$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151532.roa File: AS151532.roa (raw, json) Hash identifier: SQ7+gxIQTwc+L0pyTHeABR2wdf4ybuZh0nJCF529/js= Subject key identifier: 5F:27:E1:87:5D:0A:98:FE:11:6B:A4:92:75:DD:78:00:F8:BA:E3:88 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2CCA517770D163F43F156C7C578079AF7F5A9E7A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151532.roa Signing time: Wed 25 Jun 2025 08:00:00 +0000 ROA not before: Wed 25 Jun 2025 07:55:00 +0000 ROA not after: Wed 24 Jun 2026 08:00:00 +0000 asID: 151532 IP address blocks: 103.245.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ca:51:77:70:d1:63:f4:3f:15:6c:7c:57:80:79:af:7f:5a:9e:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 25 07:55:00 2025 GMT Not After : Jun 24 08:00:00 2026 GMT Subject: CN=5F27E1875D0A98FE116BA49275DD7800F8BAE388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c9:9d:2c:de:22:fc:4a:c1:ed:ec:f8:b9:92: d3:72:2c:ba:ee:46:45:c2:8a:26:cd:b9:97:0d:4b: 5d:52:4b:33:cf:9a:6a:03:9f:58:8e:17:8f:4e:1e: 3f:84:2b:f6:44:b1:b4:f2:ed:1a:95:1c:a7:fd:c1: 7c:3b:a1:c6:26:71:3b:1a:21:ed:dc:eb:98:6b:1b: 1f:b2:c7:11:04:b9:fa:1b:71:a3:95:57:2f:7b:fd: 77:24:c0:b3:ce:b2:93:c4:08:e2:2c:eb:bf:e9:51: b2:25:0b:da:a1:e1:13:22:7f:d0:c9:d3:b3:05:1b: 3d:e1:0c:24:fe:2d:f9:ea:02:75:24:65:5d:64:63: f2:77:ba:30:5b:cc:0e:a2:ae:67:b2:a3:1a:72:8a: 8a:73:0d:02:a4:3f:3d:f9:ae:31:5f:fc:11:ca:ba: 7b:58:b2:fd:8d:b6:e5:69:f0:fe:ad:6d:cc:69:25: 0d:1a:10:50:f9:67:80:e5:a0:6c:a6:b6:e5:d5:26: 18:4b:16:31:8d:53:f9:17:a3:c9:7b:04:af:07:a2: 36:b0:51:6a:2b:f1:db:6f:27:b5:20:ae:8e:b9:49: 04:d7:67:a3:9d:f5:58:06:50:02:64:64:e8:1d:e9: f5:6c:ac:b6:f2:2c:be:1d:1b:c4:82:e6:94:a2:a9: 5e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:27:E1:87:5D:0A:98:FE:11:6B:A4:92:75:DD:78:00:F8:BA:E3:88 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.56.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:a7:2a:22:85:23:af:b0:83:d1:a4:c2:5b:5e:e3:24:31:05: 25:8f:17:97:b9:ed:c7:38:6c:e2:36:71:d4:d6:57:df:6c:ec: 09:05:97:4a:40:99:85:bf:bf:53:a5:f8:42:e4:98:71:a9:07: 15:6e:e7:83:66:38:fb:a3:eb:68:d8:0e:76:f0:c8:83:0a:a3: fc:a5:b3:a7:d5:3a:bd:2a:ae:93:d0:91:ba:ed:2d:7a:d1:2d: 0d:80:23:b3:e8:98:da:93:66:77:78:6d:c0:82:e6:05:71:63: 85:7e:4b:ec:1d:8c:42:00:e1:d5:3a:63:fb:fb:5a:aa:0e:80: fb:75:b4:8a:db:e7:ae:70:28:bb:20:29:ad:e5:cb:ce:52:0d: cb:90:78:92:5d:05:bc:1b:8c:56:b5:68:19:c0:b1:3f:0e:c1: cd:36:fe:c4:4b:e9:00:ef:c4:e7:d0:bc:18:62:e9:25:ef:81: 8b:97:c1:21:eb:42:a4:cb:1b:d1:45:c8:9b:4c:3b:18:e5:74: 39:54:36:05:04:2e:71:93:59:fa:56:3c:37:fd:1b:fd:94:9c: f3:84:6e:8c:31:58:b3:df:7e:86:e1:52:53:1b:98:7e:08:a0: 58:67:df:8c:39:65:2f:f9:75:3a:42:d3:0b:7d:88:57:d5:ab: db:79:d1:a8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULMpRd3DRY/Q/FWx8V4B5r39annowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyNTA3NTUwMFoX DTI2MDYyNDA4MDAwMFowMzExMC8GA1UEAxMoNUYyN0UxODc1RDBBOThGRTExNkJB NDkyNzVERDc4MDBGOEJBRTM4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMrJnSzeIvxKwe3s+LmS03Isuu5GRcKKJs25lw1LXVJLM8+aagOfWI4Xj04e P4Qr9kSxtPLtGpUcp/3BfDuhxiZxOxoh7dzrmGsbH7LHEQS5+htxo5VXL3v9dyTA s86yk8QI4izrv+lRsiUL2qHhEyJ/0MnTswUbPeEMJP4t+eoCdSRlXWRj8ne6MFvM DqKuZ7KjGnKKinMNAqQ/PfmuMV/8Ecq6e1iy/Y225Wnw/q1tzGklDRoQUPlngOWg bKa25dUmGEsWMY1T+RejyXsErweiNrBRaivx228ntSCujrlJBNdno531WAZQAmRk 6B3p9WystvIsvh0bxILmlKKpXoECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRfJ+GH XQqY/hFrpJJ13XgA+LrjiDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf1ODANBgkqhkiG9w0BAQsFAAOCAQEADqcqIoUjr7CD0aTCW17j JDEFJY8Xl7ntxzhs4jZx1NZX32zsCQWXSkCZhb+/U6X4QuSYcakHFW7ng2Y4+6Pr aNgOdvDIgwqj/KWzp9U6vSquk9CRuu0tetEtDYAjs+iY2pNmd3htwILmBXFjhX5L 7B2MQgDh1Tpj+/taqg6A+3W0itvnrnAouyApreXLzlINy5B4kl0FvBuMVrVoGcCx Pw7BzTb+xEvpAO/E59C8GGLpJe+Bi5fBIetCpMsb0UXIm0w7GOV0OVQ2BQQucZNZ +lY8N/0b/ZSc84RujDFYs99+huFSUxuYfgigWGffjDllL/l1OkLTC32IV9Wr23nR qA== -----END CERTIFICATE-----Generated at Sun Jun 29 12:21:31 2025 by rpki-client