$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa File: AS151592.roa (raw, json) Hash identifier: xQSMGN+nFx1vG/uyRFQBqhgAzleBMooRSb9aqJhNauw= Subject key identifier: 2D:B0:B9:51:1A:5A:A6:CF:5A:39:B7:5A:9B:B1:8D:66:B0:59:8C:D6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0215E4EAD04FCA27E8E470AF8CED552351332FFF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa Signing time: Tue 17 Mar 2026 09:00:00 +0000 ROA not before: Tue 17 Mar 2026 08:55:00 +0000 ROA not after: Tue 16 Mar 2027 09:00:00 +0000 asID: 151592 IP address blocks: 163.223.104.0/24 maxlen: 24 2001:df3:240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:15:e4:ea:d0:4f:ca:27:e8:e4:70:af:8c:ed:55:23:51:33:2f:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 17 08:55:00 2026 GMT Not After : Mar 16 09:00:00 2027 GMT Subject: CN=2DB0B9511A5AA6CF5A39B75A9BB18D66B0598CD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:23:75:4b:5c:f8:69:41:b4:31:a5:66:41:23: 41:ee:75:ae:40:d3:49:a7:b6:dd:d1:f8:68:0a:7b: 85:c0:0d:90:b6:23:ea:f5:b0:4d:7a:7c:d0:17:48: f5:db:4e:7d:4b:8f:53:c0:ba:3b:8f:a9:4d:b0:c5: ad:02:e7:da:70:ce:b5:91:49:20:93:cd:70:ac:0d: 93:95:12:db:6b:d8:28:f9:60:43:5f:bc:93:6d:f9: c9:c7:12:ab:7a:fb:8a:05:6a:02:00:f1:7b:fa:39: ff:fb:8c:e1:33:07:ba:9b:a7:d1:ca:95:04:c5:1f: 8a:34:e8:d0:78:a4:b8:1f:09:4f:ce:89:b4:44:2a: b2:3b:6f:ee:c4:a4:e4:19:95:75:6d:51:ed:d8:25: 62:7f:eb:34:6e:53:b7:8a:51:0d:44:8f:d3:0f:ed: 8f:18:59:45:21:44:7a:59:2e:98:c5:7e:fc:8b:ad: cc:45:8f:df:24:41:65:60:e4:90:98:54:4d:75:e9: 95:5f:54:a3:13:cd:33:fc:38:9f:a4:ad:4d:f8:52: 7e:1e:c5:97:66:f9:22:fb:a6:eb:a5:53:30:22:4e: 78:0d:f9:6d:ea:e6:8a:3e:a3:95:87:0c:57:29:53: 31:85:3e:be:c1:73:ed:26:39:5d:f1:d0:45:aa:34: d5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B0:B9:51:1A:5A:A6:CF:5A:39:B7:5A:9B:B1:8D:66:B0:59:8C:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.104.0/24 IPv6: 2001:df3:240::/48 Signature Algorithm: sha256WithRSAEncryption 5b:0e:8b:e6:af:cb:d4:4c:38:0b:84:3f:77:7c:4c:7b:fc:2e: 92:f3:40:cb:2d:d9:f1:d6:c1:43:60:7e:8f:1a:f0:33:55:4a: c9:f5:8e:31:b4:29:5c:28:5c:1f:06:54:36:88:26:35:08:da: e3:3f:66:b0:37:6a:06:1d:ec:13:c3:63:e8:e1:01:e7:e6:3d: 2f:59:fb:7a:82:0d:e7:67:59:e5:14:1a:ed:dc:02:41:5b:d8: 8d:64:19:d3:cf:69:2a:77:24:2a:b7:9d:57:61:00:e7:88:4a: c7:6c:89:27:88:c7:d0:26:c2:71:bd:28:f0:0e:e4:28:4b:c2: ac:62:17:24:46:3f:3c:69:fe:51:38:97:49:18:22:27:35:b4: f1:ce:cd:5d:b5:b6:e5:84:c9:36:63:af:5e:79:2b:8e:dc:ef: d1:08:fb:52:7f:00:8b:5f:d7:59:70:c5:c5:dd:8c:cd:ad:00: d2:74:fc:db:4a:d7:5f:13:aa:36:0e:df:be:b3:d3:8a:3d:fc: e4:f1:bd:f1:ff:f4:5c:3b:f1:1e:38:43:9e:37:a8:6e:71:62: d2:92:0f:7f:a3:21:97:b4:61:ba:57:01:bd:c0:83:42:12:80: 5c:1a:27:e5:b3:da:02:81:69:cf:61:b7:e0:98:74:4d:da:84: a3:e3:30:a9 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUAhXk6tBPyifo5HCvjO1VI1EzL/8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxNzA4NTUwMFoX DTI3MDMxNjA5MDAwMFowMzExMC8GA1UEAxMoMkRCMEI5NTExQTVBQTZDRjVBMzlC NzVBOUJCMThENjZCMDU5OENENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMkjdUtc+GlBtDGlZkEjQe51rkDTSae23dH4aAp7hcANkLYj6vWwTXp80BdI 9dtOfUuPU8C6O4+pTbDFrQLn2nDOtZFJIJPNcKwNk5US22vYKPlgQ1+8k235yccS q3r7igVqAgDxe/o5//uM4TMHupun0cqVBMUfijTo0HikuB8JT86JtEQqsjtv7sSk 5BmVdW1R7dglYn/rNG5Tt4pRDUSP0w/tjxhZRSFEelkumMV+/IutzEWP3yRBZWDk kJhUTXXplV9UoxPNM/w4n6StTfhSfh7Fl2b5Ivum66VTMCJOeA35bermij6jlYcM VylTMYU+vsFz7SY5XfHQRao01W8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQtsLlR Glqmz1o5t1qbsY1msFmM1jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKPfaDAPBAIAAjAJAwcAIAEN8wJAMA0GCSqGSIb3DQEBCwUAA4IB AQBbDovmr8vUTDgLhD93fEx7/C6S80DLLdnx1sFDYH6PGvAzVUrJ9Y4xtClcKFwf BlQ2iCY1CNrjP2awN2oGHewTw2Po4QHn5j0vWft6gg3nZ1nlFBrt3AJBW9iNZBnT z2kqdyQqt51XYQDniErHbIkniMfQJsJxvSjwDuQoS8KsYhckRj88af5ROJdJGCIn NbTxzs1dtbblhMk2Y69eeSuO3O/RCPtSfwCLX9dZcMXF3YzNrQDSdPzbStdfE6o2 Dt++s9OKPfzk8b3x//RcO/EeOEOeN6hucWLSkg9/oyGXtGG6VwG9wINCEoBcGifl s9oCgWnPYbfgmHRN2oSj4zCp -----END CERTIFICATE-----Generated at Thu Mar 26 04:00:42 2026 by rpki-client