$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa File: AS151571.roa (raw, json) Hash identifier: 7QMclc3ODoXrYp4ehbK0j3ZlSBhReAu+lptMxctS1yU= Subject key identifier: 7D:3D:08:63:8D:D2:6B:F8:B5:40:9E:DC:7F:15:9B:A8:53:03:64:F0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A47B1DAF235F5899DF24351B25D798EC86441E3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa Signing time: Tue 02 Sep 2025 05:00:00 +0000 ROA not before: Tue 02 Sep 2025 04:55:00 +0000 ROA not after: Tue 01 Sep 2026 05:00:00 +0000 asID: 151571 IP address blocks: 103.80.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:47:b1:da:f2:35:f5:89:9d:f2:43:51:b2:5d:79:8e:c8:64:41:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 2 04:55:00 2025 GMT Not After : Sep 1 05:00:00 2026 GMT Subject: CN=7D3D08638DD26BF8B5409EDC7F159BA8530364F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bc:70:e6:56:48:86:ef:14:19:7e:bf:df:4d: 64:8c:b9:91:53:10:7e:84:d4:4e:16:a0:c0:c1:13: 32:a7:bb:1d:9c:a6:04:94:10:93:92:ed:e6:32:a7: 6e:ab:0d:32:9e:6c:1a:55:18:55:4a:8e:1d:af:e2: ff:30:1e:7a:25:16:e7:9b:f6:e5:25:5b:e7:97:46: 6d:e7:10:2d:68:39:50:5c:6c:09:42:d8:5c:a6:3a: c7:9d:09:8c:bf:9e:df:aa:3d:5a:e5:75:64:7b:dc: a3:ec:cd:d3:08:55:64:3b:90:9c:16:db:65:ec:31: 95:9f:16:c4:38:1d:a2:8d:60:1c:18:e8:15:0a:31: b8:6b:0e:e7:aa:7f:32:87:6f:d5:11:bf:fe:21:8c: 79:2b:bd:2e:49:29:c4:fa:31:8f:61:c4:85:23:5c: 95:10:aa:36:15:3a:60:49:cf:3d:0f:4e:14:81:74: 64:5b:7c:e2:b6:76:e9:7d:64:73:5b:dc:68:e5:6f: bb:e0:32:be:25:9f:a7:8d:1d:2b:c7:06:d0:68:b2: cc:80:2a:1f:7f:15:26:87:68:21:27:bc:4d:01:c5: 71:af:97:9f:68:0f:19:5a:ef:09:45:00:cf:fd:34: 64:f5:59:16:14:94:03:3f:43:9b:72:f2:8d:65:ff: 10:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3D:08:63:8D:D2:6B:F8:B5:40:9E:DC:7F:15:9B:A8:53:03:64:F0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.228.0/23 Signature Algorithm: sha256WithRSAEncryption 64:b6:2a:38:c4:d3:5d:a8:3d:10:f2:4c:2b:94:32:93:4f:68: 81:23:de:1c:e9:a3:5b:0c:9e:25:7a:3c:0e:a5:87:57:ce:47: ab:a7:7e:fc:36:f3:92:44:a2:24:97:44:e0:3b:48:e9:2f:30: d2:ab:b1:f2:ba:2f:73:2d:5f:6e:72:00:76:71:8a:2e:5e:43: 98:7f:5c:53:da:00:82:15:63:ab:08:6f:00:99:a4:0f:ee:8c: 3b:55:bb:ed:df:29:eb:5d:6a:9d:6b:0f:27:6b:a2:e5:5a:b5: b9:0d:73:b7:bd:e3:54:ee:c3:df:b2:ee:64:17:28:ab:15:02: b2:27:87:90:e4:57:cf:bc:a4:2b:7b:cb:b5:76:11:a3:61:f9: e5:a6:99:a9:ec:7f:41:c6:f1:20:52:05:c1:0e:02:74:ba:6b: 89:7a:cd:16:f4:4d:37:bd:e2:99:78:06:fc:5d:dc:6b:bb:14: 7a:04:5c:9a:c1:d5:74:2c:7f:e4:f7:51:41:b2:c4:a9:9d:80: 49:ca:3f:bf:0c:7c:81:54:8e:15:93:2b:fc:13:09:ca:83:93: fe:36:8f:d1:bf:c5:c0:1d:17:f6:25:e5:ee:11:5b:7c:54:07: eb:da:0e:aa:1e:45:3c:e7:fd:d6:dd:46:17:0c:3c:3a:90:67: 37:ac:25:c1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSkex2vI19Ymd8kNRsl15jshkQeMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMjA0NTUwMFoX DTI2MDkwMTA1MDAwMFowMzExMC8GA1UEAxMoN0QzRDA4NjM4REQyNkJGOEI1NDA5 RURDN0YxNTlCQTg1MzAzNjRGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMe8cOZWSIbvFBl+v99NZIy5kVMQfoTUThagwMETMqe7HZymBJQQk5Lt5jKn bqsNMp5sGlUYVUqOHa/i/zAeeiUW55v25SVb55dGbecQLWg5UFxsCULYXKY6x50J jL+e36o9WuV1ZHvco+zN0whVZDuQnBbbZewxlZ8WxDgdoo1gHBjoFQoxuGsO56p/ Modv1RG//iGMeSu9LkkpxPoxj2HEhSNclRCqNhU6YEnPPQ9OFIF0ZFt84rZ26X1k c1vcaOVvu+AyviWfp40dK8cG0GiyzIAqH38VJodoISe8TQHFca+Xn2gPGVrvCUUA z/00ZPVZFhSUAz9Dm3LyjWX/EPkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR9PQhj jdJr+LVAntx/FZuoUwNk8DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdQ5DANBgkqhkiG9w0BAQsFAAOCAQEAZLYqOMTTXag9EPJMK5Qy k09ogSPeHOmjWwyeJXo8DqWHV85Hq6d+/DbzkkSiJJdE4DtI6S8w0qux8rovcy1f bnIAdnGKLl5DmH9cU9oAghVjqwhvAJmkD+6MO1W77d8p611qnWsPJ2ui5Vq1uQ1z t73jVO7D37LuZBcoqxUCsieHkORXz7ykK3vLtXYRo2H55aaZqex/QcbxIFIFwQ4C dLpriXrNFvRNN73imXgG/F3ca7sUegRcmsHVdCx/5PdRQbLEqZ2ASco/vwx8gVSO FZMr/BMJyoOT/jaP0b/FwB0X9iXl7hFbfFQH69oOqh5FPOf91t1GFww8OpBnN6wl wQ== -----END CERTIFICATE-----Generated at Sun Oct 19 12:54:00 2025 by rpki-client