$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151993.roa File: AS151993.roa (raw, json) Hash identifier: 5J4uTHPjVQDKjk8k/o9o6es+6F5/dRBNL4EFVKlOOFk= Subject key identifier: E4:12:17:E8:58:35:BF:AC:30:E1:49:1E:A7:C6:CB:D9:58:7A:1B:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A8D49008456E4621C67A96869F7EB644CA4F601 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151993.roa Signing time: Wed 22 Oct 2025 07:00:00 +0000 ROA not before: Wed 22 Oct 2025 06:55:00 +0000 ROA not after: Wed 21 Oct 2026 07:00:00 +0000 asID: 151993 IP address blocks: 203.111.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 07:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8d:49:00:84:56:e4:62:1c:67:a9:68:69:f7:eb:64:4c:a4:f6:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 22 06:55:00 2025 GMT Not After : Oct 21 07:00:00 2026 GMT Subject: CN=E41217E85835BFAC30E1491EA7C6CBD9587A1B46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ad:39:ac:b3:3c:79:fd:f3:85:49:ab:31:92: 77:46:e7:70:8a:ad:6e:a5:28:83:ca:14:d1:cf:06: 98:1d:f6:c8:e5:a7:17:47:46:7d:dd:e8:50:4b:20: 82:f1:80:1d:a1:79:ed:ff:b5:c3:d7:00:bf:4e:b3: 81:cf:9a:c9:da:28:95:8b:13:00:74:ea:d1:36:47: 34:dd:5f:d9:e3:b6:6e:9f:40:06:5e:e4:4b:74:fd: 87:ec:0e:a5:fb:7a:4c:1c:05:94:9e:03:fc:a6:96: 13:c0:5f:46:1b:c6:a7:f5:73:f1:d5:c3:21:ce:db: 6a:e3:18:ad:10:69:69:ed:3e:4d:4a:81:8f:d2:2b: 21:f4:4a:7e:16:65:58:1a:ab:36:6a:20:09:59:0c: 75:6e:6b:e2:f7:74:3d:bc:27:bb:f5:86:52:79:ef: 15:3a:ad:c2:21:47:ee:13:d3:66:d6:17:c2:e0:ff: 1a:74:57:c4:34:35:54:5a:56:a0:74:ef:c9:17:32: 97:85:68:7f:ee:c4:dc:d9:86:ac:5a:7a:d3:e8:d9: f7:9a:e3:17:0e:48:b1:46:a1:58:4b:13:bb:34:19: 52:13:6b:a7:0a:04:32:d3:eb:a6:ff:51:fe:e7:48: 9e:5c:d5:d0:aa:b4:e3:35:4e:14:32:65:0b:25:49: 41:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:12:17:E8:58:35:BF:AC:30:E1:49:1E:A7:C6:CB:D9:58:7A:1B:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151993.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.111.252.0/23 Signature Algorithm: sha256WithRSAEncryption 64:3d:c6:99:48:5b:7b:88:e0:2d:db:f8:ca:c6:2a:e8:78:6d: c2:78:e0:e1:b1:a4:0c:a0:f6:16:74:02:ae:ea:2d:cb:44:6b: fb:d1:d2:33:92:45:e3:f8:c4:2e:99:10:dd:56:6b:c6:d6:3e: e1:c9:8d:95:f9:61:f5:e2:ef:f8:85:7e:c0:98:90:96:61:a0: 78:d8:bd:c5:54:26:6e:f9:e8:ce:cf:26:e8:9e:52:54:8b:13: 63:b7:ca:2c:5c:b3:97:18:14:61:70:e5:da:b3:7b:0d:cb:55: 48:31:1d:e5:c3:d7:d0:3f:c4:ee:bd:e9:13:d7:2b:67:6f:68: c7:03:d6:59:32:c5:fc:a9:c1:dc:09:2d:f4:5a:72:3e:7a:ab: c6:b1:2d:10:86:bf:ba:11:b5:fb:96:28:3c:57:79:50:ed:d7: 1a:59:cc:b9:da:ea:7b:0d:1e:95:79:c3:1f:69:d2:94:85:4c: 05:71:cb:1c:4c:1c:7e:50:60:79:0d:17:51:2b:ec:30:0e:0a: d8:9b:0a:6c:74:26:a7:09:ff:6b:16:42:7e:b3:fd:01:3f:70: 89:90:db:04:f6:76:34:23:ca:20:f4:07:6d:bf:5c:a0:95:d1: b4:b9:64:3f:4f:ae:ad:8d:10:05:00:c3:52:d5:3b:4a:da:f9: 32:75:61:98 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOo1JAIRW5GIcZ6loaffrZEyk9gEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyMjA2NTUwMFoX DTI2MTAyMTA3MDAwMFowMzExMC8GA1UEAxMoRTQxMjE3RTg1ODM1QkZBQzMwRTE0 OTFFQTdDNkNCRDk1ODdBMUI0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMutOayzPHn984VJqzGSd0bncIqtbqUog8oU0c8GmB32yOWnF0dGfd3oUEsg gvGAHaF57f+1w9cAv06zgc+aydoolYsTAHTq0TZHNN1f2eO2bp9ABl7kS3T9h+wO pft6TBwFlJ4D/KaWE8BfRhvGp/Vz8dXDIc7bauMYrRBpae0+TUqBj9IrIfRKfhZl WBqrNmogCVkMdW5r4vd0Pbwnu/WGUnnvFTqtwiFH7hPTZtYXwuD/GnRXxDQ1VFpW oHTvyRcyl4Vof+7E3NmGrFp60+jZ95rjFw5IsUahWEsTuzQZUhNrpwoEMtPrpv9R /udInlzV0Kq04zVOFDJlCyVJQX0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTkEhfo WDW/rDDhSR6nxsvZWHobRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTk5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEActv/DANBgkqhkiG9w0BAQsFAAOCAQEAZD3GmUhbe4jgLdv4ysYq 6Hhtwnjg4bGkDKD2FnQCruoty0Rr+9HSM5JF4/jELpkQ3VZrxtY+4cmNlflh9eLv +IV+wJiQlmGgeNi9xVQmbvnozs8m6J5SVIsTY7fKLFyzlxgUYXDl2rN7DctVSDEd 5cPX0D/E7r3pE9crZ29oxwPWWTLF/KnB3Akt9FpyPnqrxrEtEIa/uhG1+5YoPFd5 UO3XGlnMudrqew0elXnDH2nSlIVMBXHLHEwcflBgeQ0XUSvsMA4K2JsKbHQmpwn/ axZCfrP9AT9wiZDbBPZ2NCPKIPQHbb9coJXRtLlkP0+urY0QBQDDUtU7Str5MnVh mA== -----END CERTIFICATE-----Generated at Tue Nov 4 02:00:34 2025 by rpki-client