$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151560.roa File: AS151560.roa (raw, json) Hash identifier: 43/ClUdjx+yrzr+YUt8tKdq+6oeoCq9vnRZ1tbhCFQQ= Subject key identifier: 99:7A:BC:53:BA:0B:AD:69:EC:94:5A:CB:BE:0C:78:61:89:77:1F:FE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6BE3B3702A7E5585AC43174557D3CCCDE5267872 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151560.roa Signing time: Sat 02 May 2026 08:35:40 +0000 ROA not before: Sat 02 May 2026 08:30:40 +0000 ROA not after: Sat 01 May 2027 08:35:40 +0000 asID: 151560 IP address blocks: 103.247.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e3:b3:70:2a:7e:55:85:ac:43:17:45:57:d3:cc:cd:e5:26:78:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:40 2026 GMT Not After : May 1 08:35:40 2027 GMT Subject: CN=997ABC53BA0BAD69EC945ACBBE0C786189771FFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:45:c6:3c:52:76:87:e2:ce:bc:a1:73:50:73: 4a:96:56:7a:91:41:a1:6c:d3:2e:e6:5d:b5:78:1e: 33:53:67:a7:56:5b:74:6b:f4:ce:9b:88:7a:91:d3: 61:d7:71:fd:58:a5:47:5c:ff:bd:6a:96:77:9c:d4: c5:97:c3:77:29:dd:c7:65:27:11:3a:71:18:a1:a9: 34:d2:10:7c:f0:05:6f:98:f2:24:18:42:07:10:7e: 3c:e9:e4:b3:49:eb:32:18:57:c3:32:16:7e:d8:04: c3:86:74:ad:ef:9f:0b:9e:eb:75:5e:3c:ae:aa:f5: 83:87:7e:c6:57:fb:9e:1f:7a:04:01:86:13:97:ba: 39:37:57:51:eb:3e:b7:2c:54:d5:58:35:2b:0b:6b: 35:94:0d:f0:d2:16:80:c5:b0:7a:5a:7a:b9:dc:8c: 62:1a:c2:32:ed:33:b7:a8:60:b1:b7:8b:c0:d6:c5: f7:1f:18:c2:c6:1d:e3:f6:86:83:bc:4a:82:cb:60: 97:50:60:65:6d:47:3d:f7:2a:42:9c:c4:30:81:b4: 5d:14:1c:45:84:9d:cb:5e:61:a8:26:3e:08:50:fd: a0:fc:27:bb:c8:78:e2:1b:e0:be:f2:81:78:73:56: 50:ba:43:1a:c4:61:17:5a:28:6a:67:9e:a2:fb:b3: 18:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7A:BC:53:BA:0B:AD:69:EC:94:5A:CB:BE:0C:78:61:89:77:1F:FE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151560.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.240.0/24 Signature Algorithm: sha256WithRSAEncryption 45:0e:14:08:64:be:ad:ed:ab:0b:98:fa:9e:74:ff:ef:85:16: a6:c1:b5:fd:fd:d6:11:b6:ad:63:3a:76:ef:78:ab:18:84:57: 97:09:5e:07:42:73:e3:85:b0:bd:26:be:33:db:8f:00:8b:bd: 0d:c6:6d:1f:b2:2e:9e:ae:ea:12:9c:77:58:93:12:c1:f8:24: 68:5a:ea:59:7c:00:14:c3:17:9b:12:b4:41:0d:f0:a0:4f:72: a2:9f:f5:9d:75:b7:a8:46:52:56:d8:b3:9d:da:d9:1a:b8:ae: 9e:73:78:35:f6:f6:26:dc:02:3f:b9:23:09:11:2d:cc:9f:f9: 71:be:1b:fa:f3:b6:58:8e:6d:81:6c:a6:ce:98:39:17:7e:7d: 83:b7:84:b4:3d:ba:38:81:61:3a:ee:29:92:1f:d2:3b:19:d8: 00:e7:7b:cf:19:af:64:0f:de:f9:f9:bc:57:3c:f4:b6:b0:be: 5a:e3:26:75:17:f6:16:7c:e3:8c:00:70:80:0c:37:34:b7:a0: 17:10:a6:39:a0:20:bf:6e:fd:05:30:f5:53:60:2e:a4:35:62: 43:7c:14:51:32:6f:73:2d:08:09:4d:78:5c:e8:de:9c:6c:38: 49:f3:c7:29:3c:84:cc:ca:66:51:5c:23:07:1f:8d:2f:3d:44: 80:ba:57:65 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUa+OzcCp+VYWsQxdFV9PMzeUmeHIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA0MFoX DTI3MDUwMTA4MzU0MFowMzExMC8GA1UEAxMoOTk3QUJDNTNCQTBCQUQ2OUVDOTQ1 QUNCQkUwQzc4NjE4OTc3MUZGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVFxjxSdofizryhc1BzSpZWepFBoWzTLuZdtXgeM1Nnp1ZbdGv0zpuIepHT Yddx/VilR1z/vWqWd5zUxZfDdyndx2UnETpxGKGpNNIQfPAFb5jyJBhCBxB+POnk s0nrMhhXwzIWftgEw4Z0re+fC57rdV48rqr1g4d+xlf7nh96BAGGE5e6OTdXUes+ tyxU1Vg1KwtrNZQN8NIWgMWwelp6udyMYhrCMu0zt6hgsbeLwNbF9x8YwsYd4/aG g7xKgstgl1BgZW1HPfcqQpzEMIG0XRQcRYSdy15hqCY+CFD9oPwnu8h44hvgvvKB eHNWULpDGsRhF1ooameeovuzGLsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSZerxT ugutaeyUWsu+DHhhiXcf/jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTYwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ/fwMA0GCSqGSIb3DQEBCwUAA4IBAQBFDhQIZL6t7asLmPqedP/vhRam wbX9/dYRtq1jOnbveKsYhFeXCV4HQnPjhbC9Jr4z248Ai70Nxm0fsi6eruoSnHdY kxLB+CRoWupZfAAUwxebErRBDfCgT3Kin/WddbeoRlJW2LOd2tkauK6ec3g19vYm 3AI/uSMJES3Mn/lxvhv687ZYjm2BbKbOmDkXfn2Dt4S0Pbo4gWE67imSH9I7GdgA 53vPGa9kD975+bxXPPS2sL5a4yZ1F/YWfOOMAHCADDc0t6AXEKY5oCC/bv0FMPVT YC6kNWJDfBRRMm9zLQgJTXhc6N6cbDhJ88cpPITMymZRXCMHH40vPUSAuldl -----END CERTIFICATE-----Generated at Sun May 3 00:40:24 2026 by rpki-client