$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154128.roa File: AS154128.roa (raw, json) Hash identifier: 3uhizxk7m2RopzPDoT0QDZEUCVzBLnSpAVSemmSp7zo= Subject key identifier: 17:C5:83:72:41:06:9E:3D:E5:74:1D:C4:B5:C6:F1:76:7A:4F:2A:D6 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 2A1689D7C0BDC305FC16B6AB733ABC7545A52F23 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154128.roa Signing time: Sat 02 May 2026 09:24:53 +0000 ROA not before: Sat 02 May 2026 09:19:53 +0000 ROA not after: Sat 01 May 2027 09:24:53 +0000 asID: 154128 IP address blocks: 192.188.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:16:89:d7:c0:bd:c3:05:fc:16:b6:ab:73:3a:bc:75:45:a5:2f:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:53 2026 GMT Not After : May 1 09:24:53 2027 GMT Subject: CN=17C5837241069E3DE5741DC4B5C6F1767A4F2AD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:32:6d:01:cf:14:5e:61:26:12:af:86:57:5f: 16:07:93:27:40:92:54:43:b9:4e:1f:60:86:a7:15: d2:09:80:95:93:70:99:5d:25:84:95:9d:10:a3:50: 06:c2:ea:92:68:04:aa:1d:4a:83:40:3b:ee:68:64: ee:7e:8a:e9:c6:71:39:0a:5b:6f:bb:dd:fe:f8:54: cf:18:97:d2:7b:65:05:a2:1c:39:b0:68:8a:c9:06: 63:24:4a:18:19:f3:47:2e:c5:ba:39:d9:d2:6a:e4: 10:58:5a:25:84:f5:a5:71:6e:af:11:6e:8e:7b:6f: c3:5e:eb:b2:fb:38:04:30:90:31:bd:45:6c:70:27: ba:42:58:61:cc:42:37:d4:dc:b9:44:8f:23:9a:fa: 47:9b:99:d2:a5:f5:9c:4f:b2:3b:4e:ec:d0:5d:7a: 7a:74:2f:85:d7:b8:08:57:c7:3a:aa:7d:8f:c4:8b: 6f:84:72:24:64:e7:29:20:17:ca:06:6b:69:e1:fb: fb:9a:94:73:00:16:58:c8:06:e2:46:a6:8c:12:14: 0e:2b:c7:82:de:e2:af:ee:7b:7c:d8:d2:ca:ad:14: 59:bc:45:49:b5:d0:02:76:53:d9:94:11:88:0e:7c: 3d:d5:13:45:78:94:bb:88:73:08:4e:ee:98:74:2a: 18:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:C5:83:72:41:06:9E:3D:E5:74:1D:C4:B5:C6:F1:76:7A:4F:2A:D6 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154128.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.188.85.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:8a:1d:0a:54:69:b4:43:2a:52:cc:06:ce:66:a7:98:a1:a7: 87:a5:ad:6e:a5:a9:09:f0:23:21:84:76:9e:48:da:84:2b:01: 28:6e:39:9c:5a:25:2c:2a:85:c4:93:71:de:fc:d5:e6:c9:7c: 38:59:b5:ff:70:65:e3:fd:4c:f7:66:f1:8f:54:ce:29:03:1c: d8:36:2e:69:38:c2:b1:77:1c:34:f1:9f:73:6a:01:62:dc:f4: cc:66:3d:1c:7c:1a:89:a4:cd:5c:92:e0:b6:32:20:b2:11:18: 60:94:46:95:ac:10:89:cf:55:82:57:3f:c6:b2:9b:a5:a0:da: 4e:f3:2b:36:9d:ed:65:69:c1:fa:de:e0:f1:4a:11:cd:d4:29: d7:02:12:59:b1:b5:2b:2b:eb:b6:f8:eb:49:82:64:b1:e6:cd: 17:1e:80:11:e4:ae:0f:77:9f:b2:89:fd:91:56:d3:6f:e7:2c: 04:5b:b1:3b:f0:af:70:40:04:81:9d:e4:8a:03:49:a8:f3:0d: 91:d1:22:14:b2:97:b2:46:45:e9:5e:e4:b2:19:1d:70:fd:53: 91:f9:4e:9d:b5:ee:74:03:5c:4f:c0:84:98:48:fb:c6:2f:11: d3:7b:47:56:d7:58:f3:ab:5a:c4:5e:cc:0b:fb:02:34:8f:bb: 11:3d:11:01 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUKhaJ18C9wwX8Frarczq8dUWlLyMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTk1M1oX DTI3MDUwMTA5MjQ1M1owMzExMC8GA1UEAxMoMTdDNTgzNzI0MTA2OUUzREU1NzQx REM0QjVDNkYxNzY3QTRGMkFENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK4ybQHPFF5hJhKvhldfFgeTJ0CSVEO5Th9ghqcV0gmAlZNwmV0lhJWdEKNQ BsLqkmgEqh1Kg0A77mhk7n6K6cZxOQpbb7vd/vhUzxiX0ntlBaIcObBoiskGYyRK GBnzRy7FujnZ0mrkEFhaJYT1pXFurxFujntvw17rsvs4BDCQMb1FbHAnukJYYcxC N9TcuUSPI5r6R5uZ0qX1nE+yO07s0F16enQvhde4CFfHOqp9j8SLb4RyJGTnKSAX ygZraeH7+5qUcwAWWMgG4kamjBIUDivHgt7ir+57fNjSyq0UWbxFSbXQAnZT2ZQR iA58PdUTRXiUu4hzCE7umHQqGIsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQXxYNy QQaePeV0HcS1xvF2ek8q1jAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0MTI4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwLxVMA0GCSqGSIb3DQEBCwUAA4IBAQAsih0KVGm0QypSzAbOZqeYoaeH pa1upakJ8CMhhHaeSNqEKwEobjmcWiUsKoXEk3He/NXmyXw4WbX/cGXj/Uz3ZvGP VM4pAxzYNi5pOMKxdxw08Z9zagFi3PTMZj0cfBqJpM1ckuC2MiCyERhglEaVrBCJ z1WCVz/GspuloNpO8ys2ne1lacH63uDxShHN1CnXAhJZsbUrK+u2+OtJgmSx5s0X HoAR5K4Pd5+yif2RVtNv5ywEW7E78K9wQASBneSKA0mo8w2R0SIUspeyRkXpXuSy GR1w/VOR+U6dte50A1xPwISYSPvGLxHTe0dW11jzq1rEXswL+wI0j7sRPREB -----END CERTIFICATE-----Generated at Sat May 2 21:05:01 2026 by rpki-client