$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154536.roa File: AS154536.roa (raw, json) Hash identifier: x89HtgflhlpCH4WGoVUpnWtRlvX+WDe/QCjK7dr+N+w= Subject key identifier: AB:E4:5A:0C:9C:F4:F3:05:7A:A3:85:76:15:39:42:8A:30:B1:BA:15 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 719FCB99EB7FC57D3A89E65C3B3EDA09913A4A46 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154536.roa Signing time: Sat 02 May 2026 09:24:41 +0000 ROA not before: Sat 02 May 2026 09:19:41 +0000 ROA not after: Sat 01 May 2027 09:24:41 +0000 asID: 154536 IP address blocks: 163.128.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9f:cb:99:eb:7f:c5:7d:3a:89:e6:5c:3b:3e:da:09:91:3a:4a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:41 2026 GMT Not After : May 1 09:24:41 2027 GMT Subject: CN=ABE45A0C9CF4F3057AA385761539428A30B1BA15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fc:a2:15:d5:3c:88:71:78:dd:04:8f:b5:b2: d0:ce:f4:76:1b:06:eb:c9:c5:30:ff:ab:e5:b0:29: 4f:c8:ad:db:cc:75:a7:de:9a:e2:1f:ca:ac:65:5f: b7:16:54:38:18:20:75:84:1c:65:61:06:10:70:25: 83:bd:65:49:c8:59:c9:b2:1f:36:1e:f6:51:74:27: 23:04:80:dd:2a:36:c3:04:84:01:15:03:ca:72:54: 9c:05:06:cb:86:3d:fd:4a:3c:9f:82:af:e0:12:d9: 13:aa:96:3a:3e:8b:dd:10:6f:a9:ad:f2:0c:b1:69: 14:5f:07:8d:12:29:cf:a1:3c:cd:fd:fc:38:33:01: de:41:a0:58:77:bd:c3:db:91:f6:8d:25:ec:4a:fb: 20:a1:cd:ae:19:fb:15:d5:d7:0d:62:19:3f:2c:ff: 9f:16:b9:e4:bf:e5:40:1b:45:29:42:ed:bf:52:0f: 81:ec:b8:62:b5:08:8a:66:91:b8:4c:fd:5e:c7:ac: e0:53:bc:63:4c:df:76:b7:e5:1a:0d:0c:0e:7a:54: 9a:42:99:62:3d:38:03:14:b2:2e:65:b5:bb:0a:98: ea:ea:c0:af:f2:52:f6:89:62:0f:2e:75:a6:c3:ac: 3c:78:70:a8:31:d7:b0:f6:1a:34:0d:89:41:da:98: 0b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E4:5A:0C:9C:F4:F3:05:7A:A3:85:76:15:39:42:8A:30:B1:BA:15 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.10.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:89:05:b3:f0:7c:3a:9b:fb:11:94:38:d0:0d:b9:22:94:87: 37:72:8a:23:3d:e5:03:bf:dc:15:59:ef:fb:4b:a4:04:09:34: 22:b3:80:cd:e3:5d:d1:c7:fb:d5:41:e2:d9:46:f6:a4:48:a9: 94:df:bb:b1:e9:01:30:00:a8:e5:a3:06:33:63:0b:37:a5:92: 2d:b9:f7:06:47:71:13:8a:cf:31:2e:d3:89:3c:f5:a9:95:42: be:25:cc:1a:67:5c:f5:bb:0a:dd:9d:2f:6e:53:97:fe:1b:01: ed:86:f8:e6:e2:24:88:dd:e4:5d:52:65:d1:41:e2:4e:a8:c3: 95:83:fd:ca:e8:e6:f3:39:a2:29:98:d7:ba:bf:9e:f9:e4:32: d9:90:3d:bb:52:0b:d3:3c:51:8b:95:c8:6a:2d:3d:5a:24:7c: 1b:6e:d9:83:6e:b6:a3:d8:e6:7f:ee:db:c1:7a:f9:b8:d7:05: d7:95:7a:f3:0b:86:e1:95:97:41:ad:fc:cf:f5:12:78:bb:cf: 9d:98:b1:62:75:9a:2d:f6:d2:78:41:64:28:a5:6c:8b:22:a5: 51:d5:1a:08:00:da:91:ff:c1:d9:a2:99:97:c6:4d:6e:d2:1e: 62:ae:c6:62:df:97:b1:5f:9f:ad:41:c3:98:9b:34:32:59:28: 6d:cb:66:ed -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcZ/Lmet/xX06ieZcOz7aCZE6SkYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTk0MVoX DTI3MDUwMTA5MjQ0MVowMzExMC8GA1UEAxMoQUJFNDVBMEM5Q0Y0RjMwNTdBQTM4 NTc2MTUzOTQyOEEzMEIxQkExNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJv8ohXVPIhxeN0Ej7Wy0M70dhsG68nFMP+r5bApT8it28x1p96a4h/KrGVf txZUOBggdYQcZWEGEHAlg71lSchZybIfNh72UXQnIwSA3So2wwSEARUDynJUnAUG y4Y9/Uo8n4Kv4BLZE6qWOj6L3RBvqa3yDLFpFF8HjRIpz6E8zf38ODMB3kGgWHe9 w9uR9o0l7Er7IKHNrhn7FdXXDWIZPyz/nxa55L/lQBtFKULtv1IPgey4YrUIimaR uEz9Xses4FO8Y0zfdrflGg0MDnpUmkKZYj04AxSyLmW1uwqY6urAr/JS9oliDy51 psOsPHhwqDHXsPYaNA2JQdqYC8sCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSr5FoM nPTzBXqjhXYVOUKKMLG6FTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NTM2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAo4AKMA0GCSqGSIb3DQEBCwUAA4IBAQBqiQWz8Hw6m/sRlDjQDbkilIc3 coojPeUDv9wVWe/7S6QECTQis4DN413Rx/vVQeLZRvakSKmU37ux6QEwAKjlowYz Yws3pZItufcGR3ETis8xLtOJPPWplUK+JcwaZ1z1uwrdnS9uU5f+GwHthvjm4iSI 3eRdUmXRQeJOqMOVg/3K6ObzOaIpmNe6v5755DLZkD27UgvTPFGLlchqLT1aJHwb btmDbraj2OZ/7tvBevm41wXXlXrzC4bhlZdBrfzP9RJ4u8+dmLFidZot9tJ4QWQo pWyLIqVR1RoIANqR/8HZopmXxk1u0h5irsZi35exX5+tQcOYmzQyWShty2bt -----END CERTIFICATE-----Generated at Sun May 3 00:39:38 2026 by rpki-client