$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154586.roa File: AS154586.roa (raw, json) Hash identifier: oz0kBkiIrYBx1CnFqwQ8ucR2KbaIY2/f6OsxONo7Wfw= Subject key identifier: 9F:7A:34:67:7E:63:B4:0E:53:C4:79:A8:FD:12:DA:53:10:BE:74:67 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 10197FC90817382630D54F431D3CBB84AD5D464A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154586.roa Signing time: Wed 06 May 2026 08:57:07 +0000 ROA not before: Wed 06 May 2026 08:52:07 +0000 ROA not after: Wed 05 May 2027 08:57:07 +0000 asID: 154586 IP address blocks: 163.128.129.0/24 maxlen: 24 2001:df6:dcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:19:7f:c9:08:17:38:26:30:d5:4f:43:1d:3c:bb:84:ad:5d:46:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 6 08:52:07 2026 GMT Not After : May 5 08:57:07 2027 GMT Subject: CN=9F7A34677E63B40E53C479A8FD12DA5310BE7467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:97:2f:bb:e5:ec:b4:02:98:16:e8:4c:77:b0: bb:79:bb:67:18:8b:67:30:cf:a5:4a:73:d5:3f:9d: 0c:7d:4b:46:b5:1c:d6:d9:90:a4:c8:be:a7:91:f5: e8:df:98:49:df:14:ed:c9:5c:a7:4b:b5:ab:2f:4e: 0f:e8:fb:cb:24:bc:ef:13:96:9b:83:fb:e4:3e:eb: 13:2f:60:0d:26:30:3c:d8:7d:75:8e:f0:49:9a:63: 03:78:c1:f5:aa:a9:2a:d7:e3:2e:46:74:c4:1c:08: d5:c2:d7:f0:92:d4:0e:0e:fc:0f:cb:02:93:95:c8: a6:49:69:4d:23:c7:c2:24:80:48:7f:78:ad:0f:a2: c2:1e:64:09:bd:5d:d6:e4:58:d8:bb:be:62:19:4b: 34:f8:51:8a:50:41:99:bd:a2:d9:2c:5a:89:31:e0: 06:34:23:2d:78:59:ce:5c:0a:39:76:ea:56:8e:61: 40:fa:b2:c5:87:45:b5:c0:fb:83:fd:53:89:9d:cc: a7:85:bb:5a:de:63:30:8b:84:94:02:c2:61:ab:23: c0:0e:d9:12:0a:8e:ad:e1:c2:00:29:b5:7a:84:d1: d4:dc:40:c0:13:fd:13:d6:f3:1c:80:c8:54:a9:12: 48:71:8c:2d:96:29:14:3a:58:1f:ee:14:b5:84:f5: e8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:7A:34:67:7E:63:B4:0E:53:C4:79:A8:FD:12:DA:53:10:BE:74:67 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154586.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.129.0/24 IPv6: 2001:df6:dcc0::/48 Signature Algorithm: sha256WithRSAEncryption 43:17:fe:2c:bd:3a:f3:ef:a3:f3:45:88:7b:cf:9a:af:a0:e3: 0a:0e:61:5e:dd:29:09:e6:62:37:12:16:d6:50:f7:26:d5:48: 96:f4:11:a3:e7:51:44:3a:17:47:d3:b9:e5:17:5e:03:74:89: 6c:62:f5:ba:63:ec:c7:a5:d6:ae:bd:5e:5a:7e:26:22:5d:53: 45:d6:ed:5d:3d:57:07:72:66:87:6d:ed:2f:24:cc:3e:e8:3d: 52:5f:84:41:db:f5:a8:85:c4:00:25:82:f3:e8:31:ea:98:98: 9e:37:23:68:27:ac:a5:65:75:83:db:c9:ec:c4:8c:64:de:cd: df:d2:c0:ef:d2:33:b8:2a:74:7c:64:59:25:03:e2:1d:51:6c: ee:18:cb:06:21:7b:91:b3:7d:60:05:c9:a3:d5:be:51:07:71: b8:c6:37:13:3c:63:0c:9d:fa:4f:53:46:61:73:b7:94:c9:2a: 7d:0b:0f:d0:32:d0:29:c4:8b:71:08:40:cf:55:86:58:14:75: 7d:50:76:82:5e:53:5a:c8:1e:be:54:8f:13:05:f6:90:d3:d6: cf:47:43:d6:76:8d:0f:bd:a8:90:3d:57:c1:f7:89:d0:ea:c0: 3f:96:7a:b0:9a:9f:8e:af:9f:11:a3:c3:0f:c9:3b:76:67:10: ab:7e:08:5f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEBl/yQgXOCYw1U9DHTy7hK1dRkowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNjA4NTIwN1oX DTI3MDUwNTA4NTcwN1owMzExMC8GA1UEAxMoOUY3QTM0Njc3RTYzQjQwRTUzQzQ3 OUE4RkQxMkRBNTMxMEJFNzQ2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJuXL7vl7LQCmBboTHewu3m7ZxiLZzDPpUpz1T+dDH1LRrUc1tmQpMi+p5H1 6N+YSd8U7clcp0u1qy9OD+j7yyS87xOWm4P75D7rEy9gDSYwPNh9dY7wSZpjA3jB 9aqpKtfjLkZ0xBwI1cLX8JLUDg78D8sCk5XIpklpTSPHwiSASH94rQ+iwh5kCb1d 1uRY2Lu+YhlLNPhRilBBmb2i2SxaiTHgBjQjLXhZzlwKOXbqVo5hQPqyxYdFtcD7 g/1TiZ3Mp4W7Wt5jMIuElALCYasjwA7ZEgqOreHCACm1eoTR1NxAwBP9E9bzHIDI VKkSSHGMLZYpFDpYH+4UtYT16GUCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSfejRn fmO0DlPEeaj9EtpTEL50ZzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NTg2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo4CBMA8EAgACMAkDBwAgAQ323MAwDQYJKoZIhvcNAQELBQADggEBAEMX /iy9OvPvo/NFiHvPmq+g4woOYV7dKQnmYjcSFtZQ9ybVSJb0EaPnUUQ6F0fTueUX XgN0iWxi9bpj7Mel1q69Xlp+JiJdU0XW7V09VwdyZodt7S8kzD7oPVJfhEHb9aiF xAAlgvPoMeqYmJ43I2gnrKVldYPbyezEjGTezd/SwO/SM7gqdHxkWSUD4h1RbO4Y ywYhe5GzfWAFyaPVvlEHcbjGNxM8Ywyd+k9TRmFzt5TJKn0LD9Ay0CnEi3EIQM9V hlgUdX1QdoJeU1rIHr5UjxMF9pDT1s9HQ9Z2jQ+9qJA9V8H3idDqwD+WerCan46v nxGjww/JO3ZnEKt+CF8= -----END CERTIFICATE-----Generated at Tue May 12 22:43:32 2026 by rpki-client