$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151363.roa File: AS151363.roa (raw, json) Hash identifier: TqKm/h7U4sxev0+WfkfktsTk7Ry1HWwq5VESEVI0mP8= Subject key identifier: F7:3C:74:8A:87:BF:1D:D7:54:B3:98:68:D2:EB:22:84:77:6B:BA:2E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7233D0ADE17894E90599A5C71279992A0B3651A6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151363.roa Signing time: Fri 17 Apr 2026 05:18:34 +0000 ROA not before: Fri 17 Apr 2026 05:13:34 +0000 ROA not after: Fri 16 Apr 2027 05:18:34 +0000 asID: 151363 IP address blocks: 163.128.241.0/24 maxlen: 24 2001:df6:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 00:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:33:d0:ad:e1:78:94:e9:05:99:a5:c7:12:79:99:2a:0b:36:51:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 17 05:13:34 2026 GMT Not After : Apr 16 05:18:34 2027 GMT Subject: CN=F73C748A87BF1DD754B39868D2EB2284776BBA2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d5:86:7d:6d:1f:bb:fd:96:b7:94:2e:f8:ee: d3:d2:ed:b0:f1:a9:ff:86:f9:93:69:fa:7a:28:82: 24:41:a9:05:86:97:a8:77:03:85:e5:73:c1:ab:71: 42:dc:10:1c:43:9d:c7:ca:b4:80:d8:7a:0f:c6:4d: 56:42:c2:8b:8a:4f:0f:68:cc:ed:0c:27:79:34:d2: a4:28:c2:80:55:85:f9:33:53:d7:4b:9a:2c:79:b1: 2a:fe:56:0f:46:38:c2:7b:a9:9d:1e:f3:03:fa:49: 5e:96:79:f6:3e:05:fd:97:d5:a8:4e:88:81:7d:cb: 3f:a7:75:01:30:96:9f:d7:49:83:26:7d:8a:20:8e: 54:50:d6:34:b8:f1:4e:ba:46:c8:52:9f:7e:13:e7: 63:1f:88:52:c0:86:ac:c4:af:92:fb:12:e5:71:2d: c7:f5:c2:ab:22:47:60:44:dc:7e:3b:bb:7a:71:54: e7:1d:c5:7a:b4:23:f8:6f:79:ad:fe:fc:0b:f0:a3: 36:9a:fb:2a:21:9b:fb:c1:70:5a:c6:d8:72:9d:28: c7:2f:6b:8f:e0:ec:df:f9:be:a9:da:e5:b8:c4:44: 1d:9a:3e:b3:b6:2e:50:fc:ea:12:ef:b8:8e:3c:26: 46:f1:18:33:7f:94:c5:1b:6b:b1:b9:69:d0:3a:04: 9b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:3C:74:8A:87:BF:1D:D7:54:B3:98:68:D2:EB:22:84:77:6B:BA:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.241.0/24 IPv6: 2001:df6:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption 77:86:99:bb:1a:09:05:ef:36:f2:a8:35:17:e6:11:b6:d4:4f: 7f:6a:3d:b6:0a:cf:15:a8:94:2a:32:23:a0:d8:8d:30:58:de: 18:8d:1d:1d:c1:34:6b:6a:ff:d6:b2:3e:51:b9:cf:ee:4a:bf: 3f:5e:08:13:9b:00:90:3c:c3:0b:67:0a:84:11:ef:52:ba:a4: da:a0:6c:13:fa:7b:95:23:78:20:7e:a1:c9:6c:4c:42:e3:8e: 5b:04:5a:61:7b:88:63:da:64:2c:bf:7d:55:de:3f:30:95:31: 1a:5f:35:d6:1f:0f:7f:34:60:7b:07:a4:cd:d5:ce:68:c3:8f: 96:b2:8e:b7:bf:37:73:28:92:ea:4e:04:f5:20:25:c2:6b:b5: 9b:e2:44:05:46:17:c4:e4:f2:35:8a:c4:51:91:ca:6e:4e:04: f9:9e:7d:13:e1:8c:02:89:b5:83:d0:11:00:de:24:77:29:d6: 0b:69:60:27:3d:18:dc:f2:23:54:fc:54:42:a2:25:8b:a1:65: db:82:05:fa:06:13:3b:0b:ef:38:c2:89:24:63:0d:cc:5b:98: bd:a2:71:87:86:d2:0a:fd:bc:48:3b:f0:72:4a:85:4b:e8:8e: 75:85:35:bc:5e:54:26:7b:c0:45:af:e6:7d:ea:3a:f2:22:3d: 2e:a3:ce:0e -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUcjPQreF4lOkFmaXHEnmZKgs2UaYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQxNzA1MTMzNFoX DTI3MDQxNjA1MTgzNFowMzExMC8GA1UEAxMoRjczQzc0OEE4N0JGMURENzU0QjM5 ODY4RDJFQjIyODQ3NzZCQkEyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOjVhn1tH7v9lreULvju09LtsPGp/4b5k2n6eiiCJEGpBYaXqHcDheVzwatx QtwQHEOdx8q0gNh6D8ZNVkLCi4pPD2jM7QwneTTSpCjCgFWF+TNT10uaLHmxKv5W D0Y4wnupnR7zA/pJXpZ59j4F/ZfVqE6IgX3LP6d1ATCWn9dJgyZ9iiCOVFDWNLjx TrpGyFKffhPnYx+IUsCGrMSvkvsS5XEtx/XCqyJHYETcfju7enFU5x3FerQj+G95 rf78C/CjNpr7KiGb+8FwWsbYcp0oxy9rj+Ds3/m+qdrluMREHZo+s7YuUPzqEu+4 jjwmRvEYM3+UxRtrsblp0DoEm1ECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBT3PHSK h78d11SzmGjS6yKEd2u6LjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTM2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKOA8TAPBAIAAjAJAwcAIAEN9vDAMA0GCSqGSIb3DQEBCwUAA4IB AQB3hpm7GgkF7zbyqDUX5hG21E9/aj22Cs8VqJQqMiOg2I0wWN4YjR0dwTRrav/W sj5Ruc/uSr8/XggTmwCQPMMLZwqEEe9SuqTaoGwT+nuVI3ggfqHJbExC445bBFph e4hj2mQsv31V3j8wlTEaXzXWHw9/NGB7B6TN1c5ow4+Wso63vzdzKJLqTgT1ICXC a7Wb4kQFRhfE5PI1isRRkcpuTgT5nn0T4YwCibWD0BEA3iR3KdYLaWAnPRjc8iNU /FRCoiWLoWXbggX6BhM7C+84wokkYw3MW5i9onGHhtIK/bxIO/BySoVL6I51hTW8 XlQme8BFr+Z96jryIj0uo84O -----END CERTIFICATE-----Generated at Fri Apr 17 16:02:49 2026 by rpki-client