$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154548.roa File: AS154548.roa (raw, json) Hash identifier: eJaWA44aqUPpFONdVBJzhhWQgGND+stfAmVprI22Gi0= Subject key identifier: 35:3A:AD:35:32:8E:A6:4D:2C:72:3F:8B:A4:7F:07:B5:17:6A:5D:CD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21620FCB7ECAF94F0D270B244FD21BC48E25AB8F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154548.roa Signing time: Tue 17 Mar 2026 09:40:16 +0000 ROA not before: Tue 17 Mar 2026 09:35:16 +0000 ROA not after: Tue 16 Mar 2027 09:40:16 +0000 asID: 154548 IP address blocks: 163.128.52.0/24 maxlen: 24 2001:df6:d240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 09:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:62:0f:cb:7e:ca:f9:4f:0d:27:0b:24:4f:d2:1b:c4:8e:25:ab:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 17 09:35:16 2026 GMT Not After : Mar 16 09:40:16 2027 GMT Subject: CN=353AAD35328EA64D2C723F8BA47F07B5176A5DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5f:74:d5:2d:27:2b:b5:cc:7f:ef:f7:90:47: 35:74:12:28:b7:aa:d4:c0:ef:1e:f6:b0:3c:69:74: dd:cc:fa:48:01:92:73:c1:42:3e:a9:ef:f3:70:31: 5a:2e:cd:06:f7:02:6d:b2:85:ae:f1:21:4e:df:30: 91:2d:53:2f:df:82:37:72:7d:32:88:e8:48:05:07: 08:6d:f4:7c:f8:db:33:22:c9:23:51:8d:ff:e1:09: 48:1b:d2:41:3d:9e:2b:e2:bc:e1:58:6d:06:84:bb: 0e:f5:71:61:54:b7:5a:6c:af:9e:df:a7:f0:da:09: a5:c0:0a:0e:34:a5:dd:ce:9e:40:37:83:6c:9a:2b: cc:eb:23:72:8e:84:db:20:29:39:fe:86:e7:9c:dc: b6:41:fc:9f:3d:7d:8d:a3:93:1c:44:d5:11:07:ca: 4c:dd:0e:03:7f:80:5a:48:8d:bc:f4:81:50:07:4b: 9f:45:2c:84:61:a1:07:90:60:2b:0b:a8:c3:dd:61: 03:37:63:4f:eb:1b:da:bc:e6:e6:0f:53:bb:dc:18: 73:07:99:a7:25:2e:cf:5e:c2:c4:2b:94:95:64:14: 5e:68:dc:c1:4b:61:5b:94:95:18:db:21:c6:44:8d: 2d:1b:bf:7b:48:65:50:0c:89:ed:3c:2d:f2:fd:75: 1a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3A:AD:35:32:8E:A6:4D:2C:72:3F:8B:A4:7F:07:B5:17:6A:5D:CD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.52.0/24 IPv6: 2001:df6:d240::/48 Signature Algorithm: sha256WithRSAEncryption 3a:15:43:77:c8:c7:08:7a:c4:f5:83:ae:4c:20:e6:77:51:82: 44:5f:11:61:5b:81:3d:27:8e:f2:0d:84:3e:5c:64:12:0e:30: c7:a1:d1:98:53:11:d9:55:f2:c5:10:e3:84:b8:6c:14:f7:e4: 6e:06:58:fb:62:72:05:b3:93:7a:ac:47:13:ec:34:ce:ba:3e: 17:f7:87:6c:72:46:65:62:2d:d7:32:60:ee:02:38:5d:58:0a: 07:a4:f4:52:35:e9:35:c6:0e:1a:bd:2d:f5:e4:3e:00:8d:79: 59:02:44:78:b1:7d:17:3c:81:4e:f0:e7:ba:3d:46:3a:8b:46: 1f:fd:ed:a1:07:e1:30:b8:f7:cd:bc:28:4a:d1:c3:73:d5:88: e1:ac:35:c0:30:0d:ef:a1:dc:9f:1b:78:51:9f:84:28:5f:0f: d6:0f:9c:56:27:85:bd:07:17:d9:46:45:5d:e3:dd:f3:84:96: da:76:5c:9b:90:52:b5:fe:67:b6:4f:57:a7:a8:65:0f:d0:cd: 62:a6:b2:e1:89:63:9b:28:04:aa:0e:a0:0b:bf:64:2b:56:b6: cf:56:b7:ae:6b:42:c7:0e:8a:29:16:d8:26:05:15:61:e8:07: 28:86:a8:12:71:e6:31:2b:40:51:05:a2:80:1b:38:5b:c3:a2: 67:b5:3c:06 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUIWIPy37K+U8NJwskT9IbxI4lq48wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxNzA5MzUxNloX DTI3MDMxNjA5NDAxNlowMzExMC8GA1UEAxMoMzUzQUFEMzUzMjhFQTY0RDJDNzIz RjhCQTQ3RjA3QjUxNzZBNURDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5fdNUtJyu1zH/v95BHNXQSKLeq1MDvHvawPGl03cz6SAGSc8FCPqnv83Ax Wi7NBvcCbbKFrvEhTt8wkS1TL9+CN3J9MojoSAUHCG30fPjbMyLJI1GN/+EJSBvS QT2eK+K84VhtBoS7DvVxYVS3Wmyvnt+n8NoJpcAKDjSl3c6eQDeDbJorzOsjco6E 2yApOf6G55zctkH8nz19jaOTHETVEQfKTN0OA3+AWkiNvPSBUAdLn0UshGGhB5Bg Kwuow91hAzdjT+sb2rzm5g9Tu9wYcweZpyUuz17CxCuUlWQUXmjcwUthW5SVGNsh xkSNLRu/e0hlUAyJ7Twt8v11Gs0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQ1Oq01 Mo6mTSxyP4ukfwe1F2pdzTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDU0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKOANDAPBAIAAjAJAwcAIAEN9tJAMA0GCSqGSIb3DQEBCwUAA4IB AQA6FUN3yMcIesT1g65MIOZ3UYJEXxFhW4E9J47yDYQ+XGQSDjDHodGYUxHZVfLF EOOEuGwU9+RuBlj7YnIFs5N6rEcT7DTOuj4X94dsckZlYi3XMmDuAjhdWAoHpPRS Nek1xg4avS315D4AjXlZAkR4sX0XPIFO8Oe6PUY6i0Yf/e2hB+EwuPfNvChK0cNz 1YjhrDXAMA3vodyfG3hRn4QoXw/WD5xWJ4W9BxfZRkVd493zhJbadlybkFK1/me2 T1enqGUP0M1iprLhiWObKASqDqALv2QrVrbPVreua0LHDoopFtgmBRVh6AcohqgS ceYxK0BRBaKAGzhbw6JntTwG -----END CERTIFICATE-----Generated at Thu Mar 19 08:11:53 2026 by rpki-client