$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154074.roa File: AS154074.roa (raw, json) Hash identifier: +xC+fCHvhPsuMtybX8bNhsMvoRTSnSQmDDXTQk6sRbI= Subject key identifier: DB:23:FC:D2:52:1C:65:20:FB:67:C5:F2:1C:ED:39:BE:5D:60:A1:7A Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 608C9E4652C310836BDCFB92BDB77EDE6B18AB25 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154074.roa Signing time: Mon 28 Jul 2025 03:42:47 +0000 ROA not before: Mon 28 Jul 2025 03:37:47 +0000 ROA not after: Mon 27 Jul 2026 03:42:47 +0000 asID: 154074 IP address blocks: 165.101.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 08:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8c:9e:46:52:c3:10:83:6b:dc:fb:92:bd:b7:7e:de:6b:18:ab:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 28 03:37:47 2025 GMT Not After : Jul 27 03:42:47 2026 GMT Subject: CN=DB23FCD2521C6520FB67C5F21CED39BE5D60A17A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dc:99:97:7b:03:eb:f6:ee:6b:4d:5e:72:94: 27:cc:f9:d7:60:76:50:b0:5d:df:60:5a:52:0e:26: 14:52:6c:59:51:5f:bc:5d:b0:ed:2e:69:1f:58:22: 28:e2:d1:57:cc:f2:01:10:52:10:32:1a:94:4f:65: 21:29:9c:62:0b:95:81:43:bf:48:a7:ea:c7:6b:b7: 9a:55:c9:be:d8:04:de:8b:9c:b7:e9:79:9a:88:87: f9:b8:5e:64:a8:ae:39:7b:5c:75:98:4c:3d:16:94: ec:89:13:fe:38:c1:53:75:82:6f:8b:30:73:08:33: 67:e4:37:be:36:6b:ab:da:17:2f:1a:4d:18:7e:0a: f4:c8:36:85:bb:63:86:b3:12:e7:f3:35:67:4c:af: 48:4d:cc:64:0b:8f:0f:28:18:95:c4:9d:dc:87:ad: a2:d8:d2:a6:c8:93:f1:f5:a5:f3:85:6a:9a:4a:7e: 5e:2f:21:bb:88:50:bf:d1:d7:6d:e7:40:94:ce:0f: 66:20:22:a5:4b:06:71:8a:09:39:ee:31:7f:7c:bb: 6e:1e:9d:79:78:ab:b0:4c:55:1b:d8:ff:7c:1b:b2: 46:4d:84:43:b8:32:93:ad:9c:ff:d4:00:85:5c:c7: ea:64:b8:d0:b2:aa:dd:92:6c:fd:0e:d5:63:34:e1: 30:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:23:FC:D2:52:1C:65:20:FB:67:C5:F2:1C:ED:39:BE:5D:60:A1:7A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154074.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.186.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:67:12:20:d8:2e:2f:b3:68:f6:2d:9a:6a:6f:3c:e5:cd:83: 31:6f:87:07:bf:4c:18:b2:a2:88:c0:cf:a5:5d:d1:7b:33:11: ed:1d:00:bf:d3:4d:48:f9:9b:9b:48:fa:e8:c4:67:11:db:21: 63:e0:1a:de:f0:54:5a:51:ba:20:4f:2b:11:d5:6f:a8:f7:e5: 58:30:dd:f2:d3:26:62:0a:0a:64:63:bc:e0:8c:61:8c:25:ff: c0:58:a4:ab:99:9c:b7:2d:16:e5:dc:61:ad:ed:23:1f:25:0e: 6a:8d:bd:01:1b:34:68:4d:36:a6:36:ee:53:b0:aa:69:9a:50: 37:0d:52:6c:57:77:64:a0:d6:7d:a2:ce:24:50:8f:2d:56:dc: d8:36:20:8c:9b:7b:e1:1b:a8:4f:54:b7:d3:ec:21:89:b6:0e: e5:34:68:95:d5:1b:b4:0a:07:a8:b0:23:91:f0:3d:96:23:d7: 2e:de:1d:8c:77:14:25:68:b9:d5:78:1f:81:b2:0c:84:1c:80: 2c:95:e9:bf:72:33:a5:03:49:93:7a:0b:6f:5b:54:6c:0b:d8: 59:02:e4:f6:03:12:d1:5a:f6:d4:87:c7:5a:3b:8e:3f:b1:d5: 8f:40:c5:de:6e:92:ea:3a:53:80:26:6e:3e:ba:e5:2f:8d:4c: 87:13:e8:e5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYIyeRlLDEINr3PuSvbd+3msYqyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDcyODAzMzc0N1oX DTI2MDcyNzAzNDI0N1owMzExMC8GA1UEAxMoREIyM0ZDRDI1MjFDNjUyMEZCNjdD NUYyMUNFRDM5QkU1RDYwQTE3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrcmZd7A+v27mtNXnKUJ8z512B2ULBd32BaUg4mFFJsWVFfvF2w7S5pH1gi KOLRV8zyARBSEDIalE9lISmcYguVgUO/SKfqx2u3mlXJvtgE3ouct+l5moiH+bhe ZKiuOXtcdZhMPRaU7IkT/jjBU3WCb4swcwgzZ+Q3vjZrq9oXLxpNGH4K9Mg2hbtj hrMS5/M1Z0yvSE3MZAuPDygYlcSd3IetotjSpsiT8fWl84Vqmkp+Xi8hu4hQv9HX bedAlM4PZiAipUsGcYoJOe4xf3y7bh6deXirsExVG9j/fBuyRk2EQ7gyk62c/9QA hVzH6mS40LKq3ZJs/Q7VYzThMF8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTbI/zS UhxlIPtnxfIc7Tm+XWChejAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDA3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVlujANBgkqhkiG9w0BAQsFAAOCAQEASmcSINguL7No9i2aam88 5c2DMW+HB79MGLKiiMDPpV3RezMR7R0Av9NNSPmbm0j66MRnEdshY+Aa3vBUWlG6 IE8rEdVvqPflWDDd8tMmYgoKZGO84IxhjCX/wFikq5mcty0W5dxhre0jHyUOao29 ARs0aE02pjbuU7CqaZpQNw1SbFd3ZKDWfaLOJFCPLVbc2DYgjJt74RuoT1S30+wh ibYO5TRoldUbtAoHqLAjkfA9liPXLt4djHcUJWi51XgfgbIMhByALJXpv3IzpQNJ k3oLb1tUbAvYWQLk9gMS0Vr21IfHWjuOP7HVj0DF3m6S6jpTgCZuPrrlL41MhxPo 5Q== -----END CERTIFICATE-----Generated at Tue Aug 5 08:11:41 2025 by rpki-client