$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154590.roa File: AS154590.roa (raw, json) Hash identifier: 7Y5HOXG0VRJuMyKb2A1oWUe/iDrOmsF9Av9pRD6b/yw= Subject key identifier: 48:E4:AE:E0:D1:47:49:23:66:A1:21:3D:1C:40:E1:83:36:AE:AB:C0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6FAF8C20F18B7E57E90280403075D1692FA8DD22 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154590.roa Signing time: Sat 02 May 2026 09:27:08 +0000 ROA not before: Sat 02 May 2026 09:22:08 +0000 ROA not after: Sat 01 May 2027 09:27:08 +0000 asID: 154590 IP address blocks: 163.128.162.0/24 maxlen: 24 2001:df6:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:af:8c:20:f1:8b:7e:57:e9:02:80:40:30:75:d1:69:2f:a8:dd:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:08 2026 GMT Not After : May 1 09:27:08 2027 GMT Subject: CN=48E4AEE0D147492366A1213D1C40E18336AEABC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:88:1f:68:ef:c1:94:30:7e:67:96:29:f2:f7: 7d:82:ea:84:da:f8:43:68:0d:4f:b7:0d:a2:c5:0f: 6f:97:3a:d0:03:2b:67:13:51:9b:a9:24:c5:74:e4: 23:4b:52:72:da:2f:f3:71:15:04:3b:6f:df:90:31: 20:c6:27:a6:a9:c7:61:21:1e:9e:f2:57:a3:d2:63: 16:8f:32:7e:9a:ff:c2:1c:8c:ad:35:1e:20:90:a4: 53:fe:10:d0:d6:46:d2:c7:24:cf:91:79:5e:76:67: 7b:fb:4b:fa:e1:89:f8:b9:10:8a:6d:77:d4:0f:bb: 68:74:25:a4:5e:9b:fb:89:a8:cd:b0:c8:97:26:fe: b5:73:28:0f:e3:ca:f1:aa:ab:09:cc:41:9d:87:77: b4:b2:69:6b:96:41:a1:c8:8c:fc:88:61:e8:99:53: 86:37:24:0f:6b:93:4b:3d:59:80:e7:e0:c7:b1:5c: d7:4a:e9:a2:0a:5b:70:7d:8e:89:bb:70:eb:6d:4c: 5d:e1:a9:a4:5f:b0:0d:a6:30:a7:7b:17:8c:e1:96: 9f:63:b1:8c:e6:9c:84:6d:e5:73:01:e1:99:d4:8e: 20:cf:07:08:26:5a:00:6e:43:ff:23:62:71:e9:18: c3:fb:d3:af:ae:28:1b:59:4e:72:53:aa:7a:a7:01: 36:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E4:AE:E0:D1:47:49:23:66:A1:21:3D:1C:40:E1:83:36:AE:AB:C0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.162.0/24 IPv6: 2001:df6:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 5c:55:e9:23:b3:10:6f:c7:31:2c:34:e1:8a:a9:15:2c:e2:e8: 21:e2:20:30:04:dd:4b:74:ea:de:b8:a3:af:46:76:89:4c:09: 0d:ee:f3:f8:7e:e4:db:9d:d4:2e:ba:cc:c9:8c:3c:c2:f5:35: 99:fc:57:b0:2f:d8:d6:bc:eb:d0:dd:9f:26:58:d2:60:42:e1: 2f:db:d6:e1:32:47:78:64:ef:c8:77:df:8a:a7:7e:06:51:fe: 93:ea:69:5d:03:be:bb:da:06:9b:e8:52:40:fb:07:a5:7f:d0: c6:7a:6b:45:fb:5b:0e:b1:fb:a4:c8:1c:3a:15:6c:dd:1f:1d: b3:9e:cb:6b:95:14:2f:ae:04:c2:a7:d5:18:46:8f:2a:ba:df: d8:c5:b1:f7:c7:ab:61:6c:1a:d4:06:42:93:b6:d9:e8:15:8d: cf:c5:1b:6d:c9:22:8a:1d:73:ce:28:22:44:4a:b7:eb:14:74: e8:b4:b1:15:1e:86:31:13:86:25:35:be:af:18:23:a8:f1:d8: bd:25:1d:74:9c:90:f2:be:73:41:d0:71:fe:f2:e8:4d:b0:6e: c6:4c:e3:13:9b:f3:40:34:95:3c:f8:0d:49:ca:24:0e:24:8a: 78:30:7a:35:09:47:b0:94:79:3a:96:4b:5b:2d:f3:c4:a6:bd: b2:5e:cc:71 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUb6+MIPGLflfpAoBAMHXRaS+o3SIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIwOFoX DTI3MDUwMTA5MjcwOFowMzExMC8GA1UEAxMoNDhFNEFFRTBEMTQ3NDkyMzY2QTEy MTNEMUM0MEUxODMzNkFFQUJDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMiIH2jvwZQwfmeWKfL3fYLqhNr4Q2gNT7cNosUPb5c60AMrZxNRm6kkxXTk I0tSctov83EVBDtv35AxIMYnpqnHYSEenvJXo9JjFo8yfpr/whyMrTUeIJCkU/4Q 0NZG0sckz5F5XnZne/tL+uGJ+LkQim131A+7aHQlpF6b+4mozbDIlyb+tXMoD+PK 8aqrCcxBnYd3tLJpa5ZBociM/Ihh6JlThjckD2uTSz1ZgOfgx7Fc10rpogpbcH2O ibtw621MXeGppF+wDaYwp3sXjOGWn2OxjOachG3lcwHhmdSOIM8HCCZaAG5D/yNi cekYw/vTr64oG1lOclOqeqcBNqECAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRI5K7g 0UdJI2ahIT0cQOGDNq6rwDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NTkwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo4CiMA8EAgACMAkDBwAgAQ324cAwDQYJKoZIhvcNAQELBQADggEBAFxV 6SOzEG/HMSw04YqpFSzi6CHiIDAE3Ut06t64o69GdolMCQ3u8/h+5Nud1C66zMmM PML1NZn8V7Av2Na869DdnyZY0mBC4S/b1uEyR3hk78h334qnfgZR/pPqaV0Dvrva BpvoUkD7B6V/0MZ6a0X7Ww6x+6TIHDoVbN0fHbOey2uVFC+uBMKn1RhGjyq639jF sffHq2FsGtQGQpO22egVjc/FG23JIoodc84oIkRKt+sUdOi0sRUehjEThiU1vq8Y I6jx2L0lHXSckPK+c0HQcf7y6E2wbsZM4xOb80A0lTz4DUnKJA4kingwejUJR7CU eTqWS1st88SmvbJezHE= -----END CERTIFICATE-----Generated at Sun May 3 00:39:41 2026 by rpki-client