$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154509.roa File: AS154509.roa (raw, json) Hash identifier: KJKzgiB8rqo5RwCj+K9+I9mgU33N10rWvkRKKjPwAWg= Subject key identifier: 17:86:F4:B6:38:F2:D7:F1:09:73:28:CD:53:0B:20:0E:8A:77:6F:47 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21F280C541978F659EE9206E56C554CFBC755C79 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154509.roa Signing time: Fri 13 Mar 2026 04:34:33 +0000 ROA not before: Fri 13 Mar 2026 04:29:33 +0000 ROA not after: Fri 12 Mar 2027 04:34:33 +0000 asID: 154509 IP address blocks: 2001:df6:b640::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 09:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f2:80:c5:41:97:8f:65:9e:e9:20:6e:56:c5:54:cf:bc:75:5c:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 04:29:33 2026 GMT Not After : Mar 12 04:34:33 2027 GMT Subject: CN=1786F4B638F2D7F1097328CD530B200E8A776F47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:72:72:66:99:b4:a4:c3:ce:e4:82:b1:e7:45: 3d:2e:9a:fc:f4:64:4d:73:dd:1e:68:a3:b6:c1:40: 53:69:7e:9c:d1:ce:93:8b:d2:6a:03:d7:cd:fb:04: 79:40:24:68:40:96:13:df:fd:85:54:69:65:40:6f: 8d:4c:9a:91:6c:04:5f:83:ff:d8:5d:22:57:a8:0b: d7:0d:a0:56:a2:88:db:ca:67:49:fd:36:9a:6c:29: 52:3d:9f:32:9f:83:22:ae:ac:e9:b0:0d:c6:30:f2: de:9c:86:d1:5b:ac:3e:d8:4b:83:df:38:ac:2a:2b: 13:27:36:6b:96:b3:e0:f6:b4:9f:3c:6d:84:8e:6e: d6:e2:8f:69:77:bf:42:12:7d:36:a5:98:ea:4d:b9: e0:3f:9b:df:bb:4c:fb:24:3d:dd:0f:5b:2d:96:b8: 8b:67:07:ed:fd:ad:40:ee:d7:48:e4:5c:58:50:09: 00:e6:a7:18:49:b8:43:16:87:3d:28:44:8c:93:47: a8:3b:f7:4d:8e:52:a1:8c:84:5b:4d:7e:0d:d4:b4: 15:4d:72:bc:20:2c:e5:ea:fe:2a:84:9a:0c:ed:b7: c1:22:57:8a:1b:b2:77:9f:33:07:76:55:d0:08:b0: c0:b9:06:ce:1e:9a:20:52:03:a5:cb:48:b4:9e:61: 6f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:86:F4:B6:38:F2:D7:F1:09:73:28:CD:53:0B:20:0E:8A:77:6F:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:b640::/48 Signature Algorithm: sha256WithRSAEncryption 8f:ba:b0:05:75:af:2b:58:ac:56:db:0c:3d:37:16:52:ba:f3: b5:3a:0d:e2:29:bb:70:eb:4b:9a:af:7f:f5:4c:da:08:8f:05: e7:60:38:7b:20:23:0b:39:cd:65:4d:6a:46:4e:cc:4f:f6:fa: 82:f5:13:f7:8c:c4:96:7c:3e:60:c2:6a:80:a8:ea:f1:2f:de: 9a:ab:80:df:d6:72:76:0c:a3:15:00:0a:d6:16:58:6a:1c:c7: 0d:9a:26:eb:60:34:bf:ac:41:80:6a:43:32:21:b0:12:0e:74: 15:0b:5d:23:03:56:8a:b9:40:85:c7:02:a7:16:1f:82:ed:76: f0:41:ee:ba:bb:0f:42:53:16:62:6a:32:2c:de:b1:39:39:73: 19:95:9b:26:20:61:a8:76:2a:df:cb:d8:4f:41:62:b9:2a:e2: 21:59:f6:6d:01:5c:36:f7:58:b0:2e:e1:fd:38:df:70:f8:a4: 43:d8:c8:b1:f1:6a:ee:57:63:b1:22:4d:00:6a:ca:34:2b:06: 00:1b:59:20:2e:29:d8:d9:e3:dd:88:ca:4c:ca:60:50:a4:88: 09:87:6c:8f:76:3f:ac:6c:d4:b9:d7:03:d3:f4:a8:6d:e5:d9: b5:f3:4b:a9:35:4e:66:f2:8f:7e:02:70:ba:0e:fe:54:0c:05: 6a:b5:24:a3 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUIfKAxUGXj2We6SBuVsVUz7x1XHkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxMzA0MjkzM1oX DTI3MDMxMjA0MzQzM1owMzExMC8GA1UEAxMoMTc4NkY0QjYzOEYyRDdGMTA5NzMy OENENTMwQjIwMEU4QTc3NkY0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM9ycmaZtKTDzuSCsedFPS6a/PRkTXPdHmijtsFAU2l+nNHOk4vSagPXzfsE eUAkaECWE9/9hVRpZUBvjUyakWwEX4P/2F0iV6gL1w2gVqKI28pnSf02mmwpUj2f Mp+DIq6s6bANxjDy3pyG0VusPthLg984rCorEyc2a5az4Pa0nzxthI5u1uKPaXe/ QhJ9NqWY6k254D+b37tM+yQ93Q9bLZa4i2cH7f2tQO7XSORcWFAJAOanGEm4QxaH PShEjJNHqDv3TY5SoYyEW01+DdS0FU1yvCAs5er+KoSaDO23wSJXihuyd58zB3ZV 0AiwwLkGzh6aIFIDpctItJ5hb3cCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQXhvS2 OPLX8QlzKM1TCyAOindvRzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDUwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfa2QDANBgkqhkiG9w0BAQsFAAOCAQEAj7qwBXWvK1isVtsM PTcWUrrztToN4im7cOtLmq9/9UzaCI8F52A4eyAjCznNZU1qRk7MT/b6gvUT94zE lnw+YMJqgKjq8S/emquA39ZydgyjFQAK1hZYahzHDZom62A0v6xBgGpDMiGwEg50 FQtdIwNWirlAhccCpxYfgu128EHuursPQlMWYmoyLN6xOTlzGZWbJiBhqHYq38vY T0FiuSriIVn2bQFcNvdYsC7h/TjfcPikQ9jIsfFq7ldjsSJNAGrKNCsGABtZIC4p 2Nnj3YjKTMpgUKSICYdsj3Y/rGzUudcD0/SobeXZtfNLqTVOZvKPfgJwug7+VAwF arUkow== -----END CERTIFICATE-----Generated at Thu Mar 19 08:11:53 2026 by rpki-client