$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154538.roa File: AS154538.roa (raw, json) Hash identifier: HylTQsX3v+1AE53pZKdw/D+qIeSiCAx9X9z1GchDdnU= Subject key identifier: 10:45:23:D4:B6:F0:ED:F3:82:40:BD:09:6B:9A:08:D5:B1:82:72:46 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3877B914B51166A9B37A596A6F7E3911BFBA5979 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154538.roa Signing time: Sat 02 May 2026 09:27:08 +0000 ROA not before: Sat 02 May 2026 09:22:08 +0000 ROA not after: Sat 01 May 2027 09:27:08 +0000 asID: 154538 IP address blocks: 163.128.32.0/23 maxlen: 24 2001:df6:cdc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:77:b9:14:b5:11:66:a9:b3:7a:59:6a:6f:7e:39:11:bf:ba:59:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:08 2026 GMT Not After : May 1 09:27:08 2027 GMT Subject: CN=104523D4B6F0EDF38240BD096B9A08D5B1827246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ea:bc:24:2e:85:8f:f0:33:e1:ec:a3:1b:ce: f1:13:ef:c5:bf:ae:cf:d0:5c:d6:31:d0:e8:5b:18: f6:c0:78:d9:66:c3:4e:d7:d0:96:69:a4:aa:71:b4: d4:6f:10:b2:26:0e:12:fc:3f:76:a8:d8:79:09:80: b0:6f:20:b3:97:44:c1:f9:fa:cc:9c:31:cd:52:30: bc:9b:db:1c:10:aa:57:a4:a3:16:ed:fb:95:c1:b8: 80:7e:f6:70:00:d8:59:85:18:bf:4a:61:1d:b1:fd: b2:6d:6b:4b:92:be:b9:58:c5:e1:38:82:43:17:f7: e7:8c:b7:ec:23:66:85:dd:9f:b1:30:0f:cb:33:ea: 4f:77:c9:38:b2:a1:96:52:6d:21:4b:c3:14:28:9f: 83:a9:5a:57:33:4b:76:86:a3:79:3d:b5:5a:d4:50: f9:04:64:4c:b4:b1:12:71:b2:9e:5f:5a:24:13:ad: af:3c:72:6a:30:1c:85:29:fe:f0:90:c7:34:d3:7d: e1:4e:20:75:b8:6a:fb:b0:12:d1:aa:0f:18:ff:c5: 67:f8:e9:7a:b9:51:a4:89:e8:ef:8e:b8:f6:53:59: 31:a4:f2:b7:f6:46:9d:99:10:7a:9e:73:fc:4d:f6: f4:8f:1b:c7:1e:21:fd:33:54:d3:85:62:be:14:e1: ab:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:45:23:D4:B6:F0:ED:F3:82:40:BD:09:6B:9A:08:D5:B1:82:72:46 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.32.0/23 IPv6: 2001:df6:cdc0::/48 Signature Algorithm: sha256WithRSAEncryption 54:8f:3b:47:80:39:3c:f9:1a:f3:3e:95:87:7a:7f:d4:35:f0: 9b:17:4a:65:0d:98:d9:26:26:38:7c:22:f8:f6:a6:89:7e:fa: 2b:8f:56:87:75:3c:a8:e0:8f:f4:5d:75:90:0b:0a:88:2b:06: 05:09:fa:3a:9e:a8:d3:3c:93:e8:d8:2e:4c:f0:f3:0c:e4:38: 7b:fc:0e:ef:d0:8d:e2:c6:dc:f6:05:3e:c8:23:9a:40:c2:a3: 2c:3d:53:c3:10:24:4e:80:b8:9e:02:e9:c7:b7:d3:09:22:00: 4c:b3:66:0d:31:84:d3:9a:09:30:a9:5e:e0:57:f4:5d:cb:85: 88:fb:04:2b:a0:9a:1a:53:34:c6:fc:66:aa:f8:ba:f1:ca:92: 1e:5d:55:ea:e9:3d:a2:43:20:56:20:8f:2e:d6:6c:52:a6:17: 50:2e:7c:05:85:3d:b5:33:02:d9:b0:69:66:e1:70:10:3a:38: 6f:d0:ce:6c:ac:2d:7b:ac:74:33:e1:79:92:fe:3f:ab:87:94: 17:2a:60:2c:7b:30:b1:a4:ff:26:37:b9:af:bd:35:71:60:9a: 8f:13:b5:ca:cd:e0:f9:37:06:47:0c:e3:93:51:bd:e4:4d:22: 93:a8:b3:bd:b5:11:84:92:24:26:d6:03:7b:17:e1:ab:31:22: f5:f9:ab:df -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOHe5FLURZqmzellqb345Eb+6WXkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIwOFoX DTI3MDUwMTA5MjcwOFowMzExMC8GA1UEAxMoMTA0NTIzRDRCNkYwRURGMzgyNDBC RDA5NkI5QTA4RDVCMTgyNzI0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ/qvCQuhY/wM+HsoxvO8RPvxb+uz9Bc1jHQ6FsY9sB42WbDTtfQlmmkqnG0 1G8QsiYOEvw/dqjYeQmAsG8gs5dEwfn6zJwxzVIwvJvbHBCqV6SjFu37lcG4gH72 cADYWYUYv0phHbH9sm1rS5K+uVjF4TiCQxf354y37CNmhd2fsTAPyzPqT3fJOLKh llJtIUvDFCifg6laVzNLdoajeT21WtRQ+QRkTLSxEnGynl9aJBOtrzxyajAchSn+ 8JDHNNN94U4gdbhq+7AS0aoPGP/FZ/jperlRpIno74649lNZMaTyt/ZGnZkQep5z /E329I8bxx4h/TNU04VivhThq6kCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQQRSPU tvDt84JAvQlrmgjVsYJyRjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NTM4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo4AgMA8EAgACMAkDBwAgAQ32zcAwDQYJKoZIhvcNAQELBQADggEBAFSP O0eAOTz5GvM+lYd6f9Q18JsXSmUNmNkmJjh8Ivj2pol++iuPVod1PKjgj/RddZAL CogrBgUJ+jqeqNM8k+jYLkzw8wzkOHv8Du/QjeLG3PYFPsgjmkDCoyw9U8MQJE6A uJ4C6ce30wkiAEyzZg0xhNOaCTCpXuBX9F3LhYj7BCugmhpTNMb8Zqr4uvHKkh5d VerpPaJDIFYgjy7WbFKmF1AufAWFPbUzAtmwaWbhcBA6OG/QzmysLXusdDPheZL+ P6uHlBcqYCx7MLGk/yY3ua+9NXFgmo8TtcrN4Pk3BkcM45NRveRNIpOos721EYSS JCbWA3sX4asxIvX5q98= -----END CERTIFICATE-----Generated at Sun May 3 00:40:34 2026 by rpki-client