$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa File: AS151597.roa (raw, json) Hash identifier: cBdVhqgShwXjMEeGpzsO4AmtxTENPfDXNECUrImH7kc= Subject key identifier: C2:63:D4:53:4E:6A:E2:C7:1A:A6:A3:CF:77:BD:3C:C1:1E:30:8B:39 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 286702BAB59C160F4E22290D8588B49A25F607E2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa Signing time: Mon 18 Aug 2025 08:00:00 +0000 ROA not before: Mon 18 Aug 2025 07:55:00 +0000 ROA not after: Mon 17 Aug 2026 08:00:00 +0000 asID: 151597 IP address blocks: 103.254.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:67:02:ba:b5:9c:16:0f:4e:22:29:0d:85:88:b4:9a:25:f6:07:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 18 07:55:00 2025 GMT Not After : Aug 17 08:00:00 2026 GMT Subject: CN=C263D4534E6AE2C71AA6A3CF77BD3CC11E308B39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d3:ab:42:7f:7a:e4:93:4f:04:6f:f0:81:ec: d7:2c:20:f9:c5:8e:75:42:0f:38:c7:46:3b:9e:ba: 69:72:5b:24:d5:0b:e8:99:03:a4:b3:ba:ca:f6:d1: 9d:fa:5b:b2:73:ed:b3:25:2b:5e:2b:b2:ea:f0:8f: 22:89:2e:68:84:be:e6:7a:59:6d:7b:4e:6b:0a:5b: be:f2:fe:86:e8:76:cd:ef:07:a9:53:e7:b8:d8:49: 2c:7b:16:5c:cc:32:b3:d6:a3:38:e1:8b:a1:8d:b5: 02:c6:ec:38:f3:ce:32:07:29:f5:7c:08:6d:80:d3: 04:6d:43:e8:4e:51:07:37:43:ae:a1:c7:0f:af:49: 41:8f:49:2d:24:73:fc:1d:bd:1e:f8:dd:3b:ea:2a: c1:fd:a2:08:f1:1f:3c:e4:85:ab:43:86:33:80:db: e6:d1:50:73:19:22:1d:01:df:91:93:8e:a0:1e:0f: 9c:29:bd:d2:9d:8a:de:da:af:73:8b:8e:9c:c9:18: fa:13:f8:7e:7a:28:bc:c0:5b:21:65:95:3c:08:b3: 94:aa:17:79:60:3d:2b:97:ad:52:f2:ac:ce:8a:2c: c0:1d:97:5e:9a:d3:67:6a:6d:fe:f9:85:8d:4f:18: b1:d4:85:e3:44:f5:76:f0:ba:61:9e:a9:23:ed:b0: e4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:63:D4:53:4E:6A:E2:C7:1A:A6:A3:CF:77:BD:3C:C1:1E:30:8B:39 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.197.0/24 Signature Algorithm: sha256WithRSAEncryption 58:97:fa:a1:8b:17:1f:15:10:46:49:d1:91:14:9a:e8:89:89: 74:da:ca:59:8c:07:06:68:c8:80:db:0f:1b:9d:6b:16:2b:f3: 6c:dc:ed:03:30:bb:33:44:70:ba:ae:85:99:e2:48:7b:a4:2b: ce:51:cc:3d:b3:e3:02:6a:8f:aa:c5:fe:df:c9:b8:be:9f:d4: 84:0b:43:77:75:8b:f1:9e:3b:fd:cf:6c:99:eb:90:16:cb:d2: 31:73:b8:ec:90:f3:30:ce:1c:36:3b:e7:57:c4:38:a4:74:46: 7a:a4:a7:8e:57:d3:1b:f8:4b:a9:00:53:d4:d6:8c:80:07:94: fb:ac:86:27:68:2a:82:ea:b9:6c:71:5d:e0:25:6b:77:2e:a4: 7c:2a:fc:19:32:14:c7:1f:67:7f:65:84:9d:03:bf:15:7e:0a: 9b:f4:65:15:23:8a:11:48:d8:79:c7:bc:a2:85:6d:3f:9e:bf: 34:d0:50:01:06:24:69:8a:e2:4a:0b:24:ff:bd:1f:86:69:24: c6:af:55:cb:4c:6a:5b:53:c2:bd:99:e7:94:51:47:be:58:13: a2:ad:15:16:5e:3d:43:ef:ca:68:4a:d7:45:a3:f1:ee:d5:5a: 50:1b:21:11:5a:7f:61:fd:2c:61:54:e4:e6:03:93:39:3b:da: 60:ee:02:88 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKGcCurWcFg9OIikNhYi0miX2B+IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxODA3NTUwMFoX DTI2MDgxNzA4MDAwMFowMzExMC8GA1UEAxMoQzI2M0Q0NTM0RTZBRTJDNzFBQTZB M0NGNzdCRDNDQzExRTMwOEIzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfTq0J/euSTTwRv8IHs1ywg+cWOdUIPOMdGO566aXJbJNUL6JkDpLO6yvbR nfpbsnPtsyUrXiuy6vCPIokuaIS+5npZbXtOawpbvvL+huh2ze8HqVPnuNhJLHsW XMwys9ajOOGLoY21AsbsOPPOMgcp9XwIbYDTBG1D6E5RBzdDrqHHD69JQY9JLSRz /B29HvjdO+oqwf2iCPEfPOSFq0OGM4Db5tFQcxkiHQHfkZOOoB4PnCm90p2K3tqv c4uOnMkY+hP4fnoovMBbIWWVPAizlKoXeWA9K5etUvKszooswB2XXprTZ2pt/vmF jU8YsdSF40T1dvC6YZ6pI+2w5AcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTCY9RT Tmrixxqmo893vTzBHjCLOTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf+xTANBgkqhkiG9w0BAQsFAAOCAQEAWJf6oYsXHxUQRknRkRSa 6ImJdNrKWYwHBmjIgNsPG51rFivzbNztAzC7M0Rwuq6FmeJIe6QrzlHMPbPjAmqP qsX+38m4vp/UhAtDd3WL8Z47/c9smeuQFsvSMXO47JDzMM4cNjvnV8Q4pHRGeqSn jlfTG/hLqQBT1NaMgAeU+6yGJ2gqguq5bHFd4CVrdy6kfCr8GTIUxx9nf2WEnQO/ FX4Km/RlFSOKEUjYece8ooVtP56/NNBQAQYkaYriSgsk/70fhmkkxq9Vy0xqW1PC vZnnlFFHvlgToq0VFl49Q+/KaErXRaPx7tVaUBshEVp/Yf0sYVTk5gOTOTvaYO4C iA== -----END CERTIFICATE-----Generated at Sat Aug 23 12:03:52 2025 by rpki-client