$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154669.roa File: AS154669.roa (raw, json) Hash identifier: h2FSf7Utz2nMCbMrdZbkbkDsvZzd2v+M/b3Cm5ZONDE= Subject key identifier: 7C:94:8D:FB:0F:1E:3C:9A:31:E1:77:DA:A6:1B:22:87:BD:C1:DE:7C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0F04E16E170DA090BB43AE0147F33071E6BF96F7 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154669.roa Signing time: Tue 12 May 2026 02:29:13 +0000 ROA not before: Tue 12 May 2026 02:24:13 +0000 ROA not after: Tue 11 May 2027 02:29:13 +0000 asID: 154669 IP address blocks: 2001:df7:440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:04:e1:6e:17:0d:a0:90:bb:43:ae:01:47:f3:30:71:e6:bf:96:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 12 02:24:13 2026 GMT Not After : May 11 02:29:13 2027 GMT Subject: CN=7C948DFB0F1E3C9A31E177DAA61B2287BDC1DE7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2f:56:4c:b0:07:f0:2a:c9:77:31:82:9c:53: e8:f5:23:40:41:dd:18:28:f0:0b:9b:80:24:2c:ec: 92:b7:c5:c9:64:99:12:04:50:67:2a:4f:51:5b:43: d0:f7:20:31:82:6c:15:91:aa:ef:93:de:7c:da:31: 32:22:b4:cf:e8:4e:94:a9:8d:05:ad:16:9c:f1:b0: 17:c4:8a:a4:32:74:c5:57:a4:01:86:17:de:bf:03: c8:46:49:07:ff:4c:db:c6:43:b0:6a:e8:a3:d5:08: b1:15:84:a9:c7:c7:d9:ea:8a:18:be:df:2b:90:e5: f9:a0:1f:a4:b4:68:3b:b1:eb:0a:99:11:d4:c7:12: b8:b0:cc:c7:d8:e2:3f:9e:5a:f5:39:e3:ec:50:f3: c0:3e:fb:3f:c6:61:7f:bc:63:8a:58:2f:a4:56:81: a6:cf:0c:cc:49:6e:bd:4d:09:33:16:e1:65:d4:19: 6a:33:fe:d0:e7:bb:48:7b:c1:1e:8c:30:80:7c:a4: 03:66:65:1b:a1:29:a3:35:33:5c:34:c1:47:3c:b8: 4d:3a:90:e6:18:7e:91:26:7c:b5:b2:c4:a7:57:2b: 4b:a0:a3:03:32:d8:d5:d3:42:e8:00:07:6c:62:1c: d1:92:3f:48:2b:9e:eb:0e:4a:0a:72:45:ec:4a:3e: 62:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:94:8D:FB:0F:1E:3C:9A:31:E1:77:DA:A6:1B:22:87:BD:C1:DE:7C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154669.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:440::/48 Signature Algorithm: sha256WithRSAEncryption 4a:99:58:35:ea:a4:6e:0a:5f:1b:1f:8f:24:d2:7e:c5:67:03: 9c:62:1c:3a:07:86:c6:64:53:f4:d2:d6:eb:64:e7:0f:48:c9: ee:46:2b:58:d8:14:ee:70:9b:87:7e:e1:26:18:6f:16:84:d4: 20:cd:1b:4d:7b:be:5c:a5:fe:37:1b:d2:8c:f2:a1:85:29:6b: 10:73:46:08:99:8d:22:8a:11:a9:d6:25:03:5a:19:3b:7a:fa: 38:2d:2a:5a:0c:89:f3:fe:e1:08:f2:bd:7f:73:11:3f:d5:6a: 77:fb:fb:63:b6:3e:8c:ff:9f:69:04:21:cd:6f:fd:89:6a:08: 71:c7:1e:75:56:8e:00:6c:ef:4b:65:7b:cd:3a:22:2a:aa:06: 68:f4:2e:71:2e:07:9b:84:2d:07:ac:04:d0:98:f7:75:bd:c9: 95:67:63:72:73:13:38:70:26:bf:c1:8a:54:b4:c8:35:a7:4b: 50:ae:0c:8b:88:93:2b:a6:76:05:88:0b:86:f9:97:ae:8c:5d: 4d:20:9b:f4:18:16:9e:20:10:2b:3c:4f:2f:be:15:2f:6e:1d: eb:2e:17:e1:ff:78:47:e6:87:44:3f:0d:f6:f2:e1:a3:d5:f5: 6f:1d:f5:5c:8e:52:e0:59:90:14:d8:b8:c3:46:16:f0:f5:1b: 48:61:2e:9b -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUDwThbhcNoJC7Q64BR/Mwcea/lvcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUxMjAyMjQxM1oX DTI3MDUxMTAyMjkxM1owMzExMC8GA1UEAxMoN0M5NDhERkIwRjFFM0M5QTMxRTE3 N0RBQTYxQjIyODdCREMxREU3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOMvVkywB/AqyXcxgpxT6PUjQEHdGCjwC5uAJCzskrfFyWSZEgRQZypPUVtD 0PcgMYJsFZGq75PefNoxMiK0z+hOlKmNBa0WnPGwF8SKpDJ0xVekAYYX3r8DyEZJ B/9M28ZDsGroo9UIsRWEqcfH2eqKGL7fK5Dl+aAfpLRoO7HrCpkR1McSuLDMx9ji P55a9Tnj7FDzwD77P8Zhf7xjilgvpFaBps8MzEluvU0JMxbhZdQZajP+0Oe7SHvB HowwgHykA2ZlG6EpozUzXDTBRzy4TTqQ5hh+kSZ8tbLEp1crS6CjAzLY1dNC6AAH bGIc0ZI/SCue6w5KCnJF7Eo+YnMCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBR8lI37 Dx48mjHhd9qmGyKHvcHefDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NjY5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9wRAMA0GCSqGSIb3DQEBCwUAA4IBAQBKmVg16qRuCl8bH48k0n7F ZwOcYhw6B4bGZFP00tbrZOcPSMnuRitY2BTucJuHfuEmGG8WhNQgzRtNe75cpf43 G9KM8qGFKWsQc0YImY0iihGp1iUDWhk7evo4LSpaDInz/uEI8r1/cxE/1Wp3+/tj tj6M/59pBCHNb/2Jaghxxx51Vo4AbO9LZXvNOiIqqgZo9C5xLgebhC0HrATQmPd1 vcmVZ2NycxM4cCa/wYpUtMg1p0tQrgyLiJMrpnYFiAuG+ZeujF1NIJv0GBaeIBAr PE8vvhUvbh3rLhfh/3hH5odEPw328uGj1fVvHfVcjlLgWZAU2LjDRhbw9RtIYS6b -----END CERTIFICATE-----Generated at Tue May 12 22:42:48 2026 by rpki-client