$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154217.roa File: AS154217.roa (raw, json) Hash identifier: np+R+j5hSN+VQgKxwAJWfJRgCtE5GjsUpzbbWGlIT7s= Subject key identifier: 99:86:EF:B1:6B:5E:63:11:A9:10:20:DA:3E:EC:C9:4A:2C:9A:53:E2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 660335ECA6C17ACD2E519AD1DE8ABC3B1EF29BE3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154217.roa Signing time: Mon 03 Nov 2025 08:40:39 +0000 ROA not before: Mon 03 Nov 2025 08:35:39 +0000 ROA not after: Mon 02 Nov 2026 08:40:39 +0000 asID: 154217 IP address blocks: 103.227.107.0/24 maxlen: 24 202.6.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:03:35:ec:a6:c1:7a:cd:2e:51:9a:d1:de:8a:bc:3b:1e:f2:9b:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 3 08:35:39 2025 GMT Not After : Nov 2 08:40:39 2026 GMT Subject: CN=9986EFB16B5E6311A91020DA3EECC94A2C9A53E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:09:03:1d:85:b4:d9:3b:26:fc:43:2d:c8:7a: 83:8c:6b:4d:16:17:3d:a7:a5:d8:45:4d:31:d6:e6: ef:74:fe:60:2c:b6:ef:7c:33:43:6f:71:a2:d5:f8: 01:c3:ea:f0:01:66:a6:7d:d0:2d:f5:64:c3:86:8d: 1d:d9:59:32:08:2c:bb:e1:8c:ed:4f:cc:c0:05:31: f5:da:d9:14:c6:39:26:a9:3e:23:c5:13:db:c7:f1: db:3a:9d:7d:b2:60:eb:ed:b5:a9:66:75:5c:01:fe: 01:11:27:03:d8:b2:87:c8:2f:12:aa:45:b7:80:27: f3:24:ce:e8:f2:7c:63:1e:0e:ed:de:79:7f:f0:da: 0a:99:39:90:90:9c:12:eb:43:04:c6:06:6a:6c:8d: 53:d8:3d:75:8b:97:3a:27:d8:2e:6a:20:0a:bc:99: f8:29:a6:95:84:f5:22:4b:61:b7:05:97:9f:9a:28: 14:f3:fb:60:15:97:16:aa:a7:20:b8:17:8c:33:da: 96:4f:40:cc:2d:1b:1c:90:e2:9c:7c:43:ee:68:83: 30:22:cf:c8:97:57:e0:1f:91:ba:c7:ce:63:fa:e9: b3:45:ed:bb:22:20:86:c8:76:19:2d:e5:31:96:8c: 55:c6:5b:c2:21:64:02:9e:e8:20:ab:24:b6:d7:1a: 80:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:86:EF:B1:6B:5E:63:11:A9:10:20:DA:3E:EC:C9:4A:2C:9A:53:E2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154217.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.107.0/24 202.6.192.0/23 Signature Algorithm: sha256WithRSAEncryption 76:6c:d0:61:f2:34:88:62:64:dc:ab:8b:f9:e8:af:c7:73:53: c1:f6:9c:d8:a6:98:db:e4:97:3c:ab:5a:75:08:34:30:ed:cc: 67:90:03:97:da:8d:76:ee:2f:eb:2e:96:5c:61:8f:52:4c:e2: 08:17:cd:1c:92:ba:2f:8a:37:9d:ab:b1:16:97:1d:fe:68:be: dd:79:41:15:c5:b3:d1:37:84:77:b3:a5:8b:bc:6c:56:d6:88: aa:3a:0f:3f:69:9a:48:91:37:84:34:1d:99:71:92:82:68:5b: cb:31:e8:fa:79:19:a9:c2:f7:37:71:29:eb:3e:8d:90:ba:1b: 0c:38:08:4a:29:8d:dc:eb:97:0d:bb:b4:46:b2:1d:8c:46:14: 54:72:6f:90:6d:70:8a:5f:ba:b3:11:2c:4a:86:3e:cc:96:eb: cf:b9:7a:a8:d7:b9:cb:5d:c5:c6:84:c5:f8:8e:c9:d4:8f:0e: ac:84:47:0f:3e:4d:79:c1:6c:cf:9c:e7:3f:3a:35:5c:44:1f: 38:e2:01:38:9a:a0:46:c1:0f:d6:3d:8b:73:59:68:dd:93:f6: 8f:2b:dc:ee:04:28:1f:39:c7:e0:14:db:93:b0:16:56:67:2b: df:b0:3a:b4:a0:c5:14:36:53:b5:5e:2c:a6:8b:ed:af:e7:d4: 34:e4:c6:f6 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUZgM17KbBes0uUZrR3oq8Ox7ym+MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwMzA4MzUzOVoX DTI2MTEwMjA4NDAzOVowMzExMC8GA1UEAxMoOTk4NkVGQjE2QjVFNjMxMUE5MTAy MERBM0VFQ0M5NEEyQzlBNTNFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0JAx2FtNk7JvxDLch6g4xrTRYXPael2EVNMdbm73T+YCy273wzQ29xotX4 AcPq8AFmpn3QLfVkw4aNHdlZMggsu+GM7U/MwAUx9drZFMY5Jqk+I8UT28fx2zqd fbJg6+21qWZ1XAH+AREnA9iyh8gvEqpFt4An8yTO6PJ8Yx4O7d55f/DaCpk5kJCc EutDBMYGamyNU9g9dYuXOifYLmogCryZ+CmmlYT1IkthtwWXn5ooFPP7YBWXFqqn ILgXjDPalk9AzC0bHJDinHxD7miDMCLPyJdX4B+RusfOY/rps0XtuyIghsh2GS3l MZaMVcZbwiFkAp7oIKskttcagEUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBSZhu+x a15jEakQINo+7MlKLJpT4jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDIxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGfjawMEAcoGwDANBgkqhkiG9w0BAQsFAAOCAQEAdmzQYfI0iGJk 3KuL+eivx3NTwfac2KaY2+SXPKtadQg0MO3MZ5ADl9qNdu4v6y6WXGGPUkziCBfN HJK6L4o3nauxFpcd/mi+3XlBFcWz0TeEd7Oli7xsVtaIqjoPP2maSJE3hDQdmXGS gmhbyzHo+nkZqcL3N3Ep6z6NkLobDDgISimN3OuXDbu0RrIdjEYUVHJvkG1wil+6 sxEsSoY+zJbrz7l6qNe5y13FxoTF+I7J1I8OrIRHDz5NecFsz5znPzo1XEQfOOIB OJqgRsEP1j2Lc1lo3ZP2jyvc7gQoHznH4BTbk7AWVmcr37A6tKDFFDZTtV4spovt r+fUNOTG9g== -----END CERTIFICATE-----Generated at Mon Nov 3 19:31:21 2025 by rpki-client