$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa File: AS151538.roa (raw, json) Hash identifier: KV3GZQGB8XbVnXCK+yNfGYHg+YFuhAdqX32k9FNlmuc= Subject key identifier: 1F:FE:83:1D:42:46:A5:A5:3D:A5:0E:09:E8:0F:4E:E1:06:F7:BE:F5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0E506CB7C23219875139CD856B8AAC420F71CC06 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa Signing time: Mon 16 Jun 2025 03:02:21 +0000 ROA not before: Mon 16 Jun 2025 02:57:21 +0000 ROA not after: Mon 15 Jun 2026 03:02:21 +0000 asID: 151538 IP address blocks: 103.248.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:50:6c:b7:c2:32:19:87:51:39:cd:85:6b:8a:ac:42:0f:71:cc:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 16 02:57:21 2025 GMT Not After : Jun 15 03:02:21 2026 GMT Subject: CN=1FFE831D4246A5A53DA50E09E80F4EE106F7BEF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:46:48:45:28:5d:3a:f6:8d:aa:10:73:29:9e: a3:99:de:cf:3c:55:40:b4:ff:1e:27:d7:6e:e0:b0: b9:45:f7:a3:76:c3:ea:a1:a7:85:c4:cb:85:8c:ef: e4:77:b7:8c:57:42:83:a6:45:5c:62:11:4d:e6:c3: 19:7e:ce:c2:78:c9:51:08:05:e3:c7:b1:00:9c:bb: e1:40:d4:7c:15:09:a5:c0:a5:47:f9:d7:69:2a:bf: fd:e6:a6:33:7c:dd:a1:91:b1:84:5f:93:0c:30:4a: 65:16:cd:74:13:98:d5:db:ef:46:b0:67:c8:75:34: d6:6a:22:09:ac:65:13:99:0e:a2:4e:a5:eb:89:72: 86:48:44:2e:aa:89:63:65:69:6a:3f:14:4e:4c:29: 6e:79:82:f3:ad:54:3c:e8:75:75:53:2c:29:52:fc: 76:41:6b:7f:d9:80:68:91:b3:d5:9b:f3:53:33:9c: 27:b2:51:fc:3e:68:09:eb:fe:1d:7a:5d:d0:64:ec: 14:1c:a6:ba:0b:5c:6e:7e:5f:17:6d:e4:8e:9f:55: d0:23:57:3c:37:85:5e:26:06:c0:8e:31:19:66:4f: 21:bd:4a:f1:96:4b:dc:49:d2:50:b7:f3:a1:db:ee: eb:1e:0e:e7:ec:0a:f3:fb:76:b5:93:fe:b7:ca:8b: dc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FE:83:1D:42:46:A5:A5:3D:A5:0E:09:E8:0F:4E:E1:06:F7:BE:F5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.8.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:56:4e:12:f0:12:bd:f2:9e:ae:e4:78:0f:23:bf:b2:ab:63: f5:1c:bc:78:38:15:8d:31:e6:68:37:f3:eb:52:31:03:b4:7d: 62:96:6a:da:47:c7:71:22:db:6e:ed:19:e5:7c:df:c8:87:26: c9:68:33:73:9a:cb:8f:f6:79:fd:49:ec:d8:6e:c5:6c:df:78: 73:6a:8f:cc:eb:a4:86:e6:0d:33:9a:2b:42:0d:9b:82:17:31: 98:e5:50:a2:9b:17:6e:fb:40:2e:ed:99:58:14:1b:c5:8c:aa: be:7f:b7:61:00:7e:18:e5:92:20:e0:ec:ea:90:38:39:f1:08: 7a:2f:e7:10:7d:f5:eb:9c:de:78:96:cb:b2:39:a1:85:fc:20: e3:1e:e2:7e:75:8b:de:62:9c:21:66:28:40:82:f1:71:91:92: 2f:ae:73:93:55:75:2b:56:c6:b7:b1:64:ec:5e:1b:46:43:86: 73:74:6a:74:17:b1:bc:7f:85:0b:b3:15:b1:70:26:a9:a8:91: 1a:fa:c6:77:08:17:44:41:95:84:18:27:f3:4b:c5:7f:ef:ba: 63:51:ce:48:7e:35:5f:b6:84:bf:9a:ad:1c:30:f8:a6:50:19: 00:e6:d4:cf:68:6a:0b:46:c4:fe:0f:07:f0:ca:50:03:ed:13: 84:8a:35:74 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDlBst8IyGYdROc2Fa4qsQg9xzAYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxNjAyNTcyMVoX DTI2MDYxNTAzMDIyMVowMzExMC8GA1UEAxMoMUZGRTgzMUQ0MjQ2QTVBNTNEQTUw RTA5RTgwRjRFRTEwNkY3QkVGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJVGSEUoXTr2jaoQcymeo5nezzxVQLT/HifXbuCwuUX3o3bD6qGnhcTLhYzv 5He3jFdCg6ZFXGIRTebDGX7OwnjJUQgF48exAJy74UDUfBUJpcClR/nXaSq//eam M3zdoZGxhF+TDDBKZRbNdBOY1dvvRrBnyHU01moiCaxlE5kOok6l64lyhkhELqqJ Y2Vpaj8UTkwpbnmC861UPOh1dVMsKVL8dkFrf9mAaJGz1ZvzUzOcJ7JR/D5oCev+ HXpd0GTsFBymugtcbn5fF23kjp9V0CNXPDeFXiYGwI4xGWZPIb1K8ZZL3EnSULfz odvu6x4O5+wK8/t2tZP+t8qL3HcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQf/oMd QkalpT2lDgnoD07hBve+9TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf4CDANBgkqhkiG9w0BAQsFAAOCAQEAL1ZOEvASvfKeruR4DyO/ sqtj9Ry8eDgVjTHmaDfz61IxA7R9YpZq2kfHcSLbbu0Z5XzfyIcmyWgzc5rLj/Z5 /Uns2G7FbN94c2qPzOukhuYNM5orQg2bghcxmOVQopsXbvtALu2ZWBQbxYyqvn+3 YQB+GOWSIODs6pA4OfEIei/nEH3165zeeJbLsjmhhfwg4x7ifnWL3mKcIWYoQILx cZGSL65zk1V1K1bGt7Fk7F4bRkOGc3RqdBexvH+FC7MVsXAmqaiRGvrGdwgXREGV hBgn80vFf++6Y1HOSH41X7aEv5qtHDD4plAZAObUz2hqC0bE/g8H8MpQA+0ThIo1 dA== -----END CERTIFICATE-----Generated at Sun Jun 29 12:21:37 2025 by rpki-client