$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151546.roa File: AS151546.roa (raw, json) Hash identifier: ODbiWABp3UjOuAL7TPikeby/96fpDw1d1EbibhoqNwI= Subject key identifier: 9E:93:3B:91:0E:44:55:E5:06:C6:18:59:F1:D8:8F:71:D9:05:D2:83 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 70343F6BC0DB853016B6B7B8D6EC13FC57F205D0 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151546.roa Signing time: Sat 02 May 2026 21:18:25 +0000 ROA not before: Sat 02 May 2026 21:13:25 +0000 ROA not after: Sat 01 May 2027 21:18:25 +0000 asID: 151546 IP address blocks: 103.250.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:34:3f:6b:c0:db:85:30:16:b6:b7:b8:d6:ec:13:fc:57:f2:05:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:13:25 2026 GMT Not After : May 1 21:18:25 2027 GMT Subject: CN=9E933B910E4455E506C61859F1D88F71D905D283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f4:e0:aa:46:8a:bb:4c:e8:7a:e2:90:2c:3d: 77:5d:44:c1:4b:0c:01:42:31:33:a4:d7:1c:f2:0f: 67:1a:28:3f:4c:89:27:62:97:30:5e:d3:0a:12:1c: 7b:77:ae:d1:b3:d5:13:f0:e1:73:de:9d:cb:99:55: b9:c2:d6:e5:92:a0:95:94:59:8a:f8:8c:12:1c:29: 6e:5a:5a:9e:4d:2c:3b:71:3b:ca:4e:e3:4c:d2:2b: 65:b2:68:fc:08:35:5a:82:4b:f3:33:21:3b:e1:dc: 0f:51:70:4c:6e:89:81:dc:02:9b:2c:fd:37:5b:d5: 94:f0:c4:67:86:4f:b3:23:15:d7:c3:69:82:f0:ec: 7a:23:c6:36:1d:e2:41:d2:9f:5b:0d:09:c0:97:09: f3:76:a7:da:29:e7:8e:f0:7c:0e:d7:7a:b7:a4:22: 2c:7e:9e:ae:8e:d4:9f:a3:e1:d5:bd:ba:11:39:b6: 74:1b:b9:db:80:86:da:91:a8:6c:4b:0c:68:79:9a: 57:5e:ef:70:40:20:f8:79:e7:da:b0:e0:2d:6e:20: 85:f1:66:dc:e6:d5:24:e5:d8:91:01:88:ae:bf:ac: 51:a7:36:3d:0f:4a:3c:55:63:27:ca:95:e6:dc:92: 3c:2e:b5:fb:89:f4:e7:ea:c5:a6:a2:e6:70:88:68: ae:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:93:3B:91:0E:44:55:E5:06:C6:18:59:F1:D8:8F:71:D9:05:D2:83 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151546.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.128.0/24 Signature Algorithm: sha256WithRSAEncryption 11:e3:3c:17:0b:d9:64:11:f2:c6:85:a6:a1:0f:b4:5a:d6:3d: 14:4d:ba:70:db:d9:cc:2c:76:fa:0b:83:89:d9:bb:0d:4f:7c: 9b:8f:a6:de:40:65:83:f9:f0:46:b2:a6:c0:9f:46:6e:44:4b: db:e1:54:18:19:88:1d:2d:5e:b2:af:60:2f:57:7e:3e:99:7b: 65:97:5c:f0:45:6e:e1:d9:83:e5:4d:c4:38:8a:73:82:19:8a: ec:4a:da:af:89:87:0c:f3:b9:35:d0:bd:28:d9:f0:7c:e2:34: cc:b2:11:d3:74:15:a8:1d:2b:a5:fe:36:97:aa:e4:88:9a:cf: 00:b6:ca:f3:b0:1c:17:bb:c8:b1:7e:a1:60:16:75:81:99:4c: 7b:ef:02:c6:3f:cc:c8:7f:9f:d2:da:56:a1:2c:7a:8b:30:16: 34:9f:79:fb:5a:54:52:ea:e6:34:35:64:ca:bb:c0:8a:31:69: 5b:92:3f:68:26:7e:b9:b9:ca:88:69:2d:20:4e:f9:0e:25:51: 4b:e5:3c:63:57:bd:31:39:54:ee:80:74:50:c7:49:45:83:f1: 6f:5a:c6:8a:45:08:f0:89:b4:0c:e1:84:2d:ab:8a:e3:31:01: 55:31:89:c5:b7:2e:de:65:0a:a4:e2:2e:9b:a7:51:59:cc:86: 2f:fb:d1:a7 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcDQ/a8DbhTAWtre41uwT/FfyBdAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTMyNVoX DTI3MDUwMTIxMTgyNVowMzExMC8GA1UEAxMoOUU5MzNCOTEwRTQ0NTVFNTA2QzYx ODU5RjFEODhGNzFEOTA1RDI4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMH04KpGirtM6HrikCw9d11EwUsMAUIxM6TXHPIPZxooP0yJJ2KXMF7TChIc e3eu0bPVE/Dhc96dy5lVucLW5ZKglZRZiviMEhwpblpank0sO3E7yk7jTNIrZbJo /Ag1WoJL8zMhO+HcD1FwTG6JgdwCmyz9N1vVlPDEZ4ZPsyMV18NpgvDseiPGNh3i QdKfWw0JwJcJ83an2innjvB8Dtd6t6QiLH6ero7Un6Ph1b26ETm2dBu524CG2pGo bEsMaHmaV17vcEAg+Hnn2rDgLW4ghfFm3ObVJOXYkQGIrr+sUac2PQ9KPFVjJ8qV 5tySPC61+4n05+rFpqLmcIhorvECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSekzuR DkRV5QbGGFnx2I9x2QXSgzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTQ2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ/qAMA0GCSqGSIb3DQEBCwUAA4IBAQAR4zwXC9lkEfLGhaahD7Ra1j0U Tbpw29nMLHb6C4OJ2bsNT3ybj6beQGWD+fBGsqbAn0ZuREvb4VQYGYgdLV6yr2Av V34+mXtll1zwRW7h2YPlTcQ4inOCGYrsStqviYcM87k10L0o2fB84jTMshHTdBWo HSul/jaXquSIms8AtsrzsBwXu8ixfqFgFnWBmUx77wLGP8zIf5/S2lahLHqLMBY0 n3n7WlRS6uY0NWTKu8CKMWlbkj9oJn65ucqIaS0gTvkOJVFL5TxjV70xOVTugHRQ x0lFg/FvWsaKRQjwibQM4YQtq4rjMQFVMYnFty7eZQqk4i6bp1FZzIYv+9Gn -----END CERTIFICATE-----Generated at Sun May 3 01:41:17 2026 by rpki-client