$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154479.roa File: AS154479.roa (raw, json) Hash identifier: Jgmw0yfWx+yKwcZv/UzSMaCppwYzgrxLhcts6RNBk2s= Subject key identifier: A6:8F:9B:9B:3A:8D:52:74:41:1C:43:9C:31:60:2B:6D:F0:7E:ED:55 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2C3740CA95C51972F7FF83752A2479D6F0084F98 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154479.roa Signing time: Wed 11 Feb 2026 05:57:28 +0000 ROA not before: Wed 11 Feb 2026 05:52:28 +0000 ROA not after: Wed 10 Feb 2027 05:57:28 +0000 asID: 154479 IP address blocks: 2001:df6:a2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:37:40:ca:95:c5:19:72:f7:ff:83:75:2a:24:79:d6:f0:08:4f:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 11 05:52:28 2026 GMT Not After : Feb 10 05:57:28 2027 GMT Subject: CN=A68F9B9B3A8D5274411C439C31602B6DF07EED55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d7:fb:dc:d8:c2:18:4e:80:10:c7:ed:da:f0: 30:62:aa:8d:1d:0d:20:66:f9:7f:3e:57:97:da:89: 22:1d:9e:18:a0:90:85:89:bf:97:d7:53:27:d4:36: da:0a:3e:00:d5:43:d5:12:4d:de:91:e5:a5:09:b8: 20:ea:4d:44:ff:c6:24:1f:65:c1:6e:01:03:80:93: d8:eb:47:e7:48:e3:41:1d:90:27:81:eb:c9:3a:e4: 70:4c:e0:76:3f:3a:e8:d1:c6:d1:7b:13:ee:f1:5b: cc:ec:a8:06:06:dd:48:1e:c3:f2:be:cf:3e:45:80: 4f:a4:b1:b3:d9:b5:16:4b:44:4d:f7:0e:56:0d:c9: 4f:31:b0:80:8d:18:d0:6f:81:19:9f:f9:0a:6c:79: 60:30:d2:db:6c:2d:9e:03:2a:e8:77:d8:41:71:03: 41:72:33:58:66:e5:a0:53:d9:1e:be:10:8b:27:bf: 21:6f:9a:32:87:21:bf:eb:b3:14:35:18:0e:63:75: 16:e3:04:04:ef:fe:2c:5c:a7:fc:93:2f:ba:88:db: 27:3d:fd:45:f0:e3:a5:7f:1e:6e:6b:41:1b:92:6b: 0d:8a:9d:16:2f:f2:79:4b:3d:77:de:20:63:a4:79: 75:db:2e:f7:37:06:67:26:1c:91:1d:ee:8e:70:61: 0f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8F:9B:9B:3A:8D:52:74:41:1C:43:9C:31:60:2B:6D:F0:7E:ED:55 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154479.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:a2c0::/48 Signature Algorithm: sha256WithRSAEncryption 71:ff:eb:7d:28:3d:74:19:93:14:99:d7:8c:82:0b:46:3f:a7: c3:12:79:73:db:68:d1:12:81:9e:84:ed:42:0a:c3:d4:31:c7: 9a:3f:59:c8:a1:a6:c1:02:a6:fa:45:85:11:1a:af:06:07:87: a0:fc:32:16:6e:d5:97:2e:3b:7e:e2:80:bb:15:e5:d9:73:38: fe:97:3d:df:05:99:61:2d:ec:c5:a6:bf:6c:b8:e7:d5:b9:e0: f5:88:ed:e1:ce:99:c9:44:d5:46:c4:d5:e7:8a:7d:13:a9:d0: 1c:23:c6:39:37:91:58:35:5e:72:30:e2:f9:fc:33:72:0f:85: 95:21:d3:b1:19:4a:aa:af:1a:09:09:9e:17:37:c9:52:c3:ba: 1f:31:0d:eb:ba:82:56:76:7b:22:b9:f2:d4:40:83:5a:d4:33: 73:35:05:4c:cf:63:00:2c:1e:5b:f7:40:8b:21:b9:3d:35:bd: 6d:57:56:4f:9c:de:98:62:d2:b9:ab:d0:d3:32:11:21:30:46: ca:7d:f4:66:39:79:f3:b1:ff:9e:4a:a1:91:d1:b1:1b:82:f2: dd:31:5e:57:d6:a0:bf:8a:e6:a2:8b:e1:ef:a8:3a:e7:1f:f7: cb:52:25:2f:b3:56:6b:74:dc:12:e1:d8:ff:85:97:05:dd:1c: f4:ab:60:42 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIULDdAypXFGXL3/4N1KiR51vAIT5gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIxMTA1NTIyOFoX DTI3MDIxMDA1NTcyOFowMzExMC8GA1UEAxMoQTY4RjlCOUIzQThENTI3NDQxMUM0 MzlDMzE2MDJCNkRGMDdFRUQ1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPHX+9zYwhhOgBDH7drwMGKqjR0NIGb5fz5Xl9qJIh2eGKCQhYm/l9dTJ9Q2 2go+ANVD1RJN3pHlpQm4IOpNRP/GJB9lwW4BA4CT2OtH50jjQR2QJ4HryTrkcEzg dj866NHG0XsT7vFbzOyoBgbdSB7D8r7PPkWAT6Sxs9m1FktETfcOVg3JTzGwgI0Y 0G+BGZ/5Cmx5YDDS22wtngMq6HfYQXEDQXIzWGbloFPZHr4Qiye/IW+aMochv+uz FDUYDmN1FuMEBO/+LFyn/JMvuojbJz39RfDjpX8ebmtBG5JrDYqdFi/yeUs9d94g Y6R5ddsu9zcGZyYckR3ujnBhD30CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSmj5ub Oo1SdEEcQ5wxYCtt8H7tVTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDQ3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfaiwDANBgkqhkiG9w0BAQsFAAOCAQEAcf/rfSg9dBmTFJnX jIILRj+nwxJ5c9to0RKBnoTtQgrD1DHHmj9ZyKGmwQKm+kWFERqvBgeHoPwyFm7V ly47fuKAuxXl2XM4/pc93wWZYS3sxaa/bLjn1bng9Yjt4c6ZyUTVRsTV54p9E6nQ HCPGOTeRWDVecjDi+fwzcg+FlSHTsRlKqq8aCQmeFzfJUsO6HzEN67qCVnZ7Irny 1ECDWtQzczUFTM9jACweW/dAiyG5PTW9bVdWT5zemGLSuavQ0zIRITBGyn30Zjl5 87H/nkqhkdGxG4Ly3TFeV9agv4rmoovh76g65x/3y1IlL7NWa3TcEuHY/4WXBd0c 9KtgQg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:56:39 2026 by rpki-client