$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154401.roa File: AS154401.roa (raw, json) Hash identifier: pmZ9qrTlF6UgeetIUS5J+/rT2dwwe3G23TT4S+WFp7I= Subject key identifier: B5:21:E1:AD:84:7D:5A:8D:6B:71:F9:1F:59:0F:05:1E:8F:A3:E5:EB Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 72068451A77ED24368E411A6C86B42481A191D04 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154401.roa Signing time: Fri 13 Feb 2026 04:13:35 +0000 ROA not before: Fri 13 Feb 2026 04:08:35 +0000 ROA not after: Fri 12 Feb 2027 04:13:35 +0000 asID: 154401 IP address blocks: 144.79.34.0/23 maxlen: 24 144.79.34.0/24 maxlen: 24 144.79.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:06:84:51:a7:7e:d2:43:68:e4:11:a6:c8:6b:42:48:1a:19:1d:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 13 04:08:35 2026 GMT Not After : Feb 12 04:13:35 2027 GMT Subject: CN=B521E1AD847D5A8D6B71F91F590F051E8FA3E5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:af:61:26:c5:e3:8e:ee:b9:ee:0f:2d:2d:38: 4f:c1:80:c1:73:67:31:d5:f6:27:32:f4:b9:d1:57: 3a:46:e4:c2:70:78:fc:fb:4c:06:71:ba:2a:73:d3: cb:99:42:04:ae:09:bf:dd:dd:a4:67:3c:0a:b1:d1: 2d:a6:2a:06:fa:84:15:2b:4f:8a:f8:66:7c:c6:33: 1a:2a:5a:7e:64:a6:61:d4:58:00:37:ae:8b:33:c1: 2e:5b:e0:79:86:e5:5c:c4:d6:77:e9:33:91:27:22: 4d:4d:32:b9:24:7c:12:69:04:7c:bf:e1:f7:f8:59: fa:ed:4b:00:3f:88:2d:4e:b8:3d:95:e3:b9:77:da: 91:e4:88:1f:2c:e2:4d:a8:65:01:42:f6:94:4a:c9: 92:52:03:be:ee:69:74:34:a4:3f:ab:74:eb:8e:ec: d0:0d:74:26:26:f2:6a:83:c3:cc:81:95:c0:01:a1: ae:5a:0e:ec:c2:c4:1b:28:e5:dd:b2:b2:13:20:5e: 85:c5:b6:6b:68:73:f0:b5:13:33:3a:fb:c3:37:df: c5:ae:27:e9:16:70:cb:30:15:6c:79:b6:b2:6e:15: e5:eb:93:f2:bd:c5:30:e1:2a:39:03:6a:52:73:71: 8a:cd:63:39:44:10:16:1a:c8:c3:65:41:e0:ef:6a: b4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:21:E1:AD:84:7D:5A:8D:6B:71:F9:1F:59:0F:05:1E:8F:A3:E5:EB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154401.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.34.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:45:b5:34:49:0e:1f:f3:78:51:84:82:8e:13:93:ba:7e:a0: e4:a2:bb:50:66:3b:0f:11:6e:5a:1c:a6:05:30:ac:8b:d7:5e: 90:1f:0b:b6:3c:d4:cc:15:7c:eb:80:7b:7d:ad:68:6d:e7:e7: 42:83:0f:bc:aa:0c:c9:b7:48:29:6c:18:6c:43:10:cc:39:47: a1:5b:82:af:2c:5b:ef:d8:fa:48:12:b0:4d:82:22:d6:f7:b9: d5:01:03:8e:c8:1e:1c:18:e2:c5:1e:88:5d:78:86:3e:40:47: 2f:ab:09:0c:59:c4:fe:1f:50:f2:9c:cf:f5:95:cb:79:13:a5: 40:51:30:d3:61:6d:ba:60:86:f3:dd:4d:ef:74:2a:12:4c:a9: c8:da:b3:e2:4a:64:12:d4:40:c0:8c:9f:57:cd:15:f0:70:38: 7f:9a:1c:75:fd:5c:e6:26:3f:9a:e1:e2:db:ee:c0:6f:11:d0: be:16:b3:a7:8a:22:ef:ea:b0:14:1b:cf:d3:54:e5:55:06:58: 7e:77:97:57:15:7b:5a:ef:eb:ba:a4:97:9a:aa:d9:f5:f9:57: af:3e:a4:26:d2:b4:95:6a:1b:a6:0e:8b:d4:96:3e:f7:7e:a8: 60:c2:ce:94:a5:ac:34:69:01:cf:b3:08:d2:99:6f:a5:ca:bd: 87:fa:be:7c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcgaEUad+0kNo5BGmyGtCSBoZHQQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIxMzA0MDgzNVoX DTI3MDIxMjA0MTMzNVowMzExMC8GA1UEAxMoQjUyMUUxQUQ4NDdENUE4RDZCNzFG OTFGNTkwRjA1MUU4RkEzRTVFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANevYSbF447uue4PLS04T8GAwXNnMdX2JzL0udFXOkbkwnB4/PtMBnG6KnPT y5lCBK4Jv93dpGc8CrHRLaYqBvqEFStPivhmfMYzGipafmSmYdRYADeuizPBLlvg eYblXMTWd+kzkSciTU0yuSR8EmkEfL/h9/hZ+u1LAD+ILU64PZXjuXfakeSIHyzi TahlAUL2lErJklIDvu5pdDSkP6t0647s0A10JibyaoPDzIGVwAGhrloO7MLEGyjl 3bKyEyBehcW2a2hz8LUTMzr7wzffxa4n6RZwyzAVbHm2sm4V5euT8r3FMOEqOQNq UnNxis1jOUQQFhrIw2VB4O9qtJcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS1IeGt hH1ajWtx+R9ZDwUej6Pl6zAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDQwMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZBPIjANBgkqhkiG9w0BAQsFAAOCAQEAX0W1NEkOH/N4UYSCjhOT un6g5KK7UGY7DxFuWhymBTCsi9dekB8LtjzUzBV864B7fa1obefnQoMPvKoMybdI KWwYbEMQzDlHoVuCryxb79j6SBKwTYIi1ve51QEDjsgeHBjixR6IXXiGPkBHL6sJ DFnE/h9Q8pzP9ZXLeROlQFEw02FtumCG891N73QqEkypyNqz4kpkEtRAwIyfV80V 8HA4f5ocdf1c5iY/muHi2+7AbxHQvhazp4oi7+qwFBvP01TlVQZYfneXVxV7Wu/r uqSXmqrZ9flXrz6kJtK0lWobpg6L1JY+936oYMLOlKWsNGkBz7MI0plvpcq9h/q+ fA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:56:17 2026 by rpki-client