$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151540.roa File: AS151540.roa (raw, json) Hash identifier: UaACrfNnFHX595b46eOkUyoccF0U2o1PzsxK6DhiJ7c= Subject key identifier: 68:44:3A:AA:C1:C2:40:06:C2:CF:89:67:A7:EF:A1:72:8F:F3:27:E8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 39C8A017AAAB39A020A45259E02F2D9D01D5BA6B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151540.roa Signing time: Mon 11 Aug 2025 04:02:24 +0000 ROA not before: Mon 11 Aug 2025 03:57:24 +0000 ROA not after: Mon 10 Aug 2026 04:02:24 +0000 asID: 151540 IP address blocks: 103.238.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:c8:a0:17:aa:ab:39:a0:20:a4:52:59:e0:2f:2d:9d:01:d5:ba:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 11 03:57:24 2025 GMT Not After : Aug 10 04:02:24 2026 GMT Subject: CN=68443AAAC1C24006C2CF8967A7EFA1728FF327E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ed:ea:d7:46:ac:9d:62:dc:fe:e9:5f:24:15: 71:c5:ab:2a:43:79:e5:d5:cc:95:1b:b1:9c:05:28: 5d:9b:fc:13:80:f5:fd:a3:37:fb:54:de:00:e0:c0: 4b:c9:eb:d5:14:c0:84:ba:92:9a:d8:9c:8d:29:2d: 56:c9:a1:1c:b3:0e:da:d3:54:e9:e8:cf:1c:59:c3: c5:2e:b7:b0:a8:2b:a2:d5:9e:f1:e2:7c:ed:e2:c5: 1c:90:9b:cf:20:39:77:b6:29:84:7c:f6:f4:41:d0: 10:7b:a2:0a:69:5d:7c:ee:58:0b:e2:26:26:88:96: a8:bb:65:36:f5:b5:97:05:f0:8e:2e:74:bf:a2:cd: 6e:c4:0f:9c:34:31:30:f9:db:ab:dd:1e:b1:be:64: 90:dd:41:d3:68:ef:95:00:f1:f7:15:bd:64:69:8d: d1:36:c4:26:c5:5e:34:ac:1d:79:52:05:1c:ab:bf: 75:a9:d5:1f:19:77:2f:cd:54:73:28:77:7d:72:fa: 18:12:2f:52:f3:8d:5e:b7:b1:9f:27:46:27:02:02: 1c:07:dc:3d:5f:ee:83:43:13:9c:10:4f:25:78:40: 05:e8:4f:cd:da:3b:8a:90:e0:3f:2d:21:fb:e8:21: 75:56:fd:65:69:85:02:3a:a6:c0:f5:11:cd:be:35: fa:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:44:3A:AA:C1:C2:40:06:C2:CF:89:67:A7:EF:A1:72:8F:F3:27:E8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151540.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.232.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:8d:94:ae:3a:4d:b0:ac:68:6e:74:26:24:d1:57:8b:ca:ff: 9c:ee:ff:f8:2f:e1:12:c8:74:65:7c:6b:05:9c:28:c6:40:42: c8:05:cb:08:7d:73:ae:26:d8:fd:63:90:d8:53:0e:cf:79:46: 4c:cd:f0:74:08:b3:7b:67:4c:e3:a2:69:1d:72:73:d3:c6:ed: 75:8b:78:7b:4f:30:4f:ce:76:23:b5:63:69:e5:55:8a:f3:f3: 90:27:88:52:72:8d:56:e4:40:4d:c5:79:e2:df:4d:aa:d1:57: 8b:47:c8:1b:aa:73:df:c3:2a:d1:2d:af:5c:e2:83:8e:99:a2: 89:db:5d:9f:91:49:01:1b:30:c3:24:f0:0e:e4:cc:2a:17:e6: 34:f7:e1:67:9c:2e:dc:0a:a9:0b:af:4a:bb:de:21:4f:51:94: d2:80:fc:66:21:f4:df:77:4a:d0:c0:77:6f:28:58:7e:72:fd: 4c:fe:d1:62:af:9d:58:4d:e7:7d:90:f9:88:4e:81:e5:56:aa: b3:2d:ee:d1:7c:63:6c:9a:3f:de:6a:54:4b:1a:4e:52:25:ba: 2e:6c:2b:6d:86:a0:b0:0a:4d:ba:6a:4f:f1:d4:cb:a2:ff:49: e5:9b:57:1a:76:a7:77:8c:23:9f:83:74:34:80:3f:b3:d9:a0: ab:6e:b3:c0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOcigF6qrOaAgpFJZ4C8tnQHVumswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxMTAzNTcyNFoX DTI2MDgxMDA0MDIyNFowMzExMC8GA1UEAxMoNjg0NDNBQUFDMUMyNDAwNkMyQ0Y4 OTY3QTdFRkExNzI4RkYzMjdFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrt6tdGrJ1i3P7pXyQVccWrKkN55dXMlRuxnAUoXZv8E4D1/aM3+1TeAODA S8nr1RTAhLqSmticjSktVsmhHLMO2tNU6ejPHFnDxS63sKgrotWe8eJ87eLFHJCb zyA5d7YphHz29EHQEHuiCmldfO5YC+ImJoiWqLtlNvW1lwXwji50v6LNbsQPnDQx MPnbq90esb5kkN1B02jvlQDx9xW9ZGmN0TbEJsVeNKwdeVIFHKu/danVHxl3L81U cyh3fXL6GBIvUvONXrexnydGJwICHAfcPV/ug0MTnBBPJXhABehPzdo7ipDgPy0h ++ghdVb9ZWmFAjqmwPURzb41+pMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRoRDqq wcJABsLPiWen76Fyj/Mn6DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfu6DANBgkqhkiG9w0BAQsFAAOCAQEAao2UrjpNsKxobnQmJNFX i8r/nO7/+C/hEsh0ZXxrBZwoxkBCyAXLCH1zribY/WOQ2FMOz3lGTM3wdAize2dM 46JpHXJz08btdYt4e08wT852I7VjaeVVivPzkCeIUnKNVuRATcV54t9NqtFXi0fI G6pz38Mq0S2vXOKDjpmiidtdn5FJARswwyTwDuTMKhfmNPfhZ5wu3AqpC69Ku94h T1GU0oD8ZiH033dK0MB3byhYfnL9TP7RYq+dWE3nfZD5iE6B5Vaqsy3u0XxjbJo/ 3mpUSxpOUiW6LmwrbYagsApNumpP8dTLov9J5ZtXGnand4wjn4N0NIA/s9mgq26z wA== -----END CERTIFICATE-----Generated at Sat Aug 23 07:11:45 2025 by rpki-client