$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154527.roa File: AS154527.roa (raw, json) Hash identifier: 7Oj9gIPI/kvdeNngcF/t2no3pnKoMi+OcWfOVRRBGds= Subject key identifier: B0:A3:2C:82:41:56:7C:8C:B9:F2:45:08:12:A0:FB:07:26:91:A4:00 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4166ABB60153E9B368954F85A5336FBCD0F3F4C9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154527.roa Signing time: Wed 04 Mar 2026 04:18:34 +0000 ROA not before: Wed 04 Mar 2026 04:13:34 +0000 ROA not after: Wed 03 Mar 2027 04:18:34 +0000 asID: 154527 IP address blocks: 2001:df6:c440::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:66:ab:b6:01:53:e9:b3:68:95:4f:85:a5:33:6f:bc:d0:f3:f4:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 4 04:13:34 2026 GMT Not After : Mar 3 04:18:34 2027 GMT Subject: CN=B0A32C8241567C8CB9F2450812A0FB072691A400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:33:fa:4e:52:e5:38:4c:ae:28:b5:33:2c:40: 52:99:3b:a8:0d:8b:06:44:af:9d:44:79:5b:44:fc: e7:97:ca:b4:5e:a5:b1:9d:9b:41:0f:15:81:59:3e: ad:ce:d3:1f:f2:f1:79:23:4c:66:dc:8f:ef:08:71: e7:85:dd:8f:f2:9a:50:c6:9d:46:f2:80:65:ad:73: 48:ab:1d:fb:14:60:bc:67:ee:74:91:5d:da:e7:b7: 48:33:87:bd:b8:5e:74:b3:35:c4:b0:14:67:db:6e: 41:53:5e:d0:e4:08:50:6d:33:96:00:40:4b:aa:55: cd:c7:8a:dc:de:5f:bb:a7:22:0d:9f:2e:f8:c9:cb: 12:28:2b:4e:54:bb:1b:e2:03:82:6e:68:57:c9:94: fb:90:a5:74:a9:5e:c0:ee:b6:e8:1c:43:14:1f:dc: b1:e5:20:55:68:7b:dd:d8:0b:ef:35:76:ba:31:31: 8f:7b:13:19:c4:b6:ee:67:d6:39:b2:57:27:5f:a7: 2c:8a:73:34:d6:c0:9e:c0:c6:2b:94:3f:28:ea:be: b5:a3:0b:0d:d8:5f:b6:d1:e1:0b:1d:fd:fa:1b:bc: fe:21:83:0b:1d:a3:b3:10:7c:0a:12:de:07:67:69: 16:8f:1e:ec:fd:9f:ea:59:d8:c9:6d:26:96:bd:6c: 13:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A3:2C:82:41:56:7C:8C:B9:F2:45:08:12:A0:FB:07:26:91:A4:00 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154527.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:c440::/48 Signature Algorithm: sha256WithRSAEncryption 81:b9:20:6e:0e:2a:55:4c:5c:fe:46:2b:b4:83:0f:e5:72:e4: 77:e1:25:5f:a0:76:cf:82:ca:06:ab:c8:1d:eb:59:2d:3c:2e: 3d:38:45:b4:a1:7e:83:81:51:2c:0d:a0:04:ae:bb:7f:1f:87: 1f:cc:d1:a3:0b:d2:bd:5f:91:ec:c7:6d:e8:ec:93:fb:12:9c: f8:fc:9b:a8:48:e1:ad:d2:5a:47:be:60:d3:2a:54:ce:36:58: 7a:16:70:26:8c:18:0e:cf:36:3b:d1:f0:db:ab:3d:5b:57:55: f0:c5:e6:cf:29:cf:e8:60:06:24:73:42:28:ae:22:1a:97:d5: 8a:3f:0a:19:af:c6:fb:15:45:8e:51:7d:b8:87:5c:8c:55:44: 5d:1e:50:f9:81:ba:47:5f:98:2f:a2:05:10:b8:88:18:02:12: 00:f8:92:16:97:54:04:29:ac:32:02:a3:5d:b2:0a:3d:ad:79: 40:71:87:35:bd:a8:47:8f:06:89:72:26:eb:68:a7:7c:25:13: 27:5a:c1:5d:92:5d:19:32:2f:c4:8e:01:c2:b2:0c:47:a7:51: 0b:1a:2b:cf:69:6a:e8:33:fd:78:83:7e:8f:44:91:d2:49:8a: 0f:17:7d:dd:be:72:d0:ee:98:bf:e4:29:8c:e3:6b:d4:eb:00: 3b:c0:ec:d0 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUQWartgFT6bNolU+FpTNvvNDz9MkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMwNDA0MTMzNFoX DTI3MDMwMzA0MTgzNFowMzExMC8GA1UEAxMoQjBBMzJDODI0MTU2N0M4Q0I5RjI0 NTA4MTJBMEZCMDcyNjkxQTQwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMz+k5S5ThMrii1MyxAUpk7qA2LBkSvnUR5W0T855fKtF6lsZ2bQQ8VgVk+ rc7TH/LxeSNMZtyP7whx54Xdj/KaUMadRvKAZa1zSKsd+xRgvGfudJFd2ue3SDOH vbhedLM1xLAUZ9tuQVNe0OQIUG0zlgBAS6pVzceK3N5fu6ciDZ8u+MnLEigrTlS7 G+IDgm5oV8mU+5CldKlewO626BxDFB/cseUgVWh73dgL7zV2ujExj3sTGcS27mfW ObJXJ1+nLIpzNNbAnsDGK5Q/KOq+taMLDdhfttHhCx39+hu8/iGDCx2jsxB8ChLe B2dpFo8e7P2f6lnYyW0mlr1sEycCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSwoyyC QVZ8jLnyRQgSoPsHJpGkADAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDUyNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfbEQDANBgkqhkiG9w0BAQsFAAOCAQEAgbkgbg4qVUxc/kYr tIMP5XLkd+ElX6B2z4LKBqvIHetZLTwuPThFtKF+g4FRLA2gBK67fx+HH8zRowvS vV+R7Mdt6OyT+xKc+PybqEjhrdJaR75g0ypUzjZYehZwJowYDs82O9Hw26s9W1dV 8MXmzynP6GAGJHNCKK4iGpfVij8KGa/G+xVFjlF9uIdcjFVEXR5Q+YG6R1+YL6IF ELiIGAISAPiSFpdUBCmsMgKjXbIKPa15QHGHNb2oR48GiXIm62infCUTJ1rBXZJd GTIvxI4BwrIMR6dRCxorz2lq6DP9eIN+j0SR0kmKDxd93b5y0O6Yv+QpjONr1OsA O8Ds0A== -----END CERTIFICATE-----Generated at Sat Mar 7 19:39:28 2026 by rpki-client