$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154590.roa File: AS154590.roa (raw, json) Hash identifier: 0zWBSsqhyU5uUzyQukOqDyqRpBt+iShizSjOmcjf+CQ= Subject key identifier: 5E:9E:F1:DF:AB:49:8D:5A:A0:45:85:27:29:79:94:59:3D:18:B8:12 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55E244317A37C0477F78A881A10A91752B77E8C5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154590.roa Signing time: Thu 09 Apr 2026 06:41:58 +0000 ROA not before: Thu 09 Apr 2026 06:36:58 +0000 ROA not after: Thu 08 Apr 2027 06:41:58 +0000 asID: 154590 IP address blocks: 163.128.162.0/24 maxlen: 24 2001:df6:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e2:44:31:7a:37:c0:47:7f:78:a8:81:a1:0a:91:75:2b:77:e8:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 9 06:36:58 2026 GMT Not After : Apr 8 06:41:58 2027 GMT Subject: CN=5E9EF1DFAB498D5AA0458527297994593D18B812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:01:1c:2a:f2:1b:1c:d3:94:84:66:dc:ad:26: d3:da:2d:cb:82:dc:0e:9c:e1:0b:c4:98:57:3b:a2: c3:e1:7c:98:bd:91:87:cd:be:87:a6:7e:94:7c:23: d7:12:37:ba:dd:c6:59:c1:1e:3f:44:6c:7d:b1:b3: c8:b4:a4:a3:47:4e:34:8b:9d:17:cb:9f:cf:bf:0a: de:09:10:56:6d:0b:38:86:b6:7b:89:04:81:7f:06: fd:fc:ad:d8:43:95:ae:6e:50:32:f5:9b:bf:78:c8: d7:fd:d3:87:9e:f8:84:6f:cd:fc:4c:47:f1:29:8d: a8:81:f6:c1:8e:8a:b5:07:75:73:b2:90:0e:bf:78: e5:32:8c:bb:05:af:40:57:c5:8c:4c:99:bc:a0:9d: b7:28:30:ab:83:e5:bb:1d:90:45:cf:7f:31:8e:3f: 0b:d5:b6:69:11:e9:d4:0e:cb:27:e3:6b:c1:98:71: 0f:a8:0d:51:67:9b:22:94:f2:ac:a1:4a:b9:cc:a8: 90:47:1d:b5:34:5d:df:0d:78:21:bd:b9:f4:70:8a: d7:ce:9a:71:f0:81:5b:b4:44:e5:dc:b0:9b:c3:62: ed:1c:60:99:47:16:95:73:f9:db:c5:b3:83:14:08: dc:d6:8a:cb:ce:df:5d:e8:49:8b:7d:1f:e1:12:67: f9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9E:F1:DF:AB:49:8D:5A:A0:45:85:27:29:79:94:59:3D:18:B8:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.162.0/24 IPv6: 2001:df6:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 63:7a:49:54:bf:17:31:7f:1d:d8:47:14:44:a8:aa:f9:d6:8d: 77:8e:eb:5b:d1:ee:76:05:5b:e3:da:bd:44:4e:48:9f:fc:05: a7:00:ca:4b:77:e9:01:bb:f3:55:29:4a:50:8f:6b:a7:13:fd: 6c:84:dd:bf:48:36:08:10:48:ca:56:71:61:30:fb:5e:0a:e3: c9:47:d4:08:9a:d5:6e:9f:2b:48:9d:0a:07:fc:68:85:1e:3c: 55:43:12:4f:85:fa:48:82:5c:af:3a:70:48:d2:0a:54:fd:d3: 8f:c3:af:0b:a0:cf:9a:87:1d:61:ea:8c:1f:ec:fe:c0:ca:c1: b9:6c:45:ec:86:e9:fa:5c:cb:ca:02:9b:55:f1:1e:fd:89:5d: 62:c0:dc:af:66:70:ae:65:52:9a:a3:96:fa:6f:dc:85:16:43: 78:e7:ae:77:90:45:e3:5c:4f:16:1f:c2:c4:bc:ef:c3:08:0e: f8:8c:41:86:09:a9:07:cf:fd:68:7b:08:0a:f6:74:c8:e1:30: 1c:77:0f:4f:d6:ae:39:26:11:38:04:53:3e:d5:c4:51:a4:2c: b7:65:a7:26:5f:5b:04:e5:2c:7c:07:97:f1:a7:2c:aa:5b:9d: 08:fc:0c:55:99:fc:d5:24:2d:91:ec:a1:83:46:ef:f6:c7:30: 8c:07:d7:46 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUVeJEMXo3wEd/eKiBoQqRdSt36MUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwOTA2MzY1OFoX DTI3MDQwODA2NDE1OFowMzExMC8GA1UEAxMoNUU5RUYxREZBQjQ5OEQ1QUEwNDU4 NTI3Mjk3OTk0NTkzRDE4QjgxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8BHCryGxzTlIRm3K0m09oty4LcDpzhC8SYVzuiw+F8mL2Rh82+h6Z+lHwj 1xI3ut3GWcEeP0RsfbGzyLSko0dONIudF8ufz78K3gkQVm0LOIa2e4kEgX8G/fyt 2EOVrm5QMvWbv3jI1/3Th574hG/N/ExH8SmNqIH2wY6KtQd1c7KQDr945TKMuwWv QFfFjEyZvKCdtygwq4Plux2QRc9/MY4/C9W2aRHp1A7LJ+NrwZhxD6gNUWebIpTy rKFKucyokEcdtTRd3w14Ib259HCK186acfCBW7RE5dywm8Ni7RxgmUcWlXP528Wz gxQI3NaKy87fXehJi30f4RJn+ScCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRenvHf q0mNWqBFhScpeZRZPRi4EjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDU5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKOAojAPBAIAAjAJAwcAIAEN9uHAMA0GCSqGSIb3DQEBCwUAA4IB AQBjeklUvxcxfx3YRxREqKr51o13jutb0e52BVvj2r1ETkif/AWnAMpLd+kBu/NV KUpQj2unE/1shN2/SDYIEEjKVnFhMPteCuPJR9QImtVunytInQoH/GiFHjxVQxJP hfpIglyvOnBI0gpU/dOPw68LoM+ahx1h6owf7P7AysG5bEXshun6XMvKAptV8R79 iV1iwNyvZnCuZVKao5b6b9yFFkN45653kEXjXE8WH8LEvO/DCA74jEGGCakHz/1o ewgK9nTI4TAcdw9P1q45JhE4BFM+1cRRpCy3ZacmX1sE5Sx8B5fxpyyqW50I/AxV mfzVJC2R7KGDRu/2xzCMB9dG -----END CERTIFICATE-----Generated at Fri Apr 17 16:02:53 2026 by rpki-client