$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa File: AS151591.roa (raw, json) Hash identifier: KKKm83jxkWXiCwPCbdSHhBhVqKvBJhOEsOojvxHOBKk= Subject key identifier: B1:34:27:28:4A:AD:73:0B:C3:90:D5:8A:62:18:C5:5E:06:8A:87:97 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A77245C248EF42E9E9DB1E759B589F46C4422E7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa Signing time: Mon 20 Oct 2025 02:00:00 +0000 ROA not before: Mon 20 Oct 2025 01:55:00 +0000 ROA not after: Mon 19 Oct 2026 02:00:00 +0000 asID: 151591 IP address blocks: 103.250.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:77:24:5c:24:8e:f4:2e:9e:9d:b1:e7:59:b5:89:f4:6c:44:22:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 20 01:55:00 2025 GMT Not After : Oct 19 02:00:00 2026 GMT Subject: CN=B13427284AAD730BC390D58A6218C55E068A8797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:23:33:9c:ee:4f:eb:5b:f3:c7:00:dd:dd:5f: 0b:d2:1e:f0:6e:90:7f:fa:4b:82:c3:a0:19:3b:dd: 79:a9:e5:a7:86:a2:78:f3:97:4a:1e:20:bc:66:80: a7:33:89:59:06:6f:5b:aa:5b:7e:bd:67:bb:fa:de: bc:b5:3f:ef:5c:6b:9c:d8:43:8e:23:b2:54:6a:ea: ad:1c:9f:2c:d5:03:fa:b5:46:c6:11:dc:fc:82:f3: 67:6c:4c:01:9e:0d:0a:ff:3b:fe:e8:e7:63:65:d9: fb:3a:4b:4c:38:06:3b:11:39:7d:f0:4f:4f:86:d3: f4:62:15:3c:05:7e:be:1d:28:c1:3a:f1:0f:4b:49: 1f:04:16:67:3d:93:63:e3:8b:0f:92:86:ee:eb:cd: 5a:99:8c:e8:5a:66:29:ee:b6:c5:aa:48:ff:93:19: 11:89:e2:25:60:44:2f:cd:61:b8:0f:52:f0:c6:22: e6:d7:e9:e0:aa:42:21:06:f0:09:e2:27:f4:02:8c: d8:6c:55:65:b1:ec:8e:ed:4a:49:db:83:f8:56:ed: 2b:cd:20:15:38:e9:80:fa:0b:17:f0:eb:ec:a8:32: 17:d2:84:65:8c:64:ec:96:95:2b:ba:05:0c:9d:81: c0:15:5f:8f:7e:9e:4a:c0:2a:8b:85:38:47:8d:12: 7b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:34:27:28:4A:AD:73:0B:C3:90:D5:8A:62:18:C5:5E:06:8A:87:97 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.12.0/23 Signature Algorithm: sha256WithRSAEncryption 00:93:3d:7d:16:22:29:3e:2f:16:88:51:ee:9a:82:26:55:a9: 0d:1a:72:30:eb:ad:af:b7:a0:27:d2:a2:14:f9:80:9e:6e:6f: be:ac:36:6b:df:fd:9c:f7:f8:88:0f:ac:09:be:8f:5e:e3:43: 18:56:13:27:26:51:38:d9:33:b8:17:5a:16:04:d5:d7:26:45: c2:5b:08:e1:2d:07:d0:e6:7f:88:8e:fd:a2:f5:23:32:db:f5: aa:69:6c:88:b5:87:3d:80:b4:00:da:3f:17:69:00:ef:10:a6: f7:c3:6b:f7:7f:99:76:c7:37:ce:17:ee:03:7b:c2:9e:2d:8c: a0:5d:ed:50:26:12:0c:01:fa:6e:9a:e7:a5:75:1d:48:07:6a: c6:c4:f1:29:50:86:30:dc:9d:b4:23:cd:20:42:e4:03:a3:16: 91:cc:8e:bf:d4:85:73:6d:0c:6c:18:27:7e:d9:31:94:70:ba: 0d:e2:c3:a6:a7:a5:ac:21:36:39:d6:9e:e0:62:96:4e:33:54: 89:86:9f:38:1e:ba:65:fd:af:71:85:81:48:d3:e7:2a:74:42: 23:8c:39:29:54:39:8f:70:ce:dc:03:a3:c9:78:03:7b:e1:40: 4d:c0:28:ee:fa:fd:7b:2c:0b:0c:b3:8e:fa:fb:d0:b6:37:78: 6a:1d:8f:aa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSnckXCSO9C6enbHnWbWJ9GxEIucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyMDAxNTUwMFoX DTI2MTAxOTAyMDAwMFowMzExMC8GA1UEAxMoQjEzNDI3Mjg0QUFENzMwQkMzOTBE NThBNjIxOEM1NUUwNjhBODc5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEjM5zuT+tb88cA3d1fC9Ie8G6Qf/pLgsOgGTvdeanlp4aiePOXSh4gvGaA pzOJWQZvW6pbfr1nu/revLU/71xrnNhDjiOyVGrqrRyfLNUD+rVGxhHc/ILzZ2xM AZ4NCv87/ujnY2XZ+zpLTDgGOxE5ffBPT4bT9GIVPAV+vh0owTrxD0tJHwQWZz2T Y+OLD5KG7uvNWpmM6FpmKe62xapI/5MZEYniJWBEL81huA9S8MYi5tfp4KpCIQbw CeIn9AKM2GxVZbHsju1KSduD+FbtK80gFTjpgPoLF/Dr7KgyF9KEZYxk7JaVK7oF DJ2BwBVfj36eSsAqi4U4R40Se20CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSxNCco Sq1zC8OQ1YpiGMVeBoqHlzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf6DDANBgkqhkiG9w0BAQsFAAOCAQEAAJM9fRYiKT4vFohR7pqC JlWpDRpyMOutr7egJ9KiFPmAnm5vvqw2a9/9nPf4iA+sCb6PXuNDGFYTJyZRONkz uBdaFgTV1yZFwlsI4S0H0OZ/iI79ovUjMtv1qmlsiLWHPYC0ANo/F2kA7xCm98Nr 93+Zdsc3zhfuA3vCni2MoF3tUCYSDAH6bprnpXUdSAdqxsTxKVCGMNydtCPNIELk A6MWkcyOv9SFc20MbBgnftkxlHC6DeLDpqelrCE2Odae4GKWTjNUiYafOB66Zf2v cYWBSNPnKnRCI4w5KVQ5j3DO3AOjyXgDe+FATcAo7vr9eywLDLOO+vvQtjd4ah2P qg== -----END CERTIFICATE-----Generated at Mon Oct 20 05:58:51 2025 by rpki-client