$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154307.roa File: AS154307.roa (raw, json) Hash identifier: v44UgFAXSVHk5uAy7o6uuIkjOhiaBYh57kbr80GZ6HQ= Subject key identifier: F7:B6:07:0C:C2:78:24:3B:71:D8:7A:FC:7A:D9:DA:9B:3B:54:D5:A4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4CCE67ADD4A0D90D9159789E9DDBF64DDC78F808 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154307.roa Signing time: Wed 22 Oct 2025 02:34:54 +0000 ROA not before: Wed 22 Oct 2025 02:29:54 +0000 ROA not after: Wed 21 Oct 2026 02:34:54 +0000 asID: 154307 IP address blocks: 2001:df6:3b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ce:67:ad:d4:a0:d9:0d:91:59:78:9e:9d:db:f6:4d:dc:78:f8:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 22 02:29:54 2025 GMT Not After : Oct 21 02:34:54 2026 GMT Subject: CN=F7B6070CC278243B71D87AFC7AD9DA9B3B54D5A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:74:0d:e0:64:b2:c6:2e:dd:cc:46:8d:a3:ca: 54:4e:c2:db:cc:72:77:92:92:3a:1f:3f:f8:44:9d: 3e:55:05:a2:30:2e:6e:32:de:5f:f2:fa:5c:ad:0d: da:9d:01:39:cb:fe:1b:1d:c6:dc:1b:96:13:c1:e4: 55:0c:3b:49:a9:20:6b:4f:46:41:0b:28:cc:e4:37: c6:1d:e0:43:08:bf:64:bf:da:5f:2b:45:de:37:ed: 6e:01:d5:41:87:19:92:92:cc:51:e9:ec:1d:bc:5a: 29:df:ab:1b:53:df:93:b2:74:8b:b2:53:a1:f2:05: a5:15:13:b9:46:e3:1b:1a:0b:ca:00:ca:63:27:81: 30:7b:50:53:23:bf:ee:07:88:f9:4b:c5:84:1e:32: 51:f5:1d:65:70:11:89:d6:a2:c5:bb:79:9f:29:1f: c6:31:9a:46:28:b7:55:2c:d0:39:85:5a:99:6b:d9: ce:12:c9:d7:8a:d8:e4:fe:cd:08:7b:d8:3b:6c:69: 37:2f:eb:59:6d:12:b1:75:ed:51:51:7f:82:d7:b4: 28:2e:01:7a:a9:33:89:a0:a2:3c:4a:ca:2b:7a:f3: 94:14:7d:34:43:65:46:90:91:4c:e4:28:0b:12:1f: 52:a8:dd:68:11:a9:2b:9d:2c:0b:09:59:50:42:3b: ee:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B6:07:0C:C2:78:24:3B:71:D8:7A:FC:7A:D9:DA:9B:3B:54:D5:A4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154307.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:3b40::/48 Signature Algorithm: sha256WithRSAEncryption 2e:81:0e:1a:51:9c:d7:11:62:1d:02:87:a2:ec:c5:41:fd:3b: 43:a3:a5:68:4e:7f:73:c9:f4:28:60:2a:86:7b:83:70:f6:17: 46:a4:31:47:82:89:0f:c3:68:7d:c5:95:cd:7b:9d:c9:65:c8: b2:bd:3e:a7:e6:9f:6d:3c:7d:56:d7:fa:37:51:65:a8:7f:4b: 1b:df:ac:f2:20:51:5f:24:6d:b9:df:4d:8b:43:d3:b2:92:db: be:f4:0a:c2:85:29:4a:a8:a3:af:ec:bc:a1:00:c6:cc:fe:42: f5:1a:00:12:c3:25:4c:09:96:3e:38:55:73:8f:68:02:60:ee: f5:8c:6c:83:c4:8a:52:c7:04:22:f0:42:6d:3d:78:37:17:7e: 06:86:3f:ed:9d:c7:e8:4a:4d:ac:7e:11:50:14:9e:7f:bc:69: 82:db:7b:a3:f8:0b:04:9a:34:a9:b8:17:f7:a0:c5:5b:58:01: 30:22:c7:93:c0:79:8f:93:08:30:f6:d8:15:d1:3e:dc:43:71: eb:73:7a:dc:0e:c8:bd:b9:88:d2:9f:79:1a:8b:52:71:c2:c1: 07:22:00:d6:64:ad:53:72:a0:a2:dd:b7:dc:3c:a3:34:24:7e: b6:7a:a2:07:79:00:82:b8:ba:6f:05:4a:aa:7f:8a:26:0a:d2: a6:93:5e:01 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUTM5nrdSg2Q2RWXiendv2Tdx4+AgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyMjAyMjk1NFoX DTI2MTAyMTAyMzQ1NFowMzExMC8GA1UEAxMoRjdCNjA3MENDMjc4MjQzQjcxRDg3 QUZDN0FEOURBOUIzQjU0RDVBNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ10DeBkssYu3cxGjaPKVE7C28xyd5KSOh8/+ESdPlUFojAubjLeX/L6XK0N 2p0BOcv+Gx3G3BuWE8HkVQw7Sakga09GQQsozOQ3xh3gQwi/ZL/aXytF3jftbgHV QYcZkpLMUensHbxaKd+rG1Pfk7J0i7JTofIFpRUTuUbjGxoLygDKYyeBMHtQUyO/ 7geI+UvFhB4yUfUdZXARidaixbt5nykfxjGaRii3VSzQOYVamWvZzhLJ14rY5P7N CHvYO2xpNy/rWW0SsXXtUVF/gte0KC4BeqkziaCiPErKK3rzlBR9NENlRpCRTOQo CxIfUqjdaBGpK50sCwlZUEI77uMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT3tgcM wngkO3HYevx62dqbO1TVpDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDMwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfY7QDANBgkqhkiG9w0BAQsFAAOCAQEALoEOGlGc1xFiHQKH ouzFQf07Q6OlaE5/c8n0KGAqhnuDcPYXRqQxR4KJD8NofcWVzXudyWXIsr0+p+af bTx9Vtf6N1FlqH9LG9+s8iBRXyRtud9Ni0PTspLbvvQKwoUpSqijr+y8oQDGzP5C 9RoAEsMlTAmWPjhVc49oAmDu9Yxsg8SKUscEIvBCbT14Nxd+BoY/7Z3H6EpNrH4R UBSef7xpgtt7o/gLBJo0qbgX96DFW1gBMCLHk8B5j5MIMPbYFdE+3ENx63N63A7I vbmI0p95GotSccLBByIA1mStU3Kgot233DyjNCR+tnqiB3kAgri6bwVKqn+KJgrS ppNeAQ== -----END CERTIFICATE-----Generated at Mon Nov 3 19:31:37 2025 by rpki-client