$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151527.roa File: AS151527.roa (raw, json) Hash identifier: rcaomhRghOfB3NbvXW7K7K+oDnwgCNk8w9vQzuJunEo= Subject key identifier: 98:FE:23:A4:6A:57:A4:6F:39:57:F1:0F:A9:A2:C5:4B:82:02:34:CC Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 340B0B5C6772C6B87C84A91E8CA15FACD9CE552B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151527.roa Signing time: Sat 02 May 2026 09:25:50 +0000 ROA not before: Sat 02 May 2026 09:20:50 +0000 ROA not after: Sat 01 May 2027 09:25:50 +0000 asID: 151527 IP address blocks: 103.236.172.0/23 maxlen: 24 2001:df2:bcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:0b:0b:5c:67:72:c6:b8:7c:84:a9:1e:8c:a1:5f:ac:d9:ce:55:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:50 2026 GMT Not After : May 1 09:25:50 2027 GMT Subject: CN=98FE23A46A57A46F3957F10FA9A2C54B820234CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:22:c4:ff:4f:0d:5e:4e:79:a0:17:3a:9e:8c: 94:d0:c4:a5:14:89:63:a5:43:4b:0c:c4:11:dd:82: ea:23:ea:5f:53:2b:d3:05:e8:db:a2:4c:e8:0a:52: 17:23:58:3f:75:d2:ff:15:b7:40:33:d3:b4:19:1f: 42:34:e7:06:07:6f:0d:65:7f:1b:d1:45:a3:47:65: b0:dd:84:7d:bd:ff:82:7a:64:0b:72:3e:2e:bf:01: 6a:05:8a:6c:4e:4a:95:82:25:51:28:a1:ca:0e:6b: 2c:f7:9d:9d:0d:b4:03:7a:5d:b0:c6:9a:64:e6:a6: d2:a3:2c:42:55:17:4f:1c:a9:b8:61:9d:f6:21:88: 22:84:6a:eb:05:c3:84:c8:e1:72:b0:26:6f:75:18: d7:61:fe:ea:49:ab:9c:c7:44:29:7a:b5:20:28:da: a2:92:57:f3:7b:b6:5c:20:c7:2c:0e:09:66:a8:58: e3:2d:14:c1:64:83:e7:87:bb:77:e7:b2:af:7b:78: b2:5a:3b:b4:34:a3:70:14:87:cb:38:7d:47:22:45: 98:21:88:69:fe:67:11:3b:f7:e6:59:58:54:a9:15: 5e:ea:9f:af:41:11:98:19:06:1d:6f:f1:dd:51:c0: 80:b0:07:86:01:85:1b:78:3b:4e:c0:69:5b:cc:55: d3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FE:23:A4:6A:57:A4:6F:39:57:F1:0F:A9:A2:C5:4B:82:02:34:CC X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151527.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.172.0/23 IPv6: 2001:df2:bcc0::/48 Signature Algorithm: sha256WithRSAEncryption 75:de:ba:c5:3e:14:6f:db:7d:06:a9:22:73:92:2a:08:87:3b: 21:ca:4b:70:ff:50:3f:7f:01:6f:a4:ed:55:e0:20:e2:48:41: 72:ca:c0:f8:ad:20:1b:80:0e:2d:34:2e:45:7d:cb:91:91:84: 00:08:04:7d:95:5a:e6:6f:7d:ca:bc:1f:d1:20:f5:5b:36:98: 40:9b:e7:69:11:d7:81:1e:b0:45:b2:81:98:c1:0d:10:a5:e0: 58:f4:2a:f0:a8:3f:94:3d:28:fc:f0:f6:d6:52:12:39:bb:3d: ba:a3:20:5a:f0:b7:68:d3:ac:61:6b:ec:b0:99:62:5e:1c:6e: 03:12:ad:82:dc:92:3d:d5:ff:5f:b9:38:fb:8d:57:29:06:86: c7:ea:63:cb:1f:e8:f4:21:ca:36:07:d1:2f:29:7a:b4:49:2a: 9b:c0:b9:c8:05:49:38:a3:ac:52:2c:e9:a2:78:75:b9:06:a9: 5e:e8:d3:40:a5:c5:d4:7f:c9:f1:80:63:2e:ed:90:64:da:16: 8e:94:8a:62:ac:6a:d4:47:57:27:73:f4:dd:03:5a:38:c1:36: 85:e5:5d:5f:f0:6e:88:3d:c7:20:06:c5:ac:87:e2:64:db:a5: 39:d5:cb:af:27:a3:d6:d2:b8:77:83:5a:32:0a:22:b8:2a:74: 52:f5:73:86 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNAsLXGdyxrh8hKkejKFfrNnOVSswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjA1MFoX DTI3MDUwMTA5MjU1MFowMzExMC8GA1UEAxMoOThGRTIzQTQ2QTU3QTQ2RjM5NTdG MTBGQTlBMkM1NEI4MjAyMzRDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJcixP9PDV5OeaAXOp6MlNDEpRSJY6VDSwzEEd2C6iPqX1Mr0wXo26JM6ApS FyNYP3XS/xW3QDPTtBkfQjTnBgdvDWV/G9FFo0dlsN2Efb3/gnpkC3I+Lr8BagWK bE5KlYIlUSihyg5rLPednQ20A3pdsMaaZOam0qMsQlUXTxypuGGd9iGIIoRq6wXD hMjhcrAmb3UY12H+6kmrnMdEKXq1ICjaopJX83u2XCDHLA4JZqhY4y0UwWSD54e7 d+eyr3t4slo7tDSjcBSHyzh9RyJFmCGIaf5nETv35llYVKkVXuqfr0ERmBkGHW/x 3VHAgLAHhgGFG3g7TsBpW8xV0y0CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSY/iOk alekbzlX8Q+posVLggI0zDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTI3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBZ+ysMA8EAgACMAkDBwAgAQ3yvMAwDQYJKoZIhvcNAQELBQADggEBAHXe usU+FG/bfQapInOSKgiHOyHKS3D/UD9/AW+k7VXgIOJIQXLKwPitIBuADi00LkV9 y5GRhAAIBH2VWuZvfcq8H9Eg9Vs2mECb52kR14EesEWygZjBDRCl4Fj0KvCoP5Q9 KPzw9tZSEjm7PbqjIFrwt2jTrGFr7LCZYl4cbgMSrYLckj3V/1+5OPuNVykGhsfq Y8sf6PQhyjYH0S8perRJKpvAucgFSTijrFIs6aJ4dbkGqV7o00ClxdR/yfGAYy7t kGTaFo6UimKsatRHVydz9N0DWjjBNoXlXV/wbog9xyAGxayH4mTbpTnVy68no9bS uHeDWjIKIrgqdFL1c4Y= -----END CERTIFICATE-----Generated at Sun May 3 00:40:34 2026 by rpki-client