$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS154681.roa File: AS154681.roa (raw, json) Hash identifier: 3kBvbx6crpOzIMYDHCUtzPfI66C4Zc2KnWZJ7JeyMlY= Subject key identifier: DA:C0:29:AD:EC:A4:78:8D:FF:E6:F7:2A:2B:DC:70:F7:E1:69:A2:6B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 285FA795895D1DDEB6338D80A6A60A19EC7EA04B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154681.roa Signing time: Wed 20 May 2026 06:48:11 +0000 ROA not before: Wed 20 May 2026 06:43:11 +0000 ROA not after: Wed 19 May 2027 06:48:11 +0000 asID: 154681 IP address blocks: 2001:df7:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5f:a7:95:89:5d:1d:de:b6:33:8d:80:a6:a6:0a:19:ec:7e:a0:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 20 06:43:11 2026 GMT Not After : May 19 06:48:11 2027 GMT Subject: CN=DAC029ADECA4788DFFE6F72A2BDC70F7E169A26B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:05:c5:d6:28:bf:1f:4b:5a:76:12:ba:a3:df: e2:ce:78:62:72:df:a4:ac:9e:31:20:d4:67:88:75: 20:5c:18:57:33:dc:5a:1a:12:ae:bb:58:dd:52:7c: 64:12:3e:e5:f5:69:1b:23:7f:16:d4:11:c6:ee:7a: 87:e9:42:71:63:f1:0a:9c:b2:37:a1:6d:32:1d:2f: d8:20:32:57:75:d2:ca:68:d3:79:4f:5b:da:31:33: d4:dc:07:e8:65:25:70:52:54:50:9e:12:5a:2c:9a: 8b:27:84:6b:a5:c0:3b:e8:af:c5:a8:df:9a:55:42: fb:9c:95:5b:ad:e7:6b:06:63:c1:d5:30:e1:04:53: 18:ee:e6:66:c7:0f:72:35:fb:00:13:b6:de:72:bc: 61:a9:5c:38:26:89:36:fb:71:49:19:05:3b:17:0b: 1d:76:40:c1:01:be:50:17:0a:3e:68:6f:1f:78:7d: 12:36:a5:88:9f:48:ee:a8:1c:48:82:07:f9:66:7b: c6:18:7e:06:8c:78:1b:5d:b0:5d:5e:7b:cb:63:14: 36:85:69:e0:e6:3f:02:0b:80:27:8e:e9:df:38:0a: 09:5c:a3:20:5d:fd:40:ca:af:93:ba:c1:f0:20:39: bf:03:75:36:31:15:3a:5b:f2:c3:85:a2:e5:68:31: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C0:29:AD:EC:A4:78:8D:FF:E6:F7:2A:2B:DC:70:F7:E1:69:A2:6B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS154681.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:a40::/48 Signature Algorithm: sha256WithRSAEncryption 61:cc:2c:c3:c6:e0:51:3a:85:88:ee:e1:12:e0:c6:39:57:e7: 34:fe:a5:f3:6c:ae:3e:3b:f3:c9:08:ba:70:c7:78:02:3a:6a: 9d:72:ef:0b:77:63:a1:c1:f7:d4:bf:e3:1c:53:be:b3:e9:13: 3d:44:0c:51:97:5c:ca:89:a9:df:2d:8d:09:3b:ca:0c:5e:79: c5:25:a8:92:4d:8d:19:3c:bf:f5:54:09:b6:51:cd:4c:9d:40: 92:2c:c5:e9:13:62:80:bc:71:b9:86:c6:30:ff:73:07:ce:cf: 24:20:b6:73:1f:4a:e5:3f:4c:36:b6:8a:c6:81:ee:36:22:4e: 38:e6:a4:e1:64:fa:d7:f2:60:a3:0b:a2:b4:f9:69:68:59:94: 79:d9:22:71:88:2f:1e:ff:35:5d:ea:63:7b:6f:63:a7:e1:a7: 02:2a:4b:31:86:92:5f:cb:07:77:bb:76:6e:fe:6e:6a:1f:69: 77:78:e2:cb:41:d2:15:02:d6:50:1a:72:1a:0c:df:4e:ad:c7: 18:91:e9:6a:54:d5:2e:8a:d3:a8:ce:f1:7b:f8:74:91:85:98: 74:db:64:a9:1a:5f:0f:78:73:b7:da:ca:b1:b8:7d:5d:7f:20: 03:00:19:d1:66:00:c7:e4:71:0e:76:df:cc:8c:e7:2a:20:e4: 2d:1a:63:77 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUKF+nlYldHd62M42ApqYKGex+oEswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUyMDA2NDMxMVoX DTI3MDUxOTA2NDgxMVowMzExMC8GA1UEAxMoREFDMDI5QURFQ0E0Nzg4REZGRTZG NzJBMkJEQzcwRjdFMTY5QTI2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcFxdYovx9LWnYSuqPf4s54YnLfpKyeMSDUZ4h1IFwYVzPcWhoSrrtY3VJ8 ZBI+5fVpGyN/FtQRxu56h+lCcWPxCpyyN6FtMh0v2CAyV3XSymjTeU9b2jEz1NwH 6GUlcFJUUJ4SWiyaiyeEa6XAO+ivxajfmlVC+5yVW63nawZjwdUw4QRTGO7mZscP cjX7ABO23nK8YalcOCaJNvtxSRkFOxcLHXZAwQG+UBcKPmhvH3h9EjaliJ9I7qgc SIIH+WZ7xhh+Box4G12wXV57y2MUNoVp4OY/AguAJ47p3zgKCVyjIF39QMqvk7rB 8CA5vwN1NjEVOlvyw4Wi5WgxX+ECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTawCmt 7KR4jf/m9yor3HD34WmiazAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTU0NjgxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9wpAMA0GCSqGSIb3DQEBCwUAA4IBAQBhzCzDxuBROoWI7uES4MY5 V+c0/qXzbK4+O/PJCLpwx3gCOmqdcu8Ld2OhwffUv+McU76z6RM9RAxRl1zKianf LY0JO8oMXnnFJaiSTY0ZPL/1VAm2Uc1MnUCSLMXpE2KAvHG5hsYw/3MHzs8kILZz H0rlP0w2torGge42Ik445qThZPrX8mCjC6K0+WloWZR52SJxiC8e/zVd6mN7b2On 4acCKksxhpJfywd3u3Zu/m5qH2l3eOLLQdIVAtZQGnIaDN9OrccYkelqVNUuitOo zvF7+HSRhZh022SpGl8PeHO32sqxuH1dfyADABnRZgDH5HEOdt/MjOcqIOQtGmN3 -----END CERTIFICATE-----Generated at Wed Jun 17 08:48:43 2026 by rpki-client