File: AS153871.roa (raw, json) Hash identifier: 253ReGKEFx61oyj5U2WCyWGMvqZW2PDNWjnKwU3Fzm4= Subject key identifier: 63:84:FA:91:5B:29:3C:09:1A:40:C2:CC:1B:D6:17:0E:E9:56:B0:6D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6BED946A19C1511BC1B9BAECAE03E6D0945D4175 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153871.roa Signing time: Fri 17 Apr 2026 09:00:00 +0000 ROA not before: Fri 17 Apr 2026 08:55:00 +0000 ROA not after: Fri 16 Apr 2027 09:00:00 +0000 asID: 153871 IP address blocks: 163.227.232.0/24 maxlen: 24 2001:df5:7e40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ed:94:6a:19:c1:51:1b:c1:b9:ba:ec:ae:03:e6:d0:94:5d:41:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 17 08:55:00 2026 GMT Not After : Apr 16 09:00:00 2027 GMT Subject: CN=6384FA915B293C091A40C2CC1BD6170EE956B06D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:40:30:3c:18:f9:c2:a4:e4:cd:67:2d:2c:eb: d6:30:05:9f:ad:ec:bb:58:be:5d:b6:b0:e5:4b:23: 86:53:57:ac:42:8f:59:5c:e9:1c:00:d3:0c:ec:b7: a8:ae:18:cc:4e:d5:69:d4:16:d9:1b:4a:48:c1:c2: ac:e1:cb:b3:f0:85:90:47:fa:eb:e7:1e:6e:8c:6c: 30:22:72:c3:6c:c7:0c:d8:d4:94:fe:a5:65:5b:17: 6d:07:59:0a:11:40:b4:c6:e0:88:78:69:f1:5b:ad: 45:81:c7:52:27:bd:30:5c:88:ea:34:d2:75:35:ae: 3a:e4:00:94:90:b6:3c:5e:41:a3:d0:38:be:e1:80: 1e:29:6d:53:ac:3f:1a:43:06:70:e7:3f:6b:69:38: 87:ce:f3:18:ae:56:50:27:54:ca:6c:6d:12:c5:1b: 71:a0:7d:09:b3:55:01:3e:0a:09:b8:a3:ab:94:eb: fc:01:16:74:84:72:54:f5:eb:9a:45:8a:d9:ba:38: cd:93:83:f2:b4:7d:b8:bc:0f:1e:ed:e9:06:27:21: 14:5b:89:24:f1:fd:dc:84:49:f0:35:3f:31:7a:7d: 7c:03:20:70:bc:dd:ea:2d:59:e6:66:4d:6d:a2:3f: 67:41:e3:7e:53:b7:81:77:9d:39:2d:56:38:86:ae: 9e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:84:FA:91:5B:29:3C:09:1A:40:C2:CC:1B:D6:17:0E:E9:56:B0:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153871.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.232.0/24 IPv6: 2001:df5:7e40::/48 Signature Algorithm: sha256WithRSAEncryption 73:11:86:f1:fd:b9:84:2d:47:ee:f3:05:77:df:c7:be:cb:11: f0:05:63:f1:e0:c7:50:14:0f:e1:d8:a2:3c:11:3d:96:d6:5f: d9:bf:37:f6:7c:55:16:2a:95:53:ad:4e:d5:ba:fe:ec:2a:9e: 06:3e:8a:e1:20:87:01:64:0d:79:3b:34:10:bd:58:6d:e1:83: 27:4f:4f:65:cf:c8:89:60:25:9f:e7:90:c2:1e:f8:8a:a2:de: da:1d:c2:75:c3:f8:5e:9f:da:de:6d:3a:c9:28:0d:35:78:67: 7f:ff:03:28:97:97:fe:db:96:55:73:27:31:39:c5:24:8f:de: aa:15:ef:65:66:c1:79:b3:6a:70:75:27:a8:3c:84:b0:14:14: fa:3f:5c:10:19:91:f6:b0:98:7c:61:62:33:dd:14:50:54:77: cc:99:f4:56:65:c8:3b:aa:d9:79:04:2d:ed:1a:35:c4:06:f8: a6:22:2e:8d:3f:d7:8c:84:58:c5:4c:53:4a:28:be:fd:65:5b: 04:cd:0e:c9:49:83:c7:99:21:02:4e:36:22:47:ba:b5:91:ab: 97:24:e5:e1:54:3b:0f:14:80:d3:05:42:cb:3a:b7:69:8b:c9: 66:dc:97:19:39:cc:1b:d7:48:6f:7c:38:27:28:32:21:07:d1: 94:91:c6:4d -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUa+2UahnBURvBubrsrgPm0JRdQXUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQxNzA4NTUwMFoX DTI3MDQxNjA5MDAwMFowMzExMC8GA1UEAxMoNjM4NEZBOTE1QjI5M0MwOTFBNDBD MkNDMUJENjE3MEVFOTU2QjA2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhAMDwY+cKk5M1nLSzr1jAFn63su1i+Xbaw5UsjhlNXrEKPWVzpHADTDOy3 qK4YzE7VadQW2RtKSMHCrOHLs/CFkEf66+ceboxsMCJyw2zHDNjUlP6lZVsXbQdZ ChFAtMbgiHhp8VutRYHHUie9MFyI6jTSdTWuOuQAlJC2PF5Bo9A4vuGAHiltU6w/ GkMGcOc/a2k4h87zGK5WUCdUymxtEsUbcaB9CbNVAT4KCbijq5Tr/AEWdIRyVPXr mkWK2bo4zZOD8rR9uLwPHu3pBichFFuJJPH93IRJ8DU/MXp9fAMgcLzd6i1Z5mZN baI/Z0HjflO3gXedOS1WOIaunqcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRjhPqR Wyk8CRpAwswb1hcO6VawbTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1Mzg3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKPj6DAPBAIAAjAJAwcAIAEN9X5AMA0GCSqGSIb3DQEBCwUAA4IB AQBzEYbx/bmELUfu8wV338e+yxHwBWPx4MdQFA/h2KI8ET2W1l/Zvzf2fFUWKpVT rU7Vuv7sKp4GPorhIIcBZA15OzQQvVht4YMnT09lz8iJYCWf55DCHviKot7aHcJ1 w/hen9rebTrJKA01eGd//wMol5f+25ZVcycxOcUkj96qFe9lZsF5s2pwdSeoPISw FBT6P1wQGZH2sJh8YWIz3RRQVHfMmfRWZcg7qtl5BC3tGjXEBvimIi6NP9eMhFjF TFNKKL79ZVsEzQ7JSYPHmSECTjYiR7q1kauXJOXhVDsPFIDTBULLOrdpi8lm3JcZ Ocwb10hvfDgnKDIhB9GUkcZN -----END CERTIFICATE-----Generated at Fri Apr 17 13:34:04 2026 by rpki-client