$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154023.roa File: AS154023.roa (raw, json) Hash identifier: ydHUt96KsSCE04KIEn0fo+pltSyuu1MnUdQ7RS2ZMxc= Subject key identifier: 05:6D:78:E6:5E:7C:4B:37:43:2A:FA:E1:6D:25:CA:B7:8F:1F:6D:EF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 51AA725068BDF892E5599E1417DE47BE59C21D68 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154023.roa Signing time: Mon 21 Jul 2025 03:55:54 +0000 ROA not before: Mon 21 Jul 2025 03:50:54 +0000 ROA not after: Mon 20 Jul 2026 03:55:54 +0000 asID: 154023 IP address blocks: 2001:df5:cac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:aa:72:50:68:bd:f8:92:e5:59:9e:14:17:de:47:be:59:c2:1d:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 21 03:50:54 2025 GMT Not After : Jul 20 03:55:54 2026 GMT Subject: CN=056D78E65E7C4B37432AFAE16D25CAB78F1F6DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:1f:29:af:33:3e:17:16:1a:0b:eb:01:06: d4:ff:aa:db:f3:dc:8d:85:39:59:f1:f4:d4:d1:08: fb:9f:7d:98:bc:35:e4:4b:5c:69:74:48:83:37:4d: 76:a9:20:b4:dd:3a:60:53:f0:a8:7f:bc:ce:6d:78: 4f:e6:b9:19:92:e2:db:9d:be:95:fa:94:af:32:eb: 75:30:d3:f4:52:d6:71:44:4a:b5:88:30:df:cb:49: db:d1:3e:52:d9:f5:b7:78:e6:95:37:3e:b9:20:c2: d8:77:b3:74:a8:ea:a4:26:58:9d:71:f2:79:76:65: c4:d1:38:be:c5:db:75:1c:63:c1:82:3c:bf:ec:51: 30:83:37:05:62:a3:47:3f:59:87:a4:de:32:ea:37: f3:73:de:ff:4f:75:fe:1a:4f:11:cb:01:87:98:3c: 63:be:7f:43:e3:a6:21:45:f4:e9:d7:68:15:c0:24: ac:57:ab:4a:1a:91:e9:d5:1c:c5:1a:34:f8:6c:86: 97:26:3e:df:a4:c6:bb:ee:97:b6:c8:48:1f:4a:71: b2:c0:82:ba:e7:a6:c8:55:0f:2e:31:2b:d5:70:8d: 94:ad:05:0a:93:35:13:ac:13:20:ff:ad:2a:bd:a4: d0:4e:9e:40:9a:f4:17:be:b7:40:f2:d2:a3:a7:c2: 7f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6D:78:E6:5E:7C:4B:37:43:2A:FA:E1:6D:25:CA:B7:8F:1F:6D:EF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154023.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:cac0::/48 Signature Algorithm: sha256WithRSAEncryption 66:66:99:9e:37:5d:3b:6f:7f:5d:64:5a:cd:60:c4:31:a8:85: 21:99:4d:5d:77:9a:c6:9f:f9:81:1f:84:8a:cc:0b:2c:5a:5a: c6:3c:2d:f2:db:71:3e:57:bc:9d:73:80:b4:e5:85:7a:ff:32: a9:e9:fa:0b:8b:ab:f1:3b:5b:65:14:d9:c6:27:86:7a:6f:22: 04:c9:75:c8:51:73:ef:88:89:b8:cc:31:42:48:d3:dc:06:37: d0:8e:7b:5e:5f:95:53:30:16:c2:3d:5c:f5:8d:c1:ac:34:39: 1d:b0:d6:01:4f:72:fc:3c:9e:92:7a:ab:07:75:c4:99:b2:bc: ba:a5:cd:96:31:b2:c0:81:36:ff:04:3b:c2:d8:8b:df:17:f1: 76:76:7b:5d:67:f6:dc:a6:ae:1f:78:ae:82:91:8f:fa:9c:26: 8c:ac:47:d0:27:6b:52:f0:5b:d2:22:ff:2c:9f:0a:bc:b1:91: d4:11:3b:a2:2f:9c:7e:9d:b4:66:a6:ea:ec:b3:40:de:10:73: b4:9d:01:02:a1:11:c8:8b:2e:db:b1:46:2e:7c:62:07:b6:bb: d4:a2:36:91:6c:44:55:ca:91:a9:dd:9f:bf:2f:16:c9:c2:77: 34:0e:aa:5f:2a:44:ee:fe:c2:c7:41:29:dc:5c:0b:f3:9d:1c: 9c:7a:6b:88 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUUapyUGi9+JLlWZ4UF95HvlnCHWgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyMTAzNTA1NFoX DTI2MDcyMDAzNTU1NFowMzExMC8GA1UEAxMoMDU2RDc4RTY1RTdDNEIzNzQzMkFG QUUxNkQyNUNBQjc4RjFGNkRFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0sHymvMz4XFhoL6wEG1P+q2/PcjYU5WfH01NEI+599mLw15EtcaXRIgzdN dqkgtN06YFPwqH+8zm14T+a5GZLi252+lfqUrzLrdTDT9FLWcURKtYgw38tJ29E+ Utn1t3jmlTc+uSDC2HezdKjqpCZYnXHyeXZlxNE4vsXbdRxjwYI8v+xRMIM3BWKj Rz9Zh6TeMuo383Pe/091/hpPEcsBh5g8Y75/Q+OmIUX06ddoFcAkrFerShqR6dUc xRo0+GyGlyY+36TGu+6XtshIH0pxssCCuuemyFUPLjEr1XCNlK0FCpM1E6wTIP+t Kr2k0E6eQJr0F763QPLSo6fCf08CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQFbXjm XnxLN0Mq+uFtJcq3jx9t7zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDAyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfXKwDANBgkqhkiG9w0BAQsFAAOCAQEAZmaZnjddO29/XWRa zWDEMaiFIZlNXXeaxp/5gR+EiswLLFpaxjwt8ttxPle8nXOAtOWFev8yqen6C4ur 8TtbZRTZxieGem8iBMl1yFFz74iJuMwxQkjT3AY30I57Xl+VUzAWwj1c9Y3BrDQ5 HbDWAU9y/DyeknqrB3XEmbK8uqXNljGywIE2/wQ7wtiL3xfxdnZ7XWf23KauH3iu gpGP+pwmjKxH0CdrUvBb0iL/LJ8KvLGR1BE7oi+cfp20Zqbq7LNA3hBztJ0BAqER yIsu27FGLnxiB7a71KI2kWxEVcqRqd2fvy8WycJ3NA6qXypE7v7Cx0Ep3FwL850c nHpriA== -----END CERTIFICATE-----Generated at Wed Jul 23 06:02:11 2025 by rpki-client