$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151555.roa File: AS151555.roa (raw, json) Hash identifier: JuFpppQWVCF6DY3YgZaPJdTxQmx/3Y7CGDPYPXqfobY= Subject key identifier: 2B:C2:47:E6:DB:42:EC:F5:07:37:B9:EE:58:B2:5F:5A:24:F3:69:30 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 75AD7A2CB511EDE50198FB3581AD3E13ECB46B60 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151555.roa Signing time: Sat 02 May 2026 21:18:27 +0000 ROA not before: Sat 02 May 2026 21:13:27 +0000 ROA not after: Sat 01 May 2027 21:18:27 +0000 asID: 151555 IP address blocks: 103.250.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ad:7a:2c:b5:11:ed:e5:01:98:fb:35:81:ad:3e:13:ec:b4:6b:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:13:27 2026 GMT Not After : May 1 21:18:27 2027 GMT Subject: CN=2BC247E6DB42ECF50737B9EE58B25F5A24F36930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2f:a3:81:ba:32:15:63:5b:8a:74:0b:7e:82: a5:75:71:63:7d:d8:6c:01:52:e8:e3:5c:f7:ea:93: f5:9a:45:d5:f0:db:ad:00:52:81:6c:8d:08:89:41: 87:d4:b6:03:5f:a5:97:cf:b2:12:e8:d7:fc:ef:26: 68:ef:ac:2b:78:54:26:92:06:61:46:63:c4:ac:c3: 44:01:0b:0c:21:78:52:d1:df:ba:26:17:0a:b1:69: f4:3e:d7:c1:dc:d5:37:09:1f:f9:8b:ee:d0:aa:4e: 6b:df:f0:7f:09:0a:ba:a0:02:c2:36:3d:ab:14:1d: af:25:56:ed:32:8f:d7:00:04:34:9d:1d:37:36:0c: 09:7c:6b:1a:5f:4e:d2:5c:57:5a:ba:ef:1b:1a:bf: 16:a8:75:98:52:2c:22:ff:cc:f1:de:2b:b0:aa:1f: 1a:89:77:1a:94:c2:76:ca:76:5e:96:d2:b3:3b:d0: 54:32:f2:cd:8e:55:07:12:d3:35:b7:95:38:de:a4: bb:11:9b:dc:0e:d8:e6:d6:61:03:a6:17:41:04:ce: a1:47:58:31:de:2b:1b:51:66:7c:18:d3:f7:07:e2: bb:7e:ed:58:e5:5f:95:4f:40:62:fd:4e:53:b3:3c: 34:44:73:fd:49:16:4c:96:9a:ca:ce:8f:44:ea:92: 4f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C2:47:E6:DB:42:EC:F5:07:37:B9:EE:58:B2:5F:5A:24:F3:69:30 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151555.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.130.0/23 Signature Algorithm: sha256WithRSAEncryption 99:71:53:ee:3e:1d:2a:ba:1f:ae:37:da:fa:6d:af:05:d1:dc: 4e:d4:11:31:6d:d9:78:e8:a5:78:9a:19:69:2a:b6:93:e8:1d: 67:f4:e6:70:ed:65:bf:77:65:49:c1:fb:d4:4e:43:2a:8f:c2: c8:8c:ca:3b:bd:d6:81:50:33:20:47:30:82:4b:9c:23:77:35: 24:18:a1:58:0c:ed:03:db:dc:30:69:af:a8:ec:99:06:d9:3a: 33:d2:fd:63:52:59:ef:8b:b0:40:d8:b7:a1:4e:4a:50:a3:94: bc:05:44:70:fc:a3:6c:a1:a6:61:9a:6d:f6:3b:9f:27:89:32: ef:3e:54:c2:df:20:29:f8:16:eb:23:6b:23:dc:c9:90:56:fd: fa:d5:7e:bd:e5:44:5d:d6:7a:71:41:7a:5e:f7:e0:a1:ab:97: a2:68:21:4a:9d:08:f5:89:8a:39:46:aa:bc:e8:44:8a:ea:2c: a1:62:e6:71:09:fc:f1:95:08:b0:3f:66:dd:55:b4:6a:9d:b9: f0:29:db:58:46:92:3d:51:08:c5:23:07:ec:2a:00:a9:47:75: 31:6a:0a:89:8d:c2:79:02:48:ee:0a:5f:b6:33:2c:bd:23:8e: 65:e6:28:5d:93:47:09:3c:aa:71:12:fd:4e:d6:78:9a:63:7e: 15:29:6c:d9 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUda16LLUR7eUBmPs1ga0+E+y0a2AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTMyN1oX DTI3MDUwMTIxMTgyN1owMzExMC8GA1UEAxMoMkJDMjQ3RTZEQjQyRUNGNTA3MzdC OUVFNThCMjVGNUEyNEYzNjkzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQvo4G6MhVjW4p0C36CpXVxY33YbAFS6ONc9+qT9ZpF1fDbrQBSgWyNCIlB h9S2A1+ll8+yEujX/O8maO+sK3hUJpIGYUZjxKzDRAELDCF4UtHfuiYXCrFp9D7X wdzVNwkf+Yvu0KpOa9/wfwkKuqACwjY9qxQdryVW7TKP1wAENJ0dNzYMCXxrGl9O 0lxXWrrvGxq/Fqh1mFIsIv/M8d4rsKofGol3GpTCdsp2XpbSszvQVDLyzY5VBxLT NbeVON6kuxGb3A7Y5tZhA6YXQQTOoUdYMd4rG1FmfBjT9wfiu37tWOVflU9AYv1O U7M8NERz/UkWTJaays6PROqST1sCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQrwkfm 20Ls9Qc3ue5Ysl9aJPNpMDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTU1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ/qCMA0GCSqGSIb3DQEBCwUAA4IBAQCZcVPuPh0quh+uN9r6ba8F0dxO 1BExbdl46KV4mhlpKraT6B1n9OZw7WW/d2VJwfvUTkMqj8LIjMo7vdaBUDMgRzCC S5wjdzUkGKFYDO0D29wwaa+o7JkG2Toz0v1jUlnvi7BA2LehTkpQo5S8BURw/KNs oaZhmm32O58niTLvPlTC3yAp+BbrI2sj3MmQVv361X695URd1npxQXpe9+Chq5ei aCFKnQj1iYo5Rqq86ESK6iyhYuZxCfzxlQiwP2bdVbRqnbnwKdtYRpI9UQjFIwfs KgCpR3UxagqJjcJ5AkjuCl+2Myy9I45l5ihdk0cJPKpxEv1O1niaY34VKWzZ -----END CERTIFICATE-----Generated at Sun May 3 00:39:47 2026 by rpki-client