$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa File: AS151517.roa (raw, json) Hash identifier: ybiQTHYlTfKAe0CN6cbYg7eZheRr0+0ybbQxe3/123k= Subject key identifier: F5:76:78:4D:75:F1:06:55:95:7A:4E:89:25:0A:DA:7F:DB:F4:64:C3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09A1729BD380616A855CF72CD50C079960FFC4F0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa Signing time: Fri 23 May 2025 04:00:00 +0000 ROA not before: Fri 23 May 2025 03:55:00 +0000 ROA not after: Fri 22 May 2026 04:00:00 +0000 asID: 151517 IP address blocks: 103.235.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a1:72:9b:d3:80:61:6a:85:5c:f7:2c:d5:0c:07:99:60:ff:c4:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 23 03:55:00 2025 GMT Not After : May 22 04:00:00 2026 GMT Subject: CN=F576784D75F10655957A4E89250ADA7FDBF464C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:81:d1:61:98:a1:94:eb:8b:4b:38:bd:d6:fd: 59:6b:1a:d8:8a:7b:b1:9b:bc:9a:a5:4e:e0:e2:c8: 48:21:65:d0:03:6a:03:8c:0c:64:9d:df:86:4d:c1: d4:64:54:c1:f7:9d:b3:9e:26:47:5e:15:ca:41:68: d8:be:5f:d2:3b:98:71:7c:10:b3:fc:27:38:10:82: 03:cd:35:43:fd:c0:99:c3:2e:92:df:63:ee:a8:d3: e8:de:0e:4f:a9:e9:8c:c6:22:11:ba:ef:ad:6e:ed: 43:a5:a3:60:9a:40:24:a1:ad:0b:fc:8d:26:c2:57: ce:26:c9:1a:cf:bb:1c:63:57:57:15:69:cd:99:8e: 66:6d:77:d4:b3:70:41:29:d6:53:2c:4f:66:31:1f: 90:3e:47:c4:b7:fc:60:8e:af:0b:ea:f6:88:d9:25: 36:82:f1:90:cb:52:62:55:c4:ac:f1:db:e7:43:f3: ed:d6:13:5f:c0:4f:af:59:ff:ce:4d:10:c5:0d:4f: 62:9d:4c:73:24:4f:c2:e4:cc:4a:fb:86:cd:e5:4f: 2e:ad:c1:0a:85:d0:bf:6c:bf:04:60:39:fb:dc:09: 98:cc:ba:aa:fd:81:19:e9:12:e8:79:d1:11:ba:5e: db:fe:19:ba:9c:92:f5:e0:89:aa:6c:6c:aa:ad:18: ad:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:76:78:4D:75:F1:06:55:95:7A:4E:89:25:0A:DA:7F:DB:F4:64:C3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.181.0/24 Signature Algorithm: sha256WithRSAEncryption 50:43:b8:f3:55:40:20:2d:32:e4:4e:d7:21:f6:6a:6f:c6:e6: cd:c0:80:60:0e:55:7c:53:4c:c0:ba:7a:6b:6f:78:f0:97:a0: 0e:24:91:aa:34:13:b2:03:73:37:aa:4d:3d:8d:bd:f4:7b:84: 96:28:d9:aa:3c:f4:0d:7c:c6:d1:a5:a4:0c:fa:e5:98:14:e0: fa:4b:f9:48:23:60:3d:15:94:9e:85:d0:af:f8:0a:af:be:24: 61:f1:85:c1:db:f8:01:c4:89:b0:1d:4f:cc:32:c6:63:89:cb: 21:d5:4c:09:1b:1e:f0:cd:fc:09:16:63:20:83:a5:f9:89:19: 8f:01:6a:ec:17:a1:0c:d2:6c:0f:95:7b:38:0a:56:6e:1f:de: 83:72:5d:6b:c1:df:83:b6:40:c2:67:98:27:53:59:69:fb:22: a1:5b:8f:7c:34:bd:e3:22:00:a1:e8:64:ee:21:2c:41:99:55: dd:32:c8:93:4c:95:b1:e2:da:60:3b:82:93:a1:77:04:40:92: d8:1c:f7:85:5b:37:58:cb:49:ca:ef:d1:e6:0e:a7:c6:f6:a0: f6:1b:b7:4b:d6:fc:4a:5e:2a:8a:ba:f1:fb:d4:de:da:59:f2: e0:a9:bb:25:83:5b:95:ca:1a:de:48:8e:bc:57:e9:27:b7:0e: 0e:94:ac:f8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCaFym9OAYWqFXPcs1QwHmWD/xPAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyMzAzNTUwMFoX DTI2MDUyMjA0MDAwMFowMzExMC8GA1UEAxMoRjU3Njc4NEQ3NUYxMDY1NTk1N0E0 RTg5MjUwQURBN0ZEQkY0NjRDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOKB0WGYoZTri0s4vdb9WWsa2Ip7sZu8mqVO4OLISCFl0ANqA4wMZJ3fhk3B 1GRUwfeds54mR14VykFo2L5f0juYcXwQs/wnOBCCA801Q/3AmcMukt9j7qjT6N4O T6npjMYiEbrvrW7tQ6WjYJpAJKGtC/yNJsJXzibJGs+7HGNXVxVpzZmOZm131LNw QSnWUyxPZjEfkD5HxLf8YI6vC+r2iNklNoLxkMtSYlXErPHb50Pz7dYTX8BPr1n/ zk0QxQ1PYp1McyRPwuTMSvuGzeVPLq3BCoXQv2y/BGA5+9wJmMy6qv2BGekS6HnR Ebpe2/4ZupyS9eCJqmxsqq0YrWMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT1dnhN dfEGVZV6ToklCtp/2/RkwzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfrtTANBgkqhkiG9w0BAQsFAAOCAQEAUEO481VAIC0y5E7XIfZq b8bmzcCAYA5VfFNMwLp6a2948JegDiSRqjQTsgNzN6pNPY299HuElijZqjz0DXzG 0aWkDPrlmBTg+kv5SCNgPRWUnoXQr/gKr74kYfGFwdv4AcSJsB1PzDLGY4nLIdVM CRse8M38CRZjIIOl+YkZjwFq7BehDNJsD5V7OApWbh/eg3Jda8Hfg7ZAwmeYJ1NZ afsioVuPfDS94yIAoehk7iEsQZlV3TLIk0yVseLaYDuCk6F3BECS2Bz3hVs3WMtJ yu/R5g6nxvag9hu3S9b8Sl4qirrx+9Te2lny4Km7JYNblcoa3kiOvFfpJ7cODpSs +A== -----END CERTIFICATE-----Generated at Sun Jun 29 12:17:34 2025 by rpki-client