$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151515.roa File: AS151515.roa (raw, json) Hash identifier: 0J4O5N4mhM5gwyOb4FuEVTOF1/jY8I/MJgOlggdVxfg= Subject key identifier: 1D:C1:DC:8C:10:C5:EB:60:7F:5F:86:8F:CA:12:DA:5C:FF:A4:02:67 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3E5481C0CDC5F322AF537D9EAA87BCB1DA891346 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151515.roa Signing time: Sat 02 May 2026 21:15:31 +0000 ROA not before: Sat 02 May 2026 21:10:31 +0000 ROA not after: Sat 01 May 2027 21:15:31 +0000 asID: 151515 IP address blocks: 103.224.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:54:81:c0:cd:c5:f3:22:af:53:7d:9e:aa:87:bc:b1:da:89:13:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:10:31 2026 GMT Not After : May 1 21:15:31 2027 GMT Subject: CN=1DC1DC8C10C5EB607F5F868FCA12DA5CFFA40267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:39:70:f8:be:3d:d5:6c:a3:f5:1a:54:f4: 36:6c:ac:d4:6d:e2:82:94:7d:fd:4d:68:e5:74:04: 82:83:83:7b:bf:20:a7:58:5a:9f:f9:b5:df:2e:97: ca:2c:7e:96:60:d9:32:8d:27:dd:d3:53:84:42:98: 75:a5:ee:9e:cf:c7:3f:c7:e5:91:fc:e1:a8:a0:7d: 91:a7:a6:b4:5c:80:c4:67:2a:2e:fb:93:e5:24:e4: d0:ef:53:03:9a:4d:53:e9:20:45:45:23:75:61:e5: f4:64:d3:26:63:90:7a:12:80:4d:ae:4a:a1:c1:9f: 6f:65:ed:50:e7:65:dc:5b:fd:8f:45:7a:51:f0:59: b4:8d:06:f7:05:7f:b1:50:ff:83:4e:e0:31:1b:30: ea:e2:ac:c1:54:db:3c:7e:1f:1b:1f:45:18:d6:30: 0e:31:4b:7d:08:85:84:02:d3:83:3d:a5:40:e3:7e: 60:24:e7:4e:af:9f:4d:04:f2:11:33:33:fa:58:9d: 34:9a:df:92:c3:47:3e:8c:29:87:34:80:5e:3e:04: 57:5d:17:75:97:70:d5:ee:88:74:7b:6e:96:88:13: d1:80:e0:e3:51:8b:70:e5:77:56:7b:18:b0:f0:f0: b5:7a:32:33:6f:05:2f:da:ff:07:af:04:f2:de:e6: 2c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C1:DC:8C:10:C5:EB:60:7F:5F:86:8F:CA:12:DA:5C:FF:A4:02:67 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151515.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.18.0/24 Signature Algorithm: sha256WithRSAEncryption 38:1f:c7:c0:ca:5b:f7:c1:27:b9:0e:77:87:d1:a8:8a:04:1d: 6e:26:6c:92:54:40:16:af:6d:75:0b:ff:b8:6e:a3:11:a7:cb: b6:d2:c4:c4:f8:2e:74:0b:34:63:bb:68:d7:68:62:ba:62:70: 9b:df:d4:48:e3:5a:05:91:9f:b8:80:f8:22:80:b9:e5:80:2f: 0e:bf:f8:63:df:55:e4:73:d5:a5:8b:9a:3d:1a:47:bf:9d:42: 75:37:c4:50:4b:4d:05:26:20:3f:3e:0a:26:50:0f:77:34:11: 06:bd:17:bf:56:ab:46:24:d1:2f:f1:3f:e5:55:0c:96:05:44: c9:ab:8e:16:62:32:a7:fb:4d:cf:02:ec:08:a3:53:59:e8:e0: 08:99:a8:08:3d:98:94:bc:04:b3:07:91:92:0b:b5:35:d1:22: 65:a4:c0:6a:8b:17:89:c9:8a:8b:39:66:27:23:b4:b7:0f:0c: 82:cd:96:03:04:c5:96:48:a8:b6:32:61:a6:79:01:25:6e:d3: 08:b9:80:e8:4a:a8:ff:a4:3e:f1:fd:65:26:36:a8:87:00:f6: 46:6a:74:91:3a:4e:e8:84:68:c8:1a:55:11:06:e6:ba:33:38: a5:b8:b9:cd:84:8c:07:48:f2:b7:ea:a4:70:33:8c:1a:76:23: 20:83:aa:63 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUPlSBwM3F8yKvU32eqoe8sdqJE0YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTAzMVoX DTI3MDUwMTIxMTUzMVowMzExMC8GA1UEAxMoMURDMURDOEMxMEM1RUI2MDdGNUY4 NjhGQ0ExMkRBNUNGRkE0MDI2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjIOXD4vj3VbKP1GlT0Nmys1G3igpR9/U1o5XQEgoODe78gp1han/m13y6X yix+lmDZMo0n3dNThEKYdaXuns/HP8flkfzhqKB9kaemtFyAxGcqLvuT5STk0O9T A5pNU+kgRUUjdWHl9GTTJmOQehKATa5KocGfb2XtUOdl3Fv9j0V6UfBZtI0G9wV/ sVD/g07gMRsw6uKswVTbPH4fGx9FGNYwDjFLfQiFhALTgz2lQON+YCTnTq+fTQTy ETMz+lidNJrfksNHPowphzSAXj4EV10XdZdw1e6IdHtulogT0YDg41GLcOV3VnsY sPDwtXoyM28FL9r/B68E8t7mLAsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQdwdyM EMXrYH9fho/KEtpc/6QCZzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTE1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ+ASMA0GCSqGSIb3DQEBCwUAA4IBAQA4H8fAylv3wSe5DneH0aiKBB1u JmySVEAWr211C/+4bqMRp8u20sTE+C50CzRju2jXaGK6YnCb39RI41oFkZ+4gPgi gLnlgC8Ov/hj31Xkc9Wli5o9Gke/nUJ1N8RQS00FJiA/PgomUA93NBEGvRe/VqtG JNEv8T/lVQyWBUTJq44WYjKn+03PAuwIo1NZ6OAImagIPZiUvASzB5GSC7U10SJl pMBqixeJyYqLOWYnI7S3DwyCzZYDBMWWSKi2MmGmeQElbtMIuYDoSqj/pD7x/WUm NqiHAPZGanSROk7ohGjIGlURBua6MziluLnNhIwHSPK36qRwM4wadiMgg6pj -----END CERTIFICATE-----Generated at Sun May 3 00:40:32 2026 by rpki-client