$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa File: AS151585.roa (raw, json) Hash identifier: NQYM3j/D5aNZtK7WfVmZOmz3obMTWiPTuFUJhWQaprg= Subject key identifier: CD:0A:C4:DC:82:D3:38:06:8C:9A:F9:C4:CA:8A:A0:B6:A7:04:93:0D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 57BCF41DD22F0546FD9CF0E87C07C9A6D0B6789F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa Signing time: Mon 15 Sep 2025 04:00:00 +0000 ROA not before: Mon 15 Sep 2025 03:55:00 +0000 ROA not after: Mon 14 Sep 2026 04:00:00 +0000 asID: 151585 IP address blocks: 103.204.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:bc:f4:1d:d2:2f:05:46:fd:9c:f0:e8:7c:07:c9:a6:d0:b6:78:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 15 03:55:00 2025 GMT Not After : Sep 14 04:00:00 2026 GMT Subject: CN=CD0AC4DC82D338068C9AF9C4CA8AA0B6A704930D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:9d:2b:37:df:be:c9:0e:48:9e:3f:a8:0b: 34:23:95:82:8f:74:10:fa:dd:7e:61:58:01:06:0f: fb:14:06:a9:da:a2:7a:5f:7a:f5:b6:e8:f8:f2:fb: 9b:0b:98:6d:2d:8d:dc:3e:d7:a8:cb:69:3e:5f:06: a9:16:7f:34:b0:76:11:ff:4b:8c:24:f0:21:76:36: bb:f7:be:4b:60:f3:92:91:11:f7:b6:3a:37:18:fd: 97:ff:78:52:e5:4a:3e:b8:8f:2d:4e:a1:37:21:b0: 85:f5:b1:d9:a1:9e:c5:e5:77:4b:2d:42:e6:6c:4f: 75:c5:2a:83:ac:39:9a:19:39:93:d5:8d:ee:6d:ee: 5c:1d:bc:2b:c5:69:03:05:a2:4d:70:ed:26:e0:1a: 8f:e6:55:6b:4a:40:f6:b1:b5:27:2d:14:72:29:2d: 1d:62:63:cc:82:06:48:90:16:23:35:e6:06:fe:96: 6a:7f:bc:2e:ef:42:6c:c5:e0:21:09:65:b0:40:0e: c8:f4:2a:76:ac:1a:88:cf:69:54:1a:eb:4e:1c:88: 21:44:79:44:81:ec:75:10:91:38:1c:f1:0f:05:b2: 18:89:02:3b:a7:3f:e6:3d:d7:a4:4c:38:65:96:26: 8b:4f:a2:21:d6:cd:02:f3:e1:df:8b:ad:73:d6:ba: 8b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0A:C4:DC:82:D3:38:06:8C:9A:F9:C4:CA:8A:A0:B6:A7:04:93:0D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.204.46.0/23 Signature Algorithm: sha256WithRSAEncryption 20:ef:b0:1f:80:3d:ba:c7:25:87:4f:b9:c8:c3:62:0a:92:d1: 24:9c:6c:dc:79:4f:63:1b:d8:f4:23:fc:f3:35:93:81:c2:8c: bd:31:af:98:6e:0b:26:5c:49:4a:df:7b:ef:4e:6f:87:a2:53: 0c:a6:c2:93:9e:de:79:d4:7e:bd:84:08:b9:75:07:fd:82:c3: 05:4e:b9:a7:9a:ee:00:91:d8:b1:ff:da:d7:28:bf:b9:95:89: 66:5d:53:0e:3d:70:47:22:c3:78:6a:d7:f7:1c:45:03:1d:d7: f0:43:3e:34:e0:85:85:21:3d:f8:e7:be:ad:bd:e9:eb:18:ff: 3c:68:f0:c6:36:e2:9d:05:e8:9c:d5:8d:83:08:20:66:c2:a8: b6:97:a4:9d:ce:a6:fe:93:87:04:38:64:5e:17:96:ab:6b:b0: ca:93:8a:84:4c:12:10:aa:a3:46:04:99:1d:62:42:c8:a3:c1: e2:55:f9:d4:c1:44:4c:8d:82:5b:55:47:a1:da:dd:25:5d:5d: 27:ea:d2:0b:46:12:38:f9:76:bc:27:49:c8:56:c9:c6:f7:96: c9:76:5c:56:f9:d1:f0:15:b9:8f:6e:95:8a:35:4d:2e:bc:7a: ea:6a:3a:61:f5:ef:49:ba:23:8f:4f:d9:bc:b3:95:bd:f1:21: 5d:1b:9a:40 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUV7z0HdIvBUb9nPDofAfJptC2eJ8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxNTAzNTUwMFoX DTI2MDkxNDA0MDAwMFowMzExMC8GA1UEAxMoQ0QwQUM0REM4MkQzMzgwNjhDOUFG OUM0Q0E4QUEwQjZBNzA0OTMwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRHnSs3377JDkieP6gLNCOVgo90EPrdfmFYAQYP+xQGqdqiel969bbo+PL7 mwuYbS2N3D7XqMtpPl8GqRZ/NLB2Ef9LjCTwIXY2u/e+S2DzkpER97Y6Nxj9l/94 UuVKPriPLU6hNyGwhfWx2aGexeV3Sy1C5mxPdcUqg6w5mhk5k9WN7m3uXB28K8Vp AwWiTXDtJuAaj+ZVa0pA9rG1Jy0UciktHWJjzIIGSJAWIzXmBv6Wan+8Lu9CbMXg IQllsEAOyPQqdqwaiM9pVBrrThyIIUR5RIHsdRCROBzxDwWyGIkCO6c/5j3XpEw4 ZZYmi0+iIdbNAvPh34utc9a6izkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTNCsTc gtM4Boya+cTKiqC2pwSTDTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfMLjANBgkqhkiG9w0BAQsFAAOCAQEAIO+wH4A9usclh0+5yMNi CpLRJJxs3HlPYxvY9CP88zWTgcKMvTGvmG4LJlxJSt97705vh6JTDKbCk57eedR+ vYQIuXUH/YLDBU65p5ruAJHYsf/a1yi/uZWJZl1TDj1wRyLDeGrX9xxFAx3X8EM+ NOCFhSE9+Oe+rb3p6xj/PGjwxjbinQXonNWNgwggZsKotpeknc6m/pOHBDhkXheW q2uwypOKhEwSEKqjRgSZHWJCyKPB4lX51MFETI2CW1VHodrdJV1dJ+rSC0YSOPl2 vCdJyFbJxveWyXZcVvnR8BW5j26VijVNLrx66mo6YfXvSbojj0/ZvLOVvfEhXRua QA== -----END CERTIFICATE-----Generated at Mon Oct 20 05:56:25 2025 by rpki-client