$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154347.roa File: AS154347.roa (raw, json) Hash identifier: XB/+yJKOc9ATzj4J8yYdC+MEg8zMXl1cl2zklSK5+l0= Subject key identifier: 96:C3:C9:4F:8B:F0:EB:4E:6A:10:22:87:CD:41:4B:F7:44:28:24:EF Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 2DF13988C9100FCDC07CEC56EF67892F0524FBAF Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154347.roa Signing time: Sat 02 May 2026 09:24:57 +0000 ROA not before: Sat 02 May 2026 09:19:57 +0000 ROA not after: Sat 01 May 2027 09:24:57 +0000 asID: 154347 IP address blocks: 165.101.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f1:39:88:c9:10:0f:cd:c0:7c:ec:56:ef:67:89:2f:05:24:fb:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:57 2026 GMT Not After : May 1 09:24:57 2027 GMT Subject: CN=96C3C94F8BF0EB4E6A102287CD414BF7442824EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3e:60:4d:9a:e9:25:f1:3c:cc:05:4f:6b:c5: 69:33:6a:2f:a5:a6:6b:69:cf:92:78:36:f7:c3:82: 5f:6d:d8:64:90:8a:ca:94:66:ea:0a:b9:b0:8b:fc: 82:c6:66:0d:57:06:50:93:bb:a8:d2:26:64:ca:25: d4:4c:b9:ef:51:23:82:06:ae:3a:01:2e:65:02:4f: f2:b4:f8:91:1a:bd:c9:28:33:73:03:20:7a:80:34: ed:90:5a:20:c1:9c:9a:b5:7e:77:cc:32:e4:4f:88: f3:a0:9c:a4:d7:8e:19:9f:fe:ef:f5:d7:96:66:2b: b0:4e:9d:38:b4:21:7d:02:29:56:30:32:69:ff:89: ca:2b:bf:be:83:02:ed:01:85:c4:d0:be:09:d5:56: cf:d6:6a:ff:cc:31:6c:de:ab:4c:23:03:83:76:0e: c0:c3:42:a6:25:e3:10:92:13:70:09:99:3a:70:4c: 1d:c5:7b:06:78:3d:32:1e:0d:7e:04:08:25:5f:96: 58:12:a2:53:63:b5:b1:0a:21:02:7d:78:f2:d9:f4: 8f:91:c1:e1:90:e7:71:b7:56:0e:cd:24:25:d5:5a: af:ae:05:04:64:91:3f:65:8e:b9:2f:fe:4c:fe:4f: 79:c6:4f:db:a2:34:7d:10:b4:f4:ac:a3:cf:9f:4a: a9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C3:C9:4F:8B:F0:EB:4E:6A:10:22:87:CD:41:4B:F7:44:28:24:EF X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.27.0/24 Signature Algorithm: sha256WithRSAEncryption 85:04:fc:00:93:1f:77:61:e3:35:f6:ef:dd:df:77:d5:ce:7d: 56:0a:2a:5b:aa:a4:92:54:22:f3:83:91:c4:e0:4c:3f:7f:8c: 21:34:57:4a:40:30:5d:90:d7:09:a2:ae:e7:24:4f:37:7c:1c: 02:7e:e2:61:dc:d4:3b:43:de:37:7f:b4:f0:1a:cb:5c:e8:ae: 9b:24:95:9f:12:29:2d:6b:05:41:1a:e4:2d:5f:7a:bc:5b:87: ed:09:f5:7d:85:45:68:e0:07:87:b8:43:22:38:b4:0c:36:e4: bb:82:4a:ec:42:1e:b5:b5:43:3f:f4:59:79:fa:a3:53:08:73: 9c:a9:49:c1:0a:c9:0e:e6:2f:98:6e:29:bf:9b:f0:70:8b:0b: 25:d9:dd:2c:4e:be:ef:14:d7:4e:16:f3:eb:69:c1:96:36:d1: 06:3e:5d:c9:8e:1e:7d:9b:c7:36:a7:78:f9:9b:47:a8:91:4b: b7:b5:8d:45:95:7b:5a:58:d3:8d:2f:46:44:c7:bc:ae:e2:89: be:06:96:af:f1:6c:da:9b:9b:84:4a:12:ee:6d:71:f9:6f:e7: 81:5c:c8:9d:5d:ae:95:47:e2:66:e9:b0:50:61:69:98:99:99: 90:60:dc:b7:65:66:65:10:2c:d7:8c:0e:8c:13:bb:9e:51:d9: 45:4f:9b:2b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIULfE5iMkQD83AfOxW72eJLwUk+68wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTk1N1oX DTI3MDUwMTA5MjQ1N1owMzExMC8GA1UEAxMoOTZDM0M5NEY4QkYwRUI0RTZBMTAy Mjg3Q0Q0MTRCRjc0NDI4MjRFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMs+YE2a6SXxPMwFT2vFaTNqL6Wma2nPkng298OCX23YZJCKypRm6gq5sIv8 gsZmDVcGUJO7qNImZMol1Ey571EjggauOgEuZQJP8rT4kRq9ySgzcwMgeoA07ZBa IMGcmrV+d8wy5E+I86CcpNeOGZ/+7/XXlmYrsE6dOLQhfQIpVjAyaf+Jyiu/voMC 7QGFxNC+CdVWz9Zq/8wxbN6rTCMDg3YOwMNCpiXjEJITcAmZOnBMHcV7Bng9Mh4N fgQIJV+WWBKiU2O1sQohAn148tn0j5HB4ZDncbdWDs0kJdVar64FBGSRP2WOuS/+ TP5PecZP26I0fRC09Kyjz59KqXkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSWw8lP i/DrTmoQIofNQUv3RCgk7zAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0MzQ3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQApWUbMA0GCSqGSIb3DQEBCwUAA4IBAQCFBPwAkx93YeM19u/d33fVzn1W CipbqqSSVCLzg5HE4Ew/f4whNFdKQDBdkNcJoq7nJE83fBwCfuJh3NQ7Q943f7Tw Gstc6K6bJJWfEiktawVBGuQtX3q8W4ftCfV9hUVo4AeHuEMiOLQMNuS7gkrsQh61 tUM/9Fl5+qNTCHOcqUnBCskO5i+Ybim/m/Bwiwsl2d0sTr7vFNdOFvPracGWNtEG Pl3Jjh59m8c2p3j5m0eokUu3tY1FlXtaWNONL0ZEx7yu4om+Bpav8Wzam5uEShLu bXH5b+eBXMidXa6VR+Jm6bBQYWmYmZmQYNy3ZWZlECzXjA6ME7ueUdlFT5sr -----END CERTIFICATE-----Generated at Sat May 2 21:04:40 2026 by rpki-client