$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa File: AS151515.roa (raw, json) Hash identifier: BVf0hoAjY3pzVYsatCF+XVRUua89m+kIITd4X4IUV5c= Subject key identifier: 9C:66:0A:6F:E3:86:78:8C:3E:FF:9D:9C:4D:84:5F:A9:AC:95:55:D7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 65C0609E240D817BA834D00404055DDE28D54E88 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa Signing time: Thu 10 Jul 2025 07:02:23 +0000 ROA not before: Thu 10 Jul 2025 06:57:23 +0000 ROA not after: Thu 09 Jul 2026 07:02:23 +0000 asID: 151515 IP address blocks: 103.224.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c0:60:9e:24:0d:81:7b:a8:34:d0:04:04:05:5d:de:28:d5:4e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 10 06:57:23 2025 GMT Not After : Jul 9 07:02:23 2026 GMT Subject: CN=9C660A6FE386788C3EFF9D9C4D845FA9AC9555D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:47:85:69:80:a7:a1:2a:62:82:a8:4c:85:45: 9f:d7:67:5a:59:e5:d0:e4:24:74:42:f0:9e:53:9d: dd:f2:39:3e:ff:34:4c:62:a6:82:46:7d:70:5a:b6: c9:b4:f7:30:ca:ce:81:3b:17:e9:04:ad:4f:23:ed: 25:df:a7:f8:1f:60:ef:f0:25:ba:7c:a0:30:8f:a8: ed:38:04:af:4c:37:10:c6:b9:03:36:67:7e:3d:93: 5d:8e:24:71:a3:37:d8:8f:5a:08:cd:1b:7a:ee:e7: cc:d2:62:c6:d4:5c:04:3d:2c:52:6c:56:7b:85:c2: dc:7e:e8:85:e5:3e:b4:6f:fd:80:d5:b6:67:3f:a9: fe:6b:2f:9a:c4:a0:e7:ff:f4:c8:ee:a6:12:c3:43: b9:f3:4e:fa:7a:36:0e:77:ba:0b:ec:88:6d:22:12: 81:b9:97:7b:78:21:5e:95:a6:1a:5f:a6:01:dc:8a: a7:a5:ff:4c:f5:e8:65:4c:08:b7:91:1f:73:8f:4a: 23:f5:fa:4f:7f:9f:a8:93:3d:46:13:a4:ff:34:3e: 0c:61:db:50:4c:23:0f:83:96:ed:13:4e:1c:78:44: 9e:c6:a5:f3:ab:fa:2c:33:44:3f:34:63:5c:a2:68: 38:c6:de:d1:de:7d:9c:b4:df:91:44:de:f7:44:5d: 3a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:66:0A:6F:E3:86:78:8C:3E:FF:9D:9C:4D:84:5F:A9:AC:95:55:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.18.0/24 Signature Algorithm: sha256WithRSAEncryption 14:48:23:37:78:b5:f2:52:8f:04:5e:f5:79:8c:00:7c:b3:cc: e1:4b:a2:88:c5:37:93:c6:73:e2:17:71:4b:72:b7:3d:c9:9c: f7:a9:6d:94:a4:ea:ac:8f:48:df:bc:06:55:96:62:03:1a:ac: f9:f9:3a:50:ea:0e:4a:6a:38:91:e3:26:60:f7:17:bc:39:f4: 5a:8a:0c:39:8f:ef:4b:1f:74:f7:2e:1f:f5:00:f4:d1:63:cb: 16:07:17:53:4d:fe:1f:d9:d8:6d:82:85:9c:82:04:1c:09:83: 41:6e:cb:b9:17:a5:46:84:2d:42:41:fd:68:6e:5b:6a:c7:04: b5:9b:07:ac:b5:2a:b3:f3:60:cc:a3:ef:7d:3c:89:b6:08:22: e8:23:d6:31:2d:e6:9f:a3:10:4b:16:84:c3:c0:25:dc:46:71: ef:06:79:42:4c:8a:e9:3b:cc:4e:34:da:76:b0:ae:db:e3:e6: a6:29:b9:5e:fc:d6:67:fa:4e:e8:b1:86:eb:b2:15:6c:f6:e7: 10:43:3b:04:39:bf:d7:30:77:98:14:9a:a3:92:d2:de:53:2a: 9f:ce:0f:5c:dd:56:ba:2a:16:69:ac:24:aa:31:fe:53:37:4a: 4a:9b:9f:0d:dd:de:52:49:a8:cd:4c:ae:ff:e6:23:28:7a:1e: 81:23:d0:cb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZcBgniQNgXuoNNAEBAVd3ijVTogwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxMDA2NTcyM1oX DTI2MDcwOTA3MDIyM1owMzExMC8GA1UEAxMoOUM2NjBBNkZFMzg2Nzg4QzNFRkY5 RDlDNEQ4NDVGQTlBQzk1NTVENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZHhWmAp6EqYoKoTIVFn9dnWlnl0OQkdELwnlOd3fI5Pv80TGKmgkZ9cFq2 ybT3MMrOgTsX6QStTyPtJd+n+B9g7/AlunygMI+o7TgEr0w3EMa5AzZnfj2TXY4k caM32I9aCM0beu7nzNJixtRcBD0sUmxWe4XC3H7oheU+tG/9gNW2Zz+p/msvmsSg 5//0yO6mEsNDufNO+no2Dne6C+yIbSISgbmXe3ghXpWmGl+mAdyKp6X/TPXoZUwI t5Efc49KI/X6T3+fqJM9RhOk/zQ+DGHbUEwjD4OW7RNOHHhEnsal86v6LDNEPzRj XKJoOMbe0d59nLTfkUTe90RdOuECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBScZgpv 44Z4jD7/nZxNhF+prJVV1zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfgEjANBgkqhkiG9w0BAQsFAAOCAQEAFEgjN3i18lKPBF71eYwA fLPM4UuiiMU3k8Zz4hdxS3K3Pcmc96ltlKTqrI9I37wGVZZiAxqs+fk6UOoOSmo4 keMmYPcXvDn0WooMOY/vSx909y4f9QD00WPLFgcXU03+H9nYbYKFnIIEHAmDQW7L uRelRoQtQkH9aG5bascEtZsHrLUqs/NgzKPvfTyJtggi6CPWMS3mn6MQSxaEw8Al 3EZx7wZ5QkyK6TvMTjTadrCu2+Pmpim5XvzWZ/pO6LGG67IVbPbnEEM7BDm/1zB3 mBSao5LS3lMqn84PXN1WuioWaawkqjH+UzdKSpufDd3eUkmozUyu/+YjKHoegSPQ yw== -----END CERTIFICATE-----Generated at Mon Jul 21 00:02:39 2025 by rpki-client