$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154557.roa File: AS154557.roa (raw, json) Hash identifier: CBe9nG5/rehJ5OlGSMEiqNcgDsGj4SelayIUlDeRh0Q= Subject key identifier: 8D:22:F5:F4:79:7C:24:1E:20:55:82:5C:DF:C1:D6:EB:51:38:4D:01 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B15B3F844D7ED8DBEC50515AD8733DE61A17543 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154557.roa Signing time: Tue 17 Mar 2026 05:56:05 +0000 ROA not before: Tue 17 Mar 2026 05:51:05 +0000 ROA not after: Tue 16 Mar 2027 05:56:05 +0000 asID: 154557 IP address blocks: 163.128.58.0/23 maxlen: 24 2001:df6:d3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 09:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:15:b3:f8:44:d7:ed:8d:be:c5:05:15:ad:87:33:de:61:a1:75:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 17 05:51:05 2026 GMT Not After : Mar 16 05:56:05 2027 GMT Subject: CN=8D22F5F4797C241E2055825CDFC1D6EB51384D01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:db:2a:62:08:6a:1b:d9:2f:d4:e5:cc:fc:1d: 62:44:18:de:43:16:92:68:fc:06:5f:1e:a9:d4:01: 30:7a:d1:43:d2:97:a7:7d:02:6a:2b:4d:35:26:26: 36:0a:0d:62:05:5c:02:4c:f3:43:8f:bf:ed:15:28: e2:d0:df:ac:63:1c:33:93:1f:ba:9d:c7:36:00:3b: 16:8d:13:d8:2b:90:04:82:7e:56:e4:3b:60:a8:b5: 7a:e4:69:87:ab:bd:a2:aa:58:bb:a5:ee:cf:31:d5: af:7c:51:de:13:06:97:08:36:2c:0c:0c:ab:67:0b: 93:ab:7b:14:87:d9:31:40:e3:f5:0d:fe:b7:5e:94: 19:4a:da:43:a0:a2:9b:fb:c9:cc:a7:cd:2b:58:df: ed:4d:22:cf:0b:aa:22:01:d4:ba:ad:00:27:d2:8e: 1a:0c:92:85:40:5c:9e:7f:52:32:19:16:c1:2d:73: 5f:2d:e6:16:d9:01:12:c1:fa:89:a0:f1:53:da:96: af:b8:2a:dd:e4:6f:7f:fe:73:d6:2a:e1:16:70:f1: a9:cd:17:75:e0:6a:91:45:3d:f6:e1:dd:6f:fd:62: 5e:a6:19:39:20:74:4a:d5:43:72:f2:f6:8b:7b:21: 16:fb:2c:90:9a:07:bb:d9:81:a3:a7:a9:d1:6e:0e: 06:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:22:F5:F4:79:7C:24:1E:20:55:82:5C:DF:C1:D6:EB:51:38:4D:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154557.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.58.0/23 IPv6: 2001:df6:d3c0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:88:5a:65:19:fa:c2:fb:c1:72:b7:36:89:13:b9:66:d2:66: 25:49:e2:a6:7b:a4:62:04:53:b6:7f:e9:e8:e9:b6:a3:e3:a2: dc:16:57:3a:ea:7f:a2:ad:4f:7b:ca:ed:ec:8f:74:d3:90:1b: eb:18:ed:e3:ab:8d:6c:7f:89:01:87:cb:e4:76:55:49:d6:c0: fa:f8:7c:ab:92:58:f3:76:be:31:46:56:2f:57:f3:03:96:50: ac:02:1c:f6:93:6c:a7:ef:f9:9d:03:76:b2:e3:09:e8:7d:0f: 3b:b0:12:b4:7c:d7:72:55:f6:d4:7b:b6:a7:f5:98:0b:e0:a8: ca:77:3a:86:eb:a1:f3:37:eb:95:e3:18:c2:bb:13:52:e4:44: 98:02:74:ac:9b:18:cd:a1:62:bc:57:b1:e4:89:38:24:fb:27: bf:17:ff:5b:a6:7f:62:ab:46:41:73:6e:18:52:9f:4b:d3:86: dc:c2:5d:68:77:18:80:27:33:3b:1d:8a:d4:54:8b:b8:ac:9b: 44:09:94:de:b0:24:41:1e:91:34:e1:4e:35:b6:c7:f0:4d:9e: 85:90:c5:32:fa:37:8d:3e:8b:97:a7:36:c4:3e:db:3d:f4:cb: 46:5b:37:80:87:d2:d1:b4:98:58:24:26:e6:4d:6c:05:b3:83: ec:15:df:b4 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUGxWz+ETX7Y2+xQUVrYcz3mGhdUMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxNzA1NTEwNVoX DTI3MDMxNjA1NTYwNVowMzExMC8GA1UEAxMoOEQyMkY1RjQ3OTdDMjQxRTIwNTU4 MjVDREZDMUQ2RUI1MTM4NEQwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjbKmIIahvZL9TlzPwdYkQY3kMWkmj8Bl8eqdQBMHrRQ9KXp30CaitNNSYm NgoNYgVcAkzzQ4+/7RUo4tDfrGMcM5Mfup3HNgA7Fo0T2CuQBIJ+VuQ7YKi1euRp h6u9oqpYu6XuzzHVr3xR3hMGlwg2LAwMq2cLk6t7FIfZMUDj9Q3+t16UGUraQ6Ci m/vJzKfNK1jf7U0izwuqIgHUuq0AJ9KOGgyShUBcnn9SMhkWwS1zXy3mFtkBEsH6 iaDxU9qWr7gq3eRvf/5z1irhFnDxqc0XdeBqkUU99uHdb/1iXqYZOSB0StVDcvL2 i3shFvsskJoHu9mBo6ep0W4OBpsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSNIvX0 eXwkHiBVglzfwdbrUThNATAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDU1Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaOAOjAPBAIAAjAJAwcAIAEN9tPAMA0GCSqGSIb3DQEBCwUAA4IB AQBqiFplGfrC+8FytzaJE7lm0mYlSeKme6RiBFO2f+no6baj46LcFlc66n+irU97 yu3sj3TTkBvrGO3jq41sf4kBh8vkdlVJ1sD6+Hyrkljzdr4xRlYvV/MDllCsAhz2 k2yn7/mdA3ay4wnofQ87sBK0fNdyVfbUe7an9ZgL4KjKdzqG66HzN+uV4xjCuxNS 5ESYAnSsmxjNoWK8V7HkiTgk+ye/F/9bpn9iq0ZBc24YUp9L04bcwl1odxiAJzM7 HYrUVIu4rJtECZTesCRBHpE04U41tsfwTZ6FkMUy+jeNPouXpzbEPts99MtGWzeA h9LRtJhYJCbmTWwFs4PsFd+0 -----END CERTIFICATE-----Generated at Thu Mar 19 08:11:53 2026 by rpki-client