$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa File: AS151510.roa (raw, json) Hash identifier: uuLbKh6L3llhNCVyxksLbLsT6HDrRTrbkuPBOgPoSjY= Subject key identifier: CF:75:9A:49:D7:69:EC:F7:BC:E4:DF:EA:62:24:82:A3:B5:04:63:11 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58F14C2FACB9185585FF0B2072777076CFC91BCA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa Signing time: Mon 01 Sep 2025 08:00:00 +0000 ROA not before: Mon 01 Sep 2025 07:55:00 +0000 ROA not after: Mon 31 Aug 2026 08:00:00 +0000 asID: 151510 IP address blocks: 103.236.214.0/23 maxlen: 24 2001:df2:dd40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f1:4c:2f:ac:b9:18:55:85:ff:0b:20:72:77:70:76:cf:c9:1b:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 1 07:55:00 2025 GMT Not After : Aug 31 08:00:00 2026 GMT Subject: CN=CF759A49D769ECF7BCE4DFEA622482A3B5046311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:71:e7:25:e8:81:e7:13:b3:08:49:3c:e2:eb: b1:4d:b7:74:16:04:24:2f:e9:33:8c:3d:61:1c:ec: 03:6d:ac:80:60:cf:7e:49:74:48:c8:a9:67:fe:ab: 97:d9:06:36:e2:42:a8:8e:28:1a:fb:a1:b3:4b:b8: bc:53:60:bb:da:60:d3:e9:1b:af:60:b4:93:5c:c0: bb:52:28:90:e6:6f:02:e6:e4:5c:88:03:59:19:c3: 47:18:8b:2a:1d:d6:70:86:e7:ed:5e:e2:4f:dc:b9: 88:4e:7e:91:df:9c:7c:d8:a5:da:7e:65:ec:44:12: f3:35:32:f6:80:33:51:e3:0e:c3:3a:36:ab:b7:b2: d3:bf:04:74:fa:c7:94:4c:d0:da:ea:9d:48:0e:87: b7:8d:f6:99:66:ec:a1:a0:9c:ea:91:54:e2:27:a2: 7d:61:5c:32:61:4a:0b:1e:87:5d:39:94:67:31:e2: cf:db:ed:cf:de:3b:4c:e1:9f:aa:c9:52:58:b4:e9: e2:73:fc:19:78:a0:a9:a3:bf:e6:f8:19:48:2b:8a: f7:e0:4f:20:c7:a9:d7:5e:e4:65:2c:f5:ce:5c:2e: ac:de:67:a9:67:03:97:d0:18:9b:b1:69:fc:2d:7b: 16:ed:71:39:1b:ff:87:14:42:28:be:c5:15:a5:f0: f8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:75:9A:49:D7:69:EC:F7:BC:E4:DF:EA:62:24:82:A3:B5:04:63:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.214.0/23 IPv6: 2001:df2:dd40::/48 Signature Algorithm: sha256WithRSAEncryption 0a:9e:37:9d:9b:42:c1:f9:c8:74:ff:44:b9:6a:04:df:6b:4c: 60:70:d1:e8:06:ca:5e:c9:13:0f:9d:10:38:a0:6a:d3:78:61: 7c:d8:35:f3:37:cf:3a:b7:02:76:6c:3b:77:b6:c7:5e:68:2e: 50:84:17:5d:3e:10:12:08:de:cc:32:bf:24:fe:cb:7f:20:00: dc:40:4b:9b:5a:3a:57:cd:69:09:fb:9f:6f:a9:5e:ba:9a:3a: 1a:35:50:b2:44:c0:f8:1b:f9:19:f9:1b:a5:55:83:af:50:f1: d5:b6:10:2e:a8:dd:55:d5:20:2e:84:bf:28:f3:a5:b4:67:c9: f8:77:d2:d2:ec:47:82:26:d6:d8:e9:d5:f0:9c:e3:c8:b8:d1: 3e:b2:89:92:3e:00:f6:48:a4:d6:cc:07:e5:34:66:17:2f:d2: 12:71:10:7e:f3:a8:2c:f3:1b:32:eb:4f:5a:1e:c4:bc:dd:1d: 9f:95:0f:81:4d:9f:f8:12:a6:0c:18:6c:e4:66:6c:af:02:7b: a3:90:54:35:06:15:30:d7:b3:04:42:35:71:a5:10:3c:c0:f7: ba:f9:dd:47:31:14:30:2c:45:ec:41:a8:eb:3c:33:03:5b:6a: 15:60:52:46:8e:09:d2:c5:e8:40:85:08:56:86:9a:84:f8:8a: d7:dc:1b:de -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUWPFML6y5GFWF/wsgcndwds/JG8owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMTA3NTUwMFoX DTI2MDgzMTA4MDAwMFowMzExMC8GA1UEAxMoQ0Y3NTlBNDlENzY5RUNGN0JDRTRE RkVBNjIyNDgyQTNCNTA0NjMxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9x5yXogecTswhJPOLrsU23dBYEJC/pM4w9YRzsA22sgGDPfkl0SMipZ/6r l9kGNuJCqI4oGvuhs0u4vFNgu9pg0+kbr2C0k1zAu1IokOZvAubkXIgDWRnDRxiL Kh3WcIbn7V7iT9y5iE5+kd+cfNil2n5l7EQS8zUy9oAzUeMOwzo2q7ey078EdPrH lEzQ2uqdSA6Ht432mWbsoaCc6pFU4ieifWFcMmFKCx6HXTmUZzHiz9vtz947TOGf qslSWLTp4nP8GXigqaO/5vgZSCuK9+BPIMep117kZSz1zlwurN5nqWcDl9AYm7Fp /C17Fu1xORv/hxRCKL7FFaXw+IsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTPdZpJ 12ns97zk3+piJIKjtQRjETAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfs1jAPBAIAAjAJAwcAIAEN8t1AMA0GCSqGSIb3DQEBCwUAA4IB AQAKnjedm0LB+ch0/0S5agTfa0xgcNHoBspeyRMPnRA4oGrTeGF82DXzN886twJ2 bDt3tsdeaC5QhBddPhASCN7MMr8k/st/IADcQEubWjpXzWkJ+59vqV66mjoaNVCy RMD4G/kZ+RulVYOvUPHVthAuqN1V1SAuhL8o86W0Z8n4d9LS7EeCJtbY6dXwnOPI uNE+somSPgD2SKTWzAflNGYXL9IScRB+86gs8xsy609aHsS83R2flQ+BTZ/4EqYM GGzkZmyvAnujkFQ1BhUw17MEQjVxpRA8wPe6+d1HMRQwLEXsQajrPDMDW2oVYFJG jgnSxehAhQhWhpqE+IrX3Bve -----END CERTIFICATE-----Generated at Fri Sep 5 08:17:30 2025 by rpki-client