$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154307.roa File: AS154307.roa (raw, json) Hash identifier: Slnbdn3OSLfcdZ/KKsulx7OCqQ1PORR+ZVPya2Ctwr0= Subject key identifier: 94:08:92:66:54:D4:8A:FC:58:B7:A0:C3:95:BE:CD:30:88:58:B9:93 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5F7C6707A371F5D930C9FC4924A33F599AEE2A53 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154307.roa Signing time: Sat 02 May 2026 08:37:20 +0000 ROA not before: Sat 02 May 2026 08:32:20 +0000 ROA not after: Sat 01 May 2027 08:37:20 +0000 asID: 154307 IP address blocks: 2001:df6:3b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7c:67:07:a3:71:f5:d9:30:c9:fc:49:24:a3:3f:59:9a:ee:2a:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:32:20 2026 GMT Not After : May 1 08:37:20 2027 GMT Subject: CN=9408926654D48AFC58B7A0C395BECD308858B993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6c:07:3a:f0:d2:90:9f:b8:7c:a2:78:f8:ec: a7:bc:26:fd:ae:93:1d:b9:6d:4f:96:7d:ee:cc:fe: d2:dc:c4:36:a6:f2:40:b0:c6:d4:49:e6:a0:82:4d: 80:2a:9a:cd:a8:f5:8f:b2:4e:87:fe:9f:93:f4:a2: 91:21:c1:28:54:91:01:87:73:bd:8c:43:bc:a5:28: e0:8b:bb:c8:d3:8c:ad:40:04:99:b2:9f:65:08:83: 2f:9e:1a:2b:88:a4:7c:8d:32:be:fb:c9:f7:3b:08: b6:4e:2c:75:05:f0:84:d9:f5:ac:fa:7d:94:81:5f: bc:65:b7:0b:76:28:01:90:50:24:85:70:79:56:34: 02:4d:5e:35:ae:9e:39:d3:2b:a4:f1:42:21:0d:e1: a0:5a:64:cc:fd:22:9d:ba:df:2a:68:60:5a:94:f5: f0:90:39:3b:01:33:14:77:18:5e:f8:e2:ac:29:f6: 19:ee:77:e5:bb:7a:dc:0a:c3:ce:f7:d2:d0:22:ea: 1c:e9:20:b0:b0:82:c7:d6:e2:53:8b:f3:eb:d1:92: a7:ec:7a:5b:c6:d5:af:ad:b9:ea:51:c9:3c:9c:13: 3c:00:30:7c:d8:f7:cb:2f:1d:62:0c:67:26:1b:ac: 85:a1:0f:07:80:07:70:68:88:80:e2:14:d0:47:2e: 92:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:08:92:66:54:D4:8A:FC:58:B7:A0:C3:95:BE:CD:30:88:58:B9:93 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154307.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:3b40::/48 Signature Algorithm: sha256WithRSAEncryption 5b:de:e2:b2:b6:8b:a5:54:39:e0:c2:e7:90:f8:93:f2:fe:32: b4:7b:b6:26:1c:ae:70:ac:9e:be:1e:68:90:16:64:cb:2e:0b: f5:c0:78:9f:5e:bd:8e:b4:39:a2:c0:67:fa:82:a6:2a:70:81: fa:e2:1b:e4:a9:06:bd:f3:ef:c6:43:dd:9a:1d:0b:c2:44:5d: 66:ac:c1:70:d9:f2:c5:26:55:97:d3:15:da:de:70:a3:a1:c6: 42:13:7a:97:b3:ba:a5:34:8d:eb:ce:31:30:de:ba:5c:ea:2b: 55:6b:90:a5:e3:de:1a:6a:ba:66:1a:f0:5d:6f:85:b3:25:6c: 17:49:77:7f:69:8d:8d:09:92:47:c3:57:62:cd:b9:0a:84:70: 5e:9b:3b:ac:b3:ad:62:bd:37:a5:a4:09:6c:0a:d1:99:c7:33: ce:a6:32:4c:07:3f:67:9c:fd:25:88:88:f4:ea:11:0b:02:ff: 00:33:88:eb:b6:45:f7:2a:f7:0e:81:f7:20:ad:54:ea:b0:1a: f5:61:03:11:1e:e5:c8:4b:44:1c:e6:6f:b7:fe:9c:89:97:b4: 86:78:2e:d4:7f:b5:36:47:4f:df:24:a8:93:ed:b6:2f:9f:86: cf:6c:78:87:a5:ca:ed:9c:3f:06:b9:92:a0:2c:8c:54:9e:9f: 61:2f:0c:45 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUX3xnB6Nx9dkwyfxJJKM/WZruKlMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzIyMFoX DTI3MDUwMTA4MzcyMFowMzExMC8GA1UEAxMoOTQwODkyNjY1NEQ0OEFGQzU4QjdB MEMzOTVCRUNEMzA4ODU4Qjk5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFsBzrw0pCfuHyiePjsp7wm/a6THbltT5Z97sz+0tzENqbyQLDG1EnmoIJN gCqazaj1j7JOh/6fk/SikSHBKFSRAYdzvYxDvKUo4Iu7yNOMrUAEmbKfZQiDL54a K4ikfI0yvvvJ9zsItk4sdQXwhNn1rPp9lIFfvGW3C3YoAZBQJIVweVY0Ak1eNa6e OdMrpPFCIQ3hoFpkzP0inbrfKmhgWpT18JA5OwEzFHcYXvjirCn2Ge535bt63ArD zvfS0CLqHOkgsLCCx9biU4vz69GSp+x6W8bVr6256lHJPJwTPAAwfNj3yy8dYgxn JhushaEPB4AHcGiIgOIU0EcukhECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSUCJJm VNSK/Fi3oMOVvs0wiFi5kzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MzA3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9jtAMA0GCSqGSIb3DQEBCwUAA4IBAQBb3uKytoulVDngwueQ+JPy /jK0e7YmHK5wrJ6+HmiQFmTLLgv1wHifXr2OtDmiwGf6gqYqcIH64hvkqQa98+/G Q92aHQvCRF1mrMFw2fLFJlWX0xXa3nCjocZCE3qXs7qlNI3rzjEw3rpc6itVa5Cl 494aarpmGvBdb4WzJWwXSXd/aY2NCZJHw1dizbkKhHBemzuss61ivTelpAlsCtGZ xzPOpjJMBz9nnP0liIj06hELAv8AM4jrtkX3KvcOgfcgrVTqsBr1YQMRHuXIS0Qc 5m+3/pyJl7SGeC7Uf7U2R0/fJKiT7bYvn4bPbHiHpcrtnD8GuZKgLIxUnp9hLwxF -----END CERTIFICATE-----Generated at Sun May 3 00:40:22 2026 by rpki-client