$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154607.roa File: AS154607.roa (raw, json) Hash identifier: WdMUqOzgrI4bcyqUnD6J3mMuFbPcx4pr5M4mNk3fJiw= Subject key identifier: 6A:87:FE:7C:EF:41:7B:B6:91:4B:50:08:97:79:01:99:31:76:DB:BF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3FC51ABF8C0CF517834B47D7B6BAD2EB12DE45B3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154607.roa Signing time: Mon 13 Apr 2026 07:57:01 +0000 ROA not before: Mon 13 Apr 2026 07:52:01 +0000 ROA not after: Mon 12 Apr 2027 07:57:01 +0000 asID: 154607 IP address blocks: 163.128.195.0/24 maxlen: 24 2001:df6:e740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:c5:1a:bf:8c:0c:f5:17:83:4b:47:d7:b6:ba:d2:eb:12:de:45:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 13 07:52:01 2026 GMT Not After : Apr 12 07:57:01 2027 GMT Subject: CN=6A87FE7CEF417BB6914B5008977901993176DBBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:df:e3:1a:32:30:d5:8c:08:24:f9:9b:14:0d: 16:20:ef:9b:df:cc:7b:4e:28:25:ff:90:3b:33:82: 9c:1d:38:e2:cc:69:cf:87:e4:52:ff:3c:ff:51:6c: 03:34:cb:ab:da:af:ac:fa:12:20:5c:3f:d5:5f:15: ad:4f:31:cc:84:50:31:99:2f:79:2e:aa:33:9e:d4: 5b:38:63:5f:62:b7:0d:b7:89:c1:14:c7:4d:d5:77: c2:8d:68:60:d8:fc:34:2e:3c:69:7b:8a:e9:b2:e2: 4b:ec:be:1f:c9:45:d2:8a:aa:6e:f4:ad:d0:22:9c: fb:c7:bb:bb:2d:f5:62:96:3b:1a:be:60:90:a7:2e: fa:cf:db:38:50:bd:ad:ad:c5:5f:2e:eb:d6:ae:7f: 5a:17:7f:25:d3:8d:9d:63:9a:6e:f3:fb:98:75:08: 41:79:58:32:3b:d2:5e:eb:78:e0:94:39:23:1c:f9: d5:d5:8a:99:7a:a7:ac:eb:19:75:19:6e:1f:41:50: 15:12:66:dd:36:9b:19:24:f0:10:e7:64:41:4c:e2: 01:d7:14:09:4e:02:98:30:25:41:1b:c2:42:9f:f1: 31:a6:68:5f:0f:83:a8:d7:2d:01:9a:8c:ff:f7:ce: 60:db:c5:c0:2e:95:32:19:3e:78:1e:a5:f6:be:45: 98:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:87:FE:7C:EF:41:7B:B6:91:4B:50:08:97:79:01:99:31:76:DB:BF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154607.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.195.0/24 IPv6: 2001:df6:e740::/48 Signature Algorithm: sha256WithRSAEncryption 12:59:b2:35:a3:8d:0e:8d:dd:26:91:f5:d4:3e:02:65:92:a4: cf:62:11:4f:61:67:9e:4f:e3:23:dd:93:0d:88:0b:73:a4:5a: d4:96:62:cd:17:3c:9b:a1:31:51:66:48:24:de:cb:3f:98:24: de:93:32:ce:4a:0e:ba:20:4d:98:a9:a4:98:3f:55:42:1f:2b: 3f:db:c0:1a:80:a2:2f:16:35:1e:40:2f:e7:1e:f7:3d:ee:4e: d0:ba:ad:96:64:7e:d9:57:04:e8:0e:ee:58:0b:d2:2a:97:51: 2e:af:af:5c:7b:6f:39:c9:53:ae:97:58:f6:41:f9:9a:68:16: 5b:99:f7:c0:86:6b:07:e8:5d:1e:4a:13:04:5a:3e:37:15:04: 81:d6:60:49:ef:f3:c8:c5:44:9a:c5:76:d9:73:e7:5a:80:e7: a2:b5:b3:12:19:c1:de:30:aa:c5:87:67:e3:a8:7d:39:3a:de: 25:35:8f:3b:48:01:6e:02:6b:1c:4c:29:0d:af:c0:62:b0:c1: bd:39:34:67:d7:6b:f8:62:3c:0c:61:72:e9:7e:14:79:02:12: 18:46:28:8e:45:c4:cb:7a:3c:8a:d7:e6:8f:e9:c2:f7:e6:80: 16:4a:9c:08:4c:76:75:ef:63:0d:6a:39:1b:05:1a:9b:35:0b: 70:bc:27:64 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUP8Uav4wM9ReDS0fXtrrS6xLeRbMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQxMzA3NTIwMVoX DTI3MDQxMjA3NTcwMVowMzExMC8GA1UEAxMoNkE4N0ZFN0NFRjQxN0JCNjkxNEI1 MDA4OTc3OTAxOTkzMTc2REJCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7f4xoyMNWMCCT5mxQNFiDvm9/Me04oJf+QOzOCnB044sxpz4fkUv88/1Fs AzTLq9qvrPoSIFw/1V8VrU8xzIRQMZkveS6qM57UWzhjX2K3DbeJwRTHTdV3wo1o YNj8NC48aXuK6bLiS+y+H8lF0oqqbvSt0CKc+8e7uy31YpY7Gr5gkKcu+s/bOFC9 ra3FXy7r1q5/Whd/JdONnWOabvP7mHUIQXlYMjvSXut44JQ5Ixz51dWKmXqnrOsZ dRluH0FQFRJm3TabGSTwEOdkQUziAdcUCU4CmDAlQRvCQp/xMaZoXw+DqNctAZqM //fOYNvFwC6VMhk+eB6l9r5FmLsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRqh/58 70F7tpFLUAiXeQGZMXbbvzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDYwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKOAwzAPBAIAAjAJAwcAIAEN9udAMA0GCSqGSIb3DQEBCwUAA4IB AQASWbI1o40Ojd0mkfXUPgJlkqTPYhFPYWeeT+Mj3ZMNiAtzpFrUlmLNFzyboTFR Zkgk3ss/mCTekzLOSg66IE2YqaSYP1VCHys/28AagKIvFjUeQC/nHvc97k7Quq2W ZH7ZVwToDu5YC9Iql1Eur69ce285yVOul1j2QfmaaBZbmffAhmsH6F0eShMEWj43 FQSB1mBJ7/PIxUSaxXbZc+dagOeitbMSGcHeMKrFh2fjqH05Ot4lNY87SAFuAmsc TCkNr8BisMG9OTRn12v4YjwMYXLpfhR5AhIYRiiORcTLejyK1+aP6cL35oAWSpwI THZ172MNajkbBRqbNQtwvCdk -----END CERTIFICATE-----Generated at Fri Apr 17 16:02:48 2026 by rpki-client