$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154427.roa File: AS154427.roa (raw, json) Hash identifier: BizRNHx2GiDsHUPdMR2VE9EGqOTmHP5pUnEMxWZF5gE= Subject key identifier: A9:58:0B:E0:EE:35:82:A8:67:AE:BF:72:CD:F3:5C:04:57:64:7F:02 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 43A592C6C3B34D2F99CB4A21AE846307CB324D15 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154427.roa Signing time: Sat 02 May 2026 09:22:42 +0000 ROA not before: Sat 02 May 2026 09:17:42 +0000 ROA not after: Sat 01 May 2027 09:22:42 +0000 asID: 154427 IP address blocks: 144.79.98.0/24 maxlen: 24 144.79.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a5:92:c6:c3:b3:4d:2f:99:cb:4a:21:ae:84:63:07:cb:32:4d:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:17:42 2026 GMT Not After : May 1 09:22:42 2027 GMT Subject: CN=A9580BE0EE3582A867AEBF72CDF35C0457647F02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:84:9b:eb:70:62:9f:aa:ff:cd:18:69:10:39: 5b:b4:9b:19:35:a8:ad:6c:76:67:0f:72:a2:c0:af: 1d:b1:d8:33:f0:96:92:7a:44:d7:f4:0a:35:1e:69: 23:94:6d:ad:c5:8f:88:1f:8d:e1:ff:89:e1:46:01: b6:4d:53:9e:b4:e6:fa:21:d3:06:3e:39:fd:96:d9: ad:f7:af:ec:dc:78:1e:ba:fb:d2:de:ad:df:0f:d5: 4d:a9:77:e7:ae:d6:87:52:60:c5:5b:e1:bc:aa:ca: 14:a6:87:02:9f:9d:e4:5f:ed:42:58:aa:e5:99:bd: fd:e4:24:96:20:d6:bd:d0:02:54:3c:6f:62:40:a7: ed:af:0e:c7:6e:c9:8e:ee:7b:16:24:b4:1a:ec:fe: 17:65:51:42:6a:e5:c1:b4:e0:72:47:95:db:2a:c3: 5e:db:87:d1:a4:c5:08:cd:6d:b0:87:f9:cd:34:b0: 6b:c9:48:ea:a4:8f:be:d1:fa:79:fa:f6:74:23:9a: 79:ee:c1:c3:1d:a2:f1:df:7f:b7:76:fb:ec:03:bb: 30:89:45:69:41:2f:92:ba:63:5c:a4:84:a5:cd:88: d5:4e:96:a5:1a:bf:bd:90:04:9e:b2:28:24:c1:45: 43:b4:f0:41:1e:ce:ab:39:da:a1:a6:09:b9:71:91: 45:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:58:0B:E0:EE:35:82:A8:67:AE:BF:72:CD:F3:5C:04:57:64:7F:02 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154427.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.98.0/23 Signature Algorithm: sha256WithRSAEncryption 30:21:50:d0:d9:fb:bd:20:e4:df:9c:b1:7d:9c:ee:3a:87:05: 4e:84:ca:d9:c5:18:ba:0f:b8:dc:23:ab:38:6d:99:61:ee:c6: 41:67:88:9d:df:9a:5a:f5:08:fc:71:29:fe:76:ad:aa:ac:e5: d4:0d:55:53:d3:db:8d:19:10:5d:7d:4f:4f:25:9f:93:e2:d0: 85:78:14:15:86:cb:99:34:05:5a:69:99:f1:fe:26:df:44:d4: 7c:cc:11:c3:ae:32:9a:4b:f1:31:a7:23:b7:35:30:67:81:77: 35:4b:03:1d:0e:e7:5e:ac:51:26:6a:99:92:68:47:4e:98:9f: ec:3a:5d:0a:19:3b:fa:7b:5c:47:13:aa:61:7c:4a:69:8b:d8: ee:33:78:30:d1:3c:b1:71:05:74:0f:45:96:d7:c8:74:5a:2f: a8:2c:3b:92:26:0b:95:7b:19:3c:38:ab:0d:72:09:0a:92:34: 5d:4b:b8:36:0e:70:6d:ba:8d:6e:76:93:66:2c:ca:95:3f:af: 88:e3:d9:39:0d:34:91:d6:55:f4:45:28:8c:72:42:d2:d4:fa: bd:e6:c7:d0:b1:b3:11:03:d5:f5:9f:b5:d6:1a:2b:fe:32:ba: 11:41:72:9f:dd:ff:5e:cc:d9:03:5e:18:d3:de:ae:3e:7d:8b: 64:ea:01:b3 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUQ6WSxsOzTS+Zy0ohroRjB8syTRUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTc0MloX DTI3MDUwMTA5MjI0MlowMzExMC8GA1UEAxMoQTk1ODBCRTBFRTM1ODJBODY3QUVC RjcyQ0RGMzVDMDQ1NzY0N0YwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGEm+twYp+q/80YaRA5W7SbGTWorWx2Zw9yosCvHbHYM/CWknpE1/QKNR5p I5RtrcWPiB+N4f+J4UYBtk1TnrTm+iHTBj45/ZbZrfev7Nx4Hrr70t6t3w/VTal3 567Wh1JgxVvhvKrKFKaHAp+d5F/tQliq5Zm9/eQkliDWvdACVDxvYkCn7a8Ox27J ju57FiS0Guz+F2VRQmrlwbTgckeV2yrDXtuH0aTFCM1tsIf5zTSwa8lI6qSPvtH6 efr2dCOaee7Bwx2i8d9/t3b77AO7MIlFaUEvkrpjXKSEpc2I1U6WpRq/vZAEnrIo JMFFQ7TwQR7OqznaoaYJuXGRRaECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSpWAvg 7jWCqGeuv3LN81wEV2R/AjAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0NDI3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBkE9iMA0GCSqGSIb3DQEBCwUAA4IBAQAwIVDQ2fu9IOTfnLF9nO46hwVO hMrZxRi6D7jcI6s4bZlh7sZBZ4id35pa9Qj8cSn+dq2qrOXUDVVT09uNGRBdfU9P JZ+T4tCFeBQVhsuZNAVaaZnx/ibfRNR8zBHDrjKaS/ExpyO3NTBngXc1SwMdDude rFEmapmSaEdOmJ/sOl0KGTv6e1xHE6phfEppi9juM3gw0TyxcQV0D0WW18h0Wi+o LDuSJguVexk8OKsNcgkKkjRdS7g2DnBtuo1udpNmLMqVP6+I49k5DTSR1lX0RSiM ckLS1Pq95sfQsbMRA9X1n7XWGiv+MroRQXKf3f9ezNkDXhjT3q4+fYtk6gGz -----END CERTIFICATE-----Generated at Sat May 2 21:03:51 2026 by rpki-client