$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151521.roa File: AS151521.roa (raw, json) Hash identifier: 4fOU8z4vFzBb4yCC8yvZhugoEcIBSh45G9XCc1y17/U= Subject key identifier: 48:0A:21:B8:61:7F:A3:05:0B:75:7E:16:FB:D6:84:BF:04:C8:2A:81 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4955304002EE45DB536EA287AF5FFBE59BF05E96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151521.roa Signing time: Mon 13 Oct 2025 03:00:00 +0000 ROA not before: Mon 13 Oct 2025 02:55:00 +0000 ROA not after: Mon 12 Oct 2026 03:00:00 +0000 asID: 151521 IP address blocks: 103.176.143.0/24 maxlen: 24 103.234.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 14:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:55:30:40:02:ee:45:db:53:6e:a2:87:af:5f:fb:e5:9b:f0:5e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 13 02:55:00 2025 GMT Not After : Oct 12 03:00:00 2026 GMT Subject: CN=480A21B8617FA3050B757E16FBD684BF04C82A81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:61:c3:c8:f6:80:1e:e4:45:c8:a4:8f:8a:93: 4d:1b:a5:e7:39:59:7c:e4:bc:7f:c9:23:38:af:77: 57:d6:99:d4:ba:6e:23:bb:9c:f2:43:fd:99:56:d0: a0:63:f4:4b:ce:82:30:8f:e0:4b:6c:dd:fd:11:cc: 17:b1:d7:40:73:22:13:d2:07:e6:2b:08:ac:a1:13: 5c:39:9c:2b:c6:16:a2:8c:96:fa:01:a9:bc:be:2b: ce:0e:32:a9:17:d2:5d:90:39:cc:0b:d2:96:5e:2b: b2:22:50:81:14:f1:39:aa:18:a7:e9:e6:55:56:67: b7:60:ff:67:79:2e:f3:85:ff:88:7d:e4:13:40:d9: 4f:5d:ea:b8:c0:e6:d0:23:bd:4f:eb:cf:fd:38:d5: aa:1f:48:12:b3:43:e3:d0:e3:02:00:31:52:dc:f4: 3e:99:43:97:01:2f:08:57:87:32:a3:99:49:c7:6c: c6:da:52:3e:d5:30:7e:7e:31:5e:cd:d5:1e:1b:7d: 9d:c7:fa:85:68:08:71:a7:37:8a:8a:43:a7:44:a0: 81:b2:f0:96:7a:c5:ba:64:78:b5:4f:ae:a9:d8:17: 22:5e:c6:71:34:88:c3:67:25:2b:51:08:2a:d7:fb: 44:ad:d8:55:81:9d:c4:bb:6d:78:77:32:66:6f:71: a2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0A:21:B8:61:7F:A3:05:0B:75:7E:16:FB:D6:84:BF:04:C8:2A:81 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151521.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.143.0/24 103.234.34.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:07:08:15:67:99:69:1e:2c:b1:22:42:0e:32:12:b3:8a:bf: 7a:9a:4f:cb:8d:02:1a:8c:f9:71:2e:04:dd:bb:33:7f:8c:c7: 4a:55:bb:90:0f:38:b7:0e:1e:70:4f:33:11:73:ff:53:a3:77: 9f:bb:05:63:96:2e:5d:10:9b:8d:32:14:f5:71:19:c2:95:12: f5:0c:db:ae:74:3e:10:c7:fe:49:49:fe:2b:5c:6a:f3:3f:18: 98:3c:fb:c4:d2:83:0d:97:0e:18:ab:90:8b:90:62:df:96:a7: 02:4f:ce:63:92:07:7e:9a:21:fe:22:e9:56:13:81:fe:25:8d: 54:06:9a:cd:d7:09:b3:a6:7b:89:53:3a:c9:e4:88:ed:85:df: 57:6f:47:31:5f:cb:e3:a0:0e:ab:92:54:16:b8:35:ce:e2:6a: 16:5a:ae:16:ec:2b:87:43:c3:da:df:e3:1d:0a:92:f1:b1:f7: 2d:dc:2b:7d:32:7b:cb:e6:15:4c:18:64:69:28:1b:2b:50:b8: f8:f8:03:a5:b2:5f:94:ae:38:6a:1d:9c:02:28:79:1b:88:a7: ad:40:cb:9f:c3:28:87:dc:75:48:6d:d2:14:5c:bd:b9:a3:30: 73:4c:65:cd:75:c4:ed:4b:a5:89:7e:99:88:1a:ff:3f:70:0b: ec:73:ac:cf -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUSVUwQALuRdtTbqKHr1/75ZvwXpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAxMzAyNTUwMFoX DTI2MTAxMjAzMDAwMFowMzExMC8GA1UEAxMoNDgwQTIxQjg2MTdGQTMwNTBCNzU3 RTE2RkJENjg0QkYwNEM4MkE4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBhw8j2gB7kRcikj4qTTRul5zlZfOS8f8kjOK93V9aZ1LpuI7uc8kP9mVbQ oGP0S86CMI/gS2zd/RHMF7HXQHMiE9IH5isIrKETXDmcK8YWooyW+gGpvL4rzg4y qRfSXZA5zAvSll4rsiJQgRTxOaoYp+nmVVZnt2D/Z3ku84X/iH3kE0DZT13quMDm 0CO9T+vP/TjVqh9IErND49DjAgAxUtz0PplDlwEvCFeHMqOZScdsxtpSPtUwfn4x Xs3VHht9ncf6hWgIcac3iopDp0SggbLwlnrFumR4tU+uqdgXIl7GcTSIw2clK1EI Ktf7RK3YVYGdxLtteHcyZm9xokUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRICiG4 YX+jBQt1fhb71oS/BMgqgTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGewjwMEAWfqIjANBgkqhkiG9w0BAQsFAAOCAQEALgcIFWeZaR4s sSJCDjISs4q/eppPy40CGoz5cS4E3bszf4zHSlW7kA84tw4ecE8zEXP/U6N3n7sF Y5YuXRCbjTIU9XEZwpUS9QzbrnQ+EMf+SUn+K1xq8z8YmDz7xNKDDZcOGKuQi5Bi 35anAk/OY5IHfpoh/iLpVhOB/iWNVAaazdcJs6Z7iVM6yeSI7YXfV29HMV/L46AO q5JUFrg1zuJqFlquFuwrh0PD2t/jHQqS8bH3LdwrfTJ7y+YVTBhkaSgbK1C4+PgD pbJflK44ah2cAih5G4inrUDLn8Moh9x1SG3SFFy9uaMwc0xlzXXE7UuliX6ZiBr/ P3AL7HOszw== -----END CERTIFICATE-----Generated at Tue Oct 21 08:16:06 2025 by rpki-client