$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154314.roa File: AS154314.roa (raw, json) Hash identifier: ZAVeP0tKxPO2/1dHzwhNRecwXelSiHDYBQSpJfa7XIs= Subject key identifier: 0B:BE:87:3F:33:AD:2C:A0:BD:83:FE:86:3E:65:05:38:99:C4:6B:7B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1E720078C865BDAC37FC62C455F91B5ABE0F3AD6 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154314.roa Signing time: Thu 21 May 2026 07:25:13 +0000 ROA not before: Thu 21 May 2026 07:20:13 +0000 ROA not after: Thu 20 May 2027 07:25:13 +0000 asID: 154314 IP address blocks: 202.154.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:72:00:78:c8:65:bd:ac:37:fc:62:c4:55:f9:1b:5a:be:0f:3a:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 21 07:20:13 2026 GMT Not After : May 20 07:25:13 2027 GMT Subject: CN=0BBE873F33AD2CA0BD83FE863E65053899C46B7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:67:70:3c:a0:0a:e1:bc:71:df:78:fa:b6:07: d8:cc:3e:81:7b:0b:bb:20:3f:03:6a:ff:a7:a1:4a: e4:ea:a6:f4:df:33:2d:43:a9:53:b9:3f:d9:de:82: 5f:8f:e4:ba:77:0f:68:38:ff:04:5a:7f:69:1e:6f: d7:09:32:0e:61:4a:49:4d:ad:c8:8d:ba:81:49:bd: 3b:22:a9:14:36:31:5b:58:0d:35:29:9d:7c:1a:69: 28:af:5d:89:dc:8b:61:f3:85:93:8f:32:33:c3:15: a3:7f:8a:56:dc:55:45:cc:8d:97:ea:f2:65:b3:3f: bc:61:8c:d4:76:85:31:e3:1b:e2:91:67:09:d7:cf: c7:c7:af:3a:df:31:95:86:10:0a:96:61:64:25:31: 9a:35:c3:a4:d5:fd:ee:1f:38:64:e3:d2:59:ef:f5: 1c:47:e3:32:26:57:0a:12:41:c0:3b:93:d1:e9:68: dc:56:bb:9b:2a:e7:01:b8:0c:ee:f5:3b:eb:f6:d9: 4a:56:af:b6:32:0d:92:e3:0e:5f:f9:b6:84:7a:7a: 78:05:bf:be:bc:a9:74:af:34:50:47:3c:82:b2:ec: f4:b6:ba:c7:f3:13:87:b7:d1:17:dc:38:70:92:e1: fe:2d:39:64:2b:6f:a9:99:76:25:b2:11:67:58:e0: 6e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BE:87:3F:33:AD:2C:A0:BD:83:FE:86:3E:65:05:38:99:C4:6B:7B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154314.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.17.0/24 Signature Algorithm: sha256WithRSAEncryption 52:0a:fd:ec:88:e7:4a:9f:bf:eb:e6:a3:ad:1d:1d:e4:35:c4: c5:85:15:42:56:83:5f:9c:ca:e1:fc:c4:fd:e4:6a:89:19:05: ba:d7:65:2a:35:44:b2:73:a9:8b:e7:9c:de:1c:0a:9f:10:c6: 84:82:9a:01:34:67:e4:bd:7e:3e:39:d1:1e:2f:d4:80:af:71: d1:2d:d0:93:31:fc:2a:c8:be:f0:df:00:a5:de:89:95:68:90: c2:6d:ac:08:3d:e8:5d:52:ab:e7:9f:d3:c3:d1:1b:18:f3:4d: 1f:54:e2:87:08:a9:0c:cd:7f:0d:ed:f8:7e:09:3a:2c:9f:0b: 20:38:a3:28:47:73:c3:4c:d1:15:90:52:ad:a9:a4:9d:c5:ba: e5:0f:e0:81:e2:45:ea:f0:a0:52:b5:c2:30:a5:8f:27:6f:03: bf:84:39:2c:a6:a2:05:b1:25:6b:a8:d7:13:a8:2e:d4:a8:bb: 21:e1:9d:35:2a:f3:2b:81:e0:88:94:18:16:39:f4:00:db:35: 23:b5:b9:41:ac:c0:0d:29:c2:63:fc:d5:8c:62:21:b9:79:86: 8e:17:ac:30:a3:17:fe:17:a8:23:70:76:7c:42:89:05:19:cf: 27:19:c4:ae:63:fd:64:ee:d9:de:1f:17:68:d2:16:8b:ed:f3: 3e:12:73:73 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUHnIAeMhlvaw3/GLEVfkbWr4POtYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUyMTA3MjAxM1oX DTI3MDUyMDA3MjUxM1owMzExMC8GA1UEAxMoMEJCRTg3M0YzM0FEMkNBMEJEODNG RTg2M0U2NTA1Mzg5OUM0NkI3QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFncDygCuG8cd94+rYH2Mw+gXsLuyA/A2r/p6FK5Oqm9N8zLUOpU7k/2d6C X4/kuncPaDj/BFp/aR5v1wkyDmFKSU2tyI26gUm9OyKpFDYxW1gNNSmdfBppKK9d idyLYfOFk48yM8MVo3+KVtxVRcyNl+ryZbM/vGGM1HaFMeMb4pFnCdfPx8evOt8x lYYQCpZhZCUxmjXDpNX97h84ZOPSWe/1HEfjMiZXChJBwDuT0elo3Fa7myrnAbgM 7vU76/bZSlavtjINkuMOX/m2hHp6eAW/vrypdK80UEc8grLs9La6x/MTh7fRF9w4 cJLh/i05ZCtvqZl2JbIRZ1jgbkMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQLvoc/ M60soL2D/oY+ZQU4mcRrezAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0MzE0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAypoRMA0GCSqGSIb3DQEBCwUAA4IBAQBSCv3siOdKn7/r5qOtHR3kNcTF hRVCVoNfnMrh/MT95GqJGQW612UqNUSyc6mL55zeHAqfEMaEgpoBNGfkvX4+OdEe L9SAr3HRLdCTMfwqyL7w3wCl3omVaJDCbawIPehdUqvnn9PD0RsY800fVOKHCKkM zX8N7fh+CTosnwsgOKMoR3PDTNEVkFKtqaSdxbrlD+CB4kXq8KBStcIwpY8nbwO/ hDkspqIFsSVrqNcTqC7UqLsh4Z01KvMrgeCIlBgWOfQA2zUjtblBrMANKcJj/NWM YiG5eYaOF6wwoxf+F6gjcHZ8QokFGc8nGcSuY/1k7tneHxdo0haL7fM+EnNz -----END CERTIFICATE-----Generated at Wed Jun 17 08:48:29 2026 by rpki-client