$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154039.roa File: AS154039.roa (raw, json) Hash identifier: iflRo/344BI2En9yIRcl7Sh5jTe1fKxZ0tGGaS/jHXM= Subject key identifier: 8C:52:1A:E7:F1:82:EF:4B:4E:CD:9E:A6:72:F6:74:E1:21:05:A4:EC Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 573123BE593158B67E3226F1E4CBF69E7756F0F2 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154039.roa Signing time: Fri 08 Aug 2025 02:36:27 +0000 ROA not before: Fri 08 Aug 2025 02:31:27 +0000 ROA not after: Fri 07 Aug 2026 02:36:27 +0000 asID: 154039 IP address blocks: 165.99.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:31:23:be:59:31:58:b6:7e:32:26:f1:e4:cb:f6:9e:77:56:f0:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 8 02:31:27 2025 GMT Not After : Aug 7 02:36:27 2026 GMT Subject: CN=8C521AE7F182EF4B4ECD9EA672F674E12105A4EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0d:73:e1:b7:7b:4c:88:14:2b:8c:48:77:48: c8:73:d1:6f:3f:2f:ad:bd:c3:d7:82:93:9d:1c:35: 54:11:81:6e:57:05:b3:17:a1:a5:fc:23:e2:4e:9c: f8:56:10:02:81:d3:8e:88:a2:27:8d:6d:f2:e5:c9: 2a:1f:b1:77:e3:bc:90:5e:9d:be:fb:bd:a8:04:0e: e9:66:ce:d9:30:47:19:05:6d:ae:0e:5c:c0:a7:2d: 41:3d:b3:93:57:e8:55:b4:b2:f7:0d:af:ab:a5:ca: 21:6d:b7:c1:7e:5a:eb:38:20:ba:0f:9e:4a:8c:3e: d4:f7:b0:5d:bc:4f:62:19:98:22:c1:5d:3d:8c:a0: 2e:ca:82:c0:fb:8f:79:68:ac:31:27:03:1d:6c:c0: 37:66:23:1d:1c:05:04:a9:28:e2:bb:c4:1e:14:63: bb:0e:cb:73:df:85:d7:4d:52:0e:c3:13:66:05:05: fd:94:13:2c:88:e8:66:66:d9:c1:5e:54:26:d7:d2: 84:de:54:44:6d:08:a7:0e:6d:08:dd:ed:e0:c1:3d: 7d:82:91:a2:ab:0e:f7:86:54:e0:72:fa:94:7c:40: 01:27:0e:34:51:dc:3f:68:02:4f:29:69:3d:c7:7f: b5:95:86:c3:9c:7f:27:9e:7f:4f:c3:c5:18:e7:41: e9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:52:1A:E7:F1:82:EF:4B:4E:CD:9E:A6:72:F6:74:E1:21:05:A4:EC X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.57.0/24 Signature Algorithm: sha256WithRSAEncryption 18:fd:88:26:c1:b8:82:1a:0a:a9:9e:63:4c:70:3c:0e:fb:83: e3:67:7e:97:63:26:3d:18:fb:7e:31:3c:8c:05:b8:3c:8c:df: 46:50:37:be:3c:5a:cb:41:c3:9f:34:3f:f2:b7:ce:c0:ae:2b: 72:2a:55:55:16:b6:15:83:21:8d:2c:e6:05:9a:0c:42:1a:ef: 34:2e:ab:63:03:75:91:cb:83:9c:11:ba:c8:42:81:21:53:21: 31:af:e8:f1:5f:22:cd:45:8d:59:6c:e9:ab:1d:20:a9:b0:d9: 9f:6e:de:5c:1f:58:8a:ef:c2:6f:27:a7:82:e9:e0:2b:54:49: ba:27:57:71:a2:b8:f7:57:0f:8a:c0:c1:7b:34:63:dc:36:ce: 25:85:5d:7b:0f:84:c7:24:ec:ea:8b:e8:cd:43:53:62:80:70: 9d:8d:b3:b5:a7:1b:cc:1d:4c:7b:da:c1:b5:fa:f2:c6:7f:26: 15:77:af:7b:85:3f:fe:50:0e:2f:df:3e:46:9c:c8:eb:48:5e: e5:94:1b:32:67:ce:07:55:f5:99:6a:db:20:15:e0:92:1e:87: 76:c1:87:7b:a7:de:d1:6d:db:b6:ba:f2:49:cd:0d:22:9d:da: 5a:49:8d:2b:bb:da:a7:07:d3:e6:41:52:8d:ac:56:e8:94:d5: e6:a6:76:01 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVzEjvlkxWLZ+Mibx5Mv2nndW8PIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDgwODAyMzEyN1oX DTI2MDgwNzAyMzYyN1owMzExMC8GA1UEAxMoOEM1MjFBRTdGMTgyRUY0QjRFQ0Q5 RUE2NzJGNjc0RTEyMTA1QTRFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOYNc+G3e0yIFCuMSHdIyHPRbz8vrb3D14KTnRw1VBGBblcFsxehpfwj4k6c +FYQAoHTjoiiJ41t8uXJKh+xd+O8kF6dvvu9qAQO6WbO2TBHGQVtrg5cwKctQT2z k1foVbSy9w2vq6XKIW23wX5a6zggug+eSow+1PewXbxPYhmYIsFdPYygLsqCwPuP eWisMScDHWzAN2YjHRwFBKko4rvEHhRjuw7Lc9+F101SDsMTZgUF/ZQTLIjoZmbZ wV5UJtfShN5URG0Ipw5tCN3t4ME9fYKRoqsO94ZU4HL6lHxAAScONFHcP2gCTylp Pcd/tZWGw5x/J55/T8PFGOdB6T0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSMUhrn 8YLvS07NnqZy9nThIQWk7DAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDAzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVjOTANBgkqhkiG9w0BAQsFAAOCAQEAGP2IJsG4ghoKqZ5jTHA8 DvuD42d+l2MmPRj7fjE8jAW4PIzfRlA3vjxay0HDnzQ/8rfOwK4rcipVVRa2FYMh jSzmBZoMQhrvNC6rYwN1kcuDnBG6yEKBIVMhMa/o8V8izUWNWWzpqx0gqbDZn27e XB9Yiu/CbyengungK1RJuidXcaK491cPisDBezRj3DbOJYVdew+ExyTs6ovozUNT YoBwnY2ztacbzB1Me9rBtfryxn8mFXeve4U//lAOL98+RpzI60he5ZQbMmfOB1X1 mWrbIBXgkh6HdsGHe6fe0W3btrrySc0NIp3aWkmNK7vapwfT5kFSjaxW6JTV5qZ2 AQ== -----END CERTIFICATE-----Generated at Sat Aug 23 15:22:56 2025 by rpki-client