$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154452.roa File: AS154452.roa (raw, json) Hash identifier: 4FCYs4NDS3jc753jh9QiU/VFJR8aoOdpnWlAf+9faRc= Subject key identifier: A9:67:5E:79:99:F0:19:C6:CE:D5:17:B9:D2:0E:DB:60:8C:C7:7E:B4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 347A7767C896F359375E5232A849100F9C9563A1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154452.roa Signing time: Fri 13 Mar 2026 02:22:22 +0000 ROA not before: Fri 13 Mar 2026 02:17:22 +0000 ROA not after: Fri 12 Mar 2027 02:22:22 +0000 asID: 154452 IP address blocks: 2001:df6:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 09:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:7a:77:67:c8:96:f3:59:37:5e:52:32:a8:49:10:0f:9c:95:63:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 02:17:22 2026 GMT Not After : Mar 12 02:22:22 2027 GMT Subject: CN=A9675E7999F019C6CED517B9D20EDB608CC77EB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:9b:e8:c6:29:59:a4:ba:b7:27:b8:7f:b2: dd:5b:ba:66:1e:b2:d3:15:d4:84:f7:a8:1e:ef:d0: c3:5f:bf:8d:43:65:ea:bd:be:16:fa:9d:d4:9a:9a: 18:60:5f:29:e7:4a:23:eb:db:a8:d4:69:db:72:ab: 78:6f:49:0e:96:e9:f4:a9:2b:05:ef:19:0e:26:fd: 11:51:a8:4c:1b:8e:28:10:30:45:19:70:30:5c:ad: 54:de:76:70:85:3e:26:09:ef:ac:f1:90:91:a4:ee: 16:1a:71:3c:ae:48:cf:f8:1b:c0:96:fb:81:fe:bc: f8:bb:3d:0f:4e:71:65:48:37:82:59:c3:4b:50:9c: e7:75:39:62:30:88:cd:5b:6f:b9:ff:a9:43:ab:fb: ad:f4:02:d8:ac:08:7a:ec:ce:43:62:b8:c2:b4:1b: 0c:72:dd:07:ac:74:17:e0:6a:cf:fe:ab:48:6e:ad: 7b:50:97:a5:7f:ef:18:5f:ab:97:63:38:dd:bf:4f: 9d:be:fb:86:79:80:b8:83:6e:ea:7e:29:79:d5:0c: 70:6a:45:16:56:16:5a:59:ca:5f:54:c0:2f:c0:3b: b6:c2:5a:54:12:7c:eb:32:1c:82:fd:f0:b0:bb:dc: ac:8b:14:47:31:57:28:e3:c7:e2:09:08:f5:24:19: 94:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:67:5E:79:99:F0:19:C6:CE:D5:17:B9:D2:0E:DB:60:8C:C7:7E:B4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154452.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:7140::/48 Signature Algorithm: sha256WithRSAEncryption 21:9f:76:a6:8a:36:2a:28:65:53:15:4a:cb:ca:ac:51:8d:ca: 99:64:cb:5b:38:a3:df:bc:bd:7b:d7:07:c3:aa:c3:98:42:11: 4c:4f:46:28:bf:a4:1b:be:46:bb:3a:61:13:00:9a:ae:7d:b0: c9:c7:2c:a0:43:4a:8c:6b:7a:a0:1c:f1:e8:a9:65:d0:e3:8a: f7:05:16:8d:4b:e4:8d:d3:ec:ba:78:aa:de:08:7c:9b:5f:33: 2c:39:b2:e4:a2:34:0c:fd:34:46:14:2e:f5:e0:3c:93:cf:95: 13:fa:6c:39:1a:be:7d:77:d1:e8:94:21:e4:1d:90:ad:ef:a9: ec:29:f1:df:74:dd:ae:73:f8:21:56:80:d3:b2:9e:ca:86:22: 8a:92:0e:42:2e:03:2b:1b:77:72:d1:f5:e6:57:d7:f6:9e:e6: ea:d1:b0:7a:87:51:75:52:c9:a5:d4:4a:d0:4e:19:22:c0:bc: aa:ea:06:dd:7f:9f:19:19:21:d7:be:4f:69:09:a0:72:05:cb: 80:fd:81:9c:46:88:13:c8:76:a1:71:19:a8:3d:dc:2c:c7:5b: 2f:fc:0f:b4:3b:d7:7e:84:ce:ba:fb:af:f0:7c:7b:70:3a:16: 8e:98:22:88:fb:1f:54:86:a6:78:34:5d:41:a9:f4:ac:96:a8: a1:80:4b:91 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUNHp3Z8iW81k3XlIyqEkQD5yVY6EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxMzAyMTcyMloX DTI3MDMxMjAyMjIyMlowMzExMC8GA1UEAxMoQTk2NzVFNzk5OUYwMTlDNkNFRDUx N0I5RDIwRURCNjA4Q0M3N0VCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdwm+jGKVmkurcnuH+y3Vu6Zh6y0xXUhPeoHu/Qw1+/jUNl6r2+Fvqd1Jqa GGBfKedKI+vbqNRp23KreG9JDpbp9KkrBe8ZDib9EVGoTBuOKBAwRRlwMFytVN52 cIU+JgnvrPGQkaTuFhpxPK5Iz/gbwJb7gf68+Ls9D05xZUg3glnDS1Cc53U5YjCI zVtvuf+pQ6v7rfQC2KwIeuzOQ2K4wrQbDHLdB6x0F+Bqz/6rSG6te1CXpX/vGF+r l2M43b9Pnb77hnmAuINu6n4pedUMcGpFFlYWWlnKX1TAL8A7tsJaVBJ86zIcgv3w sLvcrIsURzFXKOPH4gkI9SQZlJUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSpZ155 mfAZxs7VF7nSDttgjMd+tDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDQ1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfZxQDANBgkqhkiG9w0BAQsFAAOCAQEAIZ92poo2KihlUxVK y8qsUY3KmWTLWzij37y9e9cHw6rDmEIRTE9GKL+kG75GuzphEwCarn2wyccsoENK jGt6oBzx6Kll0OOK9wUWjUvkjdPsuniq3gh8m18zLDmy5KI0DP00RhQu9eA8k8+V E/psORq+fXfR6JQh5B2Qre+p7Cnx33TdrnP4IVaA07KeyoYiipIOQi4DKxt3ctH1 5lfX9p7m6tGweodRdVLJpdRK0E4ZIsC8quoG3X+fGRkh175PaQmgcgXLgP2BnEaI E8h2oXEZqD3cLMdbL/wPtDvXfoTOuvuv8Hx7cDoWjpgiiPsfVIameDRdQan0rJao oYBLkQ== -----END CERTIFICATE-----Generated at Thu Mar 19 08:11:53 2026 by rpki-client