$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154616.roa File: AS154616.roa (raw, json) Hash identifier: RKs2GlMXLYBPK31Jm71gCZGT4njH7Zv0HA55pS6A7pk= Subject key identifier: 90:F0:21:E2:58:2B:01:9A:FD:7E:D0:2D:24:28:2F:B5:69:56:8C:2B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6C0D2781864466D0D8D5E19EB9CD86CB6176FD58 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154616.roa Signing time: Sat 02 May 2026 09:24:27 +0000 ROA not before: Sat 02 May 2026 09:19:27 +0000 ROA not after: Sat 01 May 2027 09:24:27 +0000 asID: 154616 IP address blocks: 163.128.212.0/23 maxlen: 24 2001:df6:eac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:0d:27:81:86:44:66:d0:d8:d5:e1:9e:b9:cd:86:cb:61:76:fd:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:27 2026 GMT Not After : May 1 09:24:27 2027 GMT Subject: CN=90F021E2582B019AFD7ED02D24282FB569568C2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:92:a2:5e:6e:62:4c:42:13:db:e1:9e:7f: 3d:65:77:97:1d:8a:f8:e4:b1:32:0f:2a:6e:52:c0: d7:9c:b6:c2:76:db:d7:86:44:49:18:e7:44:dd:81: a6:8e:57:1d:ff:8c:2e:85:33:ab:3d:51:70:b3:18: 6b:e1:ba:b2:4e:2e:76:9b:e5:96:f9:c1:6f:82:c7: 5c:e7:30:b2:e6:0a:bb:11:67:c6:4d:76:5c:28:46: c6:47:99:d9:35:86:16:0c:dd:11:fc:66:21:6f:de: db:e8:75:46:5f:db:40:08:35:de:8e:fc:19:08:e5: 67:b0:0e:73:ea:50:fd:71:b7:04:56:b7:20:b7:94: b7:cf:b9:b8:42:03:ba:a5:56:e7:33:21:ef:04:56: 01:fe:db:da:74:60:b7:ee:f0:3e:f6:22:c8:35:2d: f1:80:a0:b2:3f:36:54:59:76:40:0d:69:88:43:3a: 1b:0f:2d:57:10:3f:5e:16:9e:d3:6d:02:db:14:34: c9:19:a7:90:b8:07:94:eb:7d:02:cb:81:74:af:00: de:e3:6d:18:d2:a6:69:e5:f7:80:e9:49:9d:c1:11: c9:e5:86:3e:a8:4e:f7:30:60:e4:9f:02:df:6a:e0: d5:0f:99:3d:1b:a4:54:cf:13:db:ae:29:29:42:3e: d6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F0:21:E2:58:2B:01:9A:FD:7E:D0:2D:24:28:2F:B5:69:56:8C:2B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154616.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.212.0/23 IPv6: 2001:df6:eac0::/48 Signature Algorithm: sha256WithRSAEncryption a6:e6:bf:7f:31:b8:43:1b:3f:66:19:76:bc:fa:26:3f:20:f5: f6:10:2d:47:5e:db:63:39:21:d0:ba:08:74:d8:76:58:f5:a2: fa:50:e5:fa:83:a0:f5:20:c4:49:41:b9:7d:cb:4e:19:ec:2a: 00:c4:7c:e9:b4:c5:bb:31:66:1f:c2:b1:50:ee:e9:9c:82:8f: 17:5b:de:3a:87:99:4f:a7:72:d0:b8:38:65:33:12:31:3f:5c: c5:14:da:18:10:62:78:6d:40:5d:81:bf:46:b8:bc:6c:46:64: 53:b6:4f:e3:4f:03:2a:23:7a:63:2f:fd:6c:c4:94:23:3d:b5: 32:31:be:fe:01:82:7c:5c:4e:9c:0d:d6:de:2c:c6:c8:3f:a2: 4b:4e:9a:0c:15:43:ba:53:6f:9f:89:69:6c:8c:e3:23:60:1d: 8c:ad:bc:87:79:6c:92:e6:c2:23:73:43:09:95:12:a0:17:de: 72:48:bd:ed:f3:18:d3:98:b7:00:31:21:f1:83:8e:15:46:ac: af:3d:e4:65:22:45:cc:f0:3b:45:a8:4c:47:de:22:55:92:f5: f4:d1:31:eb:96:06:5d:04:30:33:84:93:91:55:b0:37:af:93: bd:bd:bb:bc:7f:cb:55:2b:ca:d8:d6:c8:4b:59:82:c2:a0:16: 6a:07:e9:03 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbA0ngYZEZtDY1eGeuc2Gy2F2/VgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTkyN1oX DTI3MDUwMTA5MjQyN1owMzExMC8GA1UEAxMoOTBGMDIxRTI1ODJCMDE5QUZEN0VE MDJEMjQyODJGQjU2OTU2OEMyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3/kqJebmJMQhPb4Z5/PWV3lx2K+OSxMg8qblLA15y2wnbb14ZESRjnRN2B po5XHf+MLoUzqz1RcLMYa+G6sk4udpvllvnBb4LHXOcwsuYKuxFnxk12XChGxkeZ 2TWGFgzdEfxmIW/e2+h1Rl/bQAg13o78GQjlZ7AOc+pQ/XG3BFa3ILeUt8+5uEID uqVW5zMh7wRWAf7b2nRgt+7wPvYiyDUt8YCgsj82VFl2QA1piEM6Gw8tVxA/Xhae 020C2xQ0yRmnkLgHlOt9AsuBdK8A3uNtGNKmaeX3gOlJncERyeWGPqhO9zBg5J8C 32rg1Q+ZPRukVM8T264pKUI+1h0CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSQ8CHi WCsBmv1+0C0kKC+1aVaMKzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NjE2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo4DUMA8EAgACMAkDBwAgAQ326sAwDQYJKoZIhvcNAQELBQADggEBAKbm v38xuEMbP2YZdrz6Jj8g9fYQLUde22M5IdC6CHTYdlj1ovpQ5fqDoPUgxElBuX3L ThnsKgDEfOm0xbsxZh/CsVDu6ZyCjxdb3jqHmU+nctC4OGUzEjE/XMUU2hgQYnht QF2Bv0a4vGxGZFO2T+NPAyojemMv/WzElCM9tTIxvv4BgnxcTpwN1t4sxsg/oktO mgwVQ7pTb5+JaWyM4yNgHYytvId5bJLmwiNzQwmVEqAX3nJIve3zGNOYtwAxIfGD jhVGrK895GUiRczwO0WoTEfeIlWS9fTRMeuWBl0EMDOEk5FVsDevk729u7x/y1Ur ytjWyEtZgsKgFmoH6QM= -----END CERTIFICATE-----Generated at Sun May 3 00:39:54 2026 by rpki-client