$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154208.roa File: AS154208.roa (raw, json) Hash identifier: D2wXezLlvhPuVh7FxL3P0nlmYGkCpx4G8oWwEV8/h70= Subject key identifier: EE:90:AB:AC:97:11:DE:75:E1:D9:02:DC:D6:88:75:DB:E2:55:C0:71 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 13EF6E61571D4DDEF3ADE3B43EA629E72360764B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154208.roa Signing time: Sat 02 May 2026 09:27:04 +0000 ROA not before: Sat 02 May 2026 09:22:04 +0000 ROA not after: Sat 01 May 2027 09:27:04 +0000 asID: 154208 IP address blocks: 202.136.82.0/23 maxlen: 24 2001:df6:14c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:ef:6e:61:57:1d:4d:de:f3:ad:e3:b4:3e:a6:29:e7:23:60:76:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:04 2026 GMT Not After : May 1 09:27:04 2027 GMT Subject: CN=EE90ABAC9711DE75E1D902DCD68875DBE255C071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b3:68:c4:b7:90:6d:94:b2:da:cb:31:1e:d3: 8c:92:98:a6:c7:a7:fe:ed:0a:1a:fc:3e:8d:5d:09: 5e:de:bc:74:a8:0c:48:8b:33:c9:29:52:17:53:d0: 27:2d:71:09:9b:8e:7b:5d:bf:61:f2:85:de:4a:b8: 5a:1d:51:fe:90:b4:94:85:fc:0c:f3:25:50:35:f7: bb:61:cc:2b:c3:b3:80:77:c2:04:f1:67:46:83:5a: 9c:c4:7b:78:cd:53:a4:e9:ef:84:9b:cc:ac:d9:9c: fa:ee:71:d5:10:b2:72:f0:79:ae:8e:79:1a:71:3a: da:0a:94:d4:63:43:af:8e:14:0f:74:dc:f5:09:3f: b8:64:7d:5b:5d:11:f8:92:9a:5c:7a:6a:f4:fa:9d: 0e:a5:f6:11:e5:f7:53:00:88:05:13:d2:f5:1a:4d: 74:ed:94:92:58:40:66:69:b1:d9:30:c1:0c:b5:93: 90:ec:8f:31:48:21:4f:45:6a:af:6f:c5:62:e4:65: 3e:8f:b7:a4:ea:2d:e0:7e:a8:a7:50:86:fc:e6:ab: db:17:4c:02:fb:3d:af:16:60:2c:5e:99:c1:78:c5: ac:f3:e9:63:19:da:30:95:86:b1:63:71:a0:a4:c9: d3:eb:7a:07:87:4c:a6:7f:6d:d4:48:92:ae:6e:23: b6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:90:AB:AC:97:11:DE:75:E1:D9:02:DC:D6:88:75:DB:E2:55:C0:71 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154208.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.136.82.0/23 IPv6: 2001:df6:14c0::/48 Signature Algorithm: sha256WithRSAEncryption 35:ad:56:0f:b2:94:73:48:14:38:74:c7:c7:79:28:a5:54:62: c8:64:e2:74:81:6f:17:7b:0c:d0:bc:c3:d5:aa:52:dd:8d:ff: 97:1e:08:8c:7f:12:4b:4b:7f:8f:17:eb:17:5d:76:59:25:c8: 34:56:e5:2a:b4:6b:62:93:51:5a:27:02:d9:89:17:6b:a5:59: c0:b6:dc:c3:b2:0a:1c:c0:75:50:22:54:1e:8d:76:f6:fc:f1: 53:30:d8:0a:2e:2e:b8:c6:0c:31:21:b7:38:c0:3c:4a:f5:b6: c9:52:85:96:c2:21:b6:0f:96:1e:bd:7c:00:46:52:fb:96:63: 98:3a:b0:00:7c:2c:05:2a:30:1d:38:46:55:5f:49:5e:fa:08: 87:d4:4c:bc:65:2e:85:18:88:f2:be:e2:4d:b3:85:3b:8b:92: af:06:eb:bc:7d:9d:73:8a:91:cb:ca:8f:95:f8:6f:f8:df:22: 35:39:92:4b:aa:8f:ae:5b:c2:e1:ed:01:9e:37:17:85:76:8d: 32:74:d2:31:27:64:9c:ab:a0:a7:14:b0:7e:25:ab:4c:a6:bf: 82:d4:49:01:3c:62:a6:87:e5:14:16:9a:ff:09:ab:ae:8a:ed: 8c:5b:d6:a4:f2:6a:e8:01:33:5a:8c:61:e6:ce:a9:f3:e1:49: 5d:c2:5b:3a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUE+9uYVcdTd7zreO0PqYp5yNgdkswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIwNFoX DTI3MDUwMTA5MjcwNFowMzExMC8GA1UEAxMoRUU5MEFCQUM5NzExREU3NUUxRDkw MkRDRDY4ODc1REJFMjU1QzA3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOzaMS3kG2UstrLMR7TjJKYpsen/u0KGvw+jV0JXt68dKgMSIszySlSF1PQ Jy1xCZuOe12/YfKF3kq4Wh1R/pC0lIX8DPMlUDX3u2HMK8OzgHfCBPFnRoNanMR7 eM1TpOnvhJvMrNmc+u5x1RCycvB5ro55GnE62gqU1GNDr44UD3Tc9Qk/uGR9W10R +JKaXHpq9PqdDqX2EeX3UwCIBRPS9RpNdO2UklhAZmmx2TDBDLWTkOyPMUghT0Vq r2/FYuRlPo+3pOot4H6op1CG/Oar2xdMAvs9rxZgLF6ZwXjFrPPpYxnaMJWGsWNx oKTJ0+t6B4dMpn9t1EiSrm4jtqcCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBTukKus lxHedeHZAtzWiHXb4lXAcTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MjA4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQByohSMA8EAgACMAkDBwAgAQ32FMAwDQYJKoZIhvcNAQELBQADggEBADWt Vg+ylHNIFDh0x8d5KKVUYshk4nSBbxd7DNC8w9WqUt2N/5ceCIx/EktLf48X6xdd dlklyDRW5Sq0a2KTUVonAtmJF2ulWcC23MOyChzAdVAiVB6Ndvb88VMw2AouLrjG DDEhtzjAPEr1tslShZbCIbYPlh69fABGUvuWY5g6sAB8LAUqMB04RlVfSV76CIfU TLxlLoUYiPK+4k2zhTuLkq8G67x9nXOKkcvKj5X4b/jfIjU5kkuqj65bwuHtAZ43 F4V2jTJ00jEnZJyroKcUsH4lq0ymv4LUSQE8YqaH5RQWmv8Jq66K7Yxb1qTyaugB M1qMYebOqfPhSV3CWzo= -----END CERTIFICATE-----Generated at Sun May 3 00:40:36 2026 by rpki-client