$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154122.roa File: AS154122.roa (raw, json) Hash identifier: BsBkovyFS3XMHcVzupL6Dt2AZTs4S0HmXaIOqXQXABs= Subject key identifier: 76:1B:91:C0:E0:2D:A3:89:BC:A2:D5:FE:86:E6:E3:A2:B3:2F:4E:3A Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3B68FF749A78A16696863CB155AB44416B715E8B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154122.roa Signing time: Mon 11 Aug 2025 07:06:06 +0000 ROA not before: Mon 11 Aug 2025 07:01:06 +0000 ROA not after: Mon 10 Aug 2026 07:06:06 +0000 asID: 154122 IP address blocks: 165.101.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:68:ff:74:9a:78:a1:66:96:86:3c:b1:55:ab:44:41:6b:71:5e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 11 07:01:06 2025 GMT Not After : Aug 10 07:06:06 2026 GMT Subject: CN=761B91C0E02DA389BCA2D5FE86E6E3A2B32F4E3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:92:54:82:6a:63:1d:52:94:09:2e:1c:4a: e9:91:d6:fa:32:22:13:d1:ed:40:ef:90:20:3d:12: 6a:7e:f1:86:f1:45:77:c4:80:49:a7:32:4a:2d:85: e9:92:13:e2:e6:11:01:d5:91:18:b6:fc:33:81:08: ba:b1:e3:01:d8:7e:8b:b2:b8:95:af:1a:79:2e:16: de:3a:6e:74:c8:a1:47:81:3e:80:45:96:da:99:4d: 45:c2:fa:0f:6a:45:ac:06:d2:5a:5f:88:23:8e:97: 63:d2:f6:3e:86:eb:cf:54:34:fb:e2:26:5a:10:51: bb:8c:76:f5:63:ea:24:09:21:a9:be:09:85:63:91: c7:15:9c:fc:3f:cc:df:36:04:b0:34:fa:e0:b1:4b: 86:de:ba:9e:ed:1d:3c:5b:ee:46:ae:36:e0:96:eb: d9:a6:97:47:38:31:03:16:ef:6e:d6:81:7b:e7:7a: 70:9b:c6:7f:cd:44:22:57:08:53:23:5a:55:ca:58: c2:81:b3:0c:94:81:7b:45:b1:c4:64:93:90:ec:39: 74:27:2f:13:52:8a:4c:bb:40:31:c5:56:ff:90:e8: 37:7e:dd:bb:34:6e:bb:71:db:60:4b:3e:14:cb:50: f3:f4:e9:91:b0:b9:db:9e:ab:a9:84:1f:88:66:3d: 86:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1B:91:C0:E0:2D:A3:89:BC:A2:D5:FE:86:E6:E3:A2:B3:2F:4E:3A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154122.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.212.0/24 Signature Algorithm: sha256WithRSAEncryption 77:5a:d8:82:26:24:c2:fd:fc:78:0a:72:ac:72:b2:f7:6c:0b: df:b7:37:75:a9:8a:a9:14:23:cc:82:9b:48:8b:1b:bb:09:3f: 12:9d:5b:85:21:ca:cb:16:1b:8e:41:ee:58:d7:5b:e0:f9:45: 4f:15:ee:4d:a2:74:85:b1:dd:39:54:68:42:92:52:ac:65:08: f7:84:86:44:7c:bc:3a:2f:37:49:6e:ce:6a:91:5b:9c:59:d4: 3e:9a:1b:6d:8d:a2:4e:6d:38:4e:1f:bf:db:bc:15:4d:98:a7: f3:19:39:cb:92:2b:28:c9:04:56:0e:17:5b:91:bf:87:93:ef: 33:9d:7e:2c:97:b0:cc:ff:9b:5a:f7:dc:6f:0b:2f:12:d1:c9: e2:51:23:fa:ee:95:0d:68:a9:ab:7c:6b:2e:74:f4:71:98:d6: fe:1a:cb:5f:eb:a2:29:f5:91:9b:3e:66:34:49:1c:17:e4:b7: 5a:23:2b:3a:f6:54:4e:db:76:46:f0:c3:f0:83:bf:c8:7f:be: f5:90:d2:97:a4:60:6b:64:dc:5a:c1:63:4f:c1:64:5a:98:b8: 68:67:8b:7c:19:42:81:22:32:ac:d0:e1:d7:91:a4:8d:d2:09: 44:74:52:4e:c6:4f:1d:6d:19:47:8f:80:1d:81:1a:24:93:b7: 76:8d:6e:35 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUO2j/dJp4oWaWhjyxVatEQWtxXoswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDgxMTA3MDEwNloX DTI2MDgxMDA3MDYwNlowMzExMC8GA1UEAxMoNzYxQjkxQzBFMDJEQTM4OUJDQTJE NUZFODZFNkUzQTJCMzJGNEUzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN3qklSCamMdUpQJLhxK6ZHW+jIiE9HtQO+QID0San7xhvFFd8SASacySi2F 6ZIT4uYRAdWRGLb8M4EIurHjAdh+i7K4la8aeS4W3jpudMihR4E+gEWW2plNRcL6 D2pFrAbSWl+II46XY9L2Pobrz1Q0++ImWhBRu4x29WPqJAkhqb4JhWORxxWc/D/M 3zYEsDT64LFLht66nu0dPFvuRq424Jbr2aaXRzgxAxbvbtaBe+d6cJvGf81EIlcI UyNaVcpYwoGzDJSBe0WxxGSTkOw5dCcvE1KKTLtAMcVW/5DoN37duzRuu3HbYEs+ FMtQ8/TpkbC5256rqYQfiGY9hlcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR2G5HA 4C2jibyi1f6G5uOisy9OOjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDEyMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVl1DANBgkqhkiG9w0BAQsFAAOCAQEAd1rYgiYkwv38eApyrHKy 92wL37c3damKqRQjzIKbSIsbuwk/Ep1bhSHKyxYbjkHuWNdb4PlFTxXuTaJ0hbHd OVRoQpJSrGUI94SGRHy8Oi83SW7OapFbnFnUPpobbY2iTm04Th+/27wVTZin8xk5 y5IrKMkEVg4XW5G/h5PvM51+LJewzP+bWvfcbwsvEtHJ4lEj+u6VDWipq3xrLnT0 cZjW/hrLX+uiKfWRmz5mNEkcF+S3WiMrOvZUTtt2RvDD8IO/yH++9ZDSl6Rga2Tc WsFjT8FkWpi4aGeLfBlCgSIyrNDh15GkjdIJRHRSTsZPHW0ZR4+AHYEaJJO3do1u NQ== -----END CERTIFICATE-----Generated at Sat Aug 23 15:22:58 2025 by rpki-client