$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154458.roa File: AS154458.roa (raw, json) Hash identifier: 4ch5LI63uULh+RnjuoD241NkAo0ZoHvqir3KRp3RouU= Subject key identifier: 6E:0A:23:DA:EB:27:E1:B1:24:FF:E0:B5:99:F3:62:7D:9F:C3:CE:7A Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1DFEDFA1F16A7FE134E49F51AAFBF7F9E286942A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154458.roa Signing time: Wed 25 Feb 2026 07:17:57 +0000 ROA not before: Wed 25 Feb 2026 07:12:57 +0000 ROA not after: Wed 24 Feb 2027 07:17:57 +0000 asID: 154458 IP address blocks: 144.79.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:fe:df:a1:f1:6a:7f:e1:34:e4:9f:51:aa:fb:f7:f9:e2:86:94:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 25 07:12:57 2026 GMT Not After : Feb 24 07:17:57 2027 GMT Subject: CN=6E0A23DAEB27E1B124FFE0B599F3627D9FC3CE7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b2:95:d8:b4:1a:2d:ad:e4:fe:7d:15:03:33: 42:c6:fa:ff:2e:e7:2c:66:ff:27:ce:b4:93:e6:b8: 12:e7:12:23:11:9f:78:c5:4c:c0:7b:ef:8f:a9:c0: 56:88:56:92:4d:01:38:b5:1a:bd:3d:4d:aa:50:88: 36:61:68:9c:c7:8b:aa:f9:da:1f:07:22:3f:ad:85: 25:98:08:95:8d:43:af:5d:5b:60:49:b7:48:d9:de: 03:63:c5:3e:e2:1d:64:67:20:80:0d:30:69:4c:ff: 3d:b7:98:14:39:66:ae:f5:c2:1a:b9:f4:98:d8:46: 74:ea:55:dc:c1:f2:0d:f5:35:a3:52:f7:51:da:1d: 47:3f:02:7f:84:38:ca:ef:a8:ba:d8:7c:da:61:61: 15:a9:c0:ab:90:bd:b7:6a:60:82:ac:fd:7b:60:0a: 2f:24:fe:56:5e:20:8a:82:2c:44:14:9d:bb:ce:cc: 80:f1:85:bd:17:67:c9:b0:be:52:b9:2e:51:ec:12: c6:7f:29:7c:21:84:89:61:17:00:4f:fd:4d:15:aa: 53:74:e3:da:47:dd:46:7b:36:d4:6d:91:e5:3d:b6: 46:92:8e:dd:d0:6b:21:d1:d2:ed:57:5e:4b:81:04: 72:4b:4a:91:f2:1c:93:c3:89:60:27:03:82:0e:fb: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0A:23:DA:EB:27:E1:B1:24:FF:E0:B5:99:F3:62:7D:9F:C3:CE:7A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154458.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.77.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:0b:8a:72:86:52:e3:91:44:e7:92:7e:13:08:b2:c0:47:59: a3:9a:84:44:18:35:3a:7b:3c:cc:e6:1d:e0:ff:98:20:95:19: 18:a2:54:49:2e:39:19:a8:d8:3c:5b:e6:ec:d7:44:c3:d8:3a: 02:21:7b:49:49:ce:ea:5b:df:1d:4c:df:06:b0:ea:8f:9e:34: 36:15:3b:49:58:20:a1:d1:5c:99:13:95:9c:81:7f:a7:5d:62: 3f:4c:cd:a3:a7:0d:10:25:94:91:78:bb:f9:69:48:5b:91:30: 54:39:c7:66:85:7b:e7:95:f4:55:1c:3e:26:64:fc:45:c7:94: 30:d0:1e:3e:2f:0b:48:41:82:bb:ac:cc:2b:91:75:0b:ab:61: f8:e3:6f:bd:4a:6b:22:ab:aa:ea:95:c6:5e:a3:c4:d6:f4:4d: 39:47:d2:d0:87:35:85:96:c9:39:6b:31:fb:7b:e6:14:7a:ca: d8:69:62:36:58:45:04:cd:c2:3b:10:e4:af:53:8c:bd:93:5a: 5d:dc:ff:b6:07:18:67:13:c0:61:75:5a:69:ec:d1:61:d2:bf: a8:e0:9b:48:0f:5d:91:59:7c:81:6f:76:2c:9b:5d:18:1e:09: f9:a7:24:17:e1:15:21:c1:0e:10:3b:c2:5a:58:67:f3:a5:07: 49:c0:10:da -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHf7fofFqf+E05J9Rqvv3+eKGlCowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIyNTA3MTI1N1oX DTI3MDIyNDA3MTc1N1owMzExMC8GA1UEAxMoNkUwQTIzREFFQjI3RTFCMTI0RkZF MEI1OTlGMzYyN0Q5RkMzQ0U3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALiyldi0Gi2t5P59FQMzQsb6/y7nLGb/J860k+a4EucSIxGfeMVMwHvvj6nA VohWkk0BOLUavT1NqlCINmFonMeLqvnaHwciP62FJZgIlY1Dr11bYEm3SNneA2PF PuIdZGcggA0waUz/PbeYFDlmrvXCGrn0mNhGdOpV3MHyDfU1o1L3UdodRz8Cf4Q4 yu+outh82mFhFanAq5C9t2pggqz9e2AKLyT+Vl4gioIsRBSdu87MgPGFvRdnybC+ UrkuUewSxn8pfCGEiWEXAE/9TRWqU3Tj2kfdRns21G2R5T22RpKO3dBrIdHS7Vde S4EEcktKkfIck8OJYCcDgg77hD8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRuCiPa 6yfhsST/4LWZ82J9n8POejAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDQ1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBPTTANBgkqhkiG9w0BAQsFAAOCAQEAfQuKcoZS45FE55J+Ewiy wEdZo5qERBg1Ons8zOYd4P+YIJUZGKJUSS45GajYPFvm7NdEw9g6AiF7SUnO6lvf HUzfBrDqj540NhU7SVggodFcmROVnIF/p11iP0zNo6cNECWUkXi7+WlIW5EwVDnH ZoV755X0VRw+JmT8RceUMNAePi8LSEGCu6zMK5F1C6th+ONvvUprIquq6pXGXqPE 1vRNOUfS0Ic1hZbJOWsx+3vmFHrK2GliNlhFBM3COxDkr1OMvZNaXdz/tgcYZxPA YXVaaezRYdK/qOCbSA9dkVl8gW92LJtdGB4J+ackF+EVIcEOEDvCWlhn86UHScAQ 2g== -----END CERTIFICATE-----Generated at Mon Mar 2 09:34:57 2026 by rpki-client