$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154092.roa File: AS154092.roa (raw, json) Hash identifier: VH87VSfL7kcuyLTZY374rIgxMoGMx6NqaobKJti/OZU= Subject key identifier: 69:9F:D9:FD:ED:46:5B:36:85:0B:4E:3A:56:8D:22:EA:05:7C:E4:33 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6BEE8BBC42B14759FC05445ECC84D50A310B5FB1 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154092.roa Signing time: Sat 02 May 2026 09:26:15 +0000 ROA not before: Sat 02 May 2026 09:21:15 +0000 ROA not after: Sat 01 May 2027 09:26:15 +0000 asID: 154092 IP address blocks: 2001:df5:d8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ee:8b:bc:42:b1:47:59:fc:05:44:5e:cc:84:d5:0a:31:0b:5f:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:15 2026 GMT Not After : May 1 09:26:15 2027 GMT Subject: CN=699FD9FDED465B36850B4E3A568D22EA057CE433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:27:3c:2a:b3:ac:5f:b6:86:21:2c:ae:c8:ae: 8a:12:5b:20:33:cc:53:7d:13:f0:f5:1f:c5:6d:0e: 33:c1:fe:a1:f9:c2:92:7b:87:41:80:8b:04:03:05: bf:16:5b:66:97:22:13:6a:38:d2:5e:85:fc:b1:03: 0c:06:74:ac:f0:08:50:61:77:65:5b:9e:10:5c:06: bc:fe:00:1b:10:20:76:64:f1:f7:3f:9e:12:07:ea: 03:9c:21:da:24:76:e3:43:78:d8:cc:b8:09:e1:29: 36:b6:02:3c:93:a7:b0:8b:35:9a:40:a7:72:a9:35: 40:61:3a:93:e3:60:b3:31:9f:c9:cf:58:b2:ec:e6: e2:60:1b:00:2c:95:62:07:f4:c3:7b:55:ce:3c:3e: b0:d4:ac:94:ba:8b:f7:50:f2:cb:1a:de:1e:c2:9a: 16:7b:bc:7b:9d:93:a7:39:ba:82:e1:c3:95:ac:5a: 80:8f:90:73:2d:c0:91:ac:08:a7:f1:ae:28:d4:e5: ca:cc:38:00:93:d7:c4:88:75:f5:91:c4:67:bd:42: bd:b9:e1:ab:ea:ae:59:ba:11:5e:90:69:76:f0:2d: 7c:1e:a4:ec:8f:8a:bb:a2:9c:33:e9:25:0c:17:26: 38:13:51:51:53:33:c1:44:7c:c5:22:c2:5d:a1:48: f7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9F:D9:FD:ED:46:5B:36:85:0B:4E:3A:56:8D:22:EA:05:7C:E4:33 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:d8c0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:65:c6:db:91:3a:2c:58:14:42:1e:3b:b5:91:a8:e7:4d:8d: c2:e9:1d:e3:0b:17:fc:bf:f1:c3:ec:f7:ef:c8:e7:16:42:e5: b4:ec:03:09:50:61:14:42:68:cd:2f:e7:d7:59:31:53:fc:f0: 32:d8:e9:8b:cc:47:80:40:a9:42:34:da:98:98:d8:5c:52:f6: 72:f0:cc:de:88:24:26:0c:a6:a0:26:75:e2:f9:e3:21:be:5b: 85:20:7c:7a:53:9d:11:4e:d6:71:49:14:21:f9:8b:7a:9c:92: ec:ae:c3:65:8e:2a:c0:9e:80:dd:39:57:00:43:8d:31:7a:8e: 8a:54:6d:79:2b:e0:b2:8d:08:f1:83:58:14:c9:19:7b:6a:91: b9:96:41:79:3d:74:2e:75:af:5e:7a:3b:00:03:7c:85:35:c6: 04:ee:16:da:51:21:68:e0:9f:e5:dd:e8:aa:41:78:89:f0:80: ca:30:a4:fc:aa:11:8a:a9:ab:8c:55:b1:d9:e3:e0:41:fa:8a: fa:70:cc:ac:e8:bc:7d:3e:6d:3c:f6:41:f4:5e:ca:72:d3:f3: 66:61:e6:c8:7c:07:d5:0b:dd:d5:d9:5c:fe:84:f4:e7:d2:79: 6b:9d:a8:0f:e9:f0:2e:63:1a:1a:d4:77:1c:3f:e7:51:9a:2a: 9d:d0:f9:bd -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUa+6LvEKxR1n8BURezITVCjELX7EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjExNVoX DTI3MDUwMTA5MjYxNVowMzExMC8GA1UEAxMoNjk5RkQ5RkRFRDQ2NUIzNjg1MEI0 RTNBNTY4RDIyRUEwNTdDRTQzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALInPCqzrF+2hiEsrsiuihJbIDPMU30T8PUfxW0OM8H+ofnCknuHQYCLBAMF vxZbZpciE2o40l6F/LEDDAZ0rPAIUGF3ZVueEFwGvP4AGxAgdmTx9z+eEgfqA5wh 2iR240N42My4CeEpNrYCPJOnsIs1mkCncqk1QGE6k+NgszGfyc9Ysuzm4mAbACyV Ygf0w3tVzjw+sNSslLqL91DyyxreHsKaFnu8e52Tpzm6guHDlaxagI+Qcy3AkawI p/GuKNTlysw4AJPXxIh19ZHEZ71Cvbnhq+quWboRXpBpdvAtfB6k7I+Ku6KcM+kl DBcmOBNRUVMzwUR8xSLCXaFI94UCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRpn9n9 7UZbNoULTjpWjSLqBXzkMzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MDkyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9djAMA0GCSqGSIb3DQEBCwUAA4IBAQAvZcbbkTosWBRCHju1kajn TY3C6R3jCxf8v/HD7PfvyOcWQuW07AMJUGEUQmjNL+fXWTFT/PAy2OmLzEeAQKlC NNqYmNhcUvZy8MzeiCQmDKagJnXi+eMhvluFIHx6U50RTtZxSRQh+Yt6nJLsrsNl jirAnoDdOVcAQ40xeo6KVG15K+CyjQjxg1gUyRl7apG5lkF5PXQuda9eejsAA3yF NcYE7hbaUSFo4J/l3eiqQXiJ8IDKMKT8qhGKqauMVbHZ4+BB+or6cMys6Lx9Pm08 9kH0Xspy0/NmYebIfAfVC93V2Vz+hPTn0nlrnagP6fAuYxoa1HccP+dRmiqd0Pm9 -----END CERTIFICATE-----Generated at Sun May 3 01:40:39 2026 by rpki-client