$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151507.roa File: AS151507.roa (raw, json) Hash identifier: F+LdkzklDxs08we6DRtmP6Vlmhgc7j6bhlQzrVDwVUU= Subject key identifier: 0D:9E:F8:82:DE:5F:34:23:69:77:BB:0D:4D:D4:C2:19:50:17:E6:EA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 227F59D5D6013136B65D18CBEAFE6F7149344F75 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151507.roa Signing time: Sat 02 May 2026 21:16:34 +0000 ROA not before: Sat 02 May 2026 21:11:34 +0000 ROA not after: Sat 01 May 2027 21:16:34 +0000 asID: 151507 IP address blocks: 103.234.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:7f:59:d5:d6:01:31:36:b6:5d:18:cb:ea:fe:6f:71:49:34:4f:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:11:34 2026 GMT Not After : May 1 21:16:34 2027 GMT Subject: CN=0D9EF882DE5F34236977BB0D4DD4C2195017E6EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:33:eb:f2:6f:3f:85:c4:dd:dc:6f:56:a6: 6a:f2:55:ca:4f:dc:d0:49:61:53:1e:fd:fc:b2:80: 5b:b0:3b:09:52:3a:03:48:90:e7:6a:ef:78:48:93: d7:d7:92:79:7f:01:d4:25:36:1b:12:5c:8b:3b:4d: c4:38:78:d6:d9:15:40:26:8d:96:de:ab:65:25:7d: 7c:54:76:1b:30:a9:74:eb:bf:98:40:e4:e9:80:d3: de:19:6d:47:be:e3:c8:0b:5d:e2:fc:cc:fd:04:0f: ce:64:3f:2f:a7:32:87:72:01:3e:bc:9d:aa:4e:be: db:ad:e8:4d:34:73:ca:25:0a:83:b2:07:a2:c5:54: 38:46:7e:19:d1:54:aa:30:4f:78:48:8b:a9:fe:6b: cf:7a:f5:fb:a3:a0:29:1f:2c:91:bc:96:25:3b:d5: 2e:f9:ea:36:cc:1c:de:dc:d5:1d:86:c6:1d:68:6e: 76:96:69:09:41:93:a1:be:00:54:b3:a3:a8:7b:23: cd:d5:41:c6:35:c9:fe:e5:d9:05:75:6d:dd:b4:db: 68:8f:ff:6f:39:e8:ec:c9:df:d8:84:ed:57:09:d2: 18:36:ec:30:38:f6:c0:69:07:7d:ea:59:7e:f3:f0: d8:7b:54:d4:19:3f:a6:06:bd:8a:f9:01:5a:42:1d: 3a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9E:F8:82:DE:5F:34:23:69:77:BB:0D:4D:D4:C2:19:50:17:E6:EA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151507.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.28.0/23 Signature Algorithm: sha256WithRSAEncryption 25:28:68:0c:e2:f1:a7:79:82:ef:fc:56:f2:02:8e:b0:05:e4: a1:43:6c:4f:b0:e2:8b:3d:23:46:2e:ca:7a:80:93:c9:b0:94: 74:87:2e:9f:e0:a8:96:80:dd:be:de:cc:c6:9c:ad:65:c9:bb: 5c:e5:da:2d:5b:fc:40:4c:e4:ff:d7:c7:6c:21:d2:3d:24:70: af:29:50:a2:f2:2f:cd:8d:72:4a:d1:2f:54:f3:a9:5a:1d:60: 7e:5e:41:e4:21:fa:b3:c3:2f:32:8e:2d:10:eb:8f:84:2f:18: 8f:d6:97:14:e6:dc:19:dc:a0:70:13:e7:ec:c3:10:4b:5e:34: 5a:49:18:6e:2e:0a:f1:f5:14:0d:e1:3c:c5:ed:fd:c6:04:59: 9f:36:7f:2a:81:1b:35:55:6c:b2:1f:9a:12:a7:4d:69:fc:0d: 0a:d6:e3:d5:fc:b1:ea:a3:c7:49:6d:b3:42:f0:aa:95:28:c8: 47:b8:88:a7:44:fd:1a:86:bf:fa:1c:6e:79:b4:12:e4:12:79: a1:c9:b0:fe:71:fb:a6:f4:70:be:0d:83:cc:8e:90:55:a1:3b: da:3e:fe:c0:22:cc:25:fc:b7:fd:5b:af:ce:3d:23:84:85:df: 67:02:26:2f:29:8d:2b:0e:76:cc:bf:c3:48:3c:3a:b4:f5:fd: aa:11:01:34 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUIn9Z1dYBMTa2XRjL6v5vcUk0T3UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTEzNFoX DTI3MDUwMTIxMTYzNFowMzExMC8GA1UEAxMoMEQ5RUY4ODJERTVGMzQyMzY5NzdC QjBENERENEMyMTk1MDE3RTZFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAQM+vybz+FxN3cb1amavJVyk/c0ElhUx79/LKAW7A7CVI6A0iQ52rveEiT 19eSeX8B1CU2GxJciztNxDh41tkVQCaNlt6rZSV9fFR2GzCpdOu/mEDk6YDT3hlt R77jyAtd4vzM/QQPzmQ/L6cyh3IBPrydqk6+263oTTRzyiUKg7IHosVUOEZ+GdFU qjBPeEiLqf5rz3r1+6OgKR8skbyWJTvVLvnqNswc3tzVHYbGHWhudpZpCUGTob4A VLOjqHsjzdVBxjXJ/uXZBXVt3bTbaI//bzno7Mnf2ITtVwnSGDbsMDj2wGkHfepZ fvPw2HtU1Bk/pga9ivkBWkIdOosCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQNnviC 3l80I2l3uw1N1MIZUBfm6jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTA3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ+ocMA0GCSqGSIb3DQEBCwUAA4IBAQAlKGgM4vGneYLv/FbyAo6wBeSh Q2xPsOKLPSNGLsp6gJPJsJR0hy6f4KiWgN2+3szGnK1lybtc5dotW/xATOT/18ds IdI9JHCvKVCi8i/NjXJK0S9U86laHWB+XkHkIfqzwy8yji0Q64+ELxiP1pcU5twZ 3KBwE+fswxBLXjRaSRhuLgrx9RQN4TzF7f3GBFmfNn8qgRs1VWyyH5oSp01p/A0K 1uPV/LHqo8dJbbNC8KqVKMhHuIinRP0ahr/6HG55tBLkEnmhybD+cfum9HC+DYPM jpBVoTvaPv7AIswl/Lf9W6/OPSOEhd9nAiYvKY0rDnbMv8NIPDq09f2qEQE0 -----END CERTIFICATE-----Generated at Sun May 3 00:39:36 2026 by rpki-client