$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154458.roa File: AS154458.roa (raw, json) Hash identifier: aS2v9bR3EjplkbJs7iZ3wX7OQ9FJ4blhX+iPMQfwaiQ= Subject key identifier: 81:6F:B6:53:92:2A:B0:BA:D1:FC:C0:CA:C9:81:AE:B2:C0:8E:01:37 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 7EAD40DDB615EDEACC45DB4A52EF847AC89E235F Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154458.roa Signing time: Sat 02 May 2026 09:23:22 +0000 ROA not before: Sat 02 May 2026 09:18:22 +0000 ROA not after: Sat 01 May 2027 09:23:22 +0000 asID: 154458 IP address blocks: 144.79.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ad:40:dd:b6:15:ed:ea:cc:45:db:4a:52:ef:84:7a:c8:9e:23:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:22 2026 GMT Not After : May 1 09:23:22 2027 GMT Subject: CN=816FB653922AB0BAD1FCC0CAC981AEB2C08E0137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:25:6e:e2:c3:8e:38:e2:d9:33:64:1b:91:ea: f0:af:c6:13:fe:28:e6:33:56:5f:18:c7:32:8f:20: 91:f2:54:b1:3b:e1:85:be:68:cf:42:7f:b3:13:db: e7:1b:dc:8e:55:49:a1:0c:77:35:d9:c3:5e:90:56: 94:db:bd:a5:66:ad:d9:71:3d:80:35:fa:a2:a6:e8: 23:25:7d:dd:30:c1:6a:02:c6:b1:09:e7:39:2c:62: 5b:3d:9e:3e:72:c7:fa:8c:20:74:da:5f:14:7c:bc: e0:5c:d0:0a:f8:a7:f0:9f:1d:6b:37:15:a7:e8:47: fa:ac:26:c2:a8:ba:42:bb:25:1f:a9:43:1f:04:94: 80:dc:32:31:22:7e:ef:75:0c:73:c4:f6:18:19:eb: fe:7e:07:44:04:07:4e:6f:a3:2c:f1:74:32:83:0d: e6:63:ec:0a:ee:aa:55:fb:cb:07:91:4f:4d:02:bd: f5:33:b8:57:5a:2c:9d:ae:15:fc:ee:c0:37:46:3f: 6b:88:50:e7:f7:b9:1d:90:f2:8d:af:75:03:74:02: 7e:0a:19:fe:64:f5:8c:26:c2:65:c8:43:62:9e:ef: 21:88:d0:47:3f:39:9c:e6:77:4a:64:3f:bf:e2:15: d4:90:35:2a:fd:6e:95:04:2a:32:b5:69:f9:cc:cd: 64:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6F:B6:53:92:2A:B0:BA:D1:FC:C0:CA:C9:81:AE:B2:C0:8E:01:37 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154458.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.77.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:df:8a:9f:06:0c:cc:f3:c0:23:a6:a4:cd:17:1b:23:df:f8: f4:c1:f5:ab:03:bc:a9:c4:2a:0e:8a:87:1e:a6:f0:1d:0b:37: 79:de:73:b2:26:97:1e:36:e0:41:52:26:34:e1:a4:37:25:c3: 67:76:5b:76:5d:a8:2d:e4:95:8e:ba:8b:9c:11:01:85:23:22: b3:3b:92:19:71:83:a2:1e:ee:2a:e6:4c:80:e0:33:dd:4f:5f: 07:00:55:2f:b5:b0:79:f6:f3:47:d5:2d:f0:54:12:d2:b9:6c: 7b:1a:56:bd:e7:be:93:49:c6:0a:e3:7e:d6:60:14:f2:94:0c: 22:12:bb:2e:a0:be:27:a8:79:4f:70:ec:7f:82:4a:85:5d:01: 38:07:81:bb:ab:ef:78:d8:c3:a9:1a:f6:8e:79:a1:ef:a9:cb: 17:dd:c6:2f:79:81:87:fe:74:0a:cf:79:fd:50:86:dc:0d:5e: f4:65:9c:b0:49:8a:9a:52:f6:b4:1a:b0:3d:5f:c0:be:8f:90: 44:15:92:23:28:a0:64:2e:f4:9f:15:6a:5c:08:f3:93:96:04: 8b:50:8e:78:27:39:71:9a:ae:a6:1b:c0:d3:dc:88:51:bc:85: fa:18:47:63:07:92:51:90:a6:a8:f0:c8:92:b4:3c:3c:c4:f5: a0:8e:a1:4e -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUfq1A3bYV7erMRdtKUu+EesieI18wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgyMloX DTI3MDUwMTA5MjMyMlowMzExMC8GA1UEAxMoODE2RkI2NTM5MjJBQjBCQUQxRkND MENBQzk4MUFFQjJDMDhFMDEzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwlbuLDjjji2TNkG5Hq8K/GE/4o5jNWXxjHMo8gkfJUsTvhhb5oz0J/sxPb 5xvcjlVJoQx3NdnDXpBWlNu9pWat2XE9gDX6oqboIyV93TDBagLGsQnnOSxiWz2e PnLH+owgdNpfFHy84FzQCvin8J8dazcVp+hH+qwmwqi6QrslH6lDHwSUgNwyMSJ+ 73UMc8T2GBnr/n4HRAQHTm+jLPF0MoMN5mPsCu6qVfvLB5FPTQK99TO4V1osna4V /O7AN0Y/a4hQ5/e5HZDyja91A3QCfgoZ/mT1jCbCZchDYp7vIYjQRz85nOZ3SmQ/ v+IV1JA1Kv1ulQQqMrVp+czNZGkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSBb7ZT kiqwutH8wMrJga6ywI4BNzAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0NDU4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAkE9NMA0GCSqGSIb3DQEBCwUAA4IBAQB634qfBgzM88AjpqTNFxsj3/j0 wfWrA7ypxCoOiocepvAdCzd53nOyJpceNuBBUiY04aQ3JcNndlt2Xagt5JWOuouc EQGFIyKzO5IZcYOiHu4q5kyA4DPdT18HAFUvtbB59vNH1S3wVBLSuWx7Gla9576T ScYK437WYBTylAwiErsuoL4nqHlPcOx/gkqFXQE4B4G7q+942MOpGvaOeaHvqcsX 3cYveYGH/nQKz3n9UIbcDV70ZZywSYqaUva0GrA9X8C+j5BEFZIjKKBkLvSfFWpc CPOTlgSLUI54Jzlxmq6mG8DT3IhRvIX6GEdjB5JRkKao8MiStDw8xPWgjqFO -----END CERTIFICATE-----Generated at Sat May 2 21:04:39 2026 by rpki-client