$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154266.roa File: AS154266.roa (raw, json) Hash identifier: T9RGYIzY+YjK0G2sII2/X8oyTwVuqY23Pmsp31WEq/4= Subject key identifier: B7:4E:5B:6B:38:19:7F:5E:04:8F:DC:5D:62:1E:39:06:48:95:D4:CD Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 02F6D01E7E5895F3D6EFBE1C01788F4284B16053 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154266.roa Signing time: Tue 24 Feb 2026 03:22:54 +0000 ROA not before: Tue 24 Feb 2026 03:17:54 +0000 ROA not after: Tue 23 Feb 2027 03:22:54 +0000 asID: 154266 IP address blocks: 165.99.100.0/23 maxlen: 23 165.99.100.0/24 maxlen: 24 165.99.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f6:d0:1e:7e:58:95:f3:d6:ef:be:1c:01:78:8f:42:84:b1:60:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 24 03:17:54 2026 GMT Not After : Feb 23 03:22:54 2027 GMT Subject: CN=B74E5B6B38197F5E048FDC5D621E39064895D4CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:97:0a:e8:fa:4d:da:5f:a7:a9:ac:96:e5:e9: e5:b0:f3:2a:88:18:0e:cd:e2:e9:a8:c4:6d:99:b2: 5c:f1:74:a8:ca:7a:b7:4e:ed:73:33:62:93:ee:42: c7:6d:74:66:2f:84:ac:12:82:af:82:cb:33:df:9c: af:ec:9e:10:a6:c2:b2:8f:06:9c:62:ac:4d:e4:d3: 68:d0:91:b8:aa:7e:e1:d3:4c:86:db:06:52:3d:ad: 7b:b5:e9:d1:60:14:63:97:32:e8:a7:44:15:6f:0e: 8e:7a:2a:ec:f6:40:22:13:14:de:70:3d:b5:d4:21: 86:6a:55:5e:41:5d:ed:1d:2d:68:ef:69:cb:91:0f: 0c:93:40:87:e8:1f:a9:22:a6:d6:da:f1:e9:14:d6: d9:e1:d5:91:8e:b8:de:16:c8:41:21:77:55:b2:7b: 69:d5:54:c4:dd:9b:0c:32:d6:36:35:54:65:be:e8: 1b:af:e8:12:9a:7d:0a:cd:af:5a:a8:aa:91:ac:77: af:6f:55:6d:90:c0:a2:a4:ae:14:3f:14:b2:9a:fa: be:b0:3b:a3:2f:44:d6:52:a1:91:19:40:c2:ff:9c: dc:d1:01:6d:6f:32:ba:cd:70:00:ce:50:23:bb:9f: d2:46:24:6f:a3:82:75:84:fd:44:02:d1:21:30:d4: b8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:4E:5B:6B:38:19:7F:5E:04:8F:DC:5D:62:1E:39:06:48:95:D4:CD X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154266.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.100.0/23 Signature Algorithm: sha256WithRSAEncryption 49:fd:06:5c:c2:4f:dc:c8:8f:43:ad:be:dd:bb:f6:3b:b3:54: b8:69:4c:8b:d4:35:16:95:91:d8:f2:42:86:ab:dc:4d:26:08: d3:d1:89:30:2d:8c:75:20:86:4a:ee:6a:4f:6a:83:f1:95:c5: a4:bf:ff:17:8c:34:e1:db:0d:9c:c8:2e:a0:d2:0e:60:ff:3e: a3:99:07:17:9f:1d:e5:74:4d:77:02:cd:0f:41:45:65:bc:b3: 57:e0:05:55:43:37:69:db:20:cb:70:14:cf:55:ef:15:b4:cc: df:aa:c7:1b:b2:3e:c6:11:a5:bc:5c:ab:84:7e:08:ea:35:ff: 93:44:d9:ec:15:89:ab:5a:ab:eb:19:d2:ba:9c:a3:3a:4b:b7: c9:24:57:03:29:2a:05:ff:0b:d5:5d:fb:b4:23:dd:6b:cb:e5: aa:7a:a6:ce:f7:7c:15:f8:b3:91:9e:ba:8b:6d:7f:ae:d4:70: dc:48:ce:ed:0e:80:2e:92:12:b5:fa:25:a2:e7:35:f3:dc:62: d2:08:b7:ef:68:f0:9d:5b:4d:1b:8a:0a:71:9e:bb:02:ce:95: 5e:a7:f7:ed:f3:84:c3:8c:df:72:ef:0f:20:5e:36:fd:68:10: 20:0a:67:42:7d:81:a2:59:02:d3:25:ec:7e:9b:4f:73:61:5b: dd:52:19:00 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAvbQHn5YlfPW774cAXiPQoSxYFMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIyNDAzMTc1NFoX DTI3MDIyMzAzMjI1NFowMzExMC8GA1UEAxMoQjc0RTVCNkIzODE5N0Y1RTA0OEZE QzVENjIxRTM5MDY0ODk1RDRDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqXCuj6Tdpfp6msluXp5bDzKogYDs3i6ajEbZmyXPF0qMp6t07tczNik+5C x210Zi+ErBKCr4LLM9+cr+yeEKbCso8GnGKsTeTTaNCRuKp+4dNMhtsGUj2te7Xp 0WAUY5cy6KdEFW8Ojnoq7PZAIhMU3nA9tdQhhmpVXkFd7R0taO9py5EPDJNAh+gf qSKm1trx6RTW2eHVkY643hbIQSF3VbJ7adVUxN2bDDLWNjVUZb7oG6/oEpp9Cs2v Wqiqkax3r29VbZDAoqSuFD8Uspr6vrA7oy9E1lKhkRlAwv+c3NEBbW8yus1wAM5Q I7uf0kYkb6OCdYT9RALRITDUuM0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS3Tltr OBl/XgSP3F1iHjkGSJXUzTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDI2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaVjZDANBgkqhkiG9w0BAQsFAAOCAQEASf0GXMJP3MiPQ62+3bv2 O7NUuGlMi9Q1FpWR2PJChqvcTSYI09GJMC2MdSCGSu5qT2qD8ZXFpL//F4w04dsN nMguoNIOYP8+o5kHF58d5XRNdwLND0FFZbyzV+AFVUM3adsgy3AUz1XvFbTM36rH G7I+xhGlvFyrhH4I6jX/k0TZ7BWJq1qr6xnSupyjOku3ySRXAykqBf8L1V37tCPd a8vlqnqmzvd8FfizkZ66i21/rtRw3EjO7Q6ALpIStfolouc189xi0gi372jwnVtN G4oKcZ67As6VXqf37fOEw4zfcu8PIF42/WgQIApnQn2BolkC0yXsfptPc2Fb3VIZ AA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:34:52 2026 by rpki-client