$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154574.roa File: AS154574.roa (raw, json) Hash identifier: eGP6pbSDGWq9vHlRdsnGUQ2/sbddRMzoTan8GaWK+io= Subject key identifier: 65:A8:C0:DA:6C:08:AD:5F:E6:BD:63:BE:EB:D9:E8:3B:53:FC:EE:5C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 349A1116A54932CE18AD47D61670B038680AC5AE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154574.roa Signing time: Tue 31 Mar 2026 07:10:55 +0000 ROA not before: Tue 31 Mar 2026 07:05:55 +0000 ROA not after: Tue 30 Mar 2027 07:10:55 +0000 asID: 154574 IP address blocks: 163.128.88.0/23 maxlen: 24 2001:df6:d740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:9a:11:16:a5:49:32:ce:18:ad:47:d6:16:70:b0:38:68:0a:c5:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 31 07:05:55 2026 GMT Not After : Mar 30 07:10:55 2027 GMT Subject: CN=65A8C0DA6C08AD5FE6BD63BEEBD9E83B53FCEE5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a7:2c:b6:12:26:f5:0f:5f:09:5c:b6:0d:56: 5c:4c:06:8a:54:ee:98:70:80:93:09:f4:43:fc:d3: 93:23:6e:39:b8:d7:27:b6:bf:33:bb:7a:0a:56:7a: e1:07:8e:be:ea:20:7f:2c:92:f9:25:42:22:1a:c5: fd:fb:ea:ad:24:e7:18:4b:40:5c:18:73:6a:97:93: 48:b0:4c:54:4f:40:f6:d0:53:e4:e6:8f:2f:6c:97: 63:5a:bc:76:05:0b:ba:d3:8c:15:f5:5b:21:8c:61: dc:5e:5b:26:d1:a0:bc:7a:a7:2c:84:19:e6:97:f9: db:20:91:c0:ac:c7:cf:c2:59:f1:33:0b:aa:67:98: 60:92:86:5a:85:8e:cb:15:a4:7c:01:11:67:71:30: fe:7d:6c:b2:1f:45:25:38:5d:fd:c8:26:93:0f:a8: e3:3b:c6:7c:b1:df:0a:cf:2c:7a:b6:cf:39:97:f8: 17:37:d9:44:be:0f:cb:90:aa:e2:c1:e7:4c:b0:87: fc:d5:03:72:9d:40:b1:c3:29:2b:40:e7:ea:11:23: 7a:d1:bd:11:b4:0e:1d:79:59:77:1c:3f:e3:51:46: 8d:13:f4:26:b7:88:0a:06:a3:8d:ce:0c:0a:f2:e4: 69:c3:25:e3:d9:c9:17:33:38:f4:98:04:21:2e:8c: dd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A8:C0:DA:6C:08:AD:5F:E6:BD:63:BE:EB:D9:E8:3B:53:FC:EE:5C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154574.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.88.0/23 IPv6: 2001:df6:d740::/48 Signature Algorithm: sha256WithRSAEncryption 6b:a3:1d:17:6c:86:a1:9a:cb:49:9e:43:f1:24:68:78:00:83: 3d:a2:37:eb:4f:82:11:ee:aa:48:ca:57:44:d7:4f:93:98:c0: ec:4f:3f:9c:54:41:e7:f4:c0:1e:07:2a:65:f6:9e:cc:6e:65: 1f:e0:72:bd:94:27:4e:fb:fd:0c:4c:2b:96:e2:12:f9:e8:0d: 69:b0:29:fb:24:9d:fa:80:c3:e8:9e:2f:af:9c:6b:a9:b3:cf: 23:c2:3a:02:7b:95:53:4c:eb:91:ba:b7:80:fc:c0:2f:d4:78: 4a:c7:d0:ce:94:c2:78:41:d3:ef:1d:77:58:e1:bc:28:63:a7: 26:3c:a1:40:38:e4:0e:93:7d:5f:2f:f3:a7:0b:95:0d:96:00: 76:38:f8:ca:8f:85:1b:0b:7a:c3:19:f3:43:7a:bc:3c:ea:f7: 07:2f:2d:0f:d8:fb:74:ec:b6:ea:af:84:fc:a6:95:ac:45:3a: 1a:8a:fa:4a:1a:bc:95:aa:90:26:ff:77:36:e2:7c:2b:31:af: cb:76:86:8a:c4:74:1e:6c:6f:81:b2:9d:dd:7f:63:bb:bd:6e: 7c:fe:82:a1:29:1f:f2:5c:c1:51:a1:de:7c:ba:bd:82:21:62: 00:4b:4a:1a:17:73:46:04:29:07:75:d9:90:3c:47:5d:67:8a: e7:d9:c1:7f -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUNJoRFqVJMs4YrUfWFnCwOGgKxa4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMzMTA3MDU1NVoX DTI3MDMzMDA3MTA1NVowMzExMC8GA1UEAxMoNjVBOEMwREE2QzA4QUQ1RkU2QkQ2 M0JFRUJEOUU4M0I1M0ZDRUU1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMenLLYSJvUPXwlctg1WXEwGilTumHCAkwn0Q/zTkyNuObjXJ7a/M7t6ClZ6 4QeOvuogfyyS+SVCIhrF/fvqrSTnGEtAXBhzapeTSLBMVE9A9tBT5OaPL2yXY1q8 dgULutOMFfVbIYxh3F5bJtGgvHqnLIQZ5pf52yCRwKzHz8JZ8TMLqmeYYJKGWoWO yxWkfAERZ3Ew/n1ssh9FJThd/cgmkw+o4zvGfLHfCs8serbPOZf4FzfZRL4Py5Cq 4sHnTLCH/NUDcp1AscMpK0Dn6hEjetG9EbQOHXlZdxw/41FGjRP0JreICgajjc4M CvLkacMl49nJFzM49JgEIS6M3T0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRlqMDa bAitX+a9Y77r2eg7U/zuXDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDU3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaOAWDAPBAIAAjAJAwcAIAEN9tdAMA0GCSqGSIb3DQEBCwUAA4IB AQBrox0XbIahmstJnkPxJGh4AIM9ojfrT4IR7qpIyldE10+TmMDsTz+cVEHn9MAe Bypl9p7MbmUf4HK9lCdO+/0MTCuW4hL56A1psCn7JJ36gMPoni+vnGups88jwjoC e5VTTOuRureA/MAv1HhKx9DOlMJ4QdPvHXdY4bwoY6cmPKFAOOQOk31fL/OnC5UN lgB2OPjKj4UbC3rDGfNDerw86vcHLy0P2Pt07Lbqr4T8ppWsRToaivpKGryVqpAm /3c24nwrMa/LdoaKxHQebG+Bsp3df2O7vW58/oKhKR/yXMFRod58ur2CIWIAS0oa F3NGBCkHddmQPEddZ4rn2cF/ -----END CERTIFICATE-----Generated at Fri Apr 17 16:02:52 2026 by rpki-client