$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151006.roa File: AS151006.roa (raw, json) Hash identifier: X20nooHAvRJyHqEmHef8+cSN7PzgbfgaQLLzLA2L8RE= Subject key identifier: B1:6D:7F:37:79:D4:E6:00:B4:0F:B5:3A:6B:37:6A:A9:C6:68:C0:14 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 09AF54E8A0F235A7DD215EAA259548A8552836ED Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151006.roa Signing time: Sat 02 May 2026 09:25:42 +0000 ROA not before: Sat 02 May 2026 09:20:42 +0000 ROA not after: Sat 01 May 2027 09:25:42 +0000 asID: 151006 IP address blocks: 103.203.234.0/24 maxlen: 24 2001:df3:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:af:54:e8:a0:f2:35:a7:dd:21:5e:aa:25:95:48:a8:55:28:36:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:42 2026 GMT Not After : May 1 09:25:42 2027 GMT Subject: CN=B16D7F3779D4E600B40FB53A6B376AA9C668C014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b4:2f:a9:6b:ce:42:b0:71:16:23:0c:9b:1b: f9:d1:0f:79:97:91:74:0f:36:33:6b:fb:57:76:57: 3c:34:91:a0:bd:27:ab:34:01:e8:9d:f9:8c:ff:e3: 67:09:e8:6f:fe:f8:f2:4d:2d:4c:69:11:91:ca:0d: b2:9f:6e:46:02:4d:40:7e:7d:b2:dd:f7:8f:73:f1: 25:f6:8d:96:63:b0:1b:96:c0:58:40:f1:8d:9c:54: 91:ab:39:e9:92:84:7e:53:94:80:93:96:52:46:da: 63:ec:9a:b1:3c:fb:db:b4:4f:ab:52:49:76:93:63: ba:aa:be:95:1e:64:fa:01:9d:17:a6:71:e7:96:b2: d3:44:82:15:4f:93:3f:d7:55:a6:46:01:77:4d:93: bb:ac:f1:ad:10:5f:d6:84:49:c8:b0:c1:02:f8:bf: 66:de:69:72:e5:9b:08:ff:26:67:90:cf:f8:1b:ff: 17:28:0e:08:68:05:cb:14:38:5d:e6:58:66:ab:0e: 31:58:76:da:9f:b2:86:ad:ec:24:e2:d7:7c:38:14: 71:45:df:44:c4:14:a5:8d:ce:56:9d:63:d0:74:93: f2:24:bd:84:80:a4:d6:d0:25:fc:71:5e:52:2c:3c: 19:ce:4c:ef:2e:c1:6a:04:01:0f:3b:ed:6a:ea:dd: 65:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6D:7F:37:79:D4:E6:00:B4:0F:B5:3A:6B:37:6A:A9:C6:68:C0:14 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151006.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.234.0/24 IPv6: 2001:df3:a40::/48 Signature Algorithm: sha256WithRSAEncryption 34:fc:5e:a5:31:7f:cd:e9:c3:ce:1c:35:77:75:bd:36:be:38: 32:68:4e:c0:8d:83:8d:22:97:76:78:63:56:c1:b6:0b:55:7c: c5:19:80:88:30:d5:48:02:7c:f1:18:45:df:70:40:3a:d0:a1: 0c:c2:fd:e1:98:20:2c:7c:43:34:08:0c:2b:8a:a9:d6:37:75: f1:8c:5e:7e:ed:2b:48:ec:ed:20:a3:01:ef:62:09:01:7e:0b: ef:50:5c:07:43:8e:40:85:99:2b:f8:e1:99:65:57:45:74:0a: 05:30:b5:1c:4e:5e:2b:07:1f:55:ad:16:f6:f9:cb:c6:39:5a: 17:f5:28:6e:b1:9e:cf:c7:45:d6:48:98:dc:5e:04:16:83:8d: 2a:01:0f:51:7a:b7:de:7b:cc:be:b8:cb:76:1a:ac:d1:58:ac: 94:e8:d8:9b:eb:f8:04:84:de:8e:7b:06:d7:78:21:fe:5f:34: b1:ab:eb:4f:6c:c2:87:84:b8:be:b7:3c:e3:7a:67:3c:fa:6d: 17:05:82:50:51:cf:20:ea:b8:5b:6f:1d:79:76:9e:46:84:b6: b1:ff:2c:31:a3:a0:54:3b:70:21:65:d5:8e:52:ec:19:de:66: 5a:53:7f:f4:5a:c1:46:37:63:76:35:c4:02:5b:7f:bb:dc:21: 0c:45:f5:88 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCa9U6KDyNafdIV6qJZVIqFUoNu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjA0MloX DTI3MDUwMTA5MjU0MlowMzExMC8GA1UEAxMoQjE2RDdGMzc3OUQ0RTYwMEI0MEZC NTNBNkIzNzZBQTlDNjY4QzAxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOC0L6lrzkKwcRYjDJsb+dEPeZeRdA82M2v7V3ZXPDSRoL0nqzQB6J35jP/j Zwnob/748k0tTGkRkcoNsp9uRgJNQH59st33j3PxJfaNlmOwG5bAWEDxjZxUkas5 6ZKEflOUgJOWUkbaY+yasTz727RPq1JJdpNjuqq+lR5k+gGdF6Zx55ay00SCFU+T P9dVpkYBd02Tu6zxrRBf1oRJyLDBAvi/Zt5pcuWbCP8mZ5DP+Bv/FygOCGgFyxQ4 XeZYZqsOMVh22p+yhq3sJOLXfDgUcUXfRMQUpY3OVp1j0HST8iS9hICk1tAl/HFe Uiw8Gc5M7y7BagQBDzvtaurdZcUCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSxbX83 edTmALQPtTprN2qpxmjAFDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxMDA2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ8vqMA8EAgACMAkDBwAgAQ3zCkAwDQYJKoZIhvcNAQELBQADggEBADT8 XqUxf83pw84cNXd1vTa+ODJoTsCNg40il3Z4Y1bBtgtVfMUZgIgw1UgCfPEYRd9w QDrQoQzC/eGYICx8QzQIDCuKqdY3dfGMXn7tK0js7SCjAe9iCQF+C+9QXAdDjkCF mSv44ZllV0V0CgUwtRxOXisHH1WtFvb5y8Y5Whf1KG6xns/HRdZImNxeBBaDjSoB D1F6t957zL64y3YarNFYrJTo2Jvr+ASE3o57Btd4If5fNLGr609swoeEuL63PON6 Zzz6bRcFglBRzyDquFtvHXl2nkaEtrH/LDGjoFQ7cCFl1Y5S7BneZlpTf/RawUY3 Y3Y1xAJbf7vcIQxF9Yg= -----END CERTIFICATE-----Generated at Sun May 3 01:40:56 2026 by rpki-client