$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154367.roa File: AS154367.roa (raw, json) Hash identifier: dfdSJ2iVVufpiea/SfkcnEK5VjfiqVNvVpJoIs2w7qI= Subject key identifier: 02:EF:12:32:90:28:C6:59:FA:6E:DD:5D:27:B3:F3:94:04:9D:CE:4A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 169AE6E021F2A82E3D028F057B4AC0FFA92A3D00 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154367.roa Signing time: Sat 02 May 2026 21:29:40 +0000 ROA not before: Sat 02 May 2026 21:24:40 +0000 ROA not after: Sat 01 May 2027 21:29:40 +0000 asID: 154367 IP address blocks: 202.94.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:9a:e6:e0:21:f2:a8:2e:3d:02:8f:05:7b:4a:c0:ff:a9:2a:3d:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:24:40 2026 GMT Not After : May 1 21:29:40 2027 GMT Subject: CN=02EF12329028C659FA6EDD5D27B3F394049DCE4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:54:98:28:e0:01:a0:18:ba:a7:1b:bd:02:13: 60:7e:7b:70:94:c0:a1:ea:0a:9b:d1:2d:65:a3:cf: f3:99:45:9e:5e:4b:29:7d:dd:51:90:b7:24:7d:3f: 3e:85:2c:11:69:66:d5:df:b7:b0:9a:5a:24:c4:b7: 9a:71:8e:47:e4:a8:77:e8:f7:9f:8d:6e:63:b7:9a: 18:45:a0:43:31:02:fc:2c:cf:7f:2f:86:d4:db:35: 77:24:3b:a8:43:1e:9f:57:3e:5d:d0:bc:f3:a0:bd: e9:a3:18:77:11:ab:c0:e2:ca:3a:b7:be:65:09:ba: 2e:51:27:ca:8b:05:51:37:99:84:e5:d8:a1:fa:58: 2a:1a:a4:60:20:7b:50:7a:5a:4b:94:9b:59:1e:8b: 2d:93:6a:e5:90:a5:1f:39:9d:17:7f:1c:ab:86:08: 4a:13:c6:4e:f0:19:40:8a:af:56:ce:14:23:a0:71: 3d:0c:63:99:b3:b8:d5:f6:fb:e2:b4:3f:d9:d9:75: d4:45:11:dd:b0:20:3b:11:c4:65:80:51:82:16:13: 07:e0:18:05:c2:ef:38:fe:ec:c9:32:45:83:ca:f7: c7:05:ff:ae:02:92:7a:26:e2:08:0f:23:47:2c:7f: 55:ce:ca:36:b9:fa:80:d4:b9:2f:1f:99:51:ae:92: 53:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:EF:12:32:90:28:C6:59:FA:6E:DD:5D:27:B3:F3:94:04:9D:CE:4A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154367.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.94.71.0/24 Signature Algorithm: sha256WithRSAEncryption 02:1a:4d:24:e0:7f:2c:98:f3:4a:1f:f8:80:04:cb:d7:36:3f: 25:23:38:53:08:07:dd:fd:bb:9f:db:92:6b:7a:77:f6:d2:be: f1:20:0d:8c:b4:4c:66:ed:b1:fc:a2:65:08:92:95:09:5c:d0: c5:30:03:b9:02:12:14:ac:83:96:a1:c6:bb:81:60:e9:1e:16: 79:44:00:53:04:82:03:07:2c:2c:45:b5:49:7a:30:1b:3a:05: 56:1a:3d:c0:63:ac:5b:55:93:99:18:c6:a7:0a:78:24:1a:b8: 61:2c:52:a7:ec:03:72:e2:3c:ba:d3:ff:ed:e5:91:80:d0:0a: 21:c0:1d:94:41:49:bb:cb:a1:d3:fd:f6:27:13:90:e2:12:7e: 07:9e:c5:7c:d8:c8:de:8d:9d:bf:07:98:c2:2b:cb:e6:73:3e: ef:fc:28:07:ea:0c:4d:3b:2f:c4:ac:68:61:90:45:59:40:29: 51:a4:90:35:97:6a:72:5b:e6:c2:d2:08:2f:17:42:a2:94:f2: 26:5b:3f:ee:b0:f9:6b:cf:03:27:3e:55:f5:c1:be:e6:c8:b9: e3:62:61:4b:e1:1c:24:49:fe:57:a2:b9:50:9c:bd:6c:63:7d: cb:02:d4:67:b6:11:7a:d3:7c:c3:2c:24:53:b2:2c:c7:86:2e: de:e1:9b:30 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUFprm4CHyqC49Ao8Fe0rA/6kqPQAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjQ0MFoX DTI3MDUwMTIxMjk0MFowMzExMC8GA1UEAxMoMDJFRjEyMzI5MDI4QzY1OUZBNkVE RDVEMjdCM0YzOTQwNDlEQ0U0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1UmCjgAaAYuqcbvQITYH57cJTAoeoKm9EtZaPP85lFnl5LKX3dUZC3JH0/ PoUsEWlm1d+3sJpaJMS3mnGOR+Sod+j3n41uY7eaGEWgQzEC/CzPfy+G1Ns1dyQ7 qEMen1c+XdC886C96aMYdxGrwOLKOre+ZQm6LlEnyosFUTeZhOXYofpYKhqkYCB7 UHpaS5SbWR6LLZNq5ZClHzmdF38cq4YIShPGTvAZQIqvVs4UI6BxPQxjmbO41fb7 4rQ/2dl11EUR3bAgOxHEZYBRghYTB+AYBcLvOP7syTJFg8r3xwX/rgKSeibiCA8j Ryx/Vc7KNrn6gNS5Lx+ZUa6SU08CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQC7xIy kCjGWfpu3V0ns/OUBJ3OSjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MzY3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAyl5HMA0GCSqGSIb3DQEBCwUAA4IBAQACGk0k4H8smPNKH/iABMvXNj8l IzhTCAfd/buf25Jrenf20r7xIA2MtExm7bH8omUIkpUJXNDFMAO5AhIUrIOWoca7 gWDpHhZ5RABTBIIDBywsRbVJejAbOgVWGj3AY6xbVZOZGManCngkGrhhLFKn7ANy 4jy60//t5ZGA0AohwB2UQUm7y6HT/fYnE5DiEn4HnsV82MjejZ2/B5jCK8vmcz7v /CgH6gxNOy/ErGhhkEVZQClRpJA1l2pyW+bC0ggvF0KilPImWz/usPlrzwMnPlX1 wb7myLnjYmFL4RwkSf5XorlQnL1sY33LAtRnthF603zDLCRTsizHhi7e4Zsw -----END CERTIFICATE-----Generated at Sun May 3 00:39:41 2026 by rpki-client