$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154520.roa File: AS154520.roa (raw, json) Hash identifier: SUaANjJeTIpFosyvT8bOh2KrtyWiroRtoAJquzaRFzI= Subject key identifier: 74:63:29:8F:AD:25:C4:23:14:DB:79:8E:DD:E9:0E:45:1E:17:17:80 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 618E003A8E905D2D99A45F14EA8380183937498F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154520.roa Signing time: Thu 26 Feb 2026 05:37:08 +0000 ROA not before: Thu 26 Feb 2026 05:32:08 +0000 ROA not after: Thu 25 Feb 2027 05:37:08 +0000 asID: 154520 IP address blocks: 2001:df6:c2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8e:00:3a:8e:90:5d:2d:99:a4:5f:14:ea:83:80:18:39:37:49:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 26 05:32:08 2026 GMT Not After : Feb 25 05:37:08 2027 GMT Subject: CN=7463298FAD25C42314DB798EDDE90E451E171780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a8:90:21:ea:74:bc:32:26:03:80:a9:f1:88: a9:ad:57:b0:9f:71:5f:86:55:84:f2:10:13:30:b6: 9f:5f:6e:73:61:5d:cf:93:b0:80:29:90:a7:7b:7a: 13:ff:a3:b8:d7:eb:4c:9a:55:85:14:6d:36:eb:b7: ca:af:23:3a:d6:94:2b:ba:6a:ae:fc:77:16:09:da: 35:89:81:04:d3:5c:41:7f:31:66:40:d4:a9:94:1d: d3:e2:81:63:7c:81:8c:4b:90:49:72:6b:b2:01:60: fa:27:02:cc:bd:77:0c:09:c1:4f:75:c6:99:0c:9a: b3:6f:86:3a:e6:56:81:03:20:dd:9b:b9:9a:b5:85: 46:cc:f9:0b:18:60:7e:9d:a1:b7:ef:57:48:33:67: e4:85:f3:c0:a2:fa:e2:ca:24:10:a2:50:d6:5d:d2: 3b:14:e4:a8:44:50:53:6c:f2:86:39:d6:35:b3:4c: 89:93:ab:84:3d:7f:3e:81:db:8c:cb:3f:cb:9a:2e: c3:e0:eb:78:97:b7:f7:52:1a:38:0f:ab:ed:d2:43: 48:76:70:5d:a8:41:34:5f:b6:ba:94:3f:e8:06:93: a2:8d:f1:da:06:d7:17:aa:bc:74:9e:a3:e9:72:12: 41:8b:60:f0:57:20:e2:e3:a7:4f:fe:9b:a7:fb:76: a8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:63:29:8F:AD:25:C4:23:14:DB:79:8E:DD:E9:0E:45:1E:17:17:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154520.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:c2c0::/48 Signature Algorithm: sha256WithRSAEncryption 86:e8:c7:63:3f:e3:b6:16:94:e4:cc:5a:3b:61:88:f4:a9:97: da:54:02:27:7f:ff:2c:39:c1:1d:2e:bb:76:bb:67:54:8a:8d: 2a:4d:83:06:8d:25:db:fb:77:26:6a:7a:ab:52:46:51:39:25: 2a:59:0f:e4:34:c4:f3:46:29:76:27:2d:c4:38:2d:61:9e:60: 84:fe:ba:0b:5e:83:e4:34:0e:f4:fb:e0:8b:1d:ca:e4:ce:5c: 5b:fb:6c:6f:15:6f:1f:f4:ef:a7:44:03:f9:6c:79:71:e7:fa: 6c:62:8d:58:7f:38:c3:99:cc:76:cc:9e:13:ea:42:99:4c:79: 03:f5:5c:7f:ee:7c:8f:49:c2:e5:0e:0d:97:85:63:c6:4e:fc: 85:d3:18:15:1a:22:24:53:94:73:cb:aa:0c:f2:b2:23:bf:a0: 1e:5b:d6:ba:00:a3:29:76:1c:1a:73:d1:d4:55:3b:dc:38:ce: 88:21:fd:d8:6d:78:32:67:d9:4f:3d:95:27:b5:ce:53:aa:f4: 71:29:f2:cb:ae:73:1b:22:cb:b6:26:25:23:6a:25:b6:69:6c: 52:c7:53:fb:1b:26:1a:49:11:42:47:e3:20:16:44:2b:48:09: ee:5e:d5:57:ba:b2:a4:d1:db:c6:b2:10:de:da:3d:c5:e5:07: 73:08:4f:b8 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUYY4AOo6QXS2ZpF8U6oOAGDk3SY8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIyNjA1MzIwOFoX DTI3MDIyNTA1MzcwOFowMzExMC8GA1UEAxMoNzQ2MzI5OEZBRDI1QzQyMzE0REI3 OThFRERFOTBFNDUxRTE3MTc4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOKokCHqdLwyJgOAqfGIqa1XsJ9xX4ZVhPIQEzC2n19uc2Fdz5OwgCmQp3t6 E/+juNfrTJpVhRRtNuu3yq8jOtaUK7pqrvx3FgnaNYmBBNNcQX8xZkDUqZQd0+KB Y3yBjEuQSXJrsgFg+icCzL13DAnBT3XGmQyas2+GOuZWgQMg3Zu5mrWFRsz5Cxhg fp2ht+9XSDNn5IXzwKL64sokEKJQ1l3SOxTkqERQU2zyhjnWNbNMiZOrhD1/PoHb jMs/y5ouw+DreJe391IaOA+r7dJDSHZwXahBNF+2upQ/6AaToo3x2gbXF6q8dJ6j 6XISQYtg8Fcg4uOnT/6bp/t2qBUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBR0YymP rSXEIxTbeY7d6Q5FHhcXgDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDUyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfbCwDANBgkqhkiG9w0BAQsFAAOCAQEAhujHYz/jthaU5Mxa O2GI9KmX2lQCJ3//LDnBHS67drtnVIqNKk2DBo0l2/t3Jmp6q1JGUTklKlkP5DTE 80YpdictxDgtYZ5ghP66C16D5DQO9Pvgix3K5M5cW/tsbxVvH/Tvp0QD+Wx5cef6 bGKNWH84w5nMdsyeE+pCmUx5A/Vcf+58j0nC5Q4Nl4Vjxk78hdMYFRoiJFOUc8uq DPKyI7+gHlvWugCjKXYcGnPR1FU73DjOiCH92G14MmfZTz2VJ7XOU6r0cSnyy65z GyLLtiYlI2oltmlsUsdT+xsmGkkRQkfjIBZEK0gJ7l7VV7qypNHbxrIQ3to9xeUH cwhPuA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:56:37 2026 by rpki-client