$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151512.roa File: AS151512.roa (raw, json) Hash identifier: W1SrswEzaCgApaMuUr00EUdMJKoOK9AQEgGezqUBNO8= Subject key identifier: 39:4F:BC:FE:3B:76:99:7B:97:05:89:46:3C:13:23:54:F7:55:71:60 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 266D68F01B085F20F3B94E160B60CF8375170381 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151512.roa Signing time: Tue 15 Jul 2025 07:00:00 +0000 ROA not before: Tue 15 Jul 2025 06:55:00 +0000 ROA not after: Tue 14 Jul 2026 07:00:00 +0000 asID: 151512 IP address blocks: 103.234.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:6d:68:f0:1b:08:5f:20:f3:b9:4e:16:0b:60:cf:83:75:17:03:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 15 06:55:00 2025 GMT Not After : Jul 14 07:00:00 2026 GMT Subject: CN=394FBCFE3B76997B970589463C132354F7557160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:00:13:d7:86:e1:ec:38:27:26:6f:57:8b:cc: 56:f3:fc:8a:be:88:b0:93:16:b2:e8:c5:03:de:57: 9a:49:fd:40:3c:b6:29:a1:dc:cc:c1:80:cc:ab:f8: 54:3b:43:e1:13:17:fc:f4:ab:7b:d1:27:9f:81:23: 89:44:bd:54:5c:dd:a4:99:db:d9:e8:0f:ad:cb:20: 28:d0:b4:bd:1b:53:bd:f0:9c:4f:c8:7d:57:47:97: 23:cb:18:c6:ac:1c:59:35:3e:ad:c1:a1:c6:2e:bb: f5:87:1a:2a:98:92:21:ff:46:d9:90:dd:5b:28:d1: 30:40:68:c9:02:cb:3c:7b:fc:47:65:8c:b8:75:58: 16:07:0a:ad:e4:b6:9a:15:57:83:0a:81:9c:9b:7f: 20:dd:ee:c0:09:b9:b6:0a:00:63:ad:5c:a0:c4:86: 86:83:a0:53:70:af:45:59:ef:97:1f:cd:85:a5:6b: b0:c4:8a:a4:e5:88:e0:b8:e9:82:8b:7a:f0:33:57: 97:50:8c:e3:73:48:63:19:bd:f5:c8:4a:42:11:12: d6:40:77:d6:d8:f6:25:2e:d9:16:df:21:86:c1:79: 14:9b:0d:05:03:46:4d:b6:13:7e:3c:8c:5f:91:eb: 91:bd:3d:dc:6b:b8:d2:34:cd:98:fa:64:f0:a4:59: 27:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4F:BC:FE:3B:76:99:7B:97:05:89:46:3C:13:23:54:F7:55:71:60 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151512.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.30.0/23 Signature Algorithm: sha256WithRSAEncryption 29:c6:79:d9:1c:55:30:bb:59:78:b5:53:cf:5c:8c:d0:21:56: 27:eb:18:3d:33:d9:c6:85:d2:06:8a:0d:8d:9e:b4:64:20:1e: fc:f1:4c:5f:ea:e8:66:89:2f:ec:2a:9c:83:b8:73:54:67:31: 8f:4b:13:58:de:97:d5:f9:f1:71:f0:43:9f:6d:19:27:32:90: 4e:fe:d6:c5:0f:18:85:01:b7:47:65:82:84:98:1d:7f:1c:8f: 44:06:80:b1:a1:0f:1e:44:9f:40:45:96:6a:ba:90:08:89:0c: 65:e3:2e:94:e5:49:e9:61:60:7b:00:50:6c:54:1b:b9:22:ed: 81:7e:e6:1a:78:82:b1:a9:0c:8a:3c:d0:38:04:8f:8a:81:17: 4d:58:ce:1c:ad:9b:3f:37:ea:be:9b:27:61:6c:ca:83:ea:80: b4:da:af:b9:6f:a0:7f:5a:53:a6:0b:63:ec:21:44:34:fd:ff: d4:11:36:98:54:1e:62:80:c5:fd:fa:d2:4d:4c:a0:d3:36:78: a8:ac:5e:da:e2:07:4c:22:e2:23:27:96:43:68:56:14:67:ee: 8d:22:83:13:4b:43:3d:ab:27:68:66:65:da:e8:ea:93:18:5b: a9:1f:e1:6f:9b:8d:bc:53:16:33:0c:91:60:9d:1e:83:6a:62: ff:71:11:b1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJm1o8BsIXyDzuU4WC2DPg3UXA4EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNTA2NTUwMFoX DTI2MDcxNDA3MDAwMFowMzExMC8GA1UEAxMoMzk0RkJDRkUzQjc2OTk3Qjk3MDU4 OTQ2M0MxMzIzNTRGNzU1NzE2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0AE9eG4ew4JyZvV4vMVvP8ir6IsJMWsujFA95Xmkn9QDy2KaHczMGAzKv4 VDtD4RMX/PSre9Enn4EjiUS9VFzdpJnb2egPrcsgKNC0vRtTvfCcT8h9V0eXI8sY xqwcWTU+rcGhxi679YcaKpiSIf9G2ZDdWyjRMEBoyQLLPHv8R2WMuHVYFgcKreS2 mhVXgwqBnJt/IN3uwAm5tgoAY61coMSGhoOgU3CvRVnvlx/NhaVrsMSKpOWI4Ljp got68DNXl1CM43NIYxm99chKQhES1kB31tj2JS7ZFt8hhsF5FJsNBQNGTbYTfjyM X5Hrkb093Gu40jTNmPpk8KRZJy0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ5T7z+ O3aZe5cFiUY8EyNU91VxYDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfqHjANBgkqhkiG9w0BAQsFAAOCAQEAKcZ52RxVMLtZeLVTz1yM 0CFWJ+sYPTPZxoXSBooNjZ60ZCAe/PFMX+roZokv7Cqcg7hzVGcxj0sTWN6X1fnx cfBDn20ZJzKQTv7WxQ8YhQG3R2WChJgdfxyPRAaAsaEPHkSfQEWWarqQCIkMZeMu lOVJ6WFgewBQbFQbuSLtgX7mGniCsakMijzQOASPioEXTVjOHK2bPzfqvpsnYWzK g+qAtNqvuW+gf1pTpgtj7CFENP3/1BE2mFQeYoDF/frSTUyg0zZ4qKxe2uIHTCLi IyeWQ2hWFGfujSKDE0tDPasnaGZl2ujqkxhbqR/hb5uNvFMWMwyRYJ0eg2pi/3ER sQ== -----END CERTIFICATE-----Generated at Mon Jul 21 00:01:41 2025 by rpki-client