$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154423.roa File: AS154423.roa (raw, json) Hash identifier: SfLLjt+CyDWwhnyt6+0cpr5+yKxzWN9nyRsPNguhSIU= Subject key identifier: F1:3F:51:78:A5:7C:5E:3E:5B:DE:05:07:30:C1:E6:CF:C0:87:41:99 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F29BD808457792A11CB133BBB01197D65537B77 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154423.roa Signing time: Sun 19 Apr 2026 10:11:02 +0000 ROA not before: Sun 19 Apr 2026 10:06:02 +0000 ROA not after: Sun 18 Apr 2027 10:11:02 +0000 asID: 154423 IP address blocks: 2001:df6:6c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 05:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:29:bd:80:84:57:79:2a:11:cb:13:3b:bb:01:19:7d:65:53:7b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 19 10:06:02 2026 GMT Not After : Apr 18 10:11:02 2027 GMT Subject: CN=F13F5178A57C5E3E5BDE050730C1E6CFC0874199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:2b:c3:22:04:be:58:3f:62:ab:d1:41:8b: 8b:03:89:16:7d:a8:35:b0:50:f7:e1:23:64:11:83: 06:7e:e1:c0:72:51:01:06:80:aa:5b:1c:3f:94:e9: 74:8f:ee:37:ea:2c:02:ad:36:d9:24:a2:2b:d7:13: a9:97:5e:56:d7:c4:eb:70:08:59:b2:a6:a0:ef:5d: de:2a:a4:8a:be:e3:72:08:57:0a:6e:71:96:01:14: 08:f4:a7:59:8a:84:d8:5f:64:a7:1e:af:f8:f8:53: 36:e2:24:b9:38:72:d1:fb:a9:0f:34:07:28:1b:1e: 8e:d6:aa:ed:3a:26:f3:0a:96:ed:8c:6f:e4:a8:28: 6c:33:71:6b:19:9d:b7:a8:fc:15:ef:02:b7:7f:4c: 69:e6:25:45:eb:48:b4:26:f0:23:4a:8f:ec:32:df: 3a:30:dd:c1:17:f4:a0:2e:aa:f8:ae:24:d7:4e:88: ba:55:cd:11:e9:c9:59:4e:46:c1:f5:f6:54:26:05: 7e:a1:89:cb:06:7a:b1:a6:08:1c:8a:79:62:6f:a9: 8c:b5:f3:fa:66:d5:45:0d:be:47:aa:eb:d9:60:c3: 60:fa:8d:bf:d2:65:c0:10:a9:a6:69:2d:6f:e2:17: 37:7a:2b:17:e4:22:c9:6f:33:ec:71:6f:ea:d1:41: 81:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:3F:51:78:A5:7C:5E:3E:5B:DE:05:07:30:C1:E6:CF:C0:87:41:99 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154423.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:6c40::/48 Signature Algorithm: sha256WithRSAEncryption 2d:06:dd:78:7a:ec:88:f9:97:16:af:62:69:fb:fe:9e:da:e8: de:4f:f1:de:20:31:78:0d:a5:36:77:ca:81:33:92:b6:b8:29: 30:0b:27:e4:f4:bc:eb:4b:72:d7:16:78:53:dc:5f:f1:6a:72: 44:99:45:93:2d:b3:26:ee:9e:f9:d0:99:56:10:b9:dd:9a:2f: 57:1b:4e:15:d0:30:e9:e5:20:22:c0:fc:55:bf:a5:79:30:6a: f2:7f:bb:bc:13:69:53:a7:a6:31:f1:68:9d:15:ef:38:dd:1b: 10:f5:ae:95:5e:92:da:59:a5:88:aa:2e:cf:22:7a:61:37:2f: 3a:a9:64:ec:16:4a:e3:e4:ce:17:aa:cc:81:dc:02:19:de:c9: 77:00:4b:95:41:eb:e6:1b:0f:8b:2d:3f:7b:86:65:dc:db:a5: 15:49:ec:f7:69:a5:9d:6c:a7:c4:1d:e8:05:5f:c7:cd:0a:5e: 4c:0d:02:df:b2:ea:17:ee:4a:23:10:77:d9:26:ac:41:b7:91: 59:0a:87:ab:c8:39:5a:e0:0f:08:63:bc:88:3a:73:f2:7d:3c: ce:23:89:aa:12:6f:9c:d3:dd:0f:cb:6d:a8:ee:e0:9d:1d:61: af:50:b2:2e:75:a2:51:c2:a9:68:72:d7:de:71:ce:3b:ee:82: c6:87:f0:67 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIULym9gIRXeSoRyxM7uwEZfWVTe3cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQxOTEwMDYwMloX DTI3MDQxODEwMTEwMlowMzExMC8GA1UEAxMoRjEzRjUxNzhBNTdDNUUzRTVCREUw NTA3MzBDMUU2Q0ZDMDg3NDE5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSvK8MiBL5YP2Kr0UGLiwOJFn2oNbBQ9+EjZBGDBn7hwHJRAQaAqlscP5Tp dI/uN+osAq022SSiK9cTqZdeVtfE63AIWbKmoO9d3iqkir7jcghXCm5xlgEUCPSn WYqE2F9kpx6v+PhTNuIkuThy0fupDzQHKBsejtaq7Tom8wqW7Yxv5KgobDNxaxmd t6j8Fe8Ct39MaeYlRetItCbwI0qP7DLfOjDdwRf0oC6q+K4k106IulXNEenJWU5G wfX2VCYFfqGJywZ6saYIHIp5Ym+pjLXz+mbVRQ2+R6rr2WDDYPqNv9JlwBCppmkt b+IXN3orF+QiyW8z7HFv6tFBgYcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTxP1F4 pXxePlveBQcwwebPwIdBmTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDQyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfZsQDANBgkqhkiG9w0BAQsFAAOCAQEALQbdeHrsiPmXFq9i afv+ntro3k/x3iAxeA2lNnfKgTOStrgpMAsn5PS860ty1xZ4U9xf8WpyRJlFky2z Ju6e+dCZVhC53ZovVxtOFdAw6eUgIsD8Vb+leTBq8n+7vBNpU6emMfFonRXvON0b EPWulV6S2lmliKouzyJ6YTcvOqlk7BZK4+TOF6rMgdwCGd7JdwBLlUHr5hsPiy0/ e4Zl3NulFUns92mlnWynxB3oBV/HzQpeTA0C37LqF+5KIxB32SasQbeRWQqHq8g5 WuAPCGO8iDpz8n08ziOJqhJvnNPdD8ttqO7gnR1hr1CyLnWiUcKpaHLX3nHOO+6C xofwZw== -----END CERTIFICATE-----Generated at Wed Apr 22 05:59:30 2026 by rpki-client