$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa File: AS151553.roa (raw, json) Hash identifier: FZtu4NOLZwoxjjXvXVWzo9Gnpj1jNd1a0xErHhEh2Kk= Subject key identifier: F5:41:17:46:63:44:CE:50:15:1D:B8:1C:4A:B2:82:25:EF:B7:A0:54 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 103126794B42F55F3C6D38C1AA60808A921636EE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa Signing time: Tue 01 Jul 2025 08:00:00 +0000 ROA not before: Tue 01 Jul 2025 07:55:00 +0000 ROA not after: Tue 30 Jun 2026 08:00:00 +0000 asID: 151553 IP address blocks: 103.255.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:31:26:79:4b:42:f5:5f:3c:6d:38:c1:aa:60:80:8a:92:16:36:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 07:55:00 2025 GMT Not After : Jun 30 08:00:00 2026 GMT Subject: CN=F54117466344CE50151DB81C4AB28225EFB7A054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f7:51:47:65:d5:69:30:8d:1b:19:14:19:56: 41:cb:26:12:ed:c5:e5:7c:e9:38:26:90:ae:ca:4f: b6:c9:de:3b:5f:84:f6:ea:16:bd:bc:25:4f:d1:fa: 31:99:de:d8:5c:8b:ba:db:a4:db:2a:cf:93:f7:b1: 40:12:ee:6d:e3:42:11:1c:05:7b:27:f5:ad:60:0f: a8:86:1b:a6:c5:bd:ea:89:70:88:73:c9:dd:17:46: 0c:59:07:6d:08:5a:1e:f2:5c:26:86:d5:1c:88:af: 34:9f:62:af:ce:ab:da:b1:7e:53:63:73:fb:42:a4: 4c:65:b1:ed:9c:09:f8:c9:3a:dd:ee:6a:33:c7:2f: c4:8a:81:02:37:39:0c:13:fe:88:5e:6c:ab:cb:7f: e5:8f:52:aa:e7:8a:8c:1f:79:df:5a:c1:d5:a0:1e: 78:66:51:15:62:ec:ea:1e:bf:3a:3c:f9:02:52:a4: bf:bf:53:58:54:ae:85:35:51:a1:fa:17:4f:22:05: cf:a1:ab:1d:fd:ac:24:0b:57:a4:7d:ee:38:fd:14: bd:8b:81:34:3d:8d:a7:ac:ef:50:a5:d0:5b:f1:71: ae:71:37:c6:7f:63:01:65:c3:c3:6c:f2:18:81:2e: c6:8e:84:10:33:84:64:52:24:77:79:1e:0f:12:71: b4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:41:17:46:63:44:CE:50:15:1D:B8:1C:4A:B2:82:25:EF:B7:A0:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.98.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:49:de:e7:57:71:ae:15:27:63:46:d8:20:4c:0a:da:78:5d: df:57:88:11:38:7e:f1:7c:78:fd:40:66:c5:6b:bf:d7:bc:61: 0e:31:0f:4c:8f:81:49:67:3d:f2:1d:65:6d:fc:a4:2c:5f:72: 34:6a:f4:ed:4e:8d:b6:41:5f:b4:0f:20:a3:8b:48:4a:62:ba: ae:0a:39:3e:e5:2c:02:b6:d9:0a:c8:89:42:8e:2e:f6:93:bb: 2a:0e:bb:9f:5a:49:c6:0b:ee:59:e0:6a:3a:40:af:66:79:45: e2:f2:00:90:19:39:b0:6c:c2:a1:cd:fa:30:12:f9:34:6f:a5: c5:3e:a4:fd:97:da:d4:87:d1:0a:6a:a0:b2:f4:00:84:d9:4e: 5e:8c:8b:40:0c:9e:65:a2:1f:44:b4:ab:d0:c7:b4:f6:fb:4c: 1e:f2:02:4c:84:36:83:ff:5a:71:eb:4b:ee:49:03:df:16:5a: 58:42:f4:87:2c:fa:6a:48:9a:88:ca:05:5d:fa:a4:ce:b7:df: 7d:e2:12:2b:1a:82:69:37:cc:36:0d:4a:11:1e:e0:b7:ac:9d: b3:b7:ac:f6:6d:79:aa:60:31:36:9d:14:e9:10:89:4d:66:84: b5:c8:61:ad:81:8e:c9:4e:c8:a0:e3:44:9b:ca:35:3a:18:48: 8d:f0:92:1d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEDEmeUtC9V88bTjBqmCAipIWNu4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcwMTA3NTUwMFoX DTI2MDYzMDA4MDAwMFowMzExMC8GA1UEAxMoRjU0MTE3NDY2MzQ0Q0U1MDE1MURC ODFDNEFCMjgyMjVFRkI3QTA1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKf3UUdl1WkwjRsZFBlWQcsmEu3F5XzpOCaQrspPtsneO1+E9uoWvbwlT9H6 MZne2FyLutuk2yrPk/exQBLubeNCERwFeyf1rWAPqIYbpsW96olwiHPJ3RdGDFkH bQhaHvJcJobVHIivNJ9ir86r2rF+U2Nz+0KkTGWx7ZwJ+Mk63e5qM8cvxIqBAjc5 DBP+iF5sq8t/5Y9SqueKjB9531rB1aAeeGZRFWLs6h6/Ojz5AlKkv79TWFSuhTVR ofoXTyIFz6GrHf2sJAtXpH3uOP0UvYuBND2Np6zvUKXQW/FxrnE3xn9jAWXDw2zy GIEuxo6EEDOEZFIkd3keDxJxtH8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT1QRdG Y0TOUBUduBxKsoIl77egVDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf/YjANBgkqhkiG9w0BAQsFAAOCAQEAC0ne51dxrhUnY0bYIEwK 2nhd31eIETh+8Xx4/UBmxWu/17xhDjEPTI+BSWc98h1lbfykLF9yNGr07U6NtkFf tA8go4tISmK6rgo5PuUsArbZCsiJQo4u9pO7Kg67n1pJxgvuWeBqOkCvZnlF4vIA kBk5sGzCoc36MBL5NG+lxT6k/Zfa1IfRCmqgsvQAhNlOXoyLQAyeZaIfRLSr0Me0 9vtMHvICTIQ2g/9acetL7kkD3xZaWEL0hyz6akiaiMoFXfqkzrfffeISKxqCaTfM Ng1KER7gt6yds7es9m15qmAxNp0U6RCJTWaEtchhrYGOyU7IoONEm8o1OhhIjfCS HQ== -----END CERTIFICATE-----Generated at Mon Jul 21 00:07:12 2025 by rpki-client