$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151510.roa File: AS151510.roa (raw, json) Hash identifier: TgaEQ27+KTIkr4Oda6qfTVrldsJbGdJZSv+VSvFy/Uw= Subject key identifier: 84:BC:90:F2:D8:C6:DA:F6:00:76:9E:33:00:15:45:B3:3B:DC:CD:66 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 25739061EB98C3ACE2FB4B3C4DB3953E13A8FAC2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151510.roa Signing time: Sat 02 May 2026 21:17:05 +0000 ROA not before: Sat 02 May 2026 21:12:05 +0000 ROA not after: Sat 01 May 2027 21:17:05 +0000 asID: 151510 IP address blocks: 103.236.214.0/23 maxlen: 24 2001:df2:dd40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:73:90:61:eb:98:c3:ac:e2:fb:4b:3c:4d:b3:95:3e:13:a8:fa:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:12:05 2026 GMT Not After : May 1 21:17:05 2027 GMT Subject: CN=84BC90F2D8C6DAF600769E33001545B33BDCCD66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1a:b8:e9:37:96:bf:1b:a1:42:3e:b5:db:c1: e0:0b:1b:8d:d7:4b:ca:96:06:e8:2e:f6:18:4f:10: 0d:16:24:ea:59:e7:6c:4c:d3:89:38:39:1c:92:00: 88:f1:ae:c8:5b:f7:8c:70:32:33:92:dc:2f:ad:90: 2c:7d:2e:c1:70:90:e7:eb:d6:15:5b:2e:8e:88:ac: 07:3e:e3:03:b1:e8:89:eb:ca:72:1c:78:c7:ee:a9: 42:12:75:d5:0b:d6:70:ec:dd:fe:23:a4:a7:e4:ec: b6:7a:2d:09:50:bd:70:04:56:bb:3b:2b:43:b2:34: c2:a5:fe:aa:6f:8b:8e:90:08:65:ce:86:c6:db:3a: d2:bc:e0:c8:da:5e:f9:44:53:26:23:06:34:ac:af: 82:cc:e8:77:6a:12:47:4a:0a:16:2f:0e:85:6a:71: d0:a0:85:d8:04:b9:fb:e5:21:25:c8:53:ab:7b:6f: 81:b9:74:6e:93:b6:e3:d9:64:37:f7:8f:16:c4:86: 8b:75:6a:78:b1:57:e5:8b:55:3a:ac:e5:e4:ff:a6: 4a:b8:68:29:c5:b0:e7:4b:6a:3a:7c:a6:da:45:6f: a5:61:f4:83:97:21:32:20:5b:7a:6e:8c:8d:7a:6f: 5f:9f:c4:7e:b1:6d:45:7c:59:60:d8:5c:79:38:b0: f0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:BC:90:F2:D8:C6:DA:F6:00:76:9E:33:00:15:45:B3:3B:DC:CD:66 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151510.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.214.0/23 IPv6: 2001:df2:dd40::/48 Signature Algorithm: sha256WithRSAEncryption 97:61:bf:5a:48:51:03:1d:da:ba:5d:fd:74:1b:a0:e0:92:eb: 63:0c:22:35:78:f4:93:3d:a2:92:1b:87:8b:fc:9d:b4:1d:f7: b2:92:9f:ec:cd:91:9f:44:10:ef:2b:e3:06:c8:d3:68:fb:2c: 9a:29:65:93:ab:14:1a:03:f4:b6:f5:61:57:0e:43:e4:29:0d: 4e:31:fe:40:d9:ca:52:92:a2:d4:4e:0b:3d:c8:95:25:ca:79: 52:fa:47:fc:6d:a1:92:6e:00:34:f5:cb:81:08:10:34:6c:bf: 0e:ec:0d:b4:8d:e6:90:6c:f1:f6:f3:a6:4d:37:40:58:7e:f9: ba:11:01:f4:aa:ee:05:db:30:88:f2:31:75:30:a0:c6:7b:21: dd:2e:fd:84:2d:4d:ac:9c:c0:d8:28:91:2e:28:3f:60:5e:37: c9:5b:b6:6b:de:d5:02:6f:e7:7a:07:76:94:83:46:00:76:cc: 08:b7:ce:1c:12:75:06:ea:9c:15:57:dd:3a:1a:cd:35:1c:c2: bf:ba:f3:fe:fe:23:42:45:75:ea:e3:3f:f5:94:c0:71:f6:4f: ac:96:0a:4b:81:f9:d3:76:ff:2e:12:6e:10:ee:15:26:e0:8e: 16:d8:44:38:0a:26:98:31:9a:e5:b5:7a:63:be:b8:55:aa:ab: 4f:f6:ff:74 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJXOQYeuYw6zi+0s8TbOVPhOo+sIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTIwNVoX DTI3MDUwMTIxMTcwNVowMzExMC8GA1UEAxMoODRCQzkwRjJEOEM2REFGNjAwNzY5 RTMzMDAxNTQ1QjMzQkRDQ0Q2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAauOk3lr8boUI+tdvB4AsbjddLypYG6C72GE8QDRYk6lnnbEzTiTg5HJIA iPGuyFv3jHAyM5LcL62QLH0uwXCQ5+vWFVsujoisBz7jA7HoievKchx4x+6pQhJ1 1QvWcOzd/iOkp+TstnotCVC9cARWuzsrQ7I0wqX+qm+LjpAIZc6Gxts60rzgyNpe +URTJiMGNKyvgszod2oSR0oKFi8OhWpx0KCF2AS5++UhJchTq3tvgbl0bpO249lk N/ePFsSGi3VqeLFX5YtVOqzl5P+mSrhoKcWw50tqOnym2kVvpWH0g5chMiBbem6M jXpvX5/EfrFtRXxZYNhceTiw8J0CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSEvJDy 2Mba9gB2njMAFUWzO9zNZjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTEwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBZ+zWMA8EAgACMAkDBwAgAQ3y3UAwDQYJKoZIhvcNAQELBQADggEBAJdh v1pIUQMd2rpd/XQboOCS62MMIjV49JM9opIbh4v8nbQd97KSn+zNkZ9EEO8r4wbI 02j7LJopZZOrFBoD9Lb1YVcOQ+QpDU4x/kDZylKSotROCz3IlSXKeVL6R/xtoZJu ADT1y4EIEDRsvw7sDbSN5pBs8fbzpk03QFh++boRAfSq7gXbMIjyMXUwoMZ7Id0u /YQtTaycwNgokS4oP2BeN8lbtmve1QJv53oHdpSDRgB2zAi3zhwSdQbqnBVX3Toa zTUcwr+68/7+I0JFderjP/WUwHH2T6yWCkuB+dN2/y4SbhDuFSbgjhbYRDgKJpgx muW1emO+uFWqq0/2/3Q= -----END CERTIFICATE-----Generated at Sun May 3 00:40:19 2026 by rpki-client