$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151005.roa File: AS151005.roa (raw, json) Hash identifier: 8xs4kD9tj0SbZiCYGXF8y7OWv74fuaMSx8irzD1nrKY= Subject key identifier: 19:0D:55:41:4C:5D:EF:24:E6:C2:B8:33:37:03:AD:08:E0:97:A3:54 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 38CDF8FD66163D8A367CA156CE7B8E3A700F0F5F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151005.roa Signing time: Sat 02 May 2026 21:01:36 +0000 ROA not before: Sat 02 May 2026 20:56:36 +0000 ROA not after: Sat 01 May 2027 21:01:36 +0000 asID: 151005 IP address blocks: 103.124.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:cd:f8:fd:66:16:3d:8a:36:7c:a1:56:ce:7b:8e:3a:70:0f:0f:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 20:56:36 2026 GMT Not After : May 1 21:01:36 2027 GMT Subject: CN=190D55414C5DEF24E6C2B8333703AD08E097A354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:73:01:80:92:f7:9d:db:1c:c9:98:ba:a2: db:6b:4e:1f:29:64:89:50:9d:60:00:17:23:13:77: 6b:9e:28:20:eb:0d:28:cf:0c:65:b0:d8:66:52:8b: ae:77:c5:57:03:0c:d3:79:85:c6:47:b7:e2:0a:c1: 20:9b:bb:17:52:6f:b2:c1:89:43:94:b6:8f:6d:e1: e9:ef:ed:cf:64:92:87:b1:c6:92:bd:dc:d7:60:ab: fb:73:17:d7:8e:d7:6e:7f:81:ed:6e:66:67:2a:e2: a7:51:45:14:19:d6:fb:c9:b0:65:3e:97:b7:d6:b8: 99:ce:8c:d3:41:21:81:9f:cf:9a:67:c1:23:0e:55: 5d:cd:72:f6:49:96:93:22:61:f5:d8:48:d1:9a:95: 5f:69:26:b1:2d:ca:ce:c3:e9:d8:cf:ba:72:19:5a: 1c:1d:69:f3:d9:34:41:5e:94:a6:58:30:8b:7f:58: f5:d6:79:05:5a:4b:54:3e:ac:be:45:1f:0a:d5:c9: fc:44:7a:13:3a:40:b7:35:b1:35:ca:eb:86:00:eb: 22:e2:a0:f5:94:4a:60:53:6a:4b:d1:ee:39:cc:01: f5:ff:18:04:2e:72:2a:b7:ad:c4:5b:1a:7a:9a:62: 58:5e:5f:d8:42:49:f9:01:da:71:d4:7c:bf:61:90: 9e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:0D:55:41:4C:5D:EF:24:E6:C2:B8:33:37:03:AD:08:E0:97:A3:54 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.20.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:4d:61:51:01:e1:87:25:2c:17:d1:ae:77:c2:a3:0b:2b:1d: 3f:f4:61:ea:09:4d:99:8e:6f:21:0e:fa:1e:c3:cb:41:92:4d: 83:73:8f:99:39:2b:6e:2a:9b:d6:7a:fb:a5:53:70:d4:4f:00: 38:37:59:eb:ef:25:ee:34:55:b3:ec:51:17:b5:85:4e:04:78: 34:89:e3:6d:fa:b7:2a:f7:3c:27:d3:b4:4c:4b:98:29:da:89: fc:6b:af:b9:e0:2e:15:fe:ea:bf:5d:94:de:8b:36:35:0e:a0: 70:97:50:0e:7b:33:87:58:78:0e:8c:ec:20:36:ff:52:0d:4b: d1:7c:f0:f1:c5:e8:f6:54:e6:4b:36:3b:3a:7f:fc:0b:e4:d0: 82:88:a3:bb:a6:15:7c:9e:9f:08:9f:dd:37:b6:33:25:b5:9f: 6b:81:af:08:b1:6d:5e:92:62:db:7f:e3:9e:f8:af:e3:a0:89: a1:ab:a0:d3:9a:0a:6e:fa:b7:6c:ff:61:9f:bb:ac:a4:8a:ee: 7c:90:57:c2:71:3d:d7:0a:7e:96:73:5c:99:f8:de:14:71:bf: db:d6:5f:50:b5:73:3d:e7:c2:ca:60:ee:02:f4:3c:fd:29:04: 6d:45:0a:3f:3b:c6:7f:ae:43:b1:d6:07:7d:62:e7:d9:8a:2b: 19:21:8a:98 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUOM34/WYWPYo2fKFWznuOOnAPD18wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIwNTYzNloX DTI3MDUwMTIxMDEzNlowMzExMC8GA1UEAxMoMTkwRDU1NDE0QzVERUYyNEU2QzJC ODMzMzcwM0FEMDhFMDk3QTM1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsMcwGAkved2xzJmLqi22tOHylkiVCdYAAXIxN3a54oIOsNKM8MZbDYZlKL rnfFVwMM03mFxke34grBIJu7F1JvssGJQ5S2j23h6e/tz2SSh7HGkr3c12Cr+3MX 147Xbn+B7W5mZyrip1FFFBnW+8mwZT6Xt9a4mc6M00EhgZ/PmmfBIw5VXc1y9kmW kyJh9dhI0ZqVX2kmsS3KzsPp2M+6chlaHB1p89k0QV6Uplgwi39Y9dZ5BVpLVD6s vkUfCtXJ/ER6EzpAtzWxNcrrhgDrIuKg9ZRKYFNqS9HuOcwB9f8YBC5yKretxFsa eppiWF5f2EJJ+QHacdR8v2GQnsECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQZDVVB TF3vJObCuDM3A60I4JejVDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxMDA1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ3wUMA0GCSqGSIb3DQEBCwUAA4IBAQA8TWFRAeGHJSwX0a53wqMLKx0/ 9GHqCU2Zjm8hDvoew8tBkk2Dc4+ZOStuKpvWevulU3DUTwA4N1nr7yXuNFWz7FEX tYVOBHg0ieNt+rcq9zwn07RMS5gp2on8a6+54C4V/uq/XZTeizY1DqBwl1AOezOH WHgOjOwgNv9SDUvRfPDxxej2VOZLNjs6f/wL5NCCiKO7phV8np8In903tjMltZ9r ga8IsW1ekmLbf+Oe+K/joImhq6DTmgpu+rds/2Gfu6ykiu58kFfCcT3XCn6Wc1yZ +N4Ucb/b1l9QtXM958LKYO4C9Dz9KQRtRQo/O8Z/rkOx1gd9YufZiisZIYqY -----END CERTIFICATE-----Generated at Sun May 3 01:40:07 2026 by rpki-client