$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151579.roa File: AS151579.roa (raw, json) Hash identifier: IiPP/RJSvhBx4S4Hb0bQzxlm+hYUizyJM2cmSbc3aUA= Subject key identifier: 35:55:9E:DB:85:A9:82:FD:D5:05:69:6B:45:5F:BF:E1:8F:A2:B8:3A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47861AB04BDA8EAE9BF0229BF09A574E2AF469CA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151579.roa Signing time: Mon 08 Sep 2025 03:38:42 +0000 ROA not before: Mon 08 Sep 2025 03:33:42 +0000 ROA not after: Mon 07 Sep 2026 03:38:42 +0000 asID: 151579 IP address blocks: 2001:df3:df40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:86:1a:b0:4b:da:8e:ae:9b:f0:22:9b:f0:9a:57:4e:2a:f4:69:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 8 03:33:42 2025 GMT Not After : Sep 7 03:38:42 2026 GMT Subject: CN=35559EDB85A982FDD505696B455FBFE18FA2B83A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f4:c5:db:47:ac:be:3d:7c:ef:ef:eb:81:1d: f9:e6:32:96:31:39:8b:d8:43:44:ea:00:9b:d3:46: f7:e6:a5:e1:8d:79:8a:3a:cb:84:da:81:9f:34:9f: 71:e9:0d:00:e3:bb:32:37:bc:2e:a1:1a:96:9e:84: 6a:08:20:51:ae:61:58:a2:cb:cc:64:88:5c:be:77: 52:8f:74:30:9a:01:5f:a6:88:5c:a5:b2:06:a4:d4: 33:cb:0a:89:d6:bf:a1:9d:e1:c8:ba:52:1b:00:6a: 9f:a0:6a:7b:94:bb:47:7f:85:fc:ba:b8:c3:a0:8e: d8:d0:4d:1e:6f:25:c7:03:ca:19:ee:70:ea:22:9c: d5:6b:3d:bf:47:68:0f:91:a7:50:f2:58:8b:64:e0: ca:14:97:d2:05:8f:a3:33:10:ef:0b:b3:72:a2:f4: d7:69:18:af:8b:ca:ea:7b:ca:90:6e:63:0a:fb:1b: ed:79:0d:0d:22:dd:5a:b5:3a:53:4a:5d:a0:7a:0b: a8:bc:21:95:2d:ca:ea:04:e2:8f:d9:6f:b6:20:75: 92:b1:e0:c4:03:fb:90:04:39:ad:88:06:88:29:ad: db:ed:07:59:de:9d:1e:59:4a:a3:d3:bf:08:73:45: 61:39:77:bf:e0:2e:73:48:09:27:74:b0:f0:57:84: 97:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:55:9E:DB:85:A9:82:FD:D5:05:69:6B:45:5F:BF:E1:8F:A2:B8:3A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151579.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:df40::/48 Signature Algorithm: sha256WithRSAEncryption 73:ac:65:8b:4a:1f:0b:b5:ce:3d:41:94:e9:ef:df:ef:46:06: 36:1b:0d:61:ca:b5:39:e3:c8:7e:f4:9c:05:46:40:ca:3a:ff: 2b:0d:e1:90:61:bb:27:ba:a3:ca:2c:c9:ec:39:00:8c:55:92: e7:d8:2a:cb:0e:be:21:24:2d:c3:9d:96:b5:2b:eb:47:5a:50: 39:eb:c5:d0:ae:cc:8c:48:01:39:0b:10:2f:a0:cb:05:fc:a9: 5f:3c:67:8b:6a:38:4c:4a:51:83:08:c4:04:22:5b:8e:df:cb: 59:51:50:5c:ba:4d:97:8a:23:12:71:1d:fa:c5:e5:78:f4:75: 89:a1:58:0e:4d:63:2e:e8:5b:df:65:7e:c4:23:34:be:bd:8f: 0c:47:d4:3e:ab:1a:7f:2c:14:de:6d:57:d6:f7:97:19:8b:4d: 82:81:6d:da:ce:d6:3b:81:ce:71:24:cf:cb:db:5c:21:c2:39: 53:90:22:bc:86:78:d4:3a:89:4a:8e:6e:35:4c:55:b4:3d:f9: 10:4b:ed:0a:ee:0c:15:db:4a:f2:f5:4f:95:33:c0:dd:8b:4e: ea:b8:d8:e6:95:ee:13:1a:74:c5:48:ea:b6:32:04:82:d9:5d: 35:42:47:01:36:64:fe:0a:6a:92:96:e2:35:ef:06:b5:51:e9: 48:47:1d:85 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUR4YasEvajq6b8CKb8JpXTir0acowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwODAzMzM0MloX DTI2MDkwNzAzMzg0MlowMzExMC8GA1UEAxMoMzU1NTlFREI4NUE5ODJGREQ1MDU2 OTZCNDU1RkJGRTE4RkEyQjgzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL70xdtHrL49fO/v64Ed+eYyljE5i9hDROoAm9NG9+al4Y15ijrLhNqBnzSf cekNAOO7Mje8LqEalp6EagggUa5hWKLLzGSIXL53Uo90MJoBX6aIXKWyBqTUM8sK ida/oZ3hyLpSGwBqn6Bqe5S7R3+F/Lq4w6CO2NBNHm8lxwPKGe5w6iKc1Ws9v0do D5GnUPJYi2TgyhSX0gWPozMQ7wuzcqL012kYr4vK6nvKkG5jCvsb7XkNDSLdWrU6 U0pdoHoLqLwhlS3K6gTij9lvtiB1krHgxAP7kAQ5rYgGiCmt2+0HWd6dHllKo9O/ CHNFYTl3v+Auc0gJJ3Sw8FeEl2cCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQ1VZ7b hamC/dUFaWtFX7/hj6K4OjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfPfQDANBgkqhkiG9w0BAQsFAAOCAQEAc6xli0ofC7XOPUGU 6e/f70YGNhsNYcq1OePIfvScBUZAyjr/Kw3hkGG7J7qjyizJ7DkAjFWS59gqyw6+ ISQtw52WtSvrR1pQOevF0K7MjEgBOQsQL6DLBfypXzxni2o4TEpRgwjEBCJbjt/L WVFQXLpNl4ojEnEd+sXlePR1iaFYDk1jLuhb32V+xCM0vr2PDEfUPqsafywU3m1X 1veXGYtNgoFt2s7WO4HOcSTPy9tcIcI5U5AivIZ41DqJSo5uNUxVtD35EEvtCu4M FdtK8vVPlTPA3YtO6rjY5pXuExp0xUjqtjIEgtldNUJHATZk/gpqkpbiNe8GtVHp SEcdhQ== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:18 2025 by rpki-client