$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154164.roa File: AS154164.roa (raw, json) Hash identifier: AqELmQFCUWmXlsp+sRI47V9zow4PqICoFwmuSOtiw/0= Subject key identifier: 21:36:1F:49:43:48:F9:DC:12:DC:CB:86:C0:7F:FB:24:C9:44:53:7A Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 0B358865BFF28BD481F8E00D90E9A09AEF5A5218 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154164.roa Signing time: Sat 02 May 2026 09:22:49 +0000 ROA not before: Sat 02 May 2026 09:17:49 +0000 ROA not after: Sat 01 May 2027 09:22:49 +0000 asID: 154164 IP address blocks: 192.172.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:35:88:65:bf:f2:8b:d4:81:f8:e0:0d:90:e9:a0:9a:ef:5a:52:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:17:49 2026 GMT Not After : May 1 09:22:49 2027 GMT Subject: CN=21361F494348F9DC12DCCB86C07FFB24C944537A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:59:13:d4:b7:1c:a5:d7:24:a8:2d:44:3a:d8: cd:c0:82:87:f3:f0:0f:a1:d4:04:52:9f:52:6d:24: 86:d2:44:72:25:5a:71:d4:37:f0:a6:21:d3:90:f9: 1b:f5:07:8a:e2:a1:94:18:98:3d:86:88:14:60:0c: f7:5c:b0:ca:0c:9f:8d:82:d1:05:7e:5a:1e:34:cb: f8:43:1f:3b:3f:f6:08:98:c6:f9:ac:df:46:62:be: 81:5a:3c:91:9e:83:6e:f8:c7:71:52:7e:d9:1b:2b: a3:66:33:61:e6:dd:4d:d0:2a:c3:79:c6:08:1b:d0: 28:46:c1:5c:8b:e6:3d:2b:54:11:b6:e4:40:6a:02: 0f:2f:ed:31:95:57:44:12:70:27:39:ac:97:11:e4: 91:3f:9b:cf:3d:3e:b9:a7:8a:ab:e1:b0:73:42:30: 61:45:38:a4:da:24:01:49:b6:3b:42:b8:b0:ed:71: a2:a0:82:64:5a:dd:18:70:71:49:3c:d3:7a:76:17: b8:a5:1c:55:aa:ed:08:4c:e2:a7:84:91:37:fb:2e: ea:8d:43:8b:4f:81:91:12:ea:c8:1a:31:cd:3e:b7: 8a:2a:2f:89:bb:8d:33:44:3a:03:0b:c7:90:99:c1: 73:42:cd:6f:c6:7f:39:4c:84:f0:7b:09:16:40:e9: 8b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:36:1F:49:43:48:F9:DC:12:DC:CB:86:C0:7F:FB:24:C9:44:53:7A X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154164.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.172.246.0/24 Signature Algorithm: sha256WithRSAEncryption 20:71:eb:6a:0b:c9:2f:6c:88:c0:de:bc:f1:49:29:9b:64:3d: 78:4d:e4:50:f8:5a:7a:8f:da:0b:58:7d:10:ed:d3:2a:92:34: 09:5c:a9:33:98:39:db:8d:c5:fb:5f:ad:87:40:cd:16:f9:ed: 49:92:2e:dd:b8:1a:2f:3e:03:a7:f2:84:32:3b:f1:7c:f9:73: 39:1f:c4:fc:91:d3:3c:1d:0e:83:b3:64:c8:33:72:55:ef:32: fc:ce:ef:76:6a:90:ed:bb:2a:61:da:ce:a6:18:b5:22:a8:b0: e6:f3:c3:8b:6e:7e:de:fc:a1:40:f2:4a:4e:28:6a:f7:ff:ac: e9:12:b5:1c:4a:d5:3d:43:eb:20:08:e2:ba:69:f8:28:63:24: e3:d5:f1:50:ce:d2:2a:f4:76:83:be:09:ff:f2:70:d9:b7:b8: 25:7a:72:fe:93:b9:38:a9:2b:de:c1:ac:50:07:84:d0:bb:0c: f7:41:14:4c:d9:7b:af:29:3c:1c:5c:8e:0c:1e:cc:6e:2f:b5: 3c:78:95:a9:28:51:bc:ce:56:fe:69:f2:b6:c2:1f:68:41:fb: cd:a4:83:70:df:c6:64:fc:56:28:d8:f9:eb:cf:82:c6:56:7c: e7:6a:ef:17:2b:21:b7:04:4f:5b:de:15:cd:30:62:59:5c:bd: 43:87:b5:96 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUCzWIZb/yi9SB+OANkOmgmu9aUhgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTc0OVoX DTI3MDUwMTA5MjI0OVowMzExMC8GA1UEAxMoMjEzNjFGNDk0MzQ4RjlEQzEyREND Qjg2QzA3RkZCMjRDOTQ0NTM3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5ZE9S3HKXXJKgtRDrYzcCCh/PwD6HUBFKfUm0khtJEciVacdQ38KYh05D5 G/UHiuKhlBiYPYaIFGAM91ywygyfjYLRBX5aHjTL+EMfOz/2CJjG+azfRmK+gVo8 kZ6DbvjHcVJ+2Rsro2YzYebdTdAqw3nGCBvQKEbBXIvmPStUEbbkQGoCDy/tMZVX RBJwJzmslxHkkT+bzz0+uaeKq+Gwc0IwYUU4pNokAUm2O0K4sO1xoqCCZFrdGHBx STzTenYXuKUcVartCEzip4SRN/su6o1Di0+BkRLqyBoxzT63iiovibuNM0Q6AwvH kJnBc0LNb8Z/OUyE8HsJFkDpi1UCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQhNh9J Q0j53BLcy4bAf/skyURTejAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0MTY0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwKz2MA0GCSqGSIb3DQEBCwUAA4IBAQAgcetqC8kvbIjA3rzxSSmbZD14 TeRQ+Fp6j9oLWH0Q7dMqkjQJXKkzmDnbjcX7X62HQM0W+e1Jki7duBovPgOn8oQy O/F8+XM5H8T8kdM8HQ6Ds2TIM3JV7zL8zu92apDtuyph2s6mGLUiqLDm88OLbn7e /KFA8kpOKGr3/6zpErUcStU9Q+sgCOK6afgoYyTj1fFQztIq9HaDvgn/8nDZt7gl enL+k7k4qSvewaxQB4TQuwz3QRRM2XuvKTwcXI4MHsxuL7U8eJWpKFG8zlb+afK2 wh9oQfvNpINw38Zk/FYo2Pnrz4LGVnznau8XKyG3BE9b3hXNMGJZXL1Dh7WW -----END CERTIFICATE-----Generated at Sat May 2 21:05:07 2026 by rpki-client