$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154092.roa File: AS154092.roa (raw, json) Hash identifier: mdjaKQVEBGJ3f5hAe6Or499wMxiTvdxf6e6sIhAd/DM= Subject key identifier: 28:21:0E:04:D3:7F:B9:73:1F:B6:73:3A:E8:C3:74:02:0C:CD:58:57 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 17319E217CD9FA73B686D85FAB10E6C439E25332 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154092.roa Signing time: Sat 02 May 2026 09:25:12 +0000 ROA not before: Sat 02 May 2026 09:20:12 +0000 ROA not after: Sat 01 May 2027 09:25:12 +0000 asID: 154092 IP address blocks: 165.101.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:31:9e:21:7c:d9:fa:73:b6:86:d8:5f:ab:10:e6:c4:39:e2:53:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:12 2026 GMT Not After : May 1 09:25:12 2027 GMT Subject: CN=28210E04D37FB9731FB6733AE8C374020CCD5857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d0:7f:e6:d1:9a:4a:72:b0:48:4b:12:d2:71: 9c:af:92:cb:44:eb:d3:7b:db:e6:6b:5a:6d:ea:7c: 56:1f:7b:0d:35:30:cc:6c:f3:64:c7:5e:01:b5:49: 89:22:47:80:07:a5:97:e3:fa:35:ec:a8:5b:77:1a: f0:77:bc:7a:96:59:13:1b:bc:14:80:44:5e:5e:c3: df:57:36:58:c8:71:d2:fa:23:9a:26:e0:e3:1e:49: 98:40:0c:4a:f3:90:a9:ff:47:5a:5d:a8:ec:1a:ea: 47:95:06:dd:cf:57:d3:e8:bf:0d:7d:8a:4d:0e:1f: 6f:8a:4c:fe:bb:94:97:d3:1f:4e:39:20:45:6d:b2: be:42:41:93:53:15:db:2f:29:71:50:05:90:52:b5: e5:ce:5a:69:5c:70:eb:47:f7:61:2a:8c:6c:be:56: aa:3e:ac:68:64:8c:03:d7:37:2b:bc:b2:5c:63:5b: 5d:8f:c0:7f:65:d5:73:17:03:49:ce:af:1f:f7:9a: e1:09:2e:41:f7:1d:e6:49:40:24:d8:51:72:b5:f9: 15:57:7b:fd:e8:0d:1d:7d:ea:7a:b4:ac:84:d2:8b: 17:08:7f:02:8a:d0:c9:75:44:a5:3f:34:7e:70:07: 7a:32:d5:e7:74:78:6d:8b:fd:ba:9b:b6:90:fa:47: e2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:21:0E:04:D3:7F:B9:73:1F:B6:73:3A:E8:C3:74:02:0C:CD:58:57 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.172.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:55:cf:c9:86:5b:5f:22:1a:d8:93:7d:3a:54:6a:e3:32:be: 2e:86:b8:08:ab:e0:82:a2:b9:2a:66:dd:60:00:f2:d3:5e:e2: f0:46:e2:9b:c8:48:54:cc:b3:f5:c9:87:83:53:21:eb:de:66: 18:74:8d:53:5f:bc:96:ae:ff:2b:3d:e2:41:91:44:ae:48:58: e3:59:8a:c7:cb:79:0e:f6:53:c9:47:5c:8e:72:41:60:44:8e: cd:3c:b7:bc:96:85:0e:42:6e:09:b5:cf:97:b8:48:f6:6d:5d: 0b:35:98:3f:a7:4b:aa:03:dd:3e:42:40:1e:cd:c4:b5:18:e3: 9d:e0:ac:c4:05:4c:95:56:67:7d:c9:3d:bc:d5:d2:9c:78:c1: 9e:48:e1:43:49:1a:45:d2:91:99:88:c6:1d:62:bc:0b:77:42: fe:49:de:f9:5d:4e:6a:62:02:43:41:5f:79:97:71:45:95:87: f2:fa:dd:82:53:07:97:0f:df:07:16:b5:ec:04:33:39:3c:be: d1:96:93:6a:4c:69:51:57:57:5c:d3:19:17:4c:33:ed:7c:0c: 85:47:0e:b9:ce:65:8b:42:d0:6a:8c:af:27:36:9c:e1:d1:64: d8:12:c2:de:98:64:5f:da:ea:dd:50:d7:0a:26:a7:47:90:c1: 67:09:85:63 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUFzGeIXzZ+nO2hthfqxDmxDniUzIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAxMloX DTI3MDUwMTA5MjUxMlowMzExMC8GA1UEAxMoMjgyMTBFMDREMzdGQjk3MzFGQjY3 MzNBRThDMzc0MDIwQ0NENTg1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN3Qf+bRmkpysEhLEtJxnK+Sy0Tr03vb5mtabep8Vh97DTUwzGzzZMdeAbVJ iSJHgAell+P6NeyoW3ca8He8epZZExu8FIBEXl7D31c2WMhx0vojmibg4x5JmEAM SvOQqf9HWl2o7BrqR5UG3c9X0+i/DX2KTQ4fb4pM/ruUl9MfTjkgRW2yvkJBk1MV 2y8pcVAFkFK15c5aaVxw60f3YSqMbL5Wqj6saGSMA9c3K7yyXGNbXY/Af2XVcxcD Sc6vH/ea4QkuQfcd5klAJNhRcrX5FVd7/egNHX3qerSshNKLFwh/AorQyXVEpT80 fnAHejLV53R4bYv9upu2kPpH4hcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQoIQ4E 03+5cx+2czrow3QCDM1YVzAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0MDkyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBpWWsMA0GCSqGSIb3DQEBCwUAA4IBAQAqVc/JhltfIhrYk306VGrjMr4u hrgIq+CCorkqZt1gAPLTXuLwRuKbyEhUzLP1yYeDUyHr3mYYdI1TX7yWrv8rPeJB kUSuSFjjWYrHy3kO9lPJR1yOckFgRI7NPLe8loUOQm4Jtc+XuEj2bV0LNZg/p0uq A90+QkAezcS1GOOd4KzEBUyVVmd9yT281dKceMGeSOFDSRpF0pGZiMYdYrwLd0L+ Sd75XU5qYgJDQV95l3FFlYfy+t2CUweXD98HFrXsBDM5PL7RlpNqTGlRV1dc0xkX TDPtfAyFRw65zmWLQtBqjK8nNpzh0WTYEsLemGRf2urdUNcKJqdHkMFnCYVj -----END CERTIFICATE-----Generated at Sat May 2 21:03:47 2026 by rpki-client