$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154075.roa File: AS154075.roa (raw, json) Hash identifier: mdi96WSXPxsGFP7IYeRcQMf/2Bx4KMuUIyqzilWCfm4= Subject key identifier: EA:0D:DB:98:31:7A:C9:D0:A7:1C:9A:DF:3F:73:74:EC:E3:99:D3:0A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 287C1CC4D19BF909752763028601ED72D9FCF2D1 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154075.roa Signing time: Sat 02 May 2026 08:35:19 +0000 ROA not before: Sat 02 May 2026 08:30:19 +0000 ROA not after: Sat 01 May 2027 08:35:19 +0000 asID: 154075 IP address blocks: 2001:df5:e440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7c:1c:c4:d1:9b:f9:09:75:27:63:02:86:01:ed:72:d9:fc:f2:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:19 2026 GMT Not After : May 1 08:35:19 2027 GMT Subject: CN=EA0DDB98317AC9D0A71C9ADF3F7374ECE399D30A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:49:56:1c:70:3b:f1:68:c2:92:9e:bf:2b:62: 1e:e4:49:94:d2:43:19:de:2f:f0:a6:9a:3c:12:f7: 70:db:80:11:67:79:a8:67:13:7d:e1:98:fb:bd:fa: 0c:d8:fd:d8:ea:83:5a:2e:70:cc:82:98:b5:8d:fa: f6:d1:d9:1a:99:4d:5e:ef:9e:f3:60:6d:ad:b5:54: 4c:f0:12:37:a8:30:0c:ec:de:30:c7:81:1a:06:f3: af:80:63:39:a1:50:ba:2a:fa:fa:f2:f7:d5:4e:2b: f0:e7:91:29:c8:77:f4:fd:4c:9c:0b:b8:39:1e:28: be:66:bd:56:1c:e2:77:57:b7:0a:59:d1:f5:d1:91: 80:e1:e2:cb:49:30:ff:ae:98:81:65:7b:8b:eb:5e: a6:d0:cb:9a:ed:0b:d1:03:f9:c5:72:ec:20:7e:aa: 43:ce:ba:2d:75:c6:d6:6e:26:f4:4e:0e:4c:a0:1e: 2d:6f:13:0a:b3:4c:c3:c0:57:93:f5:2a:4a:29:b6: 95:41:ae:e0:17:60:21:e3:d5:36:c6:b5:f1:19:21: bf:44:07:ed:f8:b7:32:7b:10:c3:a6:f4:63:96:fe: d0:aa:b3:ed:9c:ca:9b:5d:74:c9:4d:b6:ee:23:4e: 06:9d:9b:d1:44:9c:62:6d:10:ef:bf:c3:0a:39:e5: 0d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0D:DB:98:31:7A:C9:D0:A7:1C:9A:DF:3F:73:74:EC:E3:99:D3:0A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154075.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:e440::/48 Signature Algorithm: sha256WithRSAEncryption 0f:51:b5:a4:9f:cf:86:43:96:5e:09:db:c1:e0:3e:8d:cf:8c: 20:88:de:84:15:3b:8b:d8:6d:c7:f1:c6:8e:6d:23:52:86:9c: f5:9b:e7:e6:09:7e:e3:99:d3:06:13:30:01:49:73:12:54:1a: 2b:de:0d:52:8e:82:9c:25:f3:46:4d:80:c3:d3:e9:e1:fa:e1: d3:6f:af:12:4d:1a:40:cb:c9:5b:ad:2a:80:45:2f:f0:56:c2: 77:d3:4f:d8:11:e8:59:52:dc:d4:09:a9:13:12:6c:82:df:53: 68:58:ea:35:0f:89:84:02:cc:b6:74:df:1f:1e:38:e7:4b:1d: 1a:7e:9a:07:e6:d7:fd:8c:49:cb:d9:e5:4d:0a:b8:96:52:d7: 6b:83:23:a6:36:d5:05:aa:0f:b6:61:85:95:5f:ea:4c:a6:6f: 4c:4c:08:d8:7d:0e:d8:05:55:ea:16:fb:e2:1d:5d:54:f6:ea: ca:cd:ac:b9:43:53:16:92:26:43:56:70:4c:1c:74:3e:e2:6b: 25:14:8b:8f:5c:05:e1:ab:8e:ce:0e:33:59:46:fe:ae:22:84: 7f:bc:e6:3d:a0:55:95:de:08:e1:df:53:56:be:bf:9b:98:b2: a3:2f:47:a5:5a:7f:45:2f:20:83:f4:57:26:5e:5f:4a:05:a5: 46:15:18:d5 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUKHwcxNGb+Ql1J2MChgHtctn88tEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAxOVoX DTI3MDUwMTA4MzUxOVowMzExMC8GA1UEAxMoRUEwRERCOTgzMTdBQzlEMEE3MUM5 QURGM0Y3Mzc0RUNFMzk5RDMwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJhJVhxwO/FowpKevytiHuRJlNJDGd4v8KaaPBL3cNuAEWd5qGcTfeGY+736 DNj92OqDWi5wzIKYtY369tHZGplNXu+e82BtrbVUTPASN6gwDOzeMMeBGgbzr4Bj OaFQuir6+vL31U4r8OeRKch39P1MnAu4OR4ovma9Vhzid1e3ClnR9dGRgOHiy0kw /66YgWV7i+teptDLmu0L0QP5xXLsIH6qQ866LXXG1m4m9E4OTKAeLW8TCrNMw8BX k/UqSim2lUGu4BdgIePVNsa18Rkhv0QH7fi3MnsQw6b0Y5b+0Kqz7ZzKm110yU22 7iNOBp2b0UScYm0Q77/DCjnlDXkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTqDduY MXrJ0Kccmt8/c3Ts45nTCjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MDc1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9eRAMA0GCSqGSIb3DQEBCwUAA4IBAQAPUbWkn8+GQ5ZeCdvB4D6N z4wgiN6EFTuL2G3H8caObSNShpz1m+fmCX7jmdMGEzABSXMSVBor3g1SjoKcJfNG TYDD0+nh+uHTb68STRpAy8lbrSqARS/wVsJ300/YEehZUtzUCakTEmyC31NoWOo1 D4mEAsy2dN8fHjjnSx0afpoH5tf9jEnL2eVNCriWUtdrgyOmNtUFqg+2YYWVX+pM pm9MTAjYfQ7YBVXqFvviHV1U9urKzay5Q1MWkiZDVnBMHHQ+4mslFIuPXAXhq47O DjNZRv6uIoR/vOY9oFWV3gjh31NWvr+bmLKjL0elWn9FLyCD9FcmXl9KBaVGFRjV -----END CERTIFICATE-----Generated at Sun May 3 00:39:43 2026 by rpki-client