$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151511.roa File: AS151511.roa (raw, json) Hash identifier: wVlSX9GFYo4m6wQJgMAFF3F4kzc852u+fPp3DUu8V8o= Subject key identifier: D0:EA:88:C2:90:48:E8:08:2B:DB:92:E6:8A:D8:12:04:FF:A6:9C:69 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 13679ACD013C5D3DC5B8A3B8342E6EC638234961 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151511.roa Signing time: Sat 02 May 2026 21:16:45 +0000 ROA not before: Sat 02 May 2026 21:11:45 +0000 ROA not after: Sat 01 May 2027 21:16:45 +0000 asID: 151511 IP address blocks: 103.235.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:67:9a:cd:01:3c:5d:3d:c5:b8:a3:b8:34:2e:6e:c6:38:23:49:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:11:45 2026 GMT Not After : May 1 21:16:45 2027 GMT Subject: CN=D0EA88C29048E8082BDB92E68AD81204FFA69C69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:10:37:10:78:06:f5:d3:b6:51:1e:f0:6c:4b: f9:c0:57:69:e4:fa:9d:b8:40:9b:40:a2:cf:f9:0e: 6c:7b:bc:32:d0:df:70:1a:f0:06:ad:fc:5a:ca:e3: 81:38:5e:84:ce:40:4f:a6:50:8a:22:91:e7:16:62: 65:6e:b8:cd:90:a9:78:37:74:a6:b4:52:a9:7a:7a: d6:6d:db:4d:14:2a:95:6c:ad:cf:de:5f:2f:0c:bf: 90:ef:f9:39:7d:55:7a:df:c9:73:30:88:e1:b9:f7: cb:32:44:14:2f:f7:3c:8a:db:30:be:24:0a:09:b3: 8a:88:36:51:de:3a:3f:e6:8a:9a:6e:69:78:c1:32: e8:51:af:5b:9f:55:dc:91:20:2f:42:fb:51:58:f2: b0:7a:9d:57:db:e0:4f:65:3a:69:fe:3b:3e:8c:56: 6e:08:5a:7b:01:a5:fd:41:8e:c5:e1:c6:a6:cc:0d: 82:1e:ff:aa:a8:f9:ec:77:e9:1b:0c:d7:d5:7c:03: c1:8f:e4:3e:22:ef:b5:f9:be:65:ef:a3:62:a4:36: 1f:06:ca:ea:3f:c2:66:d3:8e:26:dd:ec:24:2f:38: d0:6f:4f:45:77:c6:93:10:ab:3a:68:f2:55:ad:9a: 0c:4c:28:d6:ea:86:6b:84:63:ea:7e:2c:e1:46:2d: f9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EA:88:C2:90:48:E8:08:2B:DB:92:E6:8A:D8:12:04:FF:A6:9C:69 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151511.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.182.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:a4:d2:84:12:06:23:1d:0d:6a:a6:71:ee:8f:b2:20:3f:85: 3a:5a:72:8a:83:b9:25:05:3a:6c:54:ad:e4:ca:6f:ec:13:31: b4:09:50:22:ce:24:2b:16:87:03:91:44:6f:77:6c:35:5a:a0: 36:d0:b9:3f:b4:26:59:3a:47:6d:5e:96:72:86:35:1d:68:5b: e3:02:42:25:97:5c:18:04:8a:9c:d4:2f:81:85:04:96:e7:4a: e6:8c:e8:86:90:14:24:45:ac:f2:fe:be:87:97:06:55:de:9e: 8a:f8:cf:6f:dc:a1:65:37:9a:38:48:7a:88:6b:21:99:3f:77: 0c:b4:1d:ce:1d:d9:e1:9a:e2:2f:c1:71:8b:73:54:74:8a:11: 38:a7:2c:51:c7:6a:d7:d9:8d:33:cd:1f:99:99:ea:2e:de:08: 93:86:b9:1a:a3:47:d1:1c:d4:e0:7b:e6:04:af:5b:60:03:93: 6a:57:19:ff:02:83:6f:f3:cb:30:e2:1a:63:f6:ce:d3:bd:6a: 5c:ca:59:01:6d:ce:7b:03:84:ec:e6:e2:49:43:18:b5:c3:0c: 89:df:e9:1d:3d:78:a5:d8:03:51:48:e1:e3:9a:d8:72:e1:da: 37:e9:22:66:b2:bc:0a:6a:b3:24:ba:07:1e:ca:26:7f:50:44: 44:82:be:51 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUE2eazQE8XT3FuKO4NC5uxjgjSWEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTE0NVoX DTI3MDUwMTIxMTY0NVowMzExMC8GA1UEAxMoRDBFQTg4QzI5MDQ4RTgwODJCREI5 MkU2OEFEODEyMDRGRkE2OUM2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOkQNxB4BvXTtlEe8GxL+cBXaeT6nbhAm0Ciz/kObHu8MtDfcBrwBq38Wsrj gThehM5AT6ZQiiKR5xZiZW64zZCpeDd0prRSqXp61m3bTRQqlWytz95fLwy/kO/5 OX1Vet/JczCI4bn3yzJEFC/3PIrbML4kCgmziog2Ud46P+aKmm5peMEy6FGvW59V 3JEgL0L7UVjysHqdV9vgT2U6af47PoxWbghaewGl/UGOxeHGpswNgh7/qqj57Hfp GwzX1XwDwY/kPiLvtfm+Ze+jYqQ2HwbK6j/CZtOOJt3sJC840G9PRXfGkxCrOmjy Va2aDEwo1uqGa4Rj6n4s4UYt+UsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTQ6ojC kEjoCCvbkuaK2BIE/6acaTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTExLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ+u2MA0GCSqGSIb3DQEBCwUAA4IBAQBupNKEEgYjHQ1qpnHuj7IgP4U6 WnKKg7klBTpsVK3kym/sEzG0CVAiziQrFocDkURvd2w1WqA20Lk/tCZZOkdtXpZy hjUdaFvjAkIll1wYBIqc1C+BhQSW50rmjOiGkBQkRazy/r6HlwZV3p6K+M9v3KFl N5o4SHqIayGZP3cMtB3OHdnhmuIvwXGLc1R0ihE4pyxRx2rX2Y0zzR+Zmeou3giT hrkao0fRHNTge+YEr1tgA5NqVxn/AoNv88sw4hpj9s7TvWpcylkBbc57A4Ts5uJJ Qxi1wwyJ3+kdPXil2ANRSOHjmthy4do36SJmsrwKarMkugceyiZ/UEREgr5R -----END CERTIFICATE-----Generated at Sun May 3 00:40:27 2026 by rpki-client