$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154265.roa File: AS154265.roa (raw, json) Hash identifier: JyULuh6D49ihy4EeJy9IDJjZh7NeHFulKsCeb0pBEBs= Subject key identifier: CD:6E:65:0A:73:F7:DF:0D:F1:BB:4C:07:EB:FF:CB:03:E9:04:8E:42 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07014F7104FBDF2C2AC9AFA3F1F2F008244459C6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154265.roa Signing time: Tue 21 Oct 2025 02:44:10 +0000 ROA not before: Tue 21 Oct 2025 02:39:10 +0000 ROA not after: Tue 20 Oct 2026 02:44:10 +0000 asID: 154265 IP address blocks: 203.34.125.0/24 maxlen: 24 2001:df6:1c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:01:4f:71:04:fb:df:2c:2a:c9:af:a3:f1:f2:f0:08:24:44:59:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 21 02:39:10 2025 GMT Not After : Oct 20 02:44:10 2026 GMT Subject: CN=CD6E650A73F7DF0DF1BB4C07EBFFCB03E9048E42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:14:03:99:a9:b0:a3:d7:be:ba:02:9d:09:c8: 80:3b:76:12:5f:1a:3d:bf:7c:56:d2:84:87:c4:cd: 6a:25:55:a3:6a:75:e9:d0:0e:af:28:7d:84:59:be: 72:8f:ab:c0:42:ac:f5:ac:6b:d1:9e:61:1f:6c:bc: 6d:5f:38:9a:d9:b2:ab:63:fc:d7:61:45:10:48:3f: 1c:18:ef:78:fa:e0:3b:1b:ab:bd:ca:68:a8:34:31: 1e:0c:8a:3f:8e:d2:c5:31:e1:82:bb:16:e3:52:27: e7:3d:14:88:13:2b:9a:2c:16:32:90:77:af:b3:cd: 85:bb:e9:eb:1f:52:0a:8e:ec:4b:64:4b:e9:4c:7a: 10:15:c0:1f:9c:b3:9f:9e:bc:de:5b:cc:cb:61:04: 28:92:81:0a:92:2f:83:fe:24:8e:5f:fe:4b:1e:6c: d0:51:f4:4e:d7:dc:c1:b9:c4:24:eb:e0:23:67:35: de:e4:34:de:d0:79:cb:e9:d9:e7:5b:e3:07:be:ff: a7:b7:a7:fa:ee:49:fa:69:67:04:8d:04:e3:9a:15: 5d:fb:e6:6a:93:94:09:98:e8:a5:52:4c:99:fa:75: 36:79:4f:98:86:3b:3b:95:f9:5f:2e:99:9e:7a:0f: b5:01:d3:61:e1:cb:ec:66:26:bb:7d:9b:07:9e:1e: 1c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6E:65:0A:73:F7:DF:0D:F1:BB:4C:07:EB:FF:CB:03:E9:04:8E:42 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154265.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.34.125.0/24 IPv6: 2001:df6:1c40::/48 Signature Algorithm: sha256WithRSAEncryption 5e:28:be:0a:34:e2:e1:b0:e1:1f:ee:82:9b:03:d5:07:db:07: 41:16:a1:87:d9:4c:30:59:71:ec:6f:ad:4e:ab:69:87:a6:30: 06:34:4f:c9:5b:b3:00:62:7a:e3:84:3a:06:9b:50:dd:26:16: 50:39:7c:43:1b:2c:be:79:38:69:23:89:f4:23:a0:c6:80:a0: ab:f5:24:80:7e:89:ce:e8:21:55:d9:d6:f2:df:14:73:c5:51: b3:2e:d5:3f:cc:62:f4:04:af:fc:b0:d8:81:07:04:2a:d1:83: 73:64:79:e7:25:0a:d3:f5:f6:56:84:4d:58:78:6f:d2:92:a2: 57:cd:9a:90:73:0e:b0:49:8c:99:ce:6d:7d:fd:e1:57:6c:d8: 0f:df:68:a0:3b:15:a9:3c:03:ea:d1:59:bc:e7:13:cf:36:27: f6:b0:4b:b7:b0:0c:3d:d7:9e:f8:c0:02:6f:f6:3e:75:ca:71: 73:d6:e3:09:ad:ad:83:ff:e1:e7:f2:43:f2:f7:81:0a:43:82: cd:8c:0f:67:a6:3f:21:e8:df:18:00:ad:ff:cd:fa:59:73:1a: b0:fc:9d:81:06:0f:47:16:b4:21:de:7a:95:72:29:ea:b3:fc: ce:0b:40:36:58:9a:bf:43:db:bb:ab:4c:9b:fa:39:42:72:62: 90:16:9b:db -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUBwFPcQT73ywqya+j8fLwCCREWcYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyMTAyMzkxMFoX DTI2MTAyMDAyNDQxMFowMzExMC8GA1UEAxMoQ0Q2RTY1MEE3M0Y3REYwREYxQkI0 QzA3RUJGRkNCMDNFOTA0OEU0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8UA5mpsKPXvroCnQnIgDt2El8aPb98VtKEh8TNaiVVo2p16dAOryh9hFm+ co+rwEKs9axr0Z5hH2y8bV84mtmyq2P812FFEEg/HBjvePrgOxurvcpoqDQxHgyK P47SxTHhgrsW41In5z0UiBMrmiwWMpB3r7PNhbvp6x9SCo7sS2RL6Ux6EBXAH5yz n5683lvMy2EEKJKBCpIvg/4kjl/+Sx5s0FH0TtfcwbnEJOvgI2c13uQ03tB5y+nZ 51vjB77/p7en+u5J+mlnBI0E45oVXfvmapOUCZjopVJMmfp1NnlPmIY7O5X5Xy6Z nnoPtQHTYeHL7GYmu32bB54eHHECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTNbmUK c/ffDfG7TAfr/8sD6QSOQjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDI2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAMsifTAPBAIAAjAJAwcAIAEN9hxAMA0GCSqGSIb3DQEBCwUAA4IB AQBeKL4KNOLhsOEf7oKbA9UH2wdBFqGH2UwwWXHsb61Oq2mHpjAGNE/JW7MAYnrj hDoGm1DdJhZQOXxDGyy+eThpI4n0I6DGgKCr9SSAfonO6CFV2dby3xRzxVGzLtU/ zGL0BK/8sNiBBwQq0YNzZHnnJQrT9fZWhE1YeG/SkqJXzZqQcw6wSYyZzm19/eFX bNgP32igOxWpPAPq0Vm85xPPNif2sEu3sAw91574wAJv9j51ynFz1uMJra2D/+Hn 8kPy94EKQ4LNjA9npj8h6N8YAK3/zfpZcxqw/J2BBg9HFrQh3nqVcinqs/zOC0A2 WJq/Q9u7q0yb+jlCcmKQFpvb -----END CERTIFICATE-----Generated at Mon Nov 3 19:31:57 2025 by rpki-client