$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154217.roa File: AS154217.roa (raw, json) Hash identifier: /mlz257+ImGi6k9FkZIjBVDwH+K4Dp06lq4riMTMlv0= Subject key identifier: 8E:2A:2F:37:81:F4:A7:69:E7:97:70:C2:89:43:5A:CC:7A:F1:41:7C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6ECC877242967DC315623B55F1CFD70A1CE5C605 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154217.roa Signing time: Sat 02 May 2026 21:29:02 +0000 ROA not before: Sat 02 May 2026 21:24:02 +0000 ROA not after: Sat 01 May 2027 21:29:02 +0000 asID: 154217 IP address blocks: 103.227.107.0/24 maxlen: 24 202.6.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:cc:87:72:42:96:7d:c3:15:62:3b:55:f1:cf:d7:0a:1c:e5:c6:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:24:02 2026 GMT Not After : May 1 21:29:02 2027 GMT Subject: CN=8E2A2F3781F4A769E79770C289435ACC7AF1417C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:60:50:f7:ca:5f:4b:8d:5f:e8:30:ef:85:e1: b1:5e:a8:0a:1c:b6:78:e0:c1:ed:d9:fb:c7:ba:a1: b8:2d:00:e2:f7:5e:74:2f:32:82:a2:eb:00:5a:5c: e6:7c:32:84:c3:a9:0f:dd:59:ed:a9:04:b8:de:dc: 2e:3d:9d:8f:60:db:3a:f2:a0:88:b0:61:a2:a0:b3: 36:08:fb:c8:31:c0:bf:44:58:90:10:bc:ea:f3:53: 43:21:51:67:0e:5c:5a:62:29:3d:de:f9:e7:7c:46: 38:fc:10:fd:b4:ea:7b:7a:62:17:ea:b4:e1:0d:88: e5:1d:19:61:30:43:1f:de:01:d4:b0:72:ce:3b:ab: ff:04:46:9a:e1:d6:0b:03:08:57:ab:ac:8f:5f:f5: d6:c6:95:6d:62:2d:97:e0:89:55:f7:c1:d8:f5:a9: d2:ce:c7:69:3d:e4:40:06:05:61:59:99:d5:cc:b5: 3d:1d:c7:eb:8e:31:87:95:8d:d4:c3:c4:7e:22:43: a0:1f:a4:9e:fe:fd:0a:bf:c9:f9:f0:35:c2:2d:28: fb:45:e8:13:ee:6b:b4:e6:0d:a0:5c:b5:fa:b4:59: 88:62:6a:34:c9:8c:8d:b8:51:1f:0f:12:97:66:ee: 2f:00:07:89:47:71:1a:ec:ea:18:f0:fa:a4:e9:b9: 8f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:2A:2F:37:81:F4:A7:69:E7:97:70:C2:89:43:5A:CC:7A:F1:41:7C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154217.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.107.0/24 202.6.192.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:c7:ef:f3:bf:fd:ba:7c:de:be:ab:e8:26:85:18:8b:c7:d0: 5c:1e:4f:73:e5:01:df:74:16:74:94:b9:1b:fb:58:db:d4:5c: 9a:36:5b:c1:ae:67:b0:d5:32:99:12:58:35:96:cd:08:b2:79: 78:09:91:f0:35:89:03:82:33:a0:29:a9:79:f4:a6:8c:ac:f5: 79:18:d1:4d:c4:ab:bc:b1:c5:87:e6:7a:1c:c0:14:61:b4:e5: 0c:f8:39:5b:b3:ae:d7:92:33:4f:b9:08:65:20:35:f7:06:20: 70:d9:52:95:5d:46:c7:bc:0d:db:6e:e2:c5:40:92:f5:08:76: 1b:fc:c0:07:c9:c4:db:4e:f2:da:a2:d5:33:88:8f:0e:46:5a: 3a:28:5f:a7:50:98:1f:14:f9:6e:5a:64:c6:f1:69:c0:d1:e7: d7:85:f9:d0:24:50:15:38:6f:38:81:00:3a:7c:f6:ec:f3:97: 58:60:47:ba:d7:b2:77:81:6f:8c:c6:64:5a:1a:16:4d:21:5b: 2c:2c:42:f1:d9:72:32:fb:25:e0:cf:48:84:58:97:55:30:eb: 0c:fc:83:d9:dd:73:fd:5f:9c:8b:2f:96:16:06:dd:a6:ad:24: 3a:b0:1e:1c:73:20:97:b5:be:24:9e:da:cd:86:34:60:b9:a9: 9c:0f:d1:33 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUbsyHckKWfcMVYjtV8c/XChzlxgUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjQwMloX DTI3MDUwMTIxMjkwMlowMzExMC8GA1UEAxMoOEUyQTJGMzc4MUY0QTc2OUU3OTc3 MEMyODk0MzVBQ0M3QUYxNDE3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1gUPfKX0uNX+gw74XhsV6oChy2eODB7dn7x7qhuC0A4vdedC8ygqLrAFpc 5nwyhMOpD91Z7akEuN7cLj2dj2DbOvKgiLBhoqCzNgj7yDHAv0RYkBC86vNTQyFR Zw5cWmIpPd7553xGOPwQ/bTqe3piF+q04Q2I5R0ZYTBDH94B1LByzjur/wRGmuHW CwMIV6usj1/11saVbWItl+CJVffB2PWp0s7HaT3kQAYFYVmZ1cy1PR3H644xh5WN 1MPEfiJDoB+knv79Cr/J+fA1wi0o+0XoE+5rtOYNoFy1+rRZiGJqNMmMjbhRHw8S l2buLwAHiUdxGuzqGPD6pOm5j40CAwEAAaOCAdIwggHOMB0GA1UdDgQWBBSOKi83 gfSnaeeXcMKJQ1rMevFBfDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MjE3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAZ+NrAwQBygbAMA0GCSqGSIb3DQEBCwUAA4IBAQCLx+/zv/26fN6+q+gm hRiLx9BcHk9z5QHfdBZ0lLkb+1jb1FyaNlvBrmew1TKZElg1ls0Isnl4CZHwNYkD gjOgKal59KaMrPV5GNFNxKu8scWH5nocwBRhtOUM+Dlbs67XkjNPuQhlIDX3BiBw 2VKVXUbHvA3bbuLFQJL1CHYb/MAHycTbTvLaotUziI8ORlo6KF+nUJgfFPluWmTG 8WnA0efXhfnQJFAVOG84gQA6fPbs85dYYEe617J3gW+MxmRaGhZNIVssLELx2XIy +yXgz0iEWJdVMOsM/IPZ3XP9X5yLL5YWBt2mrSQ6sB4ccyCXtb4kntrNhjRguamc D9Ez -----END CERTIFICATE-----Generated at Sun May 3 00:40:31 2026 by rpki-client