$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154330.roa File: AS154330.roa (raw, json) Hash identifier: c5Ln2drpZGgpFL91rR5VXvE7j9KBJcTEE8v2nyaVdZc= Subject key identifier: 4D:BF:67:7B:D9:A4:01:68:D3:8B:EF:BE:B7:AD:4E:91:CB:B9:0F:AF Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 06B556E178E0F62927B1CFDEB531A6968425FAA3 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154330.roa Signing time: Sat 02 May 2026 09:23:18 +0000 ROA not before: Sat 02 May 2026 09:18:18 +0000 ROA not after: Sat 01 May 2027 09:23:18 +0000 asID: 154330 IP address blocks: 138.252.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b5:56:e1:78:e0:f6:29:27:b1:cf:de:b5:31:a6:96:84:25:fa:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:18 2026 GMT Not After : May 1 09:23:18 2027 GMT Subject: CN=4DBF677BD9A40168D38BEFBEB7AD4E91CBB90FAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:82:da:e2:72:ae:0f:46:a5:c8:d5:cf:d1: 98:b0:53:1e:9a:d3:47:77:68:7e:d3:60:1d:14:aa: 05:6c:53:d3:c9:a1:01:de:13:90:83:26:bb:30:03: 55:d6:8a:14:07:f9:fc:a6:d1:32:18:9e:36:51:36: a1:cd:cc:04:76:3f:ad:ec:a0:91:fd:85:83:ca:1a: 00:5d:08:6e:45:af:48:b3:ff:ba:0b:96:c5:37:79: a4:39:ee:0b:05:d4:da:ac:55:78:ea:18:5e:b5:ad: 54:bc:30:f8:97:ca:9b:94:29:7b:04:b6:bd:f3:8f: 5e:cc:34:3c:53:b4:1e:60:3a:15:f3:8f:24:a9:55: e8:8a:d1:89:d1:45:58:5c:e2:89:1e:83:be:c2:58: fb:5c:57:ad:2f:dd:d9:38:89:c0:6e:1d:2d:96:0c: 88:2f:40:fc:5e:d2:b3:b6:91:04:29:f8:01:c4:b3: 0a:05:fa:9b:fb:56:2b:3f:47:e9:e5:28:50:b7:d0: fa:97:85:d5:5b:ef:e0:e7:67:36:7a:4f:c2:ab:49: cc:7f:67:a5:00:c1:40:79:c1:1b:80:ce:f6:24:55: 60:e2:6e:90:90:28:85:a8:76:88:12:85:ab:9f:77: e7:b1:d0:54:38:1a:f5:eb:72:74:81:25:60:76:dd: cf:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BF:67:7B:D9:A4:01:68:D3:8B:EF:BE:B7:AD:4E:91:CB:B9:0F:AF X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.65.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:4a:dd:89:0c:40:53:c8:26:57:61:4e:e9:87:0b:dd:97:79: 93:73:1f:2c:cb:0e:80:30:7e:c2:fa:e3:d7:25:b5:86:83:e2: ac:40:2d:d0:d2:e5:fc:53:12:3e:b0:96:51:0d:39:fd:be:6b: 2c:7d:a8:6f:0e:4e:cb:5c:8e:41:7c:94:17:fa:e5:37:a7:12: 93:c4:ff:23:91:3f:ac:84:d1:f7:4f:ce:44:9a:68:8c:28:6a: 1e:1e:1a:85:68:69:20:11:ad:d8:76:29:97:29:da:ec:97:16: ff:f8:ab:d3:50:dc:9b:1e:70:44:19:3d:3c:84:bd:1d:a7:2d: 39:4a:76:19:77:2d:ba:48:a8:42:9c:2e:80:86:37:0a:2a:63: 2b:f3:e5:50:6b:74:d9:49:f3:08:9a:b1:18:48:9d:ad:45:5e: b9:78:e2:23:6f:b3:9d:9b:82:f8:1f:09:f4:65:c6:4f:a6:cf: 64:81:80:1e:83:81:6d:25:48:34:5e:02:0c:02:03:bf:73:31: 27:83:e6:2b:46:e5:45:5c:18:7a:22:87:fa:f2:11:d5:be:0b: b0:ed:65:1c:b3:76:08:f8:d3:95:11:9d:79:dd:76:4c:13:79: 55:35:3e:ba:39:64:37:b6:d0:ed:3f:7a:c2:61:68:8a:bc:e2: b6:2c:5a:b2 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUBrVW4Xjg9iknsc/etTGmloQl+qMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgxOFoX DTI3MDUwMTA5MjMxOFowMzExMC8GA1UEAxMoNERCRjY3N0JEOUE0MDE2OEQzOEJF RkJFQjdBRDRFOTFDQkI5MEZBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMMVgtricq4PRqXI1c/RmLBTHprTR3doftNgHRSqBWxT08mhAd4TkIMmuzAD VdaKFAf5/KbRMhieNlE2oc3MBHY/reygkf2Fg8oaAF0IbkWvSLP/uguWxTd5pDnu CwXU2qxVeOoYXrWtVLww+JfKm5QpewS2vfOPXsw0PFO0HmA6FfOPJKlV6IrRidFF WFziiR6DvsJY+1xXrS/d2TiJwG4dLZYMiC9A/F7Ss7aRBCn4AcSzCgX6m/tWKz9H 6eUoULfQ+peF1Vvv4OdnNnpPwqtJzH9npQDBQHnBG4DO9iRVYOJukJAohah2iBKF q59357HQVDga9etydIElYHbdz+UCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRNv2d7 2aQBaNOL7763rU6Ry7kPrzAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0MzMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAivxBMA0GCSqGSIb3DQEBCwUAA4IBAQAfSt2JDEBTyCZXYU7phwvdl3mT cx8syw6AMH7C+uPXJbWGg+KsQC3Q0uX8UxI+sJZRDTn9vmssfahvDk7LXI5BfJQX +uU3pxKTxP8jkT+shNH3T85EmmiMKGoeHhqFaGkgEa3YdimXKdrslxb/+KvTUNyb HnBEGT08hL0dpy05SnYZdy26SKhCnC6AhjcKKmMr8+VQa3TZSfMImrEYSJ2tRV65 eOIjb7Odm4L4Hwn0ZcZPps9kgYAeg4FtJUg0XgIMAgO/czEng+YrRuVFXBh6Iof6 8hHVvguw7WUcs3YI+NOVEZ153XZME3lVNT66OWQ3ttDtP3rCYWiKvOK2LFqy -----END CERTIFICATE-----Generated at Sat May 2 21:04:48 2026 by rpki-client