$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa File: AS151005.roa (raw, json) Hash identifier: fU4qIsLk8ZG/tlY6Wc3da6XuF9iM42CQWz+Uci6b6bw= Subject key identifier: 4C:59:6F:69:74:1A:3E:F8:55:8A:06:48:A2:97:65:33:C9:13:3D:62 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34D7EF6122C3EA462BA7734959FDBE028764EC8C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa Signing time: Wed 17 Sep 2025 09:00:00 +0000 ROA not before: Wed 17 Sep 2025 08:55:00 +0000 ROA not after: Wed 16 Sep 2026 09:00:00 +0000 asID: 151005 IP address blocks: 103.124.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:d7:ef:61:22:c3:ea:46:2b:a7:73:49:59:fd:be:02:87:64:ec:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 17 08:55:00 2025 GMT Not After : Sep 16 09:00:00 2026 GMT Subject: CN=4C596F69741A3EF8558A0648A2976533C9133D62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d1:f4:86:5f:c9:cf:a1:75:9c:8f:43:f0:ba: 31:e4:07:93:4a:4c:73:fc:71:7e:8b:27:bf:ce:88: 4e:fc:4a:f1:f6:2e:21:27:14:d4:8b:86:f7:22:13: d4:44:67:43:6a:eb:b9:c6:5e:a5:38:cd:33:81:68: 32:33:9a:91:bc:1b:88:fa:ba:11:d8:97:9f:6e:ae: 7c:d1:4e:3b:de:53:93:20:16:50:9d:99:b8:ad:16: 1e:d5:cf:81:cc:8f:04:53:82:88:0a:fe:81:0a:7e: 12:9f:a6:b6:bb:2e:6f:ed:54:c2:7a:46:00:2b:95: 5f:48:57:47:7b:ca:91:21:88:2a:79:f1:f0:92:40: 2b:97:44:d7:73:b7:3b:7f:8b:77:4e:db:89:e6:f3: 7f:98:18:19:27:26:06:90:ea:c1:1b:ad:57:82:96: a1:3d:07:b8:99:04:ef:0a:b5:eb:47:99:f2:a5:81: 6d:ee:91:24:13:12:bf:bc:8d:55:e5:44:41:e3:ae: ec:cb:99:0a:ca:d6:74:34:25:b4:05:18:25:57:46: bf:c2:f9:55:fc:bc:30:3b:2e:e8:77:40:f0:67:1d: 2f:76:28:13:19:14:dd:68:d8:b6:a0:46:4b:f7:7d: 4d:9d:18:c8:9d:0b:4e:6b:cd:48:e0:69:00:ff:da: a4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:59:6F:69:74:1A:3E:F8:55:8A:06:48:A2:97:65:33:C9:13:3D:62 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.20.0/23 Signature Algorithm: sha256WithRSAEncryption 77:47:93:bf:33:8e:d5:60:6d:50:39:5c:aa:a0:da:63:3c:ee: e8:e3:a8:f3:85:8d:fe:aa:4c:c8:65:71:ee:55:aa:1d:62:5e: d4:c2:d3:70:bb:84:4f:52:bc:3e:66:10:cb:df:b8:fa:ce:a2: 89:7a:30:12:46:3d:3a:36:62:0d:bb:c0:30:ed:a1:66:54:a7: ed:02:ac:a5:a6:4c:5d:0b:1c:31:93:bb:6f:93:93:72:d1:30: 55:47:d8:c1:9e:af:73:df:fa:a0:a9:84:35:e9:8f:9e:a2:c9: 7b:77:a7:e8:9b:88:38:34:c2:c8:a2:34:fd:01:8c:b3:61:99: d9:0a:ce:dd:1f:01:d2:c9:ad:0a:72:aa:d4:e8:24:60:11:fa: d7:9f:b4:80:0a:45:c5:3d:6a:7c:4c:f6:01:8e:ee:4c:2a:b8: 72:5a:b8:18:7e:d5:96:92:9e:84:1e:44:46:82:a3:e7:ad:44: 00:3c:8b:6c:71:3f:b6:6e:c7:c1:0d:b7:f8:87:ec:de:57:93: 92:12:c4:0e:13:55:9c:82:01:3d:fa:71:22:30:3c:6f:ed:b4: f5:11:60:dc:ef:b6:ed:8e:82:55:10:86:74:21:f3:77:9e:cd: f4:43:a5:95:b7:d7:19:89:0b:30:29:42:b4:6d:a5:e2:32:cb: 1f:53:45:c2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUNNfvYSLD6kYrp3NJWf2+Aodk7IwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxNzA4NTUwMFoX DTI2MDkxNjA5MDAwMFowMzExMC8GA1UEAxMoNEM1OTZGNjk3NDFBM0VGODU1OEEw NjQ4QTI5NzY1MzNDOTEzM0Q2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLR9IZfyc+hdZyPQ/C6MeQHk0pMc/xxfosnv86ITvxK8fYuIScU1IuG9yIT 1ERnQ2rrucZepTjNM4FoMjOakbwbiPq6EdiXn26ufNFOO95TkyAWUJ2ZuK0WHtXP gcyPBFOCiAr+gQp+Ep+mtrsub+1UwnpGACuVX0hXR3vKkSGIKnnx8JJAK5dE13O3 O3+Ld07biebzf5gYGScmBpDqwRutV4KWoT0HuJkE7wq160eZ8qWBbe6RJBMSv7yN VeVEQeOu7MuZCsrWdDQltAUYJVdGv8L5Vfy8MDsu6HdA8GcdL3YoExkU3WjYtqBG S/d9TZ0YyJ0LTmvNSOBpAP/apIECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRMWW9p dBo++FWKBkiil2UzyRM9YjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWd8FDANBgkqhkiG9w0BAQsFAAOCAQEAd0eTvzOO1WBtUDlcqqDa Yzzu6OOo84WN/qpMyGVx7lWqHWJe1MLTcLuET1K8PmYQy9+4+s6iiXowEkY9OjZi DbvAMO2hZlSn7QKspaZMXQscMZO7b5OTctEwVUfYwZ6vc9/6oKmENemPnqLJe3en 6JuIODTCyKI0/QGMs2GZ2QrO3R8B0smtCnKq1OgkYBH615+0gApFxT1qfEz2AY7u TCq4clq4GH7VlpKehB5ERoKj561EADyLbHE/tm7HwQ23+Ifs3leTkhLEDhNVnIIB PfpxIjA8b+209RFg3O+27Y6CVRCGdCHzd57N9EOllbfXGYkLMClCtG2l4jLLH1NF wg== -----END CERTIFICATE-----Generated at Mon Oct 20 08:51:17 2025 by rpki-client