$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154143.roa File: AS154143.roa (raw, json) Hash identifier: 7MgSIWCwAv+wO6lQaLscMjh9jRn0MqjuL1cB1+bbVtQ= Subject key identifier: 65:F7:3E:0E:3F:68:3A:AB:91:DB:80:22:1B:76:6B:C4:79:D7:9B:6A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5210A09D69715CFB799C39FC60C2316A90FB565E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154143.roa Signing time: Tue 16 Sep 2025 10:18:20 +0000 ROA not before: Tue 16 Sep 2025 10:13:20 +0000 ROA not after: Tue 15 Sep 2026 10:18:20 +0000 asID: 154143 IP address blocks: 203.1.91.0/24 maxlen: 24 2001:df5:f6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:10:a0:9d:69:71:5c:fb:79:9c:39:fc:60:c2:31:6a:90:fb:56:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 16 10:13:20 2025 GMT Not After : Sep 15 10:18:20 2026 GMT Subject: CN=65F73E0E3F683AAB91DB80221B766BC479D79B6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ee:e9:ac:11:70:31:2a:34:a8:3f:9d:01:b7: 5e:23:d7:a3:4c:d4:46:e1:2a:63:b2:f7:04:9c:f9: 39:7f:89:be:e9:2b:88:b0:eb:87:6d:fb:ea:50:74: ad:24:97:21:49:92:45:9b:b0:09:2f:f7:e5:a1:a5: 98:29:fa:d9:e0:bd:b8:25:c2:a1:fe:47:41:38:fe: 16:d7:d7:b3:34:e8:bc:10:a0:3e:a8:b4:cb:51:78: bc:bb:d8:8f:43:e5:02:52:49:01:5e:48:04:bd:4e: 60:16:7a:e3:cd:7d:fc:11:50:af:26:6e:15:e5:2f: 2b:c1:51:36:8e:d2:3d:a7:16:9a:96:d1:0a:9c:41: 37:20:8c:c2:8e:6e:5c:f0:7d:be:49:7a:1d:31:1a: 4c:e9:5a:4f:70:63:55:ff:c1:58:57:6b:17:99:b6: e3:0f:74:10:73:1d:2b:e8:e0:84:9c:88:e7:15:25: 52:c0:5b:97:82:87:2f:e0:ca:57:d8:4c:fc:1e:eb: 69:ac:1a:79:47:4a:3a:e2:b9:3e:58:21:03:e3:78: 04:12:96:b4:a5:7a:f8:37:69:e5:5c:ed:d8:a4:23: 51:59:27:61:76:24:30:d2:f0:35:26:2c:08:20:1e: 06:e2:80:6a:fc:7c:38:6b:af:8d:c5:df:be:db:0d: e1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F7:3E:0E:3F:68:3A:AB:91:DB:80:22:1B:76:6B:C4:79:D7:9B:6A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154143.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.1.91.0/24 IPv6: 2001:df5:f6c0::/48 Signature Algorithm: sha256WithRSAEncryption 2d:24:fd:bf:82:4c:00:28:d5:58:4f:ae:50:d9:19:1d:6c:4a: d6:36:05:4d:60:0e:6d:79:95:ac:d6:42:61:d5:df:93:dc:f2: f4:d2:1c:6f:ee:c1:16:5f:b7:05:13:83:43:1c:62:81:54:ad: 86:c5:6d:01:59:8a:b2:2d:1c:5e:9b:fd:cf:1c:63:d5:04:b7: 5c:62:e8:74:57:ac:1c:6b:cb:b3:39:13:68:f0:45:e9:b0:df: d0:ce:27:ad:5a:40:b3:ae:e9:be:85:7e:ee:4a:9f:3e:a8:48: db:0b:24:13:4a:4f:f4:7b:4b:19:97:dc:31:0b:52:d1:7c:24: 9c:a6:f2:c0:10:d8:36:af:ca:bf:2b:39:00:c9:e4:a4:82:2b: 9d:62:1c:5a:89:83:61:9c:69:34:05:38:9d:1a:4e:0f:b4:6b: 98:a7:bf:04:ab:ab:b7:a2:40:fc:5d:78:3c:b7:fe:0a:c1:ff: 11:08:a8:e6:44:81:0c:6e:57:8c:42:f5:01:0f:7c:ab:33:8d: 61:09:e3:fa:de:7d:94:e8:e3:0e:d1:21:67:74:1f:cb:23:be: 33:1e:5b:e1:02:68:62:0f:f4:72:28:12:ee:af:67:43:e3:dc: 90:72:78:77:af:df:19:49:cb:c7:a7:08:40:cf:b4:16:57:b3: 5c:82:8d:af -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUUhCgnWlxXPt5nDn8YMIxapD7Vl4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxNjEwMTMyMFoX DTI2MDkxNTEwMTgyMFowMzExMC8GA1UEAxMoNjVGNzNFMEUzRjY4M0FBQjkxREI4 MDIyMUI3NjZCQzQ3OUQ3OUI2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMXu6awRcDEqNKg/nQG3XiPXo0zURuEqY7L3BJz5OX+JvukriLDrh2376lB0 rSSXIUmSRZuwCS/35aGlmCn62eC9uCXCof5HQTj+FtfXszTovBCgPqi0y1F4vLvY j0PlAlJJAV5IBL1OYBZ64819/BFQryZuFeUvK8FRNo7SPacWmpbRCpxBNyCMwo5u XPB9vkl6HTEaTOlaT3BjVf/BWFdrF5m24w90EHMdK+jghJyI5xUlUsBbl4KHL+DK V9hM/B7raawaeUdKOuK5PlghA+N4BBKWtKV6+Ddp5Vzt2KQjUVknYXYkMNLwNSYs CCAeBuKAavx8OGuvjcXfvtsN4X0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRl9z4O P2g6q5HbgCIbdmvEedebajAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDE0My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAMsBWzAPBAIAAjAJAwcAIAEN9fbAMA0GCSqGSIb3DQEBCwUAA4IB AQAtJP2/gkwAKNVYT65Q2RkdbErWNgVNYA5teZWs1kJh1d+T3PL00hxv7sEWX7cF E4NDHGKBVK2GxW0BWYqyLRxem/3PHGPVBLdcYuh0V6wca8uzORNo8EXpsN/Qziet WkCzrum+hX7uSp8+qEjbCyQTSk/0e0sZl9wxC1LRfCScpvLAENg2r8q/KzkAyeSk giudYhxaiYNhnGk0BTidGk4PtGuYp78Eq6u3okD8XXg8t/4Kwf8RCKjmRIEMbleM QvUBD3yrM41hCeP63n2U6OMO0SFndB/LI74zHlvhAmhiD/RyKBLur2dD49yQcnh3 r98ZScvHpwhAz7QWV7Ncgo2v -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:24 2025 by rpki-client