$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS154153.roa File: AS154153.roa (raw, json) Hash identifier: sMmnmkDNf53Eme11V5GFzvmU67kFchDzEbpGuMgtdUw= Subject key identifier: CE:E0:56:63:22:F4:A4:C0:06:DC:1F:0B:72:0E:ED:D3:02:66:37:CA Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 32365F4CDC1747D375A0B409FD8B9F0A52E78C80 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154153.roa Signing time: Sat 02 May 2026 21:23:01 +0000 ROA not before: Sat 02 May 2026 21:18:01 +0000 ROA not after: Sat 01 May 2027 21:23:01 +0000 asID: 154153 IP address blocks: 192.88.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:36:5f:4c:dc:17:47:d3:75:a0:b4:09:fd:8b:9f:0a:52:e7:8c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 21:18:01 2026 GMT Not After : May 1 21:23:01 2027 GMT Subject: CN=CEE0566322F4A4C006DC1F0B720EEDD3026637CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3d:ad:a3:22:19:6c:2d:e4:7c:46:96:1e:ed: 96:4d:1c:b9:1e:3b:58:dc:a3:66:05:b8:8f:b3:e4: 6b:89:4b:c1:0c:3c:9e:95:87:73:63:b8:85:76:e4: 0d:ab:3c:e3:e5:1d:ee:4e:5d:8c:44:4f:d8:0c:aa: de:dc:2e:cb:cb:74:13:54:55:2b:ff:9c:c7:7d:ea: 26:0b:f6:02:5e:00:1b:a1:d4:08:1c:62:2d:7d:5c: 6f:ea:2b:58:77:36:18:1e:43:ea:12:fb:d6:96:08: ed:56:75:3c:76:0d:a7:04:35:0e:d4:6e:34:88:49: 1e:a6:50:a3:e7:11:64:90:bf:56:33:e8:71:1f:01: 96:35:43:34:df:fd:bd:3a:47:5b:a0:8d:22:2c:64: 88:85:db:6f:5e:94:f7:0d:87:3a:3d:96:2b:1c:51: 3a:40:7c:81:a4:04:62:ed:e1:14:72:9e:f7:7a:92: 45:39:7c:1b:6d:65:61:68:62:65:f8:e6:70:e7:86: 3a:c6:ed:d7:08:4d:82:92:0a:f7:7a:57:14:9e:47: b9:9c:67:77:32:a5:81:93:c9:ad:26:3a:c1:ae:d5: f3:83:eb:7e:70:bd:4d:4e:9c:38:f6:d4:85:87:b6: 3b:e3:e6:67:9c:35:1a:3d:6f:b2:e1:88:09:ae:da: ee:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E0:56:63:22:F4:A4:C0:06:DC:1F:0B:72:0E:ED:D3:02:66:37:CA X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS154153.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.88.101.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:9f:33:fc:37:98:a6:10:83:4c:60:0d:b0:82:c5:4d:a0:b8: 96:e6:7e:22:6b:c7:b1:1d:80:5d:42:9e:16:25:98:28:b5:d8: 9b:b1:27:98:49:bc:4f:16:dc:9c:46:21:8a:c5:ad:bb:0f:ff: a1:55:51:71:4f:48:2f:1a:86:fd:88:cc:20:1b:de:73:1a:97: 6f:e4:43:1a:d6:a3:52:c2:f8:f1:57:04:8f:17:89:fe:d5:cb: 77:25:92:2f:79:22:33:be:7a:bd:ad:b4:7e:a7:e3:f9:19:72: 74:30:5c:61:62:ae:5d:ea:c0:4f:a7:bb:a1:88:a0:94:c2:8f: 5b:26:8f:ec:0a:43:05:5b:42:86:80:87:2a:82:5c:75:fa:61: 02:d3:17:69:0d:ec:89:ba:ba:c2:5e:03:42:9f:ba:80:d7:62: 83:f2:fd:97:0d:2f:ba:23:99:42:2b:0f:db:6a:51:ea:ef:ec: b8:46:e6:0b:5e:96:65:1a:f1:ba:3e:9d:f2:79:e1:ce:5d:a6: 57:35:1e:26:09:17:08:63:fb:12:0a:63:fa:9a:3b:16:e4:6f: 0c:80:23:f8:63:f7:81:40:d3:56:30:16:ad:d5:04:99:40:25: 0a:93:68:3b:60:64:2e:60:a4:96:ab:73:62:f1:2f:32:36:70: 8c:b4:b6:dc -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUMjZfTNwXR9N1oLQJ/YufClLnjIAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjIxMTgwMVoX DTI3MDUwMTIxMjMwMVowMzExMC8GA1UEAxMoQ0VFMDU2NjMyMkY0QTRDMDA2REMx RjBCNzIwRUVERDMwMjY2MzdDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAME9raMiGWwt5HxGlh7tlk0cuR47WNyjZgW4j7Pka4lLwQw8npWHc2O4hXbk Das84+Ud7k5djERP2Ayq3twuy8t0E1RVK/+cx33qJgv2Al4AG6HUCBxiLX1cb+or WHc2GB5D6hL71pYI7VZ1PHYNpwQ1DtRuNIhJHqZQo+cRZJC/VjPocR8BljVDNN/9 vTpHW6CNIixkiIXbb16U9w2HOj2WKxxROkB8gaQEYu3hFHKe93qSRTl8G21lYWhi ZfjmcOeGOsbt1whNgpIK93pXFJ5HuZxndzKlgZPJrSY6wa7V84PrfnC9TU6cOPbU hYe2O+PmZ5w1Gj1vsuGICa7a7mkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTO4FZj IvSkwAbcHwtyDu3TAmY3yjAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTU0MTUzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwFhlMA0GCSqGSIb3DQEBCwUAA4IBAQBMnzP8N5imEINMYA2wgsVNoLiW 5n4ia8exHYBdQp4WJZgotdibsSeYSbxPFtycRiGKxa27D/+hVVFxT0gvGob9iMwg G95zGpdv5EMa1qNSwvjxVwSPF4n+1ct3JZIveSIzvnq9rbR+p+P5GXJ0MFxhYq5d 6sBPp7uhiKCUwo9bJo/sCkMFW0KGgIcqglx1+mEC0xdpDeyJurrCXgNCn7qA12KD 8v2XDS+6I5lCKw/balHq7+y4RuYLXpZlGvG6Pp3yeeHOXaZXNR4mCRcIY/sSCmP6 mjsW5G8MgCP4Y/eBQNNWMBat1QSZQCUKk2g7YGQuYKSWq3Ni8S8yNnCMtLbc -----END CERTIFICATE-----Generated at Tue May 12 22:43:09 2026 by rpki-client