$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154479.roa File: AS154479.roa (raw, json) Hash identifier: aFKqZGHZovQ6L1bOK9pr2JtvrMpsZ34vd4Ic/ZWJgFM= Subject key identifier: 16:0F:59:4A:5D:5C:8F:3A:9C:AB:22:D9:39:1F:35:0F:7E:68:B8:70 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3D229EA2E11D8B726FD6771905415E49FBB852D0 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154479.roa Signing time: Sat 02 May 2026 09:27:14 +0000 ROA not before: Sat 02 May 2026 09:22:14 +0000 ROA not after: Sat 01 May 2027 09:27:14 +0000 asID: 154479 IP address blocks: 2001:df6:a2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:22:9e:a2:e1:1d:8b:72:6f:d6:77:19:05:41:5e:49:fb:b8:52:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:14 2026 GMT Not After : May 1 09:27:14 2027 GMT Subject: CN=160F594A5D5C8F3A9CAB22D9391F350F7E68B870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d9:6f:f0:3e:1a:30:13:20:5d:50:eb:3a:dc: aa:98:a3:7b:29:16:ba:e4:07:6c:be:74:8a:26:db: 0e:b6:66:a0:e0:d2:cc:46:23:b7:ba:64:dd:6a:43: cd:5e:1c:a7:ac:38:fe:84:9d:38:11:a6:40:43:3c: ab:0c:7e:e0:08:4a:f1:4d:fd:0c:87:ef:c3:e7:eb: a0:9c:15:04:62:58:db:43:d2:97:05:1a:ff:8e:7e: 51:19:bb:28:3c:25:d1:e2:17:2d:87:ff:88:d5:e2: 83:43:19:6c:47:6d:9b:e5:2a:14:27:1f:d8:09:c2: 77:ad:d1:a7:04:4b:68:4d:bd:73:63:83:e9:f3:ae: d9:69:09:ff:e7:74:9d:e4:57:04:81:6a:19:bb:13: c1:f0:67:d8:f5:a6:3c:25:3b:8c:7d:cc:1f:26:c2: cf:ad:41:67:ea:2e:b8:d2:57:62:b2:f4:2f:f5:e0: 9d:d3:66:81:de:a9:40:de:1d:df:8b:c1:60:57:d6: 0a:c6:ea:d5:ee:11:48:31:12:bf:52:61:48:f2:2e: ad:50:84:51:10:38:19:0c:4d:34:60:be:39:cb:97: d5:09:4e:22:19:91:9e:76:f9:69:c4:6a:a3:fb:9c: 12:46:f1:e8:22:2a:ba:e3:e3:65:84:08:a5:b4:96: 9c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0F:59:4A:5D:5C:8F:3A:9C:AB:22:D9:39:1F:35:0F:7E:68:B8:70 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154479.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:a2c0::/48 Signature Algorithm: sha256WithRSAEncryption 5a:72:cf:fd:9e:af:10:1e:e0:e8:6c:d8:19:64:fa:13:76:48: d5:6a:ee:0d:29:91:8b:cf:6b:29:a6:ac:4d:ab:c8:f0:8b:d7: 72:6e:52:b7:a1:d5:9a:30:f4:d5:c3:ed:99:53:83:34:f8:39: 8d:a6:26:78:14:b7:99:fb:f7:25:8c:9e:2e:7a:4c:29:e9:ca: 23:1b:d3:d8:02:5e:ad:26:ac:4d:80:88:a5:18:c7:d0:31:aa: 38:7f:ca:8c:50:ee:13:1a:cd:b8:57:b1:40:de:eb:19:de:ee: 72:b8:fd:0a:1d:49:98:98:91:8f:98:5a:89:1c:08:32:e7:cc: 35:10:d2:c8:5f:b7:fa:8d:d6:14:cd:b4:16:36:4d:21:b1:31: 60:a1:ec:77:18:41:63:2d:94:05:93:27:43:ec:b9:bd:48:85: 40:b4:56:97:d1:1c:ac:2e:c2:6b:72:7e:53:e8:1c:e5:7f:fa: 18:91:61:8b:23:5a:7c:a1:4c:8e:ee:62:e0:a8:31:9e:96:39: e0:72:e5:86:b9:c9:ec:13:57:b9:a8:8d:4d:99:25:14:87:4d: f1:57:e6:89:39:d0:e7:1a:ba:25:11:90:09:02:2f:1b:5a:f3: c5:dd:6c:a8:9d:60:ab:01:02:fa:98:2b:44:a2:d2:ac:2e:98: 33:cb:63:4a -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUPSKeouEdi3Jv1ncZBUFeSfu4UtAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIxNFoX DTI3MDUwMTA5MjcxNFowMzExMC8GA1UEAxMoMTYwRjU5NEE1RDVDOEYzQTlDQUIy MkQ5MzkxRjM1MEY3RTY4Qjg3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3Zb/A+GjATIF1Q6zrcqpijeykWuuQHbL50iibbDrZmoODSzEYjt7pk3WpD zV4cp6w4/oSdOBGmQEM8qwx+4AhK8U39DIfvw+froJwVBGJY20PSlwUa/45+URm7 KDwl0eIXLYf/iNXig0MZbEdtm+UqFCcf2AnCd63RpwRLaE29c2OD6fOu2WkJ/+d0 neRXBIFqGbsTwfBn2PWmPCU7jH3MHybCz61BZ+ouuNJXYrL0L/XgndNmgd6pQN4d 34vBYFfWCsbq1e4RSDESv1JhSPIurVCEURA4GQxNNGC+OcuX1QlOIhmRnnb5acRq o/ucEkbx6CIquuPjZYQIpbSWnFsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQWD1lK XVyPOpyrItk5HzUPfmi4cDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NDc5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9qLAMA0GCSqGSIb3DQEBCwUAA4IBAQBacs/9nq8QHuDobNgZZPoT dkjVau4NKZGLz2sppqxNq8jwi9dyblK3odWaMPTVw+2ZU4M0+DmNpiZ4FLeZ+/cl jJ4uekwp6cojG9PYAl6tJqxNgIilGMfQMao4f8qMUO4TGs24V7FA3usZ3u5yuP0K HUmYmJGPmFqJHAgy58w1ENLIX7f6jdYUzbQWNk0hsTFgoex3GEFjLZQFkydD7Lm9 SIVAtFaX0RysLsJrcn5T6Bzlf/oYkWGLI1p8oUyO7mLgqDGeljngcuWGucnsE1e5 qI1NmSUUh03xV+aJOdDnGrolEZAJAi8bWvPF3WyonWCrAQL6mCtEotKsLpgzy2NK -----END CERTIFICATE-----Generated at Sun May 3 00:39:43 2026 by rpki-client