$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151554.roa File: AS151554.roa (raw, json) Hash identifier: T7+/NTSTncOe4Xx1vrDwVErM4LeloRHmccZZMNG1Y2A= Subject key identifier: 35:4B:FF:2D:F5:1B:13:F0:07:00:94:26:40:78:C1:3E:C7:F5:0A:67 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5AE3C83FE97B46D67597AC8FC6449AE4AC5376C2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151554.roa Signing time: Sat 02 May 2026 08:37:17 +0000 ROA not before: Sat 02 May 2026 08:32:17 +0000 ROA not after: Sat 01 May 2027 08:37:17 +0000 asID: 151554 IP address blocks: 103.244.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e3:c8:3f:e9:7b:46:d6:75:97:ac:8f:c6:44:9a:e4:ac:53:76:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:32:17 2026 GMT Not After : May 1 08:37:17 2027 GMT Subject: CN=354BFF2DF51B13F0070094264078C13EC7F50A67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9a:fc:0f:ca:df:66:52:31:f0:65:99:1c:4f: d3:72:0d:f2:ea:0c:29:3d:a9:a0:7c:5b:c1:de:b7: 9d:d3:da:82:4d:07:50:27:73:9b:83:ce:3a:1c:34: 9b:bf:34:16:fe:fb:48:93:13:9b:db:4f:41:77:4f: a5:57:11:b7:e9:48:e8:df:8c:16:76:1b:d3:81:af: 49:d1:ec:fa:f6:5d:ad:a7:7e:66:fd:15:d9:9e:d0: 62:13:0a:dc:5c:45:a7:51:90:c5:40:21:96:3c:88: e0:ae:05:76:9e:1c:95:67:2b:4e:f1:d1:b1:c1:bd: 4f:5b:fd:f0:0b:0e:85:83:96:bb:72:c4:c2:89:8c: 9b:0b:29:84:c5:e3:46:14:85:62:4b:f8:4c:8c:72: 5b:c6:ef:75:9a:81:77:64:af:23:fa:44:27:e1:3b: 83:fb:5d:d1:48:99:e0:da:a4:87:d9:b4:52:cd:b0: db:e6:79:06:91:87:68:a9:e8:a0:d2:34:4d:ff:eb: 9f:ad:db:2a:5d:f7:99:7e:79:00:59:6c:73:60:83: 7a:85:aa:99:1c:22:63:ef:80:be:48:13:5e:67:50: 3e:7f:7b:f0:fd:6c:11:de:ab:89:7f:84:5a:19:e0: 91:fb:3d:c3:8a:d1:ba:3c:e5:6f:98:51:b2:86:20: 5c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:4B:FF:2D:F5:1B:13:F0:07:00:94:26:40:78:C1:3E:C7:F5:0A:67 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.104.0/23 Signature Algorithm: sha256WithRSAEncryption 88:e2:7e:95:e1:94:94:5c:94:d3:f0:22:8c:31:63:bd:48:f3: ad:cc:a4:08:34:b5:32:19:0f:f4:7b:8c:d3:df:49:30:b6:a2: bf:ec:cd:fc:4e:25:b5:fc:17:7f:e2:da:9e:58:53:cb:95:84: 4b:18:bd:75:d8:29:91:7f:17:a1:15:84:06:12:59:11:eb:2c: c5:d6:d0:e6:53:a0:a1:c3:7f:66:ca:f0:03:fd:e1:7f:43:b3: 32:bf:f2:8c:87:4f:62:3c:4b:26:b2:9e:ad:91:b3:f8:cb:03: 22:6f:59:5f:30:88:68:72:35:10:8f:4b:8e:12:a3:f7:0c:c2: df:7a:94:3a:22:5c:5f:65:77:75:89:4a:03:55:01:4c:c5:a4: 19:f1:89:60:d0:e0:79:2f:4f:27:f5:7d:c1:67:16:f4:bf:eb: 26:47:6c:93:2b:f4:7b:75:e8:6c:78:19:02:60:42:b1:44:16: e3:68:85:9b:da:28:ef:73:15:40:e8:54:cb:bd:ec:48:9d:2e: 73:77:e7:ab:c4:5d:97:51:cd:81:c6:7b:61:05:6f:79:0e:86: bb:0d:1d:28:09:28:28:8d:80:58:bc:4d:5e:52:7b:63:4d:bf: 7f:64:4d:aa:f5:79:80:27:fb:6c:2d:14:c7:27:5d:dc:2b:51: e1:2b:a0:55 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWuPIP+l7RtZ1l6yPxkSa5KxTdsIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzIxN1oX DTI3MDUwMTA4MzcxN1owMzExMC8GA1UEAxMoMzU0QkZGMkRGNTFCMTNGMDA3MDA5 NDI2NDA3OEMxM0VDN0Y1MEE2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALua/A/K32ZSMfBlmRxP03IN8uoMKT2poHxbwd63ndPagk0HUCdzm4POOhw0 m780Fv77SJMTm9tPQXdPpVcRt+lI6N+MFnYb04GvSdHs+vZdrad+Zv0V2Z7QYhMK 3FxFp1GQxUAhljyI4K4Fdp4clWcrTvHRscG9T1v98AsOhYOWu3LEwomMmwsphMXj RhSFYkv4TIxyW8bvdZqBd2SvI/pEJ+E7g/td0UiZ4Nqkh9m0Us2w2+Z5BpGHaKno oNI0Tf/rn63bKl33mX55AFlsc2CDeoWqmRwiY++AvkgTXmdQPn978P1sEd6riX+E Whngkfs9w4rRujzlb5hRsoYgXGcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQ1S/8t 9RsT8AcAlCZAeME+x/UKZzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTU0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ/RoMA0GCSqGSIb3DQEBCwUAA4IBAQCI4n6V4ZSUXJTT8CKMMWO9SPOt zKQINLUyGQ/0e4zT30kwtqK/7M38TiW1/Bd/4tqeWFPLlYRLGL112CmRfxehFYQG ElkR6yzF1tDmU6Chw39myvAD/eF/Q7Myv/KMh09iPEsmsp6tkbP4ywMib1lfMIho cjUQj0uOEqP3DMLfepQ6IlxfZXd1iUoDVQFMxaQZ8Ylg0OB5L08n9X3BZxb0v+sm R2yTK/R7dehseBkCYEKxRBbjaIWb2ijvcxVA6FTLvexInS5zd+erxF2XUc2Bxnth BW95Doa7DR0oCSgojYBYvE1eUntjTb9/ZE2q9XmAJ/tsLRTHJ13cK1HhK6BV -----END CERTIFICATE-----Generated at Sun May 3 00:40:33 2026 by rpki-client