$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154123.roa File: AS154123.roa (raw, json) Hash identifier: 4Wv3FxxdI3S/lphYLX/fCCa3ZjI1a1xjqvd4Ch8O74c= Subject key identifier: 24:0E:51:8B:8F:74:14:F8:C4:00:41:61:EF:61:12:84:98:87:C0:D6 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 6BADCF2A0FF2F74C6D26F8D8913DC5EB6CBD2142 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154123.roa Signing time: Sat 02 May 2026 09:25:04 +0000 ROA not before: Sat 02 May 2026 09:20:04 +0000 ROA not after: Sat 01 May 2027 09:25:04 +0000 asID: 154123 IP address blocks: 192.188.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ad:cf:2a:0f:f2:f7:4c:6d:26:f8:d8:91:3d:c5:eb:6c:bd:21:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:04 2026 GMT Not After : May 1 09:25:04 2027 GMT Subject: CN=240E518B8F7414F8C4004161EF6112849887C0D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0c:75:e0:3e:f9:3c:23:0b:d1:a4:fe:c9:6f: 81:23:a8:15:93:dc:28:b8:de:7f:49:b3:5c:00:74: a8:8c:24:8f:21:7e:f4:38:d1:4f:20:4d:8a:47:53: 41:ce:66:3e:6f:91:2a:31:4a:c1:49:fb:ec:0e:c0: 35:b8:ee:4e:db:35:ab:2b:eb:ea:74:c8:63:07:f6: c3:b8:bb:c4:dc:c5:58:a4:fc:d6:9f:82:46:d8:fb: 99:4f:f7:a0:0f:ae:f3:c3:ba:64:83:30:99:dc:a6: cd:f7:e2:b0:aa:70:09:cc:23:4d:28:60:c1:83:62: 48:bb:09:ed:d9:71:17:d9:44:c3:05:2b:a0:b9:f4: 64:eb:d1:40:93:4d:53:0f:12:5b:d0:44:d5:24:1f: 68:f7:79:3d:a0:85:1d:8a:38:5f:f1:61:8d:a0:d3: 8d:34:54:8b:0a:01:09:87:af:fb:5c:1b:c4:10:e9: d7:79:5a:0a:12:3f:3b:ae:fb:36:19:c6:88:1e:94: a8:f7:1d:a0:90:90:70:3f:0d:5c:4b:e1:b0:f0:aa: bf:cc:e7:b8:9a:81:7a:64:6d:a8:7d:52:9a:7a:ad: f9:1b:ab:f7:73:76:f8:3e:b3:70:ff:1d:71:99:0e: 6c:75:4e:43:e0:72:c9:77:0e:7a:91:1e:26:4a:eb: f4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0E:51:8B:8F:74:14:F8:C4:00:41:61:EF:61:12:84:98:87:C0:D6 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154123.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.188.80.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:37:73:cd:9f:87:57:4c:5d:6f:5d:78:c0:6d:f2:9e:19:a6: 86:b8:eb:94:6c:b5:66:59:ad:3e:56:28:72:1b:c9:b8:48:e5: 87:27:6a:c4:db:e5:5e:fd:cc:d3:57:bc:d7:c5:f1:b7:b3:1d: 1d:08:44:16:26:a0:c2:c0:0c:a2:c1:ae:d1:57:a5:2e:d6:9d: 8b:1c:68:d6:7a:80:30:e0:41:ec:83:37:a1:16:9f:4e:87:b1: 4b:65:f3:30:b1:c3:9e:00:71:ab:33:cf:7f:ad:ee:5f:de:da: ef:51:0e:e7:7d:60:30:af:12:38:50:e3:fc:57:f3:ec:64:f6: f4:8a:62:91:7d:1d:9b:31:a5:64:d0:a1:e8:17:78:4c:2a:93: b1:a4:0e:32:fd:b9:23:ac:6b:a7:58:d3:b7:e8:8b:38:02:f2: 48:48:54:bb:04:95:21:c0:8f:99:3f:85:b1:10:20:e4:de:52: 9b:50:2d:ca:fe:19:b9:16:7e:65:cd:18:be:05:ed:48:98:6f: 38:91:3c:a5:f3:71:8d:ab:a1:22:26:4c:67:8e:b5:e1:f0:47: da:6d:13:78:6a:ef:ca:5d:28:ea:9a:93:4c:95:e4:4a:d0:77: 6c:e9:44:9b:77:59:a8:80:a2:9e:fd:b2:29:d5:66:d7:c9:f2: bb:aa:bf:88 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUa63PKg/y90xtJvjYkT3F62y9IUIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAwNFoX DTI3MDUwMTA5MjUwNFowMzExMC8GA1UEAxMoMjQwRTUxOEI4Rjc0MTRGOEM0MDA0 MTYxRUY2MTEyODQ5ODg3QzBENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0MdeA++TwjC9Gk/slvgSOoFZPcKLjef0mzXAB0qIwkjyF+9DjRTyBNikdT Qc5mPm+RKjFKwUn77A7ANbjuTts1qyvr6nTIYwf2w7i7xNzFWKT81p+CRtj7mU/3 oA+u88O6ZIMwmdymzffisKpwCcwjTShgwYNiSLsJ7dlxF9lEwwUroLn0ZOvRQJNN Uw8SW9BE1SQfaPd5PaCFHYo4X/FhjaDTjTRUiwoBCYev+1wbxBDp13laChI/O677 NhnGiB6UqPcdoJCQcD8NXEvhsPCqv8znuJqBemRtqH1Smnqt+Rur93N2+D6zcP8d cZkObHVOQ+ByyXcOepEeJkrr9AUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQkDlGL j3QU+MQAQWHvYRKEmIfA1jAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0MTIzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwLxQMA0GCSqGSIb3DQEBCwUAA4IBAQAON3PNn4dXTF1vXXjAbfKeGaaG uOuUbLVmWa0+VihyG8m4SOWHJ2rE2+Ve/czTV7zXxfG3sx0dCEQWJqDCwAyiwa7R V6Uu1p2LHGjWeoAw4EHsgzehFp9Oh7FLZfMwscOeAHGrM89/re5f3trvUQ7nfWAw rxI4UOP8V/PsZPb0imKRfR2bMaVk0KHoF3hMKpOxpA4y/bkjrGunWNO36Is4AvJI SFS7BJUhwI+ZP4WxECDk3lKbUC3K/hm5Fn5lzRi+Be1ImG84kTyl83GNq6EiJkxn jrXh8EfabRN4au/KXSjqmpNMleRK0Hds6USbd1mogKKe/bIp1WbXyfK7qr+I -----END CERTIFICATE-----Generated at Sat May 2 21:05:17 2026 by rpki-client