$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154078.roa File: AS154078.roa (raw, json) Hash identifier: RU0N7WILDZuOYOKuBpbyUoCiJcsvr8IqfQBX7GnwmDY= Subject key identifier: A3:34:14:CE:7E:D3:A0:45:9E:B9:EC:15:20:B4:96:93:9A:83:F8:BD Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 529BB1F8688DDC0C3F663957A0F31E1235ABD9C8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154078.roa Signing time: Sat 02 May 2026 09:26:25 +0000 ROA not before: Sat 02 May 2026 09:21:25 +0000 ROA not after: Sat 01 May 2027 09:26:25 +0000 asID: 154078 IP address blocks: 2001:df5:e640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9b:b1:f8:68:8d:dc:0c:3f:66:39:57:a0:f3:1e:12:35:ab:d9:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:25 2026 GMT Not After : May 1 09:26:25 2027 GMT Subject: CN=A33414CE7ED3A0459EB9EC1520B496939A83F8BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0f:8c:fb:32:fc:a0:55:2e:6b:f3:0b:35:26: 0b:09:d9:41:80:23:0e:90:30:75:bb:62:1b:a3:8b: ae:43:77:6c:0e:aa:94:1e:a1:6c:ef:43:b0:d9:c3: 2d:63:f2:1a:c4:cb:a3:21:02:88:91:4c:80:88:63: db:25:78:37:5c:fc:88:81:6d:ed:6d:33:6f:27:30: f5:9f:05:9a:99:9d:2d:e1:64:7d:8a:87:26:d6:bf: b1:43:8b:fe:12:e5:a1:a7:14:34:b1:ce:a4:15:39: 9f:cc:df:7b:f2:23:73:2e:49:c2:12:cc:80:f4:56: eb:ba:3a:20:e1:91:0d:02:55:3a:ed:29:1f:0a:77: 06:33:97:f8:91:32:aa:82:ab:fc:ed:38:76:ae:dc: d5:18:30:cf:ee:5a:f6:25:f8:93:a9:9c:cb:f4:9f: b6:75:0f:19:e4:0f:f5:6d:5a:e7:b3:e1:ab:d8:41: 60:96:72:db:79:b4:6a:50:dd:ee:aa:78:39:b6:d2: 12:e8:18:22:0d:c7:83:fa:55:7c:a7:c4:45:6a:d4: 2b:6e:97:79:63:b8:50:5a:dd:02:80:cc:f6:b7:36: d0:6e:0f:b6:8b:b9:08:00:62:dc:d4:43:a2:e8:b8: 13:41:16:f6:a8:9f:cd:70:e1:2b:94:c6:cd:72:a8: 14:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:34:14:CE:7E:D3:A0:45:9E:B9:EC:15:20:B4:96:93:9A:83:F8:BD X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154078.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:e640::/48 Signature Algorithm: sha256WithRSAEncryption 60:1f:74:5c:1b:03:a3:cd:e8:9f:16:20:07:1d:11:41:51:d0: 79:9a:e5:8e:b8:e2:50:a5:ff:40:42:a8:0a:5d:05:14:ef:d7: d8:cb:a3:4e:23:ab:69:0b:b6:2d:1d:73:fb:32:01:9f:1f:43: 27:65:08:52:8b:6f:90:06:b1:ce:59:2d:dd:79:cb:e0:6a:7d: 7e:40:83:29:84:c8:20:db:a4:42:f4:8b:cf:18:9d:a7:ab:57: d9:ce:00:3c:d3:72:7b:a2:21:4e:95:6a:b9:03:26:2e:66:66: 6e:71:fd:48:83:1e:ff:92:f5:32:3b:4d:f4:d2:00:ce:8b:02: fc:df:7d:60:f8:7f:1c:67:bc:a5:52:0e:81:13:b8:09:d2:58: 58:bc:e6:43:05:fe:4e:d1:ba:e8:d7:f3:11:65:b5:93:7a:c9: 03:0f:32:40:24:01:4d:be:7a:aa:17:0e:b8:77:fd:ea:24:56: 43:57:3b:61:c0:19:f5:c9:ef:48:c1:99:24:dd:58:c4:73:fd: c0:ea:37:5b:71:63:e0:ac:ad:3f:65:9b:d5:2d:43:6d:53:40: 5f:16:02:4a:5a:8e:aa:ff:fc:3e:83:12:f7:d9:15:ca:61:90: 07:83:c2:7d:b9:19:88:29:e7:0d:03:51:a5:4e:a5:4a:49:e4: 47:55:02:18 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUUpux+GiN3Aw/ZjlXoPMeEjWr2cgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEyNVoX DTI3MDUwMTA5MjYyNVowMzExMC8GA1UEAxMoQTMzNDE0Q0U3RUQzQTA0NTlFQjlF QzE1MjBCNDk2OTM5QTgzRjhCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwPjPsy/KBVLmvzCzUmCwnZQYAjDpAwdbtiG6OLrkN3bA6qlB6hbO9DsNnD LWPyGsTLoyECiJFMgIhj2yV4N1z8iIFt7W0zbycw9Z8FmpmdLeFkfYqHJta/sUOL /hLloacUNLHOpBU5n8zfe/Ijcy5JwhLMgPRW67o6IOGRDQJVOu0pHwp3BjOX+JEy qoKr/O04dq7c1Rgwz+5a9iX4k6mcy/SftnUPGeQP9W1a57Phq9hBYJZy23m0alDd 7qp4ObbSEugYIg3Hg/pVfKfERWrUK26XeWO4UFrdAoDM9rc20G4Ptou5CABi3NRD oui4E0EW9qifzXDhK5TGzXKoFGkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSjNBTO ftOgRZ657BUgtJaTmoP4vTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MDc4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9eZAMA0GCSqGSIb3DQEBCwUAA4IBAQBgH3RcGwOjzeifFiAHHRFB UdB5muWOuOJQpf9AQqgKXQUU79fYy6NOI6tpC7YtHXP7MgGfH0MnZQhSi2+QBrHO WS3decvgan1+QIMphMgg26RC9IvPGJ2nq1fZzgA803J7oiFOlWq5AyYuZmZucf1I gx7/kvUyO0300gDOiwL8331g+H8cZ7ylUg6BE7gJ0lhYvOZDBf5O0bro1/MRZbWT eskDDzJAJAFNvnqqFw64d/3qJFZDVzthwBn1ye9IwZkk3VjEc/3A6jdbcWPgrK0/ ZZvVLUNtU0BfFgJKWo6q//w+gxL32RXKYZAHg8J9uRmIKecNA1GlTqVKSeRHVQIY -----END CERTIFICATE-----Generated at Sun May 3 00:39:52 2026 by rpki-client