$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154233.roa File: AS154233.roa (raw, json) Hash identifier: 93HFfnsCh3Nmz9qg2x4lbsdLs+sWtwOhthQ9RYA4fQI= Subject key identifier: 7C:A6:6D:C2:B0:E3:6A:12:DE:FA:68:30:C2:A3:DB:21:21:34:45:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 31BFF03ACDC523AD67CBDF88AED07F02A68A5304 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154233.roa Signing time: Mon 06 Oct 2025 03:20:50 +0000 ROA not before: Mon 06 Oct 2025 03:15:50 +0000 ROA not after: Mon 05 Oct 2026 03:20:50 +0000 asID: 154233 IP address blocks: 163.227.96.0/23 maxlen: 24 2001:df5:60c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:bf:f0:3a:cd:c5:23:ad:67:cb:df:88:ae:d0:7f:02:a6:8a:53:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 6 03:15:50 2025 GMT Not After : Oct 5 03:20:50 2026 GMT Subject: CN=7CA66DC2B0E36A12DEFA6830C2A3DB2121344590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f0:a4:33:3b:ab:95:29:e9:79:ef:90:2d:43: 80:4b:a0:7d:cc:0f:87:d7:5a:a8:34:9c:fe:70:f7: 25:9f:46:38:81:5a:b9:17:81:a0:a3:f8:20:98:77: 03:90:49:9d:e1:54:c8:4f:8e:31:f1:b8:e7:5a:21: cb:1d:12:2d:7d:b5:7b:da:36:75:a4:e4:0c:08:af: 3e:dc:12:22:5e:45:23:00:3c:d6:d7:cf:7f:0d:b8: a8:ea:45:95:f6:91:44:43:9a:25:f0:de:93:0d:b3: e5:98:2c:d1:fc:45:0e:04:1c:f7:1c:bf:a1:0b:5f: d5:3b:97:ff:6f:89:94:64:8d:4b:35:84:4e:23:31: dd:24:c7:ed:1d:26:a3:51:b8:4a:12:c4:fc:38:90: 7e:d7:47:ca:17:f8:cd:f6:44:e5:0f:19:e5:bc:96: 44:c4:1d:96:c3:b7:54:00:27:15:97:a6:0b:a8:c2: 03:16:9f:bf:5f:d2:99:c2:d6:f9:da:b3:be:20:f2: 62:87:04:e0:b4:88:1c:8f:e7:d8:fb:04:2c:58:83: 2b:3e:40:c3:c8:d1:4d:d7:6d:3c:ed:81:ab:43:68: a3:8f:8e:33:be:c9:d6:84:46:22:88:d4:53:b6:8a: ea:a2:71:e4:4d:3b:0b:9b:11:ab:96:58:39:52:48: 4f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A6:6D:C2:B0:E3:6A:12:DE:FA:68:30:C2:A3:DB:21:21:34:45:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.227.96.0/23 IPv6: 2001:df5:60c0::/48 Signature Algorithm: sha256WithRSAEncryption 83:d8:b3:ac:ac:a8:08:26:6d:0a:f6:b4:73:91:52:7a:0a:b4: a3:9b:6a:f1:17:9e:f8:6c:bd:1e:fd:bd:6f:73:6f:c7:2e:cd: fb:f9:9f:16:12:fc:be:e6:bb:9f:35:9b:60:44:50:5c:ff:5d: 22:aa:87:d9:a6:8e:2f:94:1c:1b:eb:69:f7:c5:60:1b:ce:0f: e9:6b:7a:3e:95:73:e6:a8:21:ce:d7:30:7a:45:95:f6:59:be: a9:0d:2c:3f:d3:08:40:4f:e0:6f:80:7f:2a:3a:f3:14:23:62: 88:9e:3c:11:0d:b9:45:3c:8e:2a:ee:d4:76:b5:49:f5:5e:84: f0:ed:95:54:c8:34:b1:84:9c:c9:0e:dc:15:e6:0b:4a:fa:06: 38:ee:63:89:c2:ad:dd:a2:23:d9:52:a1:b6:d7:3f:61:de:21: ab:d9:bf:f8:ce:79:11:ea:85:8d:54:0f:8f:95:05:4e:86:98: 23:f3:33:d9:f9:81:f1:f5:c1:84:d0:90:c4:f0:af:d9:8c:e2: df:0b:04:4c:62:c3:4d:1e:24:eb:0f:67:9e:df:3e:ec:1a:76: f7:85:03:01:b4:fc:32:a7:9e:ed:58:63:b8:e7:0f:08:6c:c0: 77:08:49:ac:6c:7a:bc:ef:1b:4a:54:d4:10:dc:4b:c6:ef:c3: 22:c8:8f:5c -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUMb/wOs3FI61ny9+IrtB/AqaKUwQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwNjAzMTU1MFoX DTI2MTAwNTAzMjA1MFowMzExMC8GA1UEAxMoN0NBNjZEQzJCMEUzNkExMkRFRkE2 ODMwQzJBM0RCMjEyMTM0NDU5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjwpDM7q5Up6XnvkC1DgEugfcwPh9daqDSc/nD3JZ9GOIFauReBoKP4IJh3 A5BJneFUyE+OMfG451ohyx0SLX21e9o2daTkDAivPtwSIl5FIwA81tfPfw24qOpF lfaRREOaJfDekw2z5Zgs0fxFDgQc9xy/oQtf1TuX/2+JlGSNSzWETiMx3STH7R0m o1G4ShLE/DiQftdHyhf4zfZE5Q8Z5byWRMQdlsO3VAAnFZemC6jCAxafv1/SmcLW +dqzviDyYocE4LSIHI/n2PsELFiDKz5Aw8jRTddtPO2Bq0Noo4+OM77J1oRGIojU U7aK6qJx5E07C5sRq5ZYOVJIT1cCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBR8pm3C sONqEt76aDDCo9shITRFkDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPjYDAPBAIAAjAJAwcAIAEN9WDAMA0GCSqGSIb3DQEBCwUAA4IB AQCD2LOsrKgIJm0K9rRzkVJ6CrSjm2rxF574bL0e/b1vc2/HLs37+Z8WEvy+5ruf NZtgRFBc/10iqofZpo4vlBwb62n3xWAbzg/pa3o+lXPmqCHO1zB6RZX2Wb6pDSw/ 0whAT+BvgH8qOvMUI2KInjwRDblFPI4q7tR2tUn1XoTw7ZVUyDSxhJzJDtwV5gtK +gY47mOJwq3doiPZUqG21z9h3iGr2b/4znkR6oWNVA+PlQVOhpgj8zPZ+YHx9cGE 0JDE8K/ZjOLfCwRMYsNNHiTrD2ee3z7sGnb3hQMBtPwyp57tWGO45w8IbMB3CEms bHq87xtKVNQQ3EvG78MiyI9c -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:27 2025 by rpki-client