$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151513.roa File: AS151513.roa (raw, json) Hash identifier: fCqwV2okYlV5VXBCY6e35kJhb98FCD1pm8SU3VL72lk= Subject key identifier: 88:0B:5C:39:D6:EC:BE:96:9A:40:38:80:26:A7:52:E8:32:83:0C:F9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32E74D7D7C4ED9E9AB0A2A2D85A4CF87584A67D0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151513.roa Signing time: Tue 24 Jun 2025 10:00:00 +0000 ROA not before: Tue 24 Jun 2025 09:55:00 +0000 ROA not after: Tue 23 Jun 2026 10:00:00 +0000 asID: 151513 IP address blocks: 103.217.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e7:4d:7d:7c:4e:d9:e9:ab:0a:2a:2d:85:a4:cf:87:58:4a:67:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 24 09:55:00 2025 GMT Not After : Jun 23 10:00:00 2026 GMT Subject: CN=880B5C39D6ECBE969A40388026A752E832830CF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1a:3c:84:b5:72:35:c7:68:ab:73:24:41:c4: 2d:76:b4:de:9b:97:55:53:2d:56:e6:b4:6a:ed:72: f8:1b:55:ac:8a:8c:5b:cd:d4:17:6c:40:48:00:bb: f5:e7:b2:70:f0:e5:fd:0b:68:b2:65:92:56:d5:b4: 20:f9:c9:81:50:53:e6:b5:ea:dc:16:62:04:bb:e5: 88:01:f0:7e:ee:d8:58:79:47:62:68:69:3b:00:b5: d9:f6:15:95:6b:06:a4:b2:08:b0:fc:dc:d0:b3:79: 09:5d:13:0b:67:89:4c:87:62:46:9e:4b:3c:3f:16: 2f:11:f5:b8:3d:01:de:fb:0c:7e:7f:4e:6a:70:a0: 47:89:d7:02:28:1c:98:34:0b:8d:2f:4a:05:0b:1b: 3a:17:22:23:7d:dc:93:3c:c7:53:42:a8:c4:c0:75: 6d:42:73:15:51:da:0c:2b:59:28:af:55:25:19:2a: 34:1f:ba:b8:70:39:c0:a5:dd:ed:b5:01:d0:0e:27: fc:32:cc:69:8c:c3:c9:45:01:72:82:a9:44:28:4c: 5a:4f:7e:fb:c0:1c:2b:a1:17:c6:a5:e4:c0:3d:5b: 78:ba:bd:6f:bb:2a:4f:7b:5e:fd:26:1c:54:8d:8d: c8:de:18:f3:45:6a:7c:54:c5:08:94:33:99:e4:ad: 30:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:0B:5C:39:D6:EC:BE:96:9A:40:38:80:26:A7:52:E8:32:83:0C:F9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151513.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.146.0/23 Signature Algorithm: sha256WithRSAEncryption 96:5f:92:14:3e:40:ff:b5:b8:41:a4:56:8c:4a:88:41:97:e1: 5d:61:76:e0:09:01:f6:ac:bd:a6:f2:a1:30:82:11:56:5d:2d: c1:c5:e3:0f:0e:a5:0a:4a:1d:15:b8:cc:b8:3d:a9:60:d3:03: 2c:8c:05:da:d2:f3:74:ce:da:96:ce:cc:82:bc:0b:f2:8b:14: b4:98:14:8d:b8:9b:fb:bc:c8:4b:85:49:a1:bb:3d:49:44:c1: 22:4c:ce:9b:52:f7:e2:25:84:03:9e:2e:c3:db:38:94:16:d0: 3a:c9:73:f4:bf:05:9f:21:57:02:9f:31:33:54:af:dd:aa:88: e8:c7:ca:82:43:88:e4:7f:bb:61:35:ea:5b:06:c0:0a:54:72: 1a:d8:6b:ae:84:7a:40:59:6d:c7:82:ab:98:70:ba:5f:46:9c: ca:77:7d:2d:97:45:bf:01:12:60:e3:f4:a4:b8:42:e2:d1:44: f8:c0:61:a8:5a:c9:0a:78:2d:f5:ba:8e:f9:00:ee:2b:43:54: 3a:a2:ce:25:73:9d:60:f4:98:fd:49:83:80:52:ad:87:b2:fd: 04:0a:34:2b:f3:b8:f3:25:ed:6c:64:ca:c7:c0:5a:66:c4:d4: d0:69:a7:2b:f1:d4:64:90:3f:5a:64:02:ab:2b:a1:d6:91:e0: e5:ee:ac:76 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMudNfXxO2emrCiothaTPh1hKZ9AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyNDA5NTUwMFoX DTI2MDYyMzEwMDAwMFowMzExMC8GA1UEAxMoODgwQjVDMzlENkVDQkU5NjlBNDAz ODgwMjZBNzUyRTgzMjgzMENGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4aPIS1cjXHaKtzJEHELXa03puXVVMtVua0au1y+BtVrIqMW83UF2xASAC7 9eeycPDl/QtosmWSVtW0IPnJgVBT5rXq3BZiBLvliAHwfu7YWHlHYmhpOwC12fYV lWsGpLIIsPzc0LN5CV0TC2eJTIdiRp5LPD8WLxH1uD0B3vsMfn9OanCgR4nXAigc mDQLjS9KBQsbOhciI33ckzzHU0KoxMB1bUJzFVHaDCtZKK9VJRkqNB+6uHA5wKXd 7bUB0A4n/DLMaYzDyUUBcoKpRChMWk9++8AcK6EXxqXkwD1beLq9b7sqT3te/SYc VI2NyN4Y80VqfFTFCJQzmeStMDECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSIC1w5 1uy+lppAOIAmp1LoMoMM+TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfZkjANBgkqhkiG9w0BAQsFAAOCAQEAll+SFD5A/7W4QaRWjEqI QZfhXWF24AkB9qy9pvKhMIIRVl0twcXjDw6lCkodFbjMuD2pYNMDLIwF2tLzdM7a ls7MgrwL8osUtJgUjbib+7zIS4VJobs9SUTBIkzOm1L34iWEA54uw9s4lBbQOslz 9L8FnyFXAp8xM1Sv3aqI6MfKgkOI5H+7YTXqWwbAClRyGthrroR6QFltx4KrmHC6 X0acynd9LZdFvwESYOP0pLhC4tFE+MBhqFrJCngt9bqO+QDuK0NUOqLOJXOdYPSY /UmDgFKth7L9BAo0K/O48yXtbGTKx8BaZsTU0GmnK/HUZJA/WmQCqyuh1pHg5e6s dg== -----END CERTIFICATE-----Generated at Sun Jun 29 12:18:58 2025 by rpki-client