$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151528.roa File: AS151528.roa (raw, json) Hash identifier: F3LEU8+mzzIOt7JOQtsVFDd2B4XgTMmG4GU1YOSy+pg= Subject key identifier: 55:89:ED:5F:67:AB:08:31:3A:04:BA:D5:EC:3F:14:A9:1C:A8:96:8E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2908274C99AFC61D2AE36BF733669FD78B33C7E5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151528.roa Signing time: Thu 16 Oct 2025 05:00:00 +0000 ROA not before: Thu 16 Oct 2025 04:55:00 +0000 ROA not after: Thu 15 Oct 2026 05:00:00 +0000 asID: 151528 IP address blocks: 103.3.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:08:27:4c:99:af:c6:1d:2a:e3:6b:f7:33:66:9f:d7:8b:33:c7:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 16 04:55:00 2025 GMT Not After : Oct 15 05:00:00 2026 GMT Subject: CN=5589ED5F67AB08313A04BAD5EC3F14A91CA8968E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:86:2a:2a:15:05:c5:c0:0f:56:19:7e:91: 60:7b:45:2c:21:2e:27:f5:f9:c6:9a:80:c3:53:fa: a4:12:00:1d:80:b7:27:74:34:23:54:be:ee:be:65: 4a:6d:87:0d:29:51:a9:80:6d:d0:11:98:2e:38:ca: 34:f9:c1:d9:36:06:46:ba:c2:2b:db:9e:50:eb:48: e1:c4:0e:9c:b0:67:55:ad:f7:c0:94:73:50:e9:68: 3b:9f:7e:0e:68:73:33:4f:f0:78:51:21:c3:3f:dc: 1b:21:81:74:2d:b7:28:a7:65:93:14:53:4d:62:1f: 1f:e0:76:10:47:be:12:6a:34:6b:68:a7:e4:51:ff: c0:0b:bd:a4:c3:c9:2b:54:b5:13:48:18:24:f2:5e: a9:44:6e:8c:0a:3e:94:03:f2:5e:cf:45:07:66:c6: ca:f1:6e:d3:8f:67:ee:c9:d0:de:eb:70:e9:f7:72: f8:c0:62:38:d1:77:0a:b0:cf:8b:59:fa:b5:4a:32: 78:e2:fb:3e:b0:95:e0:3c:07:66:33:5b:44:a0:5b: 13:c3:12:6b:ac:a7:61:81:de:0b:25:a2:b6:5c:63: 1e:d2:e2:c5:d2:da:9c:9e:a7:35:88:55:2c:1b:15: 56:92:14:d8:8f:89:a5:90:fc:c2:3b:f9:bf:2b:c1: d1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:89:ED:5F:67:AB:08:31:3A:04:BA:D5:EC:3F:14:A9:1C:A8:96:8E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151528.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.232.0/24 Signature Algorithm: sha256WithRSAEncryption 02:c8:7d:77:ee:45:06:df:7a:61:66:f7:86:44:fe:c0:e2:b2: 0f:83:36:ac:27:ca:c9:ad:22:69:2e:35:cd:92:e8:cb:76:fd: 45:37:1f:f3:2a:dc:e2:bb:80:d3:a4:f1:f1:73:36:35:93:ae: 11:8c:b5:b1:b0:ce:10:fe:bb:9d:63:04:0a:c9:7c:7f:34:86: d4:c2:a4:a8:fc:fb:64:b4:35:1c:d0:a2:57:5b:6d:3f:4c:5e: e0:47:93:0c:39:81:33:8b:b6:cd:b2:ab:00:f8:75:06:18:30: 1d:bd:7d:f3:b3:70:55:dd:df:55:04:4d:fc:78:d3:07:1f:a0: 49:5b:18:a6:4c:6c:eb:2f:a4:7e:ee:96:64:54:02:a2:02:03: 0a:15:aa:e9:76:73:1b:26:8b:cf:d5:90:22:d8:9f:11:3a:6a: d8:8e:1e:9c:0c:3f:ab:71:8c:92:4f:3d:77:4c:af:11:ba:55: d3:81:ab:76:8e:22:81:99:72:fd:9c:9e:6e:a8:61:a5:a6:36: 5b:ae:00:d9:f5:cd:f9:c0:d1:90:b1:7e:d9:1a:e2:b1:0f:c0: 0b:a6:9a:12:8a:af:8b:f5:66:2e:ab:f1:b3:d5:7b:e4:e9:52: c4:9b:d5:50:85:9e:a5:83:35:b1:4b:0c:97:98:6d:db:46:b3: b9:8b:f6:0d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKQgnTJmvxh0q42v3M2af14szx+UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAxNjA0NTUwMFoX DTI2MTAxNTA1MDAwMFowMzExMC8GA1UEAxMoNTU4OUVENUY2N0FCMDgzMTNBMDRC QUQ1RUMzRjE0QTkxQ0E4OTY4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfVhioqFQXFwA9WGX6RYHtFLCEuJ/X5xpqAw1P6pBIAHYC3J3Q0I1S+7r5l Sm2HDSlRqYBt0BGYLjjKNPnB2TYGRrrCK9ueUOtI4cQOnLBnVa33wJRzUOloO59+ DmhzM0/weFEhwz/cGyGBdC23KKdlkxRTTWIfH+B2EEe+Emo0a2in5FH/wAu9pMPJ K1S1E0gYJPJeqURujAo+lAPyXs9FB2bGyvFu049n7snQ3utw6fdy+MBiONF3CrDP i1n6tUoyeOL7PrCV4DwHZjNbRKBbE8MSa6ynYYHeCyWitlxjHtLixdLanJ6nNYhV LBsVVpIU2I+JpZD8wjv5vyvB0asCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRVie1f Z6sIMToEutXsPxSpHKiWjjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcD6DANBgkqhkiG9w0BAQsFAAOCAQEAAsh9d+5FBt96YWb3hkT+ wOKyD4M2rCfKya0iaS41zZLoy3b9RTcf8yrc4ruA06Tx8XM2NZOuEYy1sbDOEP67 nWMECsl8fzSG1MKkqPz7ZLQ1HNCiV1ttP0xe4EeTDDmBM4u2zbKrAPh1BhgwHb19 87NwVd3fVQRN/HjTBx+gSVsYpkxs6y+kfu6WZFQCogIDChWq6XZzGyaLz9WQItif ETpq2I4enAw/q3GMkk89d0yvEbpV04Grdo4igZly/ZyebqhhpaY2W64A2fXN+cDR kLF+2RrisQ/AC6aaEoqvi/VmLqvxs9V75OlSxJvVUIWepYM1sUsMl5ht20azuYv2 DQ== -----END CERTIFICATE-----Generated at Mon Oct 20 08:51:34 2025 by rpki-client