$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154211.roa File: AS154211.roa (raw, json) Hash identifier: wJUOgOMZZeEp6EWOFfq6AvicfspeKHChunF/m/Nc+5Q= Subject key identifier: FC:59:FF:75:84:BB:9C:2C:5D:E7:A4:CC:23:63:73:0E:70:C5:7E:8A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 264828BFB8A137E37E450269DC6A452DAAAAF414 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154211.roa Signing time: Fri 10 Oct 2025 02:22:01 +0000 ROA not before: Fri 10 Oct 2025 02:17:01 +0000 ROA not after: Fri 09 Oct 2026 02:22:01 +0000 asID: 154211 IP address blocks: 202.133.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:48:28:bf:b8:a1:37:e3:7e:45:02:69:dc:6a:45:2d:aa:aa:f4:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 10 02:17:01 2025 GMT Not After : Oct 9 02:22:01 2026 GMT Subject: CN=FC59FF7584BB9C2C5DE7A4CC2363730E70C57E8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:32:43:e5:19:37:0f:75:07:a1:c4:70:02:c3: 6c:07:9d:90:e1:95:e8:fd:1c:d1:61:cd:de:85:75: 67:c4:eb:ee:5f:c1:3c:94:c9:3f:22:e0:19:82:44: 0c:74:21:5a:2c:a9:d1:09:dc:6b:f6:4f:d1:7b:36: 46:e0:18:50:60:d4:5b:4e:93:14:2c:bb:79:a6:0c: 2b:c4:0c:ee:83:4b:31:8e:98:a7:1f:c9:7d:0c:e4: 45:53:d4:ad:06:6a:c4:e8:9c:a6:ef:7d:ce:11:69: 75:06:7f:55:31:de:84:17:d2:d8:14:81:4b:79:ac: 40:23:fb:db:87:cd:03:39:60:35:d9:aa:46:70:61: 66:08:85:48:93:9d:c2:a3:d4:1f:9e:90:93:78:67: a1:16:bd:18:2a:45:53:10:19:02:cf:6d:44:5c:2b: 24:2e:88:89:e3:1a:5a:52:f5:33:e3:bf:0c:f2:f0: 6e:6b:63:be:2c:44:91:09:88:f0:31:5d:1a:28:28: 20:dc:23:0e:4d:21:2d:9a:d4:e3:ee:d6:fd:9c:40: 9c:8b:c3:3d:7e:02:4f:80:17:8f:44:a9:df:35:c0: 73:89:8f:8a:d2:18:81:32:08:4a:ad:33:8a:2f:18: 76:a9:44:ac:95:3a:83:a0:34:94:77:84:24:69:15: 13:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:59:FF:75:84:BB:9C:2C:5D:E7:A4:CC:23:63:73:0E:70:C5:7E:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154211.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.66.0/23 Signature Algorithm: sha256WithRSAEncryption 37:13:3d:5b:29:ab:8d:4a:1e:ad:de:9c:9e:2f:20:b4:dd:50: 24:cc:4e:db:81:ec:1f:5e:65:24:4f:ac:b6:36:d9:64:45:8e: 9b:dc:53:b7:50:34:25:fb:62:57:7a:6f:8c:c9:b9:8e:54:e3: b2:03:f7:5d:2f:54:6c:64:aa:7d:c8:92:5c:55:9c:a3:8a:ee: 9d:93:e7:c0:a1:a4:4a:4e:2a:e8:4f:b3:21:8a:21:1c:b5:db: 0e:e3:89:7a:3b:9f:70:7e:7b:ef:c5:b0:cf:4b:da:57:6a:08: fa:a3:e5:77:5d:32:ce:28:dd:3f:23:89:f7:33:ea:5c:2c:c8: 4b:0d:cf:d9:12:50:70:92:db:36:c0:b4:0a:76:0e:83:7e:14: 83:0d:cb:53:52:32:6f:5c:08:dd:e7:82:2b:eb:fb:b9:d6:b2: d9:b9:55:e9:ec:26:ed:fa:a4:cd:5f:85:b4:cf:68:a7:39:10: b1:08:41:e5:87:c1:79:ec:de:94:32:7c:0d:ad:d6:00:72:b9: 63:20:e0:d9:aa:89:42:45:20:95:be:2c:2f:a1:0d:71:f0:bd: dd:09:ce:d8:36:74:42:79:fa:fd:2e:87:5f:2d:58:f5:0e:70: 01:e8:5b:87:05:1e:b1:b8:3d:3f:da:3b:0c:24:95:8e:c2:8b: 70:14:58:06 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJkgov7ihN+N+RQJp3GpFLaqq9BQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAxMDAyMTcwMVoX DTI2MTAwOTAyMjIwMVowMzExMC8GA1UEAxMoRkM1OUZGNzU4NEJCOUMyQzVERTdB NENDMjM2MzczMEU3MEM1N0U4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOEyQ+UZNw91B6HEcALDbAedkOGV6P0c0WHN3oV1Z8Tr7l/BPJTJPyLgGYJE DHQhWiyp0Qnca/ZP0Xs2RuAYUGDUW06TFCy7eaYMK8QM7oNLMY6Ypx/JfQzkRVPU rQZqxOicpu99zhFpdQZ/VTHehBfS2BSBS3msQCP724fNAzlgNdmqRnBhZgiFSJOd wqPUH56Qk3hnoRa9GCpFUxAZAs9tRFwrJC6IieMaWlL1M+O/DPLwbmtjvixEkQmI 8DFdGigoINwjDk0hLZrU4+7W/ZxAnIvDPX4CT4AXj0Sp3zXAc4mPitIYgTIISq0z ii8YdqlErJU6g6A0lHeEJGkVE70CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT8Wf91 hLucLF3npMwjY3MOcMV+ijAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDIxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAcqFQjANBgkqhkiG9w0BAQsFAAOCAQEANxM9WymrjUoerd6cni8g tN1QJMxO24HsH15lJE+stjbZZEWOm9xTt1A0JftiV3pvjMm5jlTjsgP3XS9UbGSq fciSXFWco4runZPnwKGkSk4q6E+zIYohHLXbDuOJejufcH5778Wwz0vaV2oI+qPl d10yzijdPyOJ9zPqXCzISw3P2RJQcJLbNsC0CnYOg34Ugw3LU1Iyb1wI3eeCK+v7 uday2blV6ewm7fqkzV+FtM9opzkQsQhB5YfBeezelDJ8Da3WAHK5YyDg2aqJQkUg lb4sL6ENcfC93QnO2DZ0Qnn6/S6HXy1Y9Q5wAehbhwUesbg9P9o7DCSVjsKLcBRY Bg== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:21 2025 by rpki-client