$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151579.roa File: AS151579.roa (raw, json) Hash identifier: zmffyTjYOkrEWY5i8tPWBzfe416PdrccdYiaSa49KcE= Subject key identifier: 29:83:D3:F6:CE:52:C5:58:37:96:E3:D6:BF:F3:BC:64:43:03:9C:CE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1295E7370379797061A37B96A287EAF3BD7161BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151579.roa Signing time: Mon 06 Apr 2026 02:58:09 +0000 ROA not before: Mon 06 Apr 2026 02:53:09 +0000 ROA not after: Mon 05 Apr 2027 02:58:09 +0000 asID: 151579 IP address blocks: 103.247.82.0/23 maxlen: 24 103.247.82.0/24 maxlen: 24 103.247.83.0/24 maxlen: 24 2001:df3:df40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:95:e7:37:03:79:79:70:61:a3:7b:96:a2:87:ea:f3:bd:71:61:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 6 02:53:09 2026 GMT Not After : Apr 5 02:58:09 2027 GMT Subject: CN=2983D3F6CE52C5583796E3D6BFF3BC6443039CCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0b:7a:c0:db:ea:47:44:af:02:a8:55:24:40: 4f:23:af:06:50:c9:ea:03:2c:81:c7:0a:ba:aa:e3: 45:37:2a:d8:f1:21:46:01:76:30:61:16:6a:5b:07: 85:8b:7e:65:b0:03:04:7c:47:34:78:ac:d1:fc:e3: 19:74:ce:87:42:42:24:be:36:d7:b7:08:b6:3a:40: b2:bc:b9:99:35:54:0b:18:57:96:31:5c:a2:a3:da: 97:e2:11:19:b4:fb:70:10:15:31:97:ed:2e:a9:30: a8:6f:a6:25:75:c0:ef:72:a9:49:fc:31:04:04:77: 33:7a:a0:38:f7:23:f6:be:a5:af:d0:7d:b6:54:5a: d6:49:6f:2b:dc:ff:65:85:44:87:80:5b:93:f2:d9: 09:c5:dd:ea:3c:30:b7:eb:75:ed:7b:23:c8:07:76: fc:f4:cc:12:ba:2f:c1:7e:b0:36:fe:ba:36:ae:c7: 27:e6:20:50:7e:6a:5d:b9:fc:be:75:1d:ee:f5:68: dc:e4:9c:e3:60:60:fe:4e:dd:3d:a3:4e:de:a9:79: 31:8b:90:9c:3b:70:35:dc:ef:8a:79:30:5a:10:aa: eb:87:05:43:cc:41:76:d7:eb:9b:41:95:60:07:7a: 91:ed:8d:ee:89:70:34:f7:d2:e0:6c:09:6d:93:ed: 4a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:83:D3:F6:CE:52:C5:58:37:96:E3:D6:BF:F3:BC:64:43:03:9C:CE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151579.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.82.0/23 IPv6: 2001:df3:df40::/48 Signature Algorithm: sha256WithRSAEncryption 67:45:fa:cc:e3:94:d8:97:71:86:a6:e8:e2:3f:79:39:9c:d2: 72:2b:61:f2:91:bc:ae:65:7b:51:8f:b6:65:f5:7b:e3:37:e4: fd:5f:ba:25:53:b8:61:a4:c0:e0:35:79:8f:08:4b:8e:4a:05: 1a:95:cf:58:ac:ba:99:5a:f5:d5:92:31:0b:20:16:bd:fe:42: 9f:63:39:b8:15:30:e9:4a:db:06:0a:ff:26:7b:eb:76:17:49: 7b:08:27:62:1f:da:d3:c1:d7:cc:fd:9d:df:3a:7e:3c:e2:a3: 04:8d:44:b7:60:ad:a6:e1:e1:a8:b1:6e:26:02:1e:95:30:15: 79:d2:93:14:66:88:7c:a4:b4:1d:15:c3:0d:3e:f1:21:1e:66: b2:d9:ae:33:81:60:b1:3a:b5:dd:74:35:e3:4e:ef:7d:12:45: ec:eb:51:80:a4:11:bf:5e:84:fa:b1:c3:fa:c5:ae:b6:61:d4: 16:20:d4:f7:36:b5:07:c4:94:c5:60:b9:71:40:43:a9:6d:3f: 63:7a:d9:43:15:08:99:e9:7b:ad:f9:0b:df:16:97:5c:6a:78: 50:2f:56:13:b6:99:ac:a9:23:c9:cd:88:fd:38:76:c3:08:db: 72:b0:55:10:b4:5e:c1:42:44:6d:7c:74:74:f1:41:0e:39:fa: 3d:68:11:35 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUEpXnNwN5eXBho3uWoofq871xYbswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwNjAyNTMwOVoX DTI3MDQwNTAyNTgwOVowMzExMC8GA1UEAxMoMjk4M0QzRjZDRTUyQzU1ODM3OTZF M0Q2QkZGM0JDNjQ0MzAzOUNDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMALesDb6kdErwKoVSRATyOvBlDJ6gMsgccKuqrjRTcq2PEhRgF2MGEWalsH hYt+ZbADBHxHNHis0fzjGXTOh0JCJL4217cItjpAsry5mTVUCxhXljFcoqPal+IR GbT7cBAVMZftLqkwqG+mJXXA73KpSfwxBAR3M3qgOPcj9r6lr9B9tlRa1klvK9z/ ZYVEh4Bbk/LZCcXd6jwwt+t17XsjyAd2/PTMErovwX6wNv66Nq7HJ+YgUH5qXbn8 vnUd7vVo3OSc42Bg/k7dPaNO3ql5MYuQnDtwNdzvinkwWhCq64cFQ8xBdtfrm0GV YAd6ke2N7olwNPfS4GwJbZPtSlcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQpg9P2 zlLFWDeW49a/87xkQwOczjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWf3UjAPBAIAAjAJAwcAIAEN899AMA0GCSqGSIb3DQEBCwUAA4IB AQBnRfrM45TYl3GGpujiP3k5nNJyK2HykbyuZXtRj7Zl9XvjN+T9X7olU7hhpMDg NXmPCEuOSgUalc9YrLqZWvXVkjELIBa9/kKfYzm4FTDpStsGCv8me+t2F0l7CCdi H9rTwdfM/Z3fOn484qMEjUS3YK2m4eGosW4mAh6VMBV50pMUZoh8pLQdFcMNPvEh Hmay2a4zgWCxOrXddDXjTu99EkXs61GApBG/XoT6scP6xa62YdQWINT3NrUHxJTF YLlxQEOpbT9jetlDFQiZ6Xut+QvfFpdcanhQL1YTtpmsqSPJzYj9OHbDCNtysFUQ tF7BQkRtfHR08UEOOfo9aBE1 -----END CERTIFICATE-----Generated at Fri Apr 17 10:55:06 2026 by rpki-client