$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154630.roa File: AS154630.roa (raw, json) Hash identifier: tSZlks1K/xEqATiypwX7qpCfHSRHcoOB8+IkcnzcA5s= Subject key identifier: 3B:90:ED:33:36:94:19:E7:D7:CE:F6:6E:82:4D:A0:B9:CE:9F:29:EB Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 283606DD3373A67E2723472EDEA3FD93A5CADD43 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154630.roa Signing time: Sat 02 May 2026 09:24:33 +0000 ROA not before: Sat 02 May 2026 09:19:33 +0000 ROA not after: Sat 01 May 2027 09:24:33 +0000 asID: 154630 IP address blocks: 163.128.198.0/23 maxlen: 24 2001:df6:e6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:36:06:dd:33:73:a6:7e:27:23:47:2e:de:a3:fd:93:a5:ca:dd:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:33 2026 GMT Not After : May 1 09:24:33 2027 GMT Subject: CN=3B90ED33369419E7D7CEF66E824DA0B9CE9F29EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:0e:f0:0e:28:09:b4:f8:8c:60:54:d3:cd: 8b:5c:ba:41:12:06:2b:a2:c0:6a:0a:5c:b9:33:a7: fd:59:c4:af:e7:a3:97:bb:3e:d6:70:a3:cf:27:fb: 58:6d:bf:ed:58:06:40:30:54:c3:79:ff:aa:dc:37: c6:13:15:38:1d:a3:ee:8d:d4:4d:12:b4:f7:bd:47: 67:78:62:d5:25:0f:89:07:24:3f:93:5a:cd:fa:f3: 65:86:93:c6:96:09:f5:6c:7c:16:62:6c:8e:26:2f: 9f:4c:a8:53:18:27:90:8f:ba:3a:73:90:b5:d1:fa: 27:91:d7:94:ea:3b:e0:f4:36:15:58:ec:7c:32:6f: da:bf:e6:b8:0a:09:96:e0:82:9a:61:91:3f:08:a8: ff:f0:d6:98:a2:65:d4:55:b1:47:02:33:68:4a:4d: 30:f7:35:b4:28:87:6d:f2:d6:e9:a9:68:c4:1e:cc: a2:f7:e2:ff:a0:83:91:b4:d8:29:07:75:6a:32:d1: 26:5b:a6:e0:13:6b:80:76:31:62:c1:e0:20:cc:be: cb:15:1e:e2:22:47:fd:15:27:05:4a:07:ea:94:c1: 7f:14:5f:e6:33:02:b6:0d:87:87:7f:f0:22:3c:2c: 43:29:5e:ed:12:56:1d:fb:2e:45:65:dd:9b:00:ca: c1:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:90:ED:33:36:94:19:E7:D7:CE:F6:6E:82:4D:A0:B9:CE:9F:29:EB X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.198.0/23 IPv6: 2001:df6:e6c0::/48 Signature Algorithm: sha256WithRSAEncryption 9b:2d:f5:2f:13:12:4f:1e:a9:a2:a7:5a:93:dc:24:02:d6:ea: 11:20:c4:ee:73:99:be:c6:9a:07:25:df:91:01:dc:91:b5:a0: 96:d3:e3:47:5e:5a:3c:19:c8:a5:4c:1d:b5:3a:d6:c5:a2:40: 92:70:3d:6c:7c:56:37:72:46:e5:84:8f:bb:27:9c:a4:8e:d2: 66:e4:a7:cd:c7:51:78:e2:56:85:f3:83:20:7e:6c:1e:d9:c5: 55:4d:ba:ff:08:64:10:47:46:17:42:2a:4b:a1:08:78:8a:bf: 92:9b:c2:ea:8f:42:cd:5a:65:4c:fa:3a:88:89:82:98:66:bf: 8c:59:67:3f:d8:d9:a9:7c:a3:05:03:39:14:19:6b:63:8a:29: 93:db:73:05:0b:3b:2e:06:49:89:fe:b4:88:97:59:10:b7:ce: 8e:6c:46:bf:ae:66:f1:d4:ff:58:d9:7c:59:6c:ee:fd:09:85: 57:21:c2:c3:81:63:09:28:0d:31:07:88:46:ff:e9:f0:56:11: 84:11:0b:7a:ca:f0:64:c3:ff:44:f6:a9:ab:1e:f0:c8:b8:03: 33:35:c8:78:44:ea:a6:de:77:2b:40:e3:0c:ee:d3:f9:a5:0d: 15:dc:64:c2:79:22:b0:b5:7a:ef:4b:cc:bf:55:60:11:78:c4: 5c:e8:12:74 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKDYG3TNzpn4nI0cu3qP9k6XK3UMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTkzM1oX DTI3MDUwMTA5MjQzM1owMzExMC8GA1UEAxMoM0I5MEVEMzMzNjk0MTlFN0Q3Q0VG NjZFODI0REEwQjlDRTlGMjlFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7JDvAOKAm0+IxgVNPNi1y6QRIGK6LAagpcuTOn/VnEr+ejl7s+1nCjzyf7 WG2/7VgGQDBUw3n/qtw3xhMVOB2j7o3UTRK0971HZ3hi1SUPiQckP5NazfrzZYaT xpYJ9Wx8FmJsjiYvn0yoUxgnkI+6OnOQtdH6J5HXlOo74PQ2FVjsfDJv2r/muAoJ luCCmmGRPwio//DWmKJl1FWxRwIzaEpNMPc1tCiHbfLW6aloxB7Movfi/6CDkbTY KQd1ajLRJlum4BNrgHYxYsHgIMy+yxUe4iJH/RUnBUoH6pTBfxRf5jMCtg2Hh3/w IjwsQyle7RJWHfsuRWXdmwDKwfECAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQ7kO0z NpQZ59fO9m6CTaC5zp8p6zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NjMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBo4DGMA8EAgACMAkDBwAgAQ325sAwDQYJKoZIhvcNAQELBQADggEBAJst 9S8TEk8eqaKnWpPcJALW6hEgxO5zmb7Gmgcl35EB3JG1oJbT40deWjwZyKVMHbU6 1sWiQJJwPWx8VjdyRuWEj7snnKSO0mbkp83HUXjiVoXzgyB+bB7ZxVVNuv8IZBBH RhdCKkuhCHiKv5KbwuqPQs1aZUz6OoiJgphmv4xZZz/Y2al8owUDORQZa2OKKZPb cwULOy4GSYn+tIiXWRC3zo5sRr+uZvHU/1jZfFls7v0JhVchwsOBYwkoDTEHiEb/ 6fBWEYQRC3rK8GTD/0T2qase8Mi4AzM1yHhE6qbedytA4wzu0/mlDRXcZMJ5IrC1 eu9LzL9VYBF4xFzoEnQ= -----END CERTIFICATE-----Generated at Sun May 3 01:40:40 2026 by rpki-client