$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151000.roa File: AS151000.roa (raw, json) Hash identifier: +klKRYBU/ZtNewQsM5UOvABo2u/LwH91IfCQrstjRdo= Subject key identifier: 4F:BB:63:F8:75:A3:B2:DA:C6:63:93:C5:0F:55:B0:19:2A:DF:5D:B9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 72359E310873510E5D034FB62DBDB64516BDF059 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151000.roa Signing time: Fri 19 Sep 2025 08:30:37 +0000 ROA not before: Fri 19 Sep 2025 08:25:37 +0000 ROA not after: Fri 18 Sep 2026 08:30:37 +0000 asID: 151000 IP address blocks: 103.139.244.0/23 maxlen: 24 2402:12e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:35:9e:31:08:73:51:0e:5d:03:4f:b6:2d:bd:b6:45:16:bd:f0:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 19 08:25:37 2025 GMT Not After : Sep 18 08:30:37 2026 GMT Subject: CN=4FBB63F875A3B2DAC66393C50F55B0192ADF5DB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1f:05:e5:5c:fa:b1:aa:1b:e5:a4:a1:28:59: 06:55:65:e0:d5:b2:e9:7c:e0:16:e0:41:24:ca:17: e6:17:9f:3e:6a:21:91:14:43:86:02:7f:7a:d4:75: 1a:cb:21:9b:26:b5:56:3d:b5:3e:b5:b2:3f:02:b4: 44:8c:4a:76:7d:2d:83:ef:fa:15:01:02:62:7f:91: cd:83:b7:56:3d:da:16:d4:6c:6e:02:10:7f:2d:a3: d7:31:f4:b3:87:4b:52:7d:43:42:7b:dd:1e:39:30: 2c:72:c2:e3:2c:df:ad:6c:3f:0f:26:80:f1:d8:18: b7:f1:f8:a0:75:5a:f4:70:ed:7d:21:7f:93:77:7f: 89:a0:bc:99:07:7c:0c:56:77:4b:ba:62:01:cb:77: 4a:00:02:4d:59:9a:4e:43:c9:f6:1b:f1:2b:3e:96: 1e:86:df:2c:75:81:d4:82:d7:a3:43:27:e8:17:54: 9a:49:55:ec:4d:96:bf:a6:d1:bb:c4:1d:7a:59:c4: 8e:00:89:f6:52:cd:02:91:3c:50:87:d4:90:ef:f2: 45:31:22:ad:76:c1:52:30:5d:66:a8:6d:ea:4b:0c: 0d:69:d0:bb:cf:51:ee:36:67:70:98:a2:e2:87:f7: a6:d0:12:18:df:52:ad:e3:7c:4e:b6:3b:f7:c2:78: 20:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BB:63:F8:75:A3:B2:DA:C6:63:93:C5:0F:55:B0:19:2A:DF:5D:B9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151000.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.244.0/23 IPv6: 2402:12e0::/32 Signature Algorithm: sha256WithRSAEncryption 60:63:c6:b5:1b:9e:07:30:06:76:df:72:26:92:b9:2e:f2:fc: f5:e8:cc:f3:9b:a1:22:fa:12:bb:92:5f:be:bb:0d:0f:f7:e9: 53:5d:0f:71:dc:1c:56:b7:5c:b2:99:0a:f4:d4:c4:41:12:cd: 1d:c3:5b:44:33:ea:13:d3:14:68:82:e8:81:fe:2c:eb:31:43: 5b:8d:02:47:90:a0:e1:6a:7c:1e:3a:6a:0c:0a:0e:a3:55:db: 56:2b:7e:f0:d6:43:2d:1e:94:b6:db:58:b3:3a:6a:3c:fd:df: c1:ea:44:c7:37:a6:bf:f6:e6:19:c0:5a:1d:e0:d0:b9:36:98: d1:43:40:11:b9:ce:ee:56:6d:63:32:92:a4:9e:68:fe:ee:ca: 22:28:ed:59:06:80:28:75:82:04:02:2a:33:3d:6b:32:6a:11: 12:ae:8a:f5:dc:59:a7:19:54:95:4e:79:04:88:00:6f:0f:ad: 8a:84:04:fe:d4:ac:e4:37:83:8e:ea:14:9a:7f:12:f3:5a:c3: ac:19:2d:a7:38:31:f8:be:b1:c0:c8:49:ca:7d:5a:0b:ab:5c: b7:9c:d0:3d:10:cd:46:ca:bc:a1:df:e5:ad:46:83:b5:81:91: 96:f1:0f:ec:20:a3:62:f5:05:a5:46:49:92:d0:a7:ed:7d:8c: 44:7c:3e:33 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUcjWeMQhzUQ5dA0+2Lb22RRa98FkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxOTA4MjUzN1oX DTI2MDkxODA4MzAzN1owMzExMC8GA1UEAxMoNEZCQjYzRjg3NUEzQjJEQUM2NjM5 M0M1MEY1NUIwMTkyQURGNURCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMofBeVc+rGqG+WkoShZBlVl4NWy6XzgFuBBJMoX5hefPmohkRRDhgJ/etR1 Gsshmya1Vj21PrWyPwK0RIxKdn0tg+/6FQECYn+RzYO3Vj3aFtRsbgIQfy2j1zH0 s4dLUn1DQnvdHjkwLHLC4yzfrWw/DyaA8dgYt/H4oHVa9HDtfSF/k3d/iaC8mQd8 DFZ3S7piAct3SgACTVmaTkPJ9hvxKz6WHobfLHWB1ILXo0Mn6BdUmklV7E2Wv6bR u8QdelnEjgCJ9lLNApE8UIfUkO/yRTEirXbBUjBdZqht6ksMDWnQu89R7jZncJii 4of3ptASGN9SreN8TrY798J4INECAwEAAaOCAd8wggHbMB0GA1UdDgQWBBRPu2P4 daOy2sZjk8UPVbAZKt9duTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeL9DANBAIAAjAHAwUAJAIS4DANBgkqhkiG9w0BAQsFAAOCAQEA YGPGtRueBzAGdt9yJpK5LvL89ejM85uhIvoSu5JfvrsND/fpU10PcdwcVrdcspkK 9NTEQRLNHcNbRDPqE9MUaILogf4s6zFDW40CR5Cg4Wp8HjpqDAoOo1XbVit+8NZD LR6UtttYszpqPP3fwepExzemv/bmGcBaHeDQuTaY0UNAEbnO7lZtYzKSpJ5o/u7K IijtWQaAKHWCBAIqMz1rMmoREq6K9dxZpxlUlU55BIgAbw+tioQE/tSs5DeDjuoU mn8S81rDrBktpzgx+L6xwMhJyn1aC6tct5zQPRDNRsq8od/lrUaDtYGRlvEP7CCj YvUFpUZJktCn7X2MRHw+Mw== -----END CERTIFICATE-----Generated at Mon Oct 20 05:59:04 2025 by rpki-client