$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151363.roa File: AS151363.roa (raw, json) Hash identifier: GTT+ZdPCLbxSQ2odL3VTFOXPNp8rBzob7UDAvhoCvVM= Subject key identifier: 3B:67:19:54:BE:FE:B8:83:FB:1B:DE:DA:2E:7B:E5:0F:9C:EE:AF:51 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 81543EDBC10797E996740482BC50390B5E149E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151363.roa Signing time: Sat 02 May 2026 09:24:44 +0000 ROA not before: Sat 02 May 2026 09:19:44 +0000 ROA not after: Sat 01 May 2027 09:24:44 +0000 asID: 151363 IP address blocks: 163.128.241.0/24 maxlen: 24 2001:df6:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81:54:3e:db:c1:07:97:e9:96:74:04:82:bc:50:39:0b:5e:14:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:44 2026 GMT Not After : May 1 09:24:44 2027 GMT Subject: CN=3B671954BEFEB883FB1BDEDA2E7BE50F9CEEAF51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7c:bd:42:86:41:f0:89:c9:cd:04:5b:2f:b3: a9:c3:76:04:59:50:e7:4a:c8:6b:82:e5:a4:03:d6: 2d:8c:6e:01:f6:09:bf:49:0b:71:4d:b1:68:c2:4c: 9c:c2:9a:76:33:c1:ae:7f:40:1d:83:c5:33:fd:3e: e1:1c:19:6b:40:c9:80:67:3c:ef:a1:56:44:ff:72: b4:83:f0:91:84:7b:46:03:67:25:3f:0a:c2:de:1d: c3:fb:2d:f7:a6:f5:70:95:f9:5e:8a:de:48:50:94: b2:73:d7:76:a5:cf:2a:0e:b5:d5:f7:41:37:7a:49: fa:15:87:16:9d:91:a7:15:08:05:2f:27:7d:83:9d: 7e:7f:6a:a2:ec:00:35:1a:9a:cf:99:e0:5e:2b:b0: 30:ba:57:9d:85:f7:86:b2:c8:63:f1:86:24:d4:22: 51:9a:2b:b1:21:e3:d7:47:b1:c9:b0:f3:7e:a5:4e: 1b:de:57:93:67:48:29:83:4f:09:89:eb:ba:a3:d4: 44:e0:3d:a7:1c:8a:87:81:46:ce:f5:1e:ca:25:d6: bb:8e:1d:ab:ec:3d:cc:1f:0e:fd:d9:80:22:f3:e0: fb:6a:0d:c4:1d:81:51:75:d6:ce:1a:d6:39:6b:e4: c5:e7:c5:26:fb:d6:24:6c:b4:2d:50:2f:27:37:1a: 52:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:67:19:54:BE:FE:B8:83:FB:1B:DE:DA:2E:7B:E5:0F:9C:EE:AF:51 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.128.241.0/24 IPv6: 2001:df6:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption 96:99:38:41:62:60:64:aa:4b:27:55:c0:f9:71:6e:12:33:ce: ef:51:9b:64:20:89:ab:0b:45:a9:53:5b:54:5f:2e:16:12:7b: 67:05:e9:3b:13:91:11:71:70:d2:4f:5d:5b:9e:dd:3b:a9:ca: 9f:79:fe:cd:85:6b:71:45:77:83:16:fa:09:10:2e:66:cd:33: 35:f4:1c:63:5d:0e:e0:70:9c:ef:35:8f:d1:1f:3c:e6:eb:51: fd:3d:f4:b1:ba:61:74:c7:82:6d:30:82:b7:46:6d:1e:6a:60: 12:b4:31:2b:2d:35:85:fc:92:db:8b:64:ec:38:c0:c6:fb:a9: 11:88:ca:53:5a:7d:c7:86:50:57:fd:81:0f:c5:15:a6:ad:28: 49:c1:c1:cd:90:37:bc:9a:1a:d3:10:aa:20:26:b5:9b:92:4e: c5:fe:ef:53:14:c1:18:e5:58:02:42:96:c6:b1:ca:7b:b0:43: 1b:35:35:23:d9:e6:cd:a2:8c:df:e0:e7:3a:86:c3:2f:bc:26: da:5d:3f:c7:b5:9b:0f:65:34:0e:25:e2:b4:c4:a0:70:65:a9: 60:27:b1:ff:e1:c0:18:ce:ac:af:40:99:bf:7b:f9:87:c1:ab: 6a:45:c0:4f:38:55:30:01:59:b3:2c:f3:e3:85:2a:72:5e:51: 43:67:6e:db -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAIFUPtvBB5fplnQEgrxQOQteFJ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTk0NFoX DTI3MDUwMTA5MjQ0NFowMzExMC8GA1UEAxMoM0I2NzE5NTRCRUZFQjg4M0ZCMUJE RURBMkU3QkU1MEY5Q0VFQUY1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJ8vUKGQfCJyc0EWy+zqcN2BFlQ50rIa4LlpAPWLYxuAfYJv0kLcU2xaMJM nMKadjPBrn9AHYPFM/0+4RwZa0DJgGc876FWRP9ytIPwkYR7RgNnJT8Kwt4dw/st 96b1cJX5XoreSFCUsnPXdqXPKg611fdBN3pJ+hWHFp2RpxUIBS8nfYOdfn9qouwA NRqaz5ngXiuwMLpXnYX3hrLIY/GGJNQiUZorsSHj10exybDzfqVOG95Xk2dIKYNP CYnruqPUROA9pxyKh4FGzvUeyiXWu44dq+w9zB8O/dmAIvPg+2oNxB2BUXXWzhrW OWvkxefFJvvWJGy0LVAvJzcaUr8CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQ7ZxlU vv64g/sb3toue+UPnO6vUTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxMzYzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAo4DxMA8EAgACMAkDBwAgAQ328MAwDQYJKoZIhvcNAQELBQADggEBAJaZ OEFiYGSqSydVwPlxbhIzzu9Rm2QgiasLRalTW1RfLhYSe2cF6TsTkRFxcNJPXVue 3Tupyp95/s2Fa3FFd4MW+gkQLmbNMzX0HGNdDuBwnO81j9EfPObrUf099LG6YXTH gm0wgrdGbR5qYBK0MSstNYX8ktuLZOw4wMb7qRGIylNafceGUFf9gQ/FFaatKEnB wc2QN7yaGtMQqiAmtZuSTsX+71MUwRjlWAJClsaxynuwQxs1NSPZ5s2ijN/g5zqG wy+8JtpdP8e1mw9lNA4l4rTEoHBlqWAnsf/hwBjOrK9Amb97+YfBq2pFwE84VTAB WbMs8+OFKnJeUUNnbts= -----END CERTIFICATE-----Generated at Sun May 3 00:41:44 2026 by rpki-client