$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153882.roa File: AS153882.roa (raw, json) Hash identifier: u7nWA8vA1E8vDN8zTNLz9ugSOrBiICj5pk3YRCg/rWQ= Subject key identifier: CE:31:C3:0B:6A:8B:24:0C:88:83:9D:7B:67:CF:29:45:A7:06:A5:1C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6FBDF226B5167B27B43285D4364A7362C7946B29 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153882.roa Signing time: Tue 10 Jun 2025 06:44:15 +0000 ROA not before: Tue 10 Jun 2025 06:39:15 +0000 ROA not after: Tue 09 Jun 2026 06:44:15 +0000 asID: 153882 IP address blocks: 163.227.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:bd:f2:26:b5:16:7b:27:b4:32:85:d4:36:4a:73:62:c7:94:6b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 10 06:39:15 2025 GMT Not After : Jun 9 06:44:15 2026 GMT Subject: CN=CE31C30B6A8B240C88839D7B67CF2945A706A51C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6b:65:e3:c5:18:8f:54:02:ad:69:dc:97:5e: 7c:7e:9c:ef:4c:a9:38:3a:4d:37:a7:37:f7:45:65: d2:be:57:06:79:49:ef:66:2e:5d:44:0f:42:be:68: b8:dc:a9:6f:60:f6:a1:aa:93:68:82:6a:6e:79:c6: d1:e5:36:8f:55:e1:9e:92:0a:55:93:78:31:7a:62: 8d:58:53:44:10:82:00:bf:53:8b:6e:89:6e:a1:2e: 03:22:37:68:73:5d:c6:7e:ff:8a:cf:81:7c:1c:15: aa:42:fe:3e:1c:39:d5:5a:5b:e3:ab:1c:50:5e:31: 0d:f0:10:17:40:6c:4f:87:7a:11:63:56:eb:1f:3f: 4b:e4:02:db:a8:9b:64:6d:a2:0d:c7:47:17:6b:15: cf:ae:0d:24:dc:5d:d0:9e:9a:1e:83:90:23:8a:10: b9:11:f2:62:17:5e:2d:33:b8:e9:66:4e:ec:5a:2f: 40:70:de:b6:f0:98:51:a6:9b:4d:9f:5f:ce:59:45: 2e:5b:5a:e6:89:1a:82:90:a9:f2:d4:9d:fd:16:09: 1e:e5:66:bc:1e:46:d0:a3:44:9b:bf:3e:c4:8e:6b: 6f:8e:ae:07:a0:67:c3:12:5f:bb:45:b8:d8:fa:37: 00:56:2d:a9:95:ea:13:e7:83:67:2e:d3:ef:66:90: ec:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:31:C3:0B:6A:8B:24:0C:88:83:9D:7B:67:CF:29:45:A7:06:A5:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153882.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.10.0/23 Signature Algorithm: sha256WithRSAEncryption 62:38:0e:d3:0c:45:30:26:f3:73:af:43:9e:fc:2b:a1:02:b7: 75:a5:5d:97:cd:c7:b5:6f:1f:65:f0:8f:02:b9:55:b0:c8:19: 5a:7b:69:66:25:c4:ce:0e:ed:b0:3f:9a:cc:85:c3:b7:9b:56: 83:6e:e3:59:a4:3e:66:cb:c5:48:6a:fb:44:21:b8:6a:83:53: 05:2d:ac:80:eb:50:60:f0:da:f1:11:b8:66:f6:40:a3:29:73: 91:73:71:25:75:29:5c:25:18:81:8a:76:8b:10:03:27:93:4f: fb:9f:34:c6:76:52:11:d1:d2:7a:52:67:fc:8d:52:0c:8b:4e: e0:34:4e:2a:e6:2b:72:19:b9:a2:f9:7c:b3:c0:25:f6:18:51: 62:07:a1:08:1d:5b:3d:56:19:95:37:8f:d6:7c:b8:fc:aa:fa: da:4b:15:0e:81:33:0f:1c:38:3d:d3:69:2c:71:cf:96:57:06: 78:82:04:ba:37:b5:b7:07:6c:86:78:c0:c7:10:90:d9:be:e8: dc:74:c1:ec:bd:28:52:df:4d:48:be:ff:a6:c6:09:75:fd:4f: 5e:8e:69:e8:ec:80:b3:66:7d:1f:0b:cc:db:7c:93:26:56:21: 33:a8:8f:39:2c:63:6f:0b:d2:35:57:3c:af:07:15:53:04:c5: d9:20:c6:48 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUb73yJrUWeye0MoXUNkpzYseUaykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxMDA2MzkxNVoX DTI2MDYwOTA2NDQxNVowMzExMC8GA1UEAxMoQ0UzMUMzMEI2QThCMjQwQzg4ODM5 RDdCNjdDRjI5NDVBNzA2QTUxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBrZePFGI9UAq1p3JdefH6c70ypODpNN6c390Vl0r5XBnlJ72YuXUQPQr5o uNypb2D2oaqTaIJqbnnG0eU2j1XhnpIKVZN4MXpijVhTRBCCAL9Ti26JbqEuAyI3 aHNdxn7/is+BfBwVqkL+Phw51Vpb46scUF4xDfAQF0BsT4d6EWNW6x8/S+QC26ib ZG2iDcdHF2sVz64NJNxd0J6aHoOQI4oQuRHyYhdeLTO46WZO7FovQHDetvCYUaab TZ9fzllFLlta5okagpCp8tSd/RYJHuVmvB5G0KNEm78+xI5rb46uB6BnwxJfu0W4 2Po3AFYtqZXqE+eDZy7T72aQ7OUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTOMcML aoskDIiDnXtnzylFpwalHDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1Mzg4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaPjCjANBgkqhkiG9w0BAQsFAAOCAQEAYjgO0wxFMCbzc69Dnvwr oQK3daVdl83HtW8fZfCPArlVsMgZWntpZiXEzg7tsD+azIXDt5tWg27jWaQ+ZsvF SGr7RCG4aoNTBS2sgOtQYPDa8RG4ZvZAoylzkXNxJXUpXCUYgYp2ixADJ5NP+580 xnZSEdHSelJn/I1SDItO4DROKuYrchm5ovl8s8Al9hhRYgehCB1bPVYZlTeP1ny4 /Kr62ksVDoEzDxw4PdNpLHHPllcGeIIEuje1twdshnjAxxCQ2b7o3HTB7L0oUt9N SL7/psYJdf1PXo5p6OyAs2Z9HwvM23yTJlYhM6iPOSxjbwvSNVc8rwcVUwTF2SDG SA== -----END CERTIFICATE-----Generated at Sun Jun 15 19:32:52 2025 by rpki-client