$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154146.roa File: AS154146.roa (raw, json) Hash identifier: xmUHzYM/btPv8g3A4KIL0EnOfiIs9gHA2SU5b8I0psM= Subject key identifier: E6:6C:9B:B4:75:06:64:38:40:F0:3C:19:85:12:B8:1D:8B:2E:80:A3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EF975821B4ABBDBC06E432D9DC385F375899029 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154146.roa Signing time: Mon 22 Sep 2025 01:57:41 +0000 ROA not before: Mon 22 Sep 2025 01:52:41 +0000 ROA not after: Mon 21 Sep 2026 01:57:41 +0000 asID: 154146 IP address blocks: 2001:df5:ebc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f9:75:82:1b:4a:bb:db:c0:6e:43:2d:9d:c3:85:f3:75:89:90:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 22 01:52:41 2025 GMT Not After : Sep 21 01:57:41 2026 GMT Subject: CN=E66C9BB47506643840F03C198512B81D8B2E80A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:74:72:45:96:41:14:2d:03:1e:5c:5a:7b:dc: f5:28:fc:44:b8:f7:79:a1:2b:b9:0a:10:1c:0c:b8: 14:84:e4:9c:cf:2e:c2:8a:da:ab:d6:11:f5:da:5a: 35:ee:ac:bc:d9:9e:93:2f:da:9c:de:f3:c1:46:5c: f3:a4:a6:25:3a:9e:ae:5b:98:bb:cd:77:b9:e9:e7: 51:14:74:28:4e:d7:53:58:fe:a6:02:3b:cd:42:e0: 2a:c6:a2:05:53:5f:e7:99:2d:e8:9b:70:0b:a2:6c: 84:c9:0d:e5:94:b8:7c:15:db:5f:c6:cc:bb:46:8d: b7:57:ac:9d:f2:76:d5:09:d8:20:9a:7c:01:9f:bb: bf:af:a0:6c:7e:7c:d8:9e:60:56:8c:6a:d8:17:58: 36:38:9d:ff:c5:19:8d:29:88:b3:f7:94:b6:df:86: c4:d2:02:6e:68:eb:13:59:39:7a:a4:ad:08:2d:eb: 9a:8c:5d:b9:82:d4:8a:6b:6e:b3:ad:f0:d1:cf:db: b0:c5:24:a8:b2:e4:b9:55:70:fd:46:3b:53:19:5e: d1:0d:26:d8:7c:1f:60:2f:96:0b:6d:7c:d8:84:b0: c7:1b:4a:57:2f:d4:21:05:27:9a:e3:a6:00:88:14: b8:0d:22:df:44:80:94:56:4d:54:3f:91:7f:ee:f1: 85:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6C:9B:B4:75:06:64:38:40:F0:3C:19:85:12:B8:1D:8B:2E:80:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154146.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:ebc0::/48 Signature Algorithm: sha256WithRSAEncryption 84:58:5d:31:4a:72:48:0a:24:ab:c2:3b:71:f7:7f:93:12:6a: 04:ca:79:3f:fc:e9:02:8a:cd:3c:7c:fd:8a:29:00:d1:76:4a: 22:1c:38:e2:2c:5a:ee:28:53:d0:f4:ec:a7:77:29:a5:f3:36: 51:61:55:d7:15:c9:9a:85:67:29:8d:2e:b1:0c:60:25:95:9c: 48:3b:ec:3d:16:5b:d2:f7:f2:85:fc:9a:d8:ac:1e:fd:fc:39: 13:2d:4d:cb:68:0b:91:95:2a:15:ad:e9:4d:d0:75:9b:3d:22: 83:11:3c:aa:f8:50:4b:e9:40:ee:84:84:2d:80:65:04:be:a4: e4:da:f5:cf:38:73:ef:bc:10:ca:51:4e:f4:63:43:b7:e7:44: 81:d6:21:be:92:97:77:9a:4d:e5:71:26:aa:b4:d9:38:d2:37: 29:5c:3a:1a:4f:f3:03:7d:d2:42:4e:43:fb:24:d3:8c:a2:a5: 8f:89:f4:42:8c:7b:44:ea:c5:aa:65:ce:e1:52:1e:f4:11:45: 1f:19:b2:fd:3c:f6:db:b9:e7:ef:65:3d:5a:64:6b:4f:16:06: 28:97:be:34:dd:7e:50:72:d6:ed:95:78:19:67:ae:a7:ab:cc: 1e:02:b8:8b:ca:58:ad:cd:33:32:35:de:8f:51:26:57:7b:72: 1c:2a:ca:97 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUPvl1ghtKu9vAbkMtncOF83WJkCkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkyMjAxNTI0MVoX DTI2MDkyMTAxNTc0MVowMzExMC8GA1UEAxMoRTY2QzlCQjQ3NTA2NjQzODQwRjAz QzE5ODUxMkI4MUQ4QjJFODBBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALp0ckWWQRQtAx5cWnvc9Sj8RLj3eaEruQoQHAy4FITknM8uworaq9YR9dpa Ne6svNmeky/anN7zwUZc86SmJTqerluYu813uennURR0KE7XU1j+pgI7zULgKsai BVNf55kt6JtwC6JshMkN5ZS4fBXbX8bMu0aNt1esnfJ21QnYIJp8AZ+7v6+gbH58 2J5gVoxq2BdYNjid/8UZjSmIs/eUtt+GxNICbmjrE1k5eqStCC3rmoxduYLUimtu s63w0c/bsMUkqLLkuVVw/UY7Uxle0Q0m2HwfYC+WC2182ISwxxtKVy/UIQUnmuOm AIgUuA0i30SAlFZNVD+Rf+7xhWcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTmbJu0 dQZkOEDwPBmFErgdiy6AozAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDE0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfXrwDANBgkqhkiG9w0BAQsFAAOCAQEAhFhdMUpySAokq8I7 cfd/kxJqBMp5P/zpAorNPHz9iikA0XZKIhw44ixa7ihT0PTsp3cppfM2UWFV1xXJ moVnKY0usQxgJZWcSDvsPRZb0vfyhfya2Kwe/fw5Ey1Ny2gLkZUqFa3pTdB1mz0i gxE8qvhQS+lA7oSELYBlBL6k5Nr1zzhz77wQylFO9GNDt+dEgdYhvpKXd5pN5XEm qrTZONI3KVw6Gk/zA33SQk5D+yTTjKKlj4n0Qox7ROrFqmXO4VIe9BFFHxmy/Tz2 27nn72U9WmRrTxYGKJe+NN1+UHLW7ZV4GWeup6vMHgK4i8pYrc0zMjXej1EmV3ty HCrKlw== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:14 2025 by rpki-client