$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154092.roa File: AS154092.roa (raw, json) Hash identifier: fLLljvpepAMsijaqERlAW82HvhAUYgX1s+X6PJ8cx8I= Subject key identifier: 8E:C1:0B:BB:5D:69:78:95:F4:1D:28:65:C6:09:C1:D4:E3:B2:04:0C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6A3F6FE04F35D426345D51487E6E99811C9C565F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154092.roa Signing time: Tue 29 Jul 2025 00:56:04 +0000 ROA not before: Tue 29 Jul 2025 00:51:04 +0000 ROA not after: Tue 28 Jul 2026 00:56:04 +0000 asID: 154092 IP address blocks: 165.101.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 08:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:3f:6f:e0:4f:35:d4:26:34:5d:51:48:7e:6e:99:81:1c:9c:56:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 29 00:51:04 2025 GMT Not After : Jul 28 00:56:04 2026 GMT Subject: CN=8EC10BBB5D697895F41D2865C609C1D4E3B2040C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d3:e5:5d:ca:dd:0d:c3:a9:29:9e:87:6d:ae: f7:f4:2e:7b:f6:c3:ba:14:b0:d5:84:41:20:f9:be: 39:45:d9:88:98:6c:0e:19:42:37:5d:cc:e0:b0:56: a2:54:ab:1f:c5:41:e4:a4:0b:5c:0b:d0:5c:e1:ce: 36:12:f9:4e:03:5a:40:49:76:de:d6:c1:0e:c1:37: f1:ae:9a:78:b0:ca:96:66:40:1e:25:b8:22:1f:78: 5e:9f:ae:f4:39:9c:87:77:95:b8:e5:14:00:35:c0: 7e:58:13:9d:16:63:43:ac:a1:28:61:fa:ac:ab:93: f5:b9:d6:2f:8a:17:ec:f4:8e:0d:c1:32:9d:ca:b1: ec:cb:55:93:f3:82:2f:f5:4b:67:9f:bc:b2:e1:6c: 7c:a3:76:ed:d8:46:fa:fb:77:4f:c0:87:8b:6d:10: 33:25:fd:ec:9b:62:55:ef:b4:e0:05:54:ab:43:59: e7:5b:9e:3a:11:65:84:c3:31:5a:f6:85:cd:35:29: d1:ca:10:20:78:d3:ab:b3:a5:36:dd:06:56:e7:06: d9:ee:f6:a8:3d:da:11:b8:b4:35:50:04:af:53:21: 20:0f:e9:32:84:15:90:d2:47:ab:9e:ce:66:a4:48: 23:4a:ee:8a:6a:e0:dd:3c:c6:69:3f:3c:36:16:9c: 8d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C1:0B:BB:5D:69:78:95:F4:1D:28:65:C6:09:C1:D4:E3:B2:04:0C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.172.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:8e:70:9b:d6:92:29:8f:ac:8b:c6:f6:2b:38:ac:ad:e3:71: f5:a6:2b:49:3c:d8:40:a1:56:41:1c:1e:49:26:50:a6:47:ff: 16:5f:f0:35:3f:27:ec:95:38:e3:42:f6:d6:4a:c5:42:89:e1: 96:98:53:9a:91:ac:3d:60:02:76:ae:95:8f:c7:b8:a4:97:77: 6a:1d:ad:18:e9:b4:02:83:5a:ce:32:e3:b2:e5:48:7f:50:b4: f5:73:97:34:d4:59:91:64:a8:df:00:06:58:85:92:16:aa:95: 9b:0d:9b:34:96:a9:e5:4d:57:35:73:5b:b7:f8:f8:c2:1b:70: 7f:6b:8e:1d:ec:94:07:0b:51:3b:97:b9:de:8a:71:3c:94:ac: c5:56:77:45:2d:11:11:47:7b:77:1e:d7:9e:fb:01:d2:3f:fb: fc:9f:6d:ff:54:67:37:ef:0a:6d:22:e9:02:ae:67:b7:62:04: 1f:2b:27:74:2b:64:3a:dc:af:86:fd:43:40:5a:09:7e:e3:aa: 6b:be:8b:29:a7:fa:3d:4a:cb:c2:25:98:74:f3:cd:c2:2d:2e: a5:0a:b8:10:87:bb:6b:0b:b1:e1:6d:b4:8a:d9:c8:87:23:09: 0c:8a:d9:4a:bc:0b:c8:97:8c:c0:19:b3:b2:92:43:59:8e:10: 05:70:f5:88 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUaj9v4E811CY0XVFIfm6ZgRycVl8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDcyOTAwNTEwNFoX DTI2MDcyODAwNTYwNFowMzExMC8GA1UEAxMoOEVDMTBCQkI1RDY5Nzg5NUY0MUQy ODY1QzYwOUMxRDRFM0IyMDQwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOTT5V3K3Q3DqSmeh22u9/Que/bDuhSw1YRBIPm+OUXZiJhsDhlCN13M4LBW olSrH8VB5KQLXAvQXOHONhL5TgNaQEl23tbBDsE38a6aeLDKlmZAHiW4Ih94Xp+u 9Dmch3eVuOUUADXAflgTnRZjQ6yhKGH6rKuT9bnWL4oX7PSODcEyncqx7MtVk/OC L/VLZ5+8suFsfKN27dhG+vt3T8CHi20QMyX97JtiVe+04AVUq0NZ51ueOhFlhMMx WvaFzTUp0coQIHjTq7OlNt0GVucG2e72qD3aEbi0NVAEr1MhIA/pMoQVkNJHq57O ZqRII0ruimrg3TzGaT88NhacjQMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSOwQu7 XWl4lfQdKGXGCcHU47IEDDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDA5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaVlrDANBgkqhkiG9w0BAQsFAAOCAQEADI5wm9aSKY+si8b2Kzis reNx9aYrSTzYQKFWQRweSSZQpkf/Fl/wNT8n7JU440L21krFQonhlphTmpGsPWAC dq6Vj8e4pJd3ah2tGOm0AoNazjLjsuVIf1C09XOXNNRZkWSo3wAGWIWSFqqVmw2b NJap5U1XNXNbt/j4whtwf2uOHeyUBwtRO5e53opxPJSsxVZ3RS0REUd7dx7XnvsB 0j/7/J9t/1RnN+8KbSLpAq5nt2IEHysndCtkOtyvhv1DQFoJfuOqa76LKaf6PUrL wiWYdPPNwi0upQq4EIe7awux4W20itnIhyMJDIrZSrwLyJeMwBmzspJDWY4QBXD1 iA== -----END CERTIFICATE-----Generated at Tue Aug 5 08:11:29 2025 by rpki-client