$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa File: AS151561.roa (raw, json) Hash identifier: v975BY1zIMB+4jvRa2xtEPiHira99Y0GH1l5s+wdBE0= Subject key identifier: AC:68:4E:63:3A:5A:38:D9:E8:1F:A8:9A:6A:83:9E:F2:B2:7C:A8:D6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5BD0012342B77DA946D3A41FB0B8B8B96568BD36 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa Signing time: Mon 21 Jul 2025 09:00:00 +0000 ROA not before: Mon 21 Jul 2025 08:55:00 +0000 ROA not after: Mon 20 Jul 2026 09:00:00 +0000 asID: 151561 IP address blocks: 103.255.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d0:01:23:42:b7:7d:a9:46:d3:a4:1f:b0:b8:b8:b9:65:68:bd:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 21 08:55:00 2025 GMT Not After : Jul 20 09:00:00 2026 GMT Subject: CN=AC684E633A5A38D9E81FA89A6A839EF2B27CA8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1c:82:f0:0c:89:6a:54:19:1c:5f:c0:e8:61: 22:f3:88:b0:fa:63:52:4a:b4:c3:4b:f8:6c:d2:28: 39:0d:af:72:0d:57:35:08:b9:70:d3:ee:51:a6:c4: 4d:df:f9:5c:12:22:a8:65:21:d0:93:c5:27:40:1f: 8a:24:3e:96:78:06:d0:de:49:ba:8e:30:21:1a:13: f8:35:4a:94:3a:f9:58:8c:21:ba:ed:98:ac:2b:ff: 39:e3:e3:80:09:6d:d4:71:4f:f7:61:a3:61:ea:50: e0:2b:aa:6b:4a:2f:a0:a3:12:0e:63:ed:45:bd:64: 36:79:0d:9a:a8:7b:00:af:5d:9a:20:81:10:4e:ec: dd:a3:bb:47:56:cf:93:b1:c2:ef:a9:d6:c6:77:a7: 46:02:6e:a9:fd:37:d2:6b:3a:c5:cb:f6:00:28:5e: fa:e4:5a:3b:e3:c1:d0:f2:13:66:66:d7:94:3f:06: 54:02:cc:30:18:76:b9:63:87:3b:c3:8c:f4:06:9a: 3f:8f:27:a0:45:45:fb:bb:ea:ea:30:32:08:53:51: 43:1d:20:09:8d:3f:31:5e:17:64:84:9f:4f:c4:b0: 4c:c2:84:f2:f1:bd:dd:66:3c:37:9a:65:ac:d3:24: e0:dd:96:69:d8:3a:36:4a:07:e0:fd:a3:83:bc:18: 43:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:68:4E:63:3A:5A:38:D9:E8:1F:A8:9A:6A:83:9E:F2:B2:7C:A8:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.110.0/24 Signature Algorithm: sha256WithRSAEncryption 22:91:ea:67:e8:32:ba:c3:d2:22:d7:5f:94:9f:92:d6:49:8c: fc:e9:8f:18:14:20:8b:74:d7:e4:40:9c:2e:89:e4:c4:e0:e8: f1:95:19:86:4f:2e:a4:a8:14:99:5e:d1:eb:33:08:42:22:0e: e3:48:4b:d0:c6:df:b3:08:b7:39:e6:5e:58:55:43:bc:75:35: bd:cd:ac:42:dc:db:db:65:2d:a4:39:eb:88:77:66:3b:14:5d: 51:14:e2:4b:7b:2b:8d:68:52:8c:82:f2:40:84:f5:98:b1:d1: d7:df:e6:76:87:83:c8:b9:21:89:2d:b9:e4:dc:b8:02:ed:37: 05:13:d4:4d:77:64:c9:d9:82:e1:58:bf:da:09:18:d2:0f:80: 1a:71:3d:81:f2:ba:43:18:3b:8f:d4:25:f8:1b:53:cf:83:04: 5d:9f:d9:aa:4a:bc:7b:1c:15:6c:b3:c2:f6:9f:34:fb:ea:73: 7d:d5:40:86:8f:fe:d7:df:a2:ae:9b:86:7d:9b:52:49:09:35: 09:2a:1b:60:c8:2c:58:67:cb:76:ad:a5:60:0c:a3:e9:7a:d7: 56:2f:45:77:78:87:b7:35:0b:d7:68:ef:29:36:05:30:99:47: c4:d2:cf:1b:f0:a6:7d:90:75:21:2d:19:b3:42:d5:67:68:6d: 94:bd:5f:4f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUW9ABI0K3falG06QfsLi4uWVovTYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyMTA4NTUwMFoX DTI2MDcyMDA5MDAwMFowMzExMC8GA1UEAxMoQUM2ODRFNjMzQTVBMzhEOUU4MUZB ODlBNkE4MzlFRjJCMjdDQThENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMcgvAMiWpUGRxfwOhhIvOIsPpjUkq0w0v4bNIoOQ2vcg1XNQi5cNPuUabE Td/5XBIiqGUh0JPFJ0AfiiQ+lngG0N5Juo4wIRoT+DVKlDr5WIwhuu2YrCv/OePj gAlt1HFP92GjYepQ4Cuqa0ovoKMSDmPtRb1kNnkNmqh7AK9dmiCBEE7s3aO7R1bP k7HC76nWxnenRgJuqf030ms6xcv2AChe+uRaO+PB0PITZmbXlD8GVALMMBh2uWOH O8OM9AaaP48noEVF+7vq6jAyCFNRQx0gCY0/MV4XZISfT8SwTMKE8vG93WY8N5pl rNMk4N2Wadg6NkoH4P2jg7wYQ78CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSsaE5j Olo42egfqJpqg57ysnyo1jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU2MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf/bjANBgkqhkiG9w0BAQsFAAOCAQEAIpHqZ+gyusPSItdflJ+S 1kmM/OmPGBQgi3TX5ECcLonkxODo8ZUZhk8upKgUmV7R6zMIQiIO40hL0Mbfswi3 OeZeWFVDvHU1vc2sQtzb22UtpDnriHdmOxRdURTiS3srjWhSjILyQIT1mLHR19/m doeDyLkhiS255Ny4Au03BRPUTXdkydmC4Vi/2gkY0g+AGnE9gfK6Qxg7j9Ql+BtT z4MEXZ/Zqkq8exwVbLPC9p80++pzfdVAho/+19+irpuGfZtSSQk1CSobYMgsWGfL dq2lYAyj6XrXVi9Fd3iHtzUL12jvKTYFMJlHxNLPG/CmfZB1IS0Zs0LVZ2htlL1f Tw== -----END CERTIFICATE-----Generated at Wed Aug 6 10:01:21 2025 by rpki-client