$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154400.roa File: AS154400.roa (raw, json) Hash identifier: 4kwn97UEjvDmi0Z1s4otk/bVq6Gi4qoD4V/fim7DatM= Subject key identifier: F4:EB:CC:D7:73:42:C7:B6:EE:2F:3F:55:F4:1F:67:95:E1:10:B6:30 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 58B3939ABBD8387CDE625BF30DE1385BE4F413D0 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154400.roa Signing time: Sat 02 May 2026 09:24:46 +0000 ROA not before: Sat 02 May 2026 09:19:46 +0000 ROA not after: Sat 01 May 2027 09:24:46 +0000 asID: 154400 IP address blocks: 163.128.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b3:93:9a:bb:d8:38:7c:de:62:5b:f3:0d:e1:38:5b:e4:f4:13:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:46 2026 GMT Not After : May 1 09:24:46 2027 GMT Subject: CN=F4EBCCD77342C7B6EE2F3F55F41F6795E110B630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:00:fc:f3:a1:f8:0c:5d:67:19:3a:29:2a:d5: 79:ac:b2:36:f8:4f:8b:24:b4:ca:bc:7d:76:02:1a: 36:d4:28:9c:0a:14:0d:50:97:aa:41:80:9e:f7:20: 22:3e:ea:5a:33:48:05:3f:ba:fe:21:1f:3b:05:9e: 76:8a:9b:dd:46:46:58:99:95:49:f4:d9:36:6c:72: f4:0a:66:cf:25:bf:14:b6:70:21:87:66:1a:4b:2e: c7:13:37:d6:59:2e:f0:96:7b:02:90:c9:92:45:00: 91:b3:5c:00:fb:25:b4:b7:7f:0f:05:1a:b5:6e:eb: 7e:04:ae:19:f2:cd:f8:69:bb:3b:a6:fd:b5:b6:7e: d4:58:ec:5f:b1:fe:f9:19:e6:96:3a:79:1e:1b:23: bd:44:73:42:0a:37:64:37:84:ac:6c:38:d3:74:7c: dd:d7:5b:8e:9a:48:ea:76:45:8a:cc:33:2c:f5:70: f1:a7:38:fb:ee:cd:83:f0:cb:d9:dd:7c:48:fb:df: eb:c9:48:0c:ed:63:20:d2:45:a2:c1:24:88:c5:ae: 83:b2:68:34:1d:95:58:9e:b1:5b:16:c1:17:66:dc: c5:e7:0f:87:92:76:01:58:1c:9b:41:1a:bb:c2:e2: 73:53:d7:fb:e8:e9:ec:23:f0:2a:61:e1:67:13:28: a6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EB:CC:D7:73:42:C7:B6:EE:2F:3F:55:F4:1F:67:95:E1:10:B6:30 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154400.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.191.0/24 Signature Algorithm: sha256WithRSAEncryption 16:ba:9f:72:76:b6:b1:bf:13:45:b7:47:74:03:4b:62:fb:ae: 03:b5:31:34:a4:bb:1a:c8:90:21:2e:1d:a1:64:b9:46:e8:94: 2b:4d:b8:b4:f7:f2:8a:7b:5a:6e:e3:26:3f:95:4b:60:9f:3b: 80:e5:e6:31:0a:39:02:6c:a0:c6:60:c4:29:51:94:c6:e3:1a: 2a:5c:ea:93:29:75:3e:73:e6:dd:07:91:e2:1b:37:2e:26:37: ba:e4:cc:4f:f5:93:0e:14:ff:15:f7:24:db:61:a7:40:84:39: 67:6c:73:14:bf:59:b6:ab:80:bc:f8:e6:76:a2:02:91:50:36: 90:9e:e8:2b:25:c4:50:32:db:2e:fc:2e:33:c8:0f:0d:1f:23: 75:bd:bd:2f:18:f7:57:97:cb:db:5f:83:90:f3:f6:d9:d4:f3: 13:a4:7d:53:32:75:2d:ad:75:17:18:ac:96:6e:64:ca:a6:03: bd:0f:d2:b3:6f:2d:13:c4:44:8f:d8:35:d1:a3:c2:30:8d:14: fd:1c:d3:73:76:ec:05:9b:02:53:bd:fd:a0:97:0c:ab:9c:2e: d3:3e:d9:f0:7d:66:7a:ff:5c:1e:4a:c3:fd:e2:59:e9:8e:3d: 17:c6:39:96:06:a8:2f:50:9e:7d:18:c0:6d:14:79:a2:b2:b4: e1:a8:92:f6 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWLOTmrvYOHzeYlvzDeE4W+T0E9AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTk0NloX DTI3MDUwMTA5MjQ0NlowMzExMC8GA1UEAxMoRjRFQkNDRDc3MzQyQzdCNkVFMkYz RjU1RjQxRjY3OTVFMTEwQjYzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYA/POh+AxdZxk6KSrVeayyNvhPiyS0yrx9dgIaNtQonAoUDVCXqkGAnvcg Ij7qWjNIBT+6/iEfOwWedoqb3UZGWJmVSfTZNmxy9ApmzyW/FLZwIYdmGksuxxM3 1lku8JZ7ApDJkkUAkbNcAPsltLd/DwUatW7rfgSuGfLN+Gm7O6b9tbZ+1FjsX7H+ +Rnmljp5HhsjvURzQgo3ZDeErGw403R83ddbjppI6nZFiswzLPVw8ac4++7Ng/DL 2d18SPvf68lIDO1jINJFosEkiMWug7JoNB2VWJ6xWxbBF2bcxecPh5J2AVgcm0Ea u8Lic1PX++jp7CPwKmHhZxMopl0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT068zX c0LHtu4vP1X0H2eV4RC2MDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NDAwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAo4C/MA0GCSqGSIb3DQEBCwUAA4IBAQAWup9ydraxvxNFt0d0A0ti+64D tTE0pLsayJAhLh2hZLlG6JQrTbi09/KKe1pu4yY/lUtgnzuA5eYxCjkCbKDGYMQp UZTG4xoqXOqTKXU+c+bdB5HiGzcuJje65MxP9ZMOFP8V9yTbYadAhDlnbHMUv1m2 q4C8+OZ2ogKRUDaQnugrJcRQMtsu/C4zyA8NHyN1vb0vGPdXl8vbX4OQ8/bZ1PMT pH1TMnUtrXUXGKyWbmTKpgO9D9Kzby0TxESP2DXRo8IwjRT9HNNzduwFmwJTvf2g lwyrnC7TPtnwfWZ6/1weSsP94lnpjj0XxjmWBqgvUJ59GMBtFHmisrThqJL2 -----END CERTIFICATE-----Generated at Sun May 3 00:42:15 2026 by rpki-client