$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa File: AS151007.roa (raw, json) Hash identifier: tXO1lLlaotOpczI4CtWjfndZq/9NuabpOUZ7zXFnDO8= Subject key identifier: CE:E6:23:99:11:C7:AA:7C:AE:DB:9F:AF:57:DD:8C:B5:22:11:68:51 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 754D97B464950CE2232206FF072DF520B36A33D4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa Signing time: Mon 30 Mar 2026 03:00:00 +0000 ROA not before: Mon 30 Mar 2026 02:55:00 +0000 ROA not after: Mon 29 Mar 2027 03:00:00 +0000 asID: 151007 IP address blocks: 103.68.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4d:97:b4:64:95:0c:e2:23:22:06:ff:07:2d:f5:20:b3:6a:33:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 30 02:55:00 2026 GMT Not After : Mar 29 03:00:00 2027 GMT Subject: CN=CEE6239911C7AA7CAEDB9FAF57DD8CB522116851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:30:a8:01:0d:a2:70:86:f1:c9:49:bf:92:b0: 1e:a3:c5:8f:f0:6d:23:be:2b:5a:3a:53:4c:e8:32: 18:6a:6f:09:51:e4:6a:17:8d:ee:71:11:cf:40:42: 24:2e:0c:b7:5c:81:de:1f:6e:bd:4e:44:15:01:01: da:0a:e7:5b:33:a4:e9:a0:22:a5:20:7e:c6:b2:97: 58:39:42:2f:9d:35:20:40:1d:30:a0:dc:5e:bd:6b: 56:ac:90:60:f9:3f:38:e6:0f:fa:8d:62:22:24:c3: df:06:9f:6a:3e:60:cb:7b:26:7c:2d:cd:37:38:b6: 33:26:82:02:54:f7:43:c2:c3:65:75:2a:df:d4:c0: 9d:32:6b:06:fe:c1:3f:6c:17:6f:9f:0d:1b:c2:a0: 4e:83:65:e3:1b:e0:76:19:c3:fe:81:f7:cd:5a:87: fb:57:f7:a8:99:2a:33:0d:d7:f4:4d:64:1c:38:59: b2:a6:d6:24:4b:26:57:0f:25:39:9c:3a:7c:f2:b2: 56:70:ae:d3:d4:b8:d3:d3:a4:51:8c:ef:05:83:f4: 88:14:d9:b6:c9:48:53:ea:c7:c1:b9:97:25:23:f1: 55:44:92:2f:09:11:f1:d3:35:e1:1a:ec:54:ce:74: 53:3f:78:e1:ae:23:b1:01:9d:d0:b2:ab:7f:a6:2a: f5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E6:23:99:11:C7:AA:7C:AE:DB:9F:AF:57:DD:8C:B5:22:11:68:51 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.198.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:97:ff:61:7c:d8:3b:f0:bd:be:60:bc:ac:a5:76:65:d3:bd: cd:c1:52:9d:1a:7c:e1:0d:e9:8e:6d:92:56:25:c9:79:51:8e: 11:39:14:34:f2:eb:10:b7:bc:65:85:4b:20:8c:78:84:4f:8e: f0:ab:63:2b:61:b0:6c:00:93:84:24:1b:2c:10:49:58:0d:30: d5:42:0f:a4:f9:20:ac:7d:44:9d:b0:1c:69:2a:f5:a7:50:db: 70:07:fb:0d:ab:fa:11:a2:c6:2b:e9:48:8f:b7:2a:47:40:46: 48:eb:19:31:ce:71:6b:c5:8d:79:44:ff:f3:ec:3a:93:85:da: c3:5c:80:34:1b:0a:55:6c:a4:d3:59:93:b0:3b:62:b3:33:af: cb:63:ff:42:39:6d:d1:66:32:ff:8c:da:1a:a8:d8:c0:6c:df: 0a:17:05:ff:f3:2d:4a:d6:06:dc:52:df:ea:93:fc:6a:db:25: 64:01:9d:c0:19:d8:8e:b1:08:86:79:14:15:f0:2a:15:94:e6: 8a:69:2a:9c:61:33:df:58:f6:cb:4b:dd:2f:fc:fc:b7:da:90: 38:ed:0d:82:57:5d:ca:01:2b:9c:51:f0:11:d6:79:90:dd:bb: 37:37:5e:ca:fc:a6:20:90:5c:83:b2:e2:8f:48:7c:fe:cb:a3: 04:ca:5b:93 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdU2XtGSVDOIjIgb/By31ILNqM9QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMzMDAyNTUwMFoX DTI3MDMyOTAzMDAwMFowMzExMC8GA1UEAxMoQ0VFNjIzOTkxMUM3QUE3Q0FFREI5 RkFGNTdERDhDQjUyMjExNjg1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0wqAENonCG8clJv5KwHqPFj/BtI74rWjpTTOgyGGpvCVHkaheN7nERz0BC JC4Mt1yB3h9uvU5EFQEB2grnWzOk6aAipSB+xrKXWDlCL501IEAdMKDcXr1rVqyQ YPk/OOYP+o1iIiTD3wafaj5gy3smfC3NNzi2MyaCAlT3Q8LDZXUq39TAnTJrBv7B P2wXb58NG8KgToNl4xvgdhnD/oH3zVqH+1f3qJkqMw3X9E1kHDhZsqbWJEsmVw8l OZw6fPKyVnCu09S409OkUYzvBYP0iBTZtslIU+rHwbmXJSPxVUSSLwkR8dM14Rrs VM50Uz944a4jsQGd0LKrf6Yq9QkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTO5iOZ EceqfK7bn69X3Yy1IhFoUTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdExjANBgkqhkiG9w0BAQsFAAOCAQEAipf/YXzYO/C9vmC8rKV2 ZdO9zcFSnRp84Q3pjm2SViXJeVGOETkUNPLrELe8ZYVLIIx4hE+O8KtjK2GwbACT hCQbLBBJWA0w1UIPpPkgrH1EnbAcaSr1p1DbcAf7Dav6EaLGK+lIj7cqR0BGSOsZ Mc5xa8WNeUT/8+w6k4Xaw1yANBsKVWyk01mTsDtiszOvy2P/Qjlt0WYy/4zaGqjY wGzfChcF//MtStYG3FLf6pP8atslZAGdwBnYjrEIhnkUFfAqFZTmimkqnGEz31j2 y0vdL/z8t9qQOO0NglddygErnFHwEdZ5kN27NzdeyvymIJBcg7Lij0h8/sujBMpb kw== -----END CERTIFICATE-----Generated at Fri Apr 17 08:15:27 2026 by rpki-client