$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa File: AS151507.roa (raw, json) Hash identifier: xhHan8YcJU/2QspamQug1ed0nGAvqaHv22Mzu3V3CZQ= Subject key identifier: 32:E2:CB:A9:93:2E:BF:B4:04:50:9C:0C:D4:FA:D4:5D:84:C7:7A:B8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 72F6689EDE97EE4A2BB183A3AF3D78641B120A64 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa Signing time: Mon 26 May 2025 07:00:00 +0000 ROA not before: Mon 26 May 2025 06:55:00 +0000 ROA not after: Mon 25 May 2026 07:00:00 +0000 asID: 151507 IP address blocks: 103.234.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f6:68:9e:de:97:ee:4a:2b:b1:83:a3:af:3d:78:64:1b:12:0a:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 26 06:55:00 2025 GMT Not After : May 25 07:00:00 2026 GMT Subject: CN=32E2CBA9932EBFB404509C0CD4FAD45D84C77AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:86:9d:5b:71:8b:7b:bf:b9:9c:70:b9:0d:96: cc:38:eb:5f:f0:5a:d1:ab:1c:d4:51:87:76:37:70: 64:38:a9:7f:6b:d5:9d:e0:f2:39:97:dc:37:35:9d: ff:1c:a8:92:ce:d1:bb:1a:0c:27:4a:2f:47:57:94: e5:12:0b:50:3a:0f:4c:70:8e:94:98:90:56:f0:e3: f1:1f:64:44:7e:7b:18:39:74:1a:c0:17:e2:fb:b4: fd:3a:c0:98:69:ef:3f:67:b3:da:de:f0:a0:4a:48: 1e:f1:9c:a1:26:29:97:36:5a:a1:58:e3:0f:bb:bb: 75:85:31:1a:93:d8:ad:94:24:92:40:dc:6a:f4:32: 8f:3c:ca:f2:a2:ea:61:1d:db:f9:fe:2b:90:97:80: c2:cf:13:80:b5:92:43:d8:01:18:26:1b:4e:95:14: 66:5a:1d:52:de:50:d7:af:42:fc:e1:41:76:75:1e: 83:ef:99:48:b6:f3:57:5f:34:55:df:b1:4c:3b:ba: 3f:11:62:77:3e:da:ea:6c:98:6c:d1:64:2c:29:70: 55:cd:d7:c3:72:56:af:e2:12:b3:cf:58:70:41:29: c1:b6:1e:8c:42:68:21:5d:6d:63:7c:12:47:03:21: 10:8e:26:00:b9:b1:a7:f9:67:89:25:f2:91:70:30: 87:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E2:CB:A9:93:2E:BF:B4:04:50:9C:0C:D4:FA:D4:5D:84:C7:7A:B8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.28.0/23 Signature Algorithm: sha256WithRSAEncryption 34:b3:d6:78:75:8b:4d:b8:00:91:af:ff:49:d6:0c:8b:a5:7f: e9:ed:0f:38:9b:a9:a8:5f:29:1b:2f:33:72:af:86:37:5d:df: f2:13:85:9a:24:3f:e7:6a:e5:1d:a7:9b:66:14:e0:41:ce:67: f2:5b:a1:8b:bc:b2:b9:dc:80:b2:09:c0:84:d7:2a:08:36:b5: 6b:bd:6f:9a:21:e9:b5:1b:dd:99:4d:6f:da:16:c0:09:fb:4f: 1c:b2:2f:9b:00:0a:e9:8c:1f:c6:da:a2:08:dc:f4:7e:eb:5f: 72:cd:84:6b:8b:68:5a:e5:19:9c:14:92:e6:3a:10:ed:8e:c7: 2a:61:55:4b:2b:ae:80:55:f9:22:82:84:69:8a:41:8c:de:95: 95:5c:5d:8b:01:21:22:f6:a7:56:d2:96:2a:6f:a2:66:a5:1d: f5:e2:09:96:4a:a2:52:c6:66:fb:28:48:15:8b:35:52:89:01: ae:78:2d:e1:94:c8:a7:41:fe:d2:3d:13:ac:4d:f5:04:76:03: 47:c5:89:ec:d2:9a:f1:21:68:44:d3:ca:2f:8e:07:25:e0:cf: 98:3b:64:d2:50:3f:6c:c6:1c:04:c2:80:31:cb:a8:4a:fe:52: 26:ff:8a:65:59:ed:40:65:cb:b3:a2:34:1c:7e:f6:7c:2e:2e: 6f:cd:05:04 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcvZont6X7korsYOjrz14ZBsSCmQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyNjA2NTUwMFoX DTI2MDUyNTA3MDAwMFowMzExMC8GA1UEAxMoMzJFMkNCQTk5MzJFQkZCNDA0NTA5 QzBDRDRGQUQ0NUQ4NEM3N0FCODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+GnVtxi3u/uZxwuQ2WzDjrX/Ba0asc1FGHdjdwZDipf2vVneDyOZfcNzWd /xyoks7RuxoMJ0ovR1eU5RILUDoPTHCOlJiQVvDj8R9kRH57GDl0GsAX4vu0/TrA mGnvP2ez2t7woEpIHvGcoSYplzZaoVjjD7u7dYUxGpPYrZQkkkDcavQyjzzK8qLq YR3b+f4rkJeAws8TgLWSQ9gBGCYbTpUUZlodUt5Q169C/OFBdnUeg++ZSLbzV180 Vd+xTDu6PxFidz7a6myYbNFkLClwVc3Xw3JWr+ISs89YcEEpwbYejEJoIV1tY3wS RwMhEI4mALmxp/lniSXykXAwhzUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQy4sup ky6/tARQnAzU+tRdhMd6uDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfqHDANBgkqhkiG9w0BAQsFAAOCAQEANLPWeHWLTbgAka//SdYM i6V/6e0POJupqF8pGy8zcq+GN13f8hOFmiQ/52rlHaebZhTgQc5n8luhi7yyudyA sgnAhNcqCDa1a71vmiHptRvdmU1v2hbACftPHLIvmwAK6YwfxtqiCNz0futfcs2E a4toWuUZnBSS5joQ7Y7HKmFVSyuugFX5IoKEaYpBjN6VlVxdiwEhIvanVtKWKm+i ZqUd9eIJlkqiUsZm+yhIFYs1UokBrngt4ZTIp0H+0j0TrE31BHYDR8WJ7NKa8SFo RNPKL44HJeDPmDtk0lA/bMYcBMKAMcuoSv5SJv+KZVntQGXLs6I0HH72fC4ub80F BA== -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:36 2025 by rpki-client