$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154583.roa File: AS154583.roa (raw, json) Hash identifier: 015A+r2qlpNxkjJhJJZRWYgoToAYtaZFJxq9uG7MlBM= Subject key identifier: 11:7C:4C:60:44:05:A5:21:07:4E:EA:16:74:CB:3B:41:25:82:3C:5B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7B39198C6E1BDBFED7951BD516984197E062CCCF Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154583.roa Signing time: Sat 02 May 2026 09:27:10 +0000 ROA not before: Sat 02 May 2026 09:22:10 +0000 ROA not after: Sat 01 May 2027 09:27:10 +0000 asID: 154583 IP address blocks: 163.128.136.0/23 maxlen: 24 2001:df6:dc40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:39:19:8c:6e:1b:db:fe:d7:95:1b:d5:16:98:41:97:e0:62:cc:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:10 2026 GMT Not After : May 1 09:27:10 2027 GMT Subject: CN=117C4C604405A521074EEA1674CB3B4125823C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4b:15:22:f4:84:ed:42:04:51:0c:0e:35:e8: 3c:d8:9d:9a:8d:4d:43:f0:7a:db:b7:81:a5:db:02: f2:26:42:84:a4:69:68:42:47:36:3c:6c:f1:54:e7: 16:5c:f5:51:58:e2:6b:21:46:0c:e8:72:8b:77:c4: ae:69:b0:16:7d:36:32:f3:fb:23:46:89:68:d1:78: b2:d3:16:6b:19:5d:7f:f6:7c:22:2a:3e:41:8e:5d: 0f:da:af:af:90:04:87:ef:a6:55:87:80:14:77:22: 08:f9:cc:5d:d0:0e:e0:d2:11:41:ac:85:d9:2a:a0: b6:67:81:25:ff:4e:95:dc:fd:12:09:0f:fb:d7:6a: 0e:a2:9a:06:33:43:ea:00:cf:39:63:68:a2:d5:f4: 18:8e:f5:38:6a:a9:db:7d:65:7d:14:06:77:4a:bd: dd:04:32:31:ea:de:42:bc:7c:bd:69:11:66:05:11: 20:b5:68:ef:97:e0:9e:1a:ef:22:8d:97:c6:39:40: 6d:ef:0c:3c:48:47:f3:84:01:9b:b6:de:81:19:27: 94:fd:71:55:c3:31:96:08:aa:99:f2:3a:d2:20:21: 4f:df:16:57:e8:c0:62:ad:3a:ac:6c:ba:3c:88:0b: ef:0d:0b:10:02:48:38:54:71:4d:95:51:2e:e7:93: d7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:7C:4C:60:44:05:A5:21:07:4E:EA:16:74:CB:3B:41:25:82:3C:5B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154583.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.136.0/23 IPv6: 2001:df6:dc40::/48 Signature Algorithm: sha256WithRSAEncryption 7e:1d:8b:36:7d:c0:b7:7c:59:df:cf:79:fe:27:a3:72:0d:4c: 8c:83:90:4e:ca:4a:5e:c3:a8:15:c0:65:45:29:4c:b5:23:b9: 3b:1f:a0:e4:66:4b:92:da:08:ca:da:c2:e4:e6:e5:1f:a4:ec: 3f:d5:4f:01:7c:79:91:a0:08:10:58:86:0c:5a:fa:d8:53:c4: f4:9d:04:a4:cb:89:1d:8b:56:73:73:38:ea:e7:ea:b7:4c:f8: 85:07:60:0d:3a:d3:e1:53:0e:9a:e4:02:16:a3:5d:ee:fe:8f: e5:b7:5d:20:01:d8:11:4a:e8:cd:a2:ba:47:67:2a:f3:a4:b1: d3:8f:3e:6b:4f:26:ca:9e:f2:ca:f4:e7:10:42:2c:87:d6:9a: f6:e9:db:e8:b7:f0:b4:1d:f3:63:59:a7:4b:f7:87:05:23:e9: 77:db:6f:57:c2:12:fa:e0:90:3f:81:55:a7:32:45:38:9d:32: 0a:cc:ca:b4:21:55:e5:a1:27:6d:01:f5:39:72:77:f4:d5:b5: f2:05:3d:7a:71:07:81:5f:46:e6:1e:b8:96:a0:67:ab:29:d7: 24:26:bb:ac:f7:73:ab:7e:c5:46:c6:8c:50:71:36:b0:1e:b5: b6:f8:7c:19:2e:4c:b7:5d:d3:16:b6:9c:37:01:5c:45:48:e2: e1:59:f8:76 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUezkZjG4b2/7XlRvVFphBl+BizM8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIxMFoX DTI3MDUwMTA5MjcxMFowMzExMC8GA1UEAxMoMTE3QzRDNjA0NDA1QTUyMTA3NEVF QTE2NzRDQjNCNDEyNTgyM0M1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtLFSL0hO1CBFEMDjXoPNidmo1NQ/B627eBpdsC8iZChKRpaEJHNjxs8VTn Flz1UVjiayFGDOhyi3fErmmwFn02MvP7I0aJaNF4stMWaxldf/Z8Iio+QY5dD9qv r5AEh++mVYeAFHciCPnMXdAO4NIRQayF2SqgtmeBJf9Oldz9EgkP+9dqDqKaBjND 6gDPOWNootX0GI71OGqp231lfRQGd0q93QQyMereQrx8vWkRZgURILVo75fgnhrv Io2XxjlAbe8MPEhH84QBm7begRknlP1xVcMxlgiqmfI60iAhT98WV+jAYq06rGy6 PIgL7w0LEAJIOFRxTZVRLueT160CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQRfExg RAWlIQdO6hZ0yztBJYI8WzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NTgzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo4CIMA8EAgACMAkDBwAgAQ323EAwDQYJKoZIhvcNAQELBQADggEBAH4d izZ9wLd8Wd/Pef4no3INTIyDkE7KSl7DqBXAZUUpTLUjuTsfoORmS5LaCMrawuTm 5R+k7D/VTwF8eZGgCBBYhgxa+thTxPSdBKTLiR2LVnNzOOrn6rdM+IUHYA060+FT DprkAhajXe7+j+W3XSAB2BFK6M2iukdnKvOksdOPPmtPJsqe8sr05xBCLIfWmvbp 2+i38LQd82NZp0v3hwUj6Xfbb1fCEvrgkD+BVacyRTidMgrMyrQhVeWhJ20B9Tly d/TVtfIFPXpxB4FfRuYeuJagZ6sp1yQmu6z3c6t+xUbGjFBxNrAetbb4fBkuTLdd 0xa2nDcBXEVI4uFZ+HY= -----END CERTIFICATE-----Generated at Sun May 3 00:39:42 2026 by rpki-client