$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154141.roa File: AS154141.roa (raw, json) Hash identifier: m1xjB2oQaSYE3CqMg/8sJ83v9YxY9FhkkUSDhqKakQM= Subject key identifier: 5D:A4:98:C8:3A:2F:AB:1B:88:B2:AE:1B:A3:FA:AA:0F:23:90:5C:0F Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 02BD2DBFF58B0E9D93334D43848DE56E14843E35 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154141.roa Signing time: Mon 22 Sep 2025 01:50:08 +0000 ROA not before: Mon 22 Sep 2025 01:45:08 +0000 ROA not after: Mon 21 Sep 2026 01:50:08 +0000 asID: 154141 IP address blocks: 192.156.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:bd:2d:bf:f5:8b:0e:9d:93:33:4d:43:84:8d:e5:6e:14:84:3e:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 22 01:45:08 2025 GMT Not After : Sep 21 01:50:08 2026 GMT Subject: CN=5DA498C83A2FAB1B88B2AE1BA3FAAA0F23905C0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:05:cf:9f:dc:1c:8c:d8:b5:6b:b9:a9:71:53: b4:12:8f:41:bf:2c:14:21:ed:05:63:6a:75:0d:d3: e7:31:d9:7b:ba:29:63:c2:f0:d0:5d:61:79:8e:de: a1:35:d1:19:cd:1a:1a:1a:5d:7e:d4:66:5e:f4:68: 47:41:54:e8:17:98:9b:a3:fd:9c:cf:4c:6c:a7:f2: e0:80:c7:51:0e:6c:18:3d:77:1e:56:03:1e:d6:5d: 71:3b:de:a0:85:b0:a7:52:1f:07:ca:cc:14:ed:70: f8:db:73:31:a8:0a:e9:bb:80:bf:5b:ea:de:6a:98: 8a:3c:ec:72:9c:6c:61:5a:56:97:37:03:d5:63:24: a6:dc:71:7e:68:dd:7f:97:1f:9d:72:73:48:0e:cf: 5b:da:b0:b1:0c:13:0c:12:d9:1b:68:cb:0d:62:ec: 07:3e:fc:9b:16:2d:4b:27:5e:21:48:ea:7c:db:ff: 92:1d:f8:d2:9b:2a:29:7c:c4:8b:2a:27:a0:74:30: f5:54:93:27:64:1a:bd:fb:02:e6:2f:9f:31:eb:9b: 48:85:94:9e:a8:a9:f2:b2:52:ef:19:43:c9:d8:ee: 53:22:d0:58:35:b5:d3:43:eb:8a:09:20:0f:78:b4: be:46:a1:03:db:d2:21:70:2b:d5:7d:11:dd:c4:0d: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A4:98:C8:3A:2F:AB:1B:88:B2:AE:1B:A3:FA:AA:0F:23:90:5C:0F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.156.142.0/24 Signature Algorithm: sha256WithRSAEncryption 66:e9:9f:d6:2f:a3:55:66:80:40:e8:2b:ac:98:0e:9f:66:e7: 90:1b:3f:ee:f5:e9:dd:4d:e9:e0:27:00:77:3f:d3:02:3d:f2: 42:cb:64:87:2a:39:28:3b:ce:3a:9d:d5:cd:0e:c6:27:c1:d1: 54:e3:9d:11:a1:da:05:59:83:70:18:96:0f:76:03:6b:ed:4a: 73:e0:b2:2e:aa:08:b1:c5:8f:1c:cf:8c:ff:6d:69:86:47:37: d0:0b:18:77:60:f8:ef:13:a1:7a:d7:b7:38:86:55:29:23:db: a1:cf:26:47:9c:cb:83:53:38:63:48:c3:91:7e:c8:86:d6:f3: dd:e0:2a:13:84:2f:5b:62:9c:8b:65:a7:9c:cd:af:d0:15:82: 5e:55:31:a1:52:fc:b1:2a:92:32:d6:4b:0f:af:26:91:33:c0: cc:7f:1e:01:bb:95:4f:47:32:ae:45:09:3e:70:17:e3:29:7d: a9:8b:38:d3:d3:1b:98:51:a4:75:e7:e9:0e:39:62:76:4b:19: b5:b9:a3:db:30:7d:50:49:ee:a2:11:b7:7c:f2:fa:11:c3:a9: b4:bb:ab:54:bc:6e:15:42:35:33:52:ea:fb:ee:f3:67:de:98: 15:a9:27:61:d7:25:0a:ad:04:2e:19:74:8f:39:6a:da:55:9d: 4b:e8:57:50 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAr0tv/WLDp2TM01DhI3lbhSEPjUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDkyMjAxNDUwOFoX DTI2MDkyMTAxNTAwOFowMzExMC8GA1UEAxMoNURBNDk4QzgzQTJGQUIxQjg4QjJB RTFCQTNGQUFBMEYyMzkwNUMwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0Fz5/cHIzYtWu5qXFTtBKPQb8sFCHtBWNqdQ3T5zHZe7opY8Lw0F1heY7e oTXRGc0aGhpdftRmXvRoR0FU6BeYm6P9nM9MbKfy4IDHUQ5sGD13HlYDHtZdcTve oIWwp1IfB8rMFO1w+NtzMagK6buAv1vq3mqYijzscpxsYVpWlzcD1WMkptxxfmjd f5cfnXJzSA7PW9qwsQwTDBLZG2jLDWLsBz78mxYtSydeIUjqfNv/kh340psqKXzE iyonoHQw9VSTJ2QavfsC5i+fMeubSIWUnqip8rJS7xlDydjuUyLQWDW100Prigkg D3i0vkahA9vSIXAr1X0R3cQN45kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRdpJjI Oi+rG4iyrhuj+qoPI5BcDzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDE0MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMCcjjANBgkqhkiG9w0BAQsFAAOCAQEAZumf1i+jVWaAQOgrrJgO n2bnkBs/7vXp3U3p4CcAdz/TAj3yQstkhyo5KDvOOp3VzQ7GJ8HRVOOdEaHaBVmD cBiWD3YDa+1Kc+CyLqoIscWPHM+M/21phkc30AsYd2D47xOhete3OIZVKSPboc8m R5zLg1M4Y0jDkX7Ihtbz3eAqE4QvW2Kci2WnnM2v0BWCXlUxoVL8sSqSMtZLD68m kTPAzH8eAbuVT0cyrkUJPnAX4yl9qYs409MbmFGkdefpDjlidksZtbmj2zB9UEnu ohG3fPL6EcOptLurVLxuFUI1M1Lq++7zZ96YFaknYdclCq0ELhl0jzlq2lWdS+hX UA== -----END CERTIFICATE-----Generated at Mon Oct 20 15:47:45 2025 by rpki-client