$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151549.roa File: AS151549.roa (raw, json) Hash identifier: s5gs3NAqu2ft2BRSEw7Ob3P87XWXbaOqEW3hO4MgGgk= Subject key identifier: D5:D3:02:C0:F0:0F:7B:27:DA:98:F1:56:F8:7C:32:BC:17:7A:11:F2 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 472A515608FA830376E500866407A4B281EBD843 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151549.roa Signing time: Sat 02 May 2026 21:32:06 +0000 ROA not before: Sat 02 May 2026 21:27:06 +0000 ROA not after: Sat 01 May 2027 21:32:06 +0000 asID: 151549 IP address blocks: 103.255.132.0/23 maxlen: 24 2401:2de0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:2a:51:56:08:fa:83:03:76:e5:00:86:64:07:a4:b2:81:eb:d8:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:27:06 2026 GMT Not After : May 1 21:32:06 2027 GMT Subject: CN=D5D302C0F00F7B27DA98F156F87C32BC177A11F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:10:2c:86:69:c9:4c:a4:65:e6:e6:fc:82:31: 2e:10:43:f9:72:5f:56:11:a1:33:b6:a0:a5:c8:65: 8e:9d:f1:76:a2:40:7b:06:3f:a8:6e:99:50:3f:5c: 35:95:f4:2a:d3:14:66:df:f6:01:8b:2d:4f:f9:d8: 78:28:f2:3b:af:a7:ff:19:fc:80:2d:3f:85:78:9c: d4:01:b5:b5:b5:27:c4:7e:14:7d:d7:df:34:1a:6e: bb:c9:9c:3d:f9:a1:6a:d5:df:fb:55:1b:aa:4b:6a: 2b:d5:b7:25:03:ec:d3:c4:83:f3:d5:7f:27:fb:a4: 05:24:1a:70:2a:54:84:b7:e4:69:a1:ce:0f:df:29: 06:06:e7:5d:8d:ce:97:14:82:e4:20:0e:77:23:12: 7e:69:6a:84:24:63:2f:5e:76:6b:0b:aa:10:35:a4: d7:6e:79:1b:f1:fb:99:07:bb:5e:31:d5:52:ba:00: 0e:0f:d7:8c:e4:04:3e:d6:c9:44:87:59:4d:0a:40: fd:3a:dd:e1:f7:bb:3e:ae:1c:e2:03:26:ec:65:8a: 57:28:65:b2:f9:2c:07:df:c1:73:c1:0a:c9:07:30: d2:0a:a6:32:77:ff:b5:0b:22:49:cc:21:0b:dd:5b: 3a:90:d7:94:a0:da:a5:e9:f3:43:cc:a7:79:d3:07: 8c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D3:02:C0:F0:0F:7B:27:DA:98:F1:56:F8:7C:32:BC:17:7A:11:F2 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151549.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.132.0/23 IPv6: 2401:2de0::/32 Signature Algorithm: sha256WithRSAEncryption a1:4b:0e:0c:5d:ba:ee:0c:41:8f:ca:1e:e0:23:b5:b0:ea:08: a7:18:97:8c:35:08:4b:be:9a:74:ae:0a:93:6a:ae:2d:03:47: 62:67:f9:2b:53:67:17:38:7b:eb:a6:27:f0:b2:80:cc:6a:98: f1:94:cd:95:a4:69:a8:f6:29:f3:1a:81:6a:bf:4c:11:9e:02: 67:66:ff:3b:31:b7:62:18:04:d1:a3:a1:37:e7:7d:54:2c:95: 92:45:a1:84:38:41:d2:a8:48:3f:51:72:41:99:4b:40:99:b5: 01:4b:7e:f7:64:b4:64:15:71:54:be:04:a9:d8:02:79:84:7b: b8:db:5a:5c:55:9c:82:b2:dc:55:e8:74:e1:a2:c6:f9:ac:c8: 42:dc:f1:ed:7d:0c:be:35:ee:a4:32:1a:b3:a2:16:cc:bb:a0: 7e:8b:fd:43:8b:1d:bf:f6:c3:7c:b6:a7:bd:9f:9a:b4:34:a1: c3:d5:31:2a:96:a4:22:09:cf:27:d5:22:a4:a6:76:d1:ff:95: 43:4f:ee:43:eb:48:00:b6:52:de:fe:ee:5d:34:97:3e:3d:ed: 8e:25:6a:78:90:52:42:5d:b3:ca:c1:c3:1f:6a:22:c0:86:af: c8:80:a8:f1:1d:a8:d3:c7:c4:dd:06:81:cc:d7:cb:58:1b:ea: 33:9f:d0:1d -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIURypRVgj6gwN25QCGZAeksoHr2EMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjcwNloX DTI3MDUwMTIxMzIwNlowMzExMC8GA1UEAxMoRDVEMzAyQzBGMDBGN0IyN0RBOThG MTU2Rjg3QzMyQkMxNzdBMTFGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPEQLIZpyUykZebm/IIxLhBD+XJfVhGhM7agpchljp3xdqJAewY/qG6ZUD9c NZX0KtMUZt/2AYstT/nYeCjyO6+n/xn8gC0/hXic1AG1tbUnxH4UfdffNBpuu8mc PfmhatXf+1UbqktqK9W3JQPs08SD89V/J/ukBSQacCpUhLfkaaHOD98pBgbnXY3O lxSC5CAOdyMSfmlqhCRjL152awuqEDWk1255G/H7mQe7XjHVUroADg/XjOQEPtbJ RIdZTQpA/Trd4fe7Pq4c4gMm7GWKVyhlsvksB9/Bc8EKyQcw0gqmMnf/tQsiScwh C91bOpDXlKDapenzQ8ynedMHjLkCAwEAAaOCAdswggHXMB0GA1UdDgQWBBTV0wLA 8A97J9qY8Vb4fDK8F3oR8jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQBZ/+EMA0EAgACMAcDBQAkAS3gMA0GCSqGSIb3DQEBCwUAA4IBAQChSw4M XbruDEGPyh7gI7Ww6ginGJeMNQhLvpp0rgqTaq4tA0diZ/krU2cXOHvrpifwsoDM apjxlM2VpGmo9inzGoFqv0wRngJnZv87MbdiGATRo6E3531ULJWSRaGEOEHSqEg/ UXJBmUtAmbUBS373ZLRkFXFUvgSp2AJ5hHu421pcVZyCstxV6HThosb5rMhC3PHt fQy+Ne6kMhqzohbMu6B+i/1Dix2/9sN8tqe9n5q0NKHD1TEqlqQiCc8n1SKkpnbR /5VDT+5D60gAtlLe/u5dNJc+Pe2OJWp4kFJCXbPKwcMfaiLAhq/IgKjxHajTx8Td BoHM18tYG+ozn9Ad -----END CERTIFICATE-----Generated at Sun May 3 00:40:41 2026 by rpki-client