$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154640.roa File: AS154640.roa (raw, json) Hash identifier: JLLPCTf2z7uexl0HogLOPvEdRXnnLrJoQf4rRMFDawk= Subject key identifier: BC:1C:00:E7:ED:E0:86:4B:F8:AB:D4:0A:2B:8D:CD:A9:4F:38:37:79 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4A45F83FBA1BA7ACF22FFF66991140D106B6FA5B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154640.roa Signing time: Sat 02 May 2026 09:24:34 +0000 ROA not before: Sat 02 May 2026 09:19:34 +0000 ROA not after: Sat 01 May 2027 09:24:34 +0000 asID: 154640 IP address blocks: 163.128.240.0/24 maxlen: 24 2001:df6:f040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:45:f8:3f:ba:1b:a7:ac:f2:2f:ff:66:99:11:40:d1:06:b6:fa:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:34 2026 GMT Not After : May 1 09:24:34 2027 GMT Subject: CN=BC1C00E7EDE0864BF8ABD40A2B8DCDA94F383779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:7e:1b:68:ff:bd:69:b3:e7:ad:31:50:66:eb: 35:47:c6:a2:0a:1a:cf:84:5f:29:5d:0a:52:c6:fa: 9d:6f:c2:17:f0:d2:55:db:b2:6e:26:93:4d:ca:8d: d9:08:2b:ee:83:df:9c:37:61:fe:f1:8e:52:cd:51: 3d:08:42:49:32:89:e1:74:fe:40:c5:15:4e:62:20: 1b:28:43:f9:15:35:47:2c:2f:f8:d6:db:c0:1c:b4: 64:f6:49:0a:58:65:09:33:87:b8:11:91:c1:15:b2: 82:a1:51:21:85:86:21:ff:1c:4d:6c:18:b3:ef:2c: 83:87:08:12:40:06:61:ca:43:ac:c4:ca:fc:89:70: c0:3b:a7:bd:96:2d:5c:9b:44:70:fb:bd:62:9b:5d: 95:62:80:e1:8f:8e:6a:8f:b2:d6:3f:c1:40:4e:93: 5b:46:1b:97:63:83:98:da:b8:66:0b:ac:ca:74:82: 36:d0:f1:f5:8b:3b:e6:21:5c:d0:0c:26:ba:04:ff: 94:73:41:72:4c:f9:8f:5e:33:7f:d7:75:39:fa:e4: d9:5d:1c:c1:a4:a9:1b:a3:dd:3d:8a:74:19:70:4b: 0d:ff:8c:06:3f:e7:ae:ee:98:29:f5:af:2b:c8:0b: 11:0a:08:43:74:76:30:ae:11:3a:e4:e9:8d:1c:60: 0f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1C:00:E7:ED:E0:86:4B:F8:AB:D4:0A:2B:8D:CD:A9:4F:38:37:79 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154640.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.240.0/24 IPv6: 2001:df6:f040::/48 Signature Algorithm: sha256WithRSAEncryption a1:24:a3:f9:9f:c1:0a:f1:78:ce:88:8c:de:db:95:ee:a7:b3: 7f:a9:1f:b8:9d:77:ca:ef:8c:f7:d6:ac:7e:2b:d3:c6:95:d1: e3:2f:5f:89:cd:7b:b5:75:49:48:6f:41:5f:b6:41:d3:a5:6c: a7:32:14:11:4f:1c:3e:e8:5d:ca:e5:0c:69:29:8a:e8:4d:ba: 1e:70:a7:e4:55:32:b6:63:a9:b8:56:23:73:73:04:70:3a:de: db:a1:68:35:a3:7d:6d:44:c9:89:98:31:6d:51:31:92:ae:5b: 8c:16:75:a0:de:ae:f0:33:18:14:d3:66:c3:a5:8a:a4:89:77: 89:92:f3:79:53:74:51:26:b9:2d:ea:d2:4e:33:7d:69:b8:32: 30:f0:0b:90:1c:10:7e:ba:75:7e:fd:08:47:d7:29:8b:9c:a9: 8f:00:83:c8:ea:db:00:b1:57:d9:f6:87:68:2a:16:ef:d9:73: 2b:24:74:18:c6:90:78:21:8d:91:11:13:03:69:30:e1:db:64: 29:ee:a8:03:88:cc:5e:68:db:20:e3:e1:dd:51:8a:5d:fd:56: cf:19:cc:14:9f:da:b1:84:15:f2:98:13:a5:9d:2e:d2:7e:9a: e5:27:87:81:f3:03:8d:eb:10:91:44:26:87:90:3b:e6:2c:88: d8:1e:ad:b0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSkX4P7obp6zyL/9mmRFA0Qa2+lswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTkzNFoX DTI3MDUwMTA5MjQzNFowMzExMC8GA1UEAxMoQkMxQzAwRTdFREUwODY0QkY4QUJE NDBBMkI4RENEQTk0RjM4Mzc3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO5+G2j/vWmz560xUGbrNUfGogoaz4RfKV0KUsb6nW/CF/DSVduybiaTTcqN 2Qgr7oPfnDdh/vGOUs1RPQhCSTKJ4XT+QMUVTmIgGyhD+RU1Rywv+NbbwBy0ZPZJ ClhlCTOHuBGRwRWygqFRIYWGIf8cTWwYs+8sg4cIEkAGYcpDrMTK/IlwwDunvZYt XJtEcPu9YptdlWKA4Y+Oao+y1j/BQE6TW0Ybl2ODmNq4ZgusynSCNtDx9Ys75iFc 0AwmugT/lHNBckz5j14zf9d1Ofrk2V0cwaSpG6PdPYp0GXBLDf+MBj/nru6YKfWv K8gLEQoIQ3R2MK4ROuTpjRxgD4cCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBS8HADn 7eCGS/ir1Aorjc2pTzg3eTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NjQwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo4DwMA8EAgACMAkDBwAgAQ328EAwDQYJKoZIhvcNAQELBQADggEBAKEk o/mfwQrxeM6IjN7ble6ns3+pH7idd8rvjPfWrH4r08aV0eMvX4nNe7V1SUhvQV+2 QdOlbKcyFBFPHD7oXcrlDGkpiuhNuh5wp+RVMrZjqbhWI3NzBHA63tuhaDWjfW1E yYmYMW1RMZKuW4wWdaDervAzGBTTZsOliqSJd4mS83lTdFEmuS3q0k4zfWm4MjDw C5AcEH66dX79CEfXKYucqY8Ag8jq2wCxV9n2h2gqFu/ZcyskdBjGkHghjZEREwNp MOHbZCnuqAOIzF5o2yDj4d1Ril39Vs8ZzBSf2rGEFfKYE6WdLtJ+muUnh4HzA43r EJFEJoeQO+YsiNgerbA= -----END CERTIFICATE-----Generated at Sun May 3 00:39:39 2026 by rpki-client