$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151569.roa File: AS151569.roa (raw, json) Hash identifier: iTPj03yYl/SgWuNikyYrNCXk10ojnuzT1gzC7g3Wpss= Subject key identifier: 6B:A2:09:70:28:2E:DA:15:BF:B5:58:DC:CB:E0:52:BA:CB:58:BC:1B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 33463BEEEF329AE0AE8237B006087E0A2FB2E7A1 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151569.roa Signing time: Sat 02 May 2026 09:25:49 +0000 ROA not before: Sat 02 May 2026 09:20:49 +0000 ROA not after: Sat 01 May 2027 09:25:49 +0000 asID: 151569 IP address blocks: 103.38.110.0/23 maxlen: 24 2001:df3:2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:46:3b:ee:ef:32:9a:e0:ae:82:37:b0:06:08:7e:0a:2f:b2:e7:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:49 2026 GMT Not After : May 1 09:25:49 2027 GMT Subject: CN=6BA20970282EDA15BFB558DCCBE052BACB58BC1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a6:ed:a2:cc:49:99:61:55:1a:d7:43:2c:e5: 6c:31:74:0a:29:3d:19:d9:29:90:c9:6c:25:56:0c: c8:ca:a3:6a:20:c8:4a:c5:85:72:fd:ac:35:26:fc: ba:ff:94:cb:a4:9d:88:8d:94:89:be:8b:87:60:73: 56:c2:ad:eb:78:89:d2:b5:5c:17:3f:4c:b5:d7:c3: 40:f8:14:5f:40:c0:ba:71:78:c7:59:2a:86:a0:67: 2e:2c:67:2a:79:6f:33:0c:2f:10:52:49:05:30:ce: 15:e6:8a:cf:09:20:d4:fe:6c:12:88:ea:56:df:68: f4:2a:ca:49:b2:1a:80:40:00:7e:17:c2:97:26:e1: 69:96:af:61:39:3e:db:86:12:78:6b:ec:58:f0:41: 83:1d:ca:89:5e:fc:36:84:10:04:be:44:58:de:9e: 7c:0b:a3:0f:09:b6:ee:fe:9e:95:85:90:8d:8a:72: 63:bc:b9:50:97:2b:0e:0a:75:80:07:2a:0d:03:19: 35:2a:c4:86:95:1c:9e:3f:2d:ef:4f:e6:cf:72:d0: df:48:b0:56:65:b7:10:84:a8:a2:50:dc:ea:76:d1: 16:86:70:c5:f1:9e:18:b2:7f:5a:5f:ec:03:ca:db: 6f:63:95:1d:87:6a:6e:cd:0c:a1:50:7d:1c:7a:81: 95:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A2:09:70:28:2E:DA:15:BF:B5:58:DC:CB:E0:52:BA:CB:58:BC:1B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151569.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.110.0/23 IPv6: 2001:df3:2c0::/48 Signature Algorithm: sha256WithRSAEncryption 73:bc:fa:86:c1:a1:6b:cb:4e:c6:77:7a:5e:ee:d2:ac:8e:48: 16:6f:47:ef:a9:ea:5d:66:59:a4:78:ef:96:41:ce:d5:b3:3e: e2:be:35:18:1f:43:99:60:61:85:03:44:a8:2c:a5:c1:6e:13: 25:5d:2f:c8:50:27:79:c9:0e:b3:6d:0a:81:95:79:87:3e:7a: 21:3a:eb:a8:a5:d9:42:74:ea:d6:a5:93:a4:6e:57:04:69:96: 98:3a:07:36:b9:b9:b5:c5:65:2d:98:b3:c4:09:99:77:e3:31: 9f:35:74:75:3e:9f:20:68:77:e1:93:c7:63:c7:5d:b3:78:a0: 52:c2:55:9e:32:ab:7f:f9:cc:56:1c:ce:84:07:47:a8:d6:54: 2b:92:4e:0f:95:3f:c1:f8:8c:4a:66:80:02:da:8f:27:3f:e0: 44:61:21:d4:79:60:ca:d5:80:1e:7b:5a:cb:5e:cc:db:d4:29: f6:d9:9c:ad:4d:62:80:22:07:41:82:4f:de:e8:f0:e0:8a:e0: e5:95:f3:2a:63:ce:87:0f:f2:8f:de:af:b5:bb:81:c0:22:d4: 12:71:be:25:62:13:0a:4f:9d:15:10:f7:22:74:f7:20:d7:8d: 1a:ef:00:cc:95:ff:ba:25:c0:57:48:30:3d:40:c6:32:61:25: bb:dd:24:d1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM0Y77u8ymuCugjewBgh+Ci+y56EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjA0OVoX DTI3MDUwMTA5MjU0OVowMzExMC8GA1UEAxMoNkJBMjA5NzAyODJFREExNUJGQjU1 OERDQ0JFMDUyQkFDQjU4QkMxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKem7aLMSZlhVRrXQyzlbDF0Cik9GdkpkMlsJVYMyMqjaiDISsWFcv2sNSb8 uv+Uy6SdiI2Uib6Lh2BzVsKt63iJ0rVcFz9MtdfDQPgUX0DAunF4x1kqhqBnLixn KnlvMwwvEFJJBTDOFeaKzwkg1P5sEojqVt9o9CrKSbIagEAAfhfClybhaZavYTk+ 24YSeGvsWPBBgx3KiV78NoQQBL5EWN6efAujDwm27v6elYWQjYpyY7y5UJcrDgp1 gAcqDQMZNSrEhpUcnj8t70/mz3LQ30iwVmW3EISoolDc6nbRFoZwxfGeGLJ/Wl/s A8rbb2OVHYdqbs0MoVB9HHqBlZECAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRroglw KC7aFb+1WNzL4FK6y1i8GzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTY5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBZyZuMA8EAgACMAkDBwAgAQ3zAsAwDQYJKoZIhvcNAQELBQADggEBAHO8 +obBoWvLTsZ3el7u0qyOSBZvR++p6l1mWaR475ZBztWzPuK+NRgfQ5lgYYUDRKgs pcFuEyVdL8hQJ3nJDrNtCoGVeYc+eiE666il2UJ06talk6RuVwRplpg6Bza5ubXF ZS2Ys8QJmXfjMZ81dHU+nyBod+GTx2PHXbN4oFLCVZ4yq3/5zFYczoQHR6jWVCuS Tg+VP8H4jEpmgALajyc/4ERhIdR5YMrVgB57WstezNvUKfbZnK1NYoAiB0GCT97o 8OCK4OWV8ypjzocP8o/er7W7gcAi1BJxviViEwpPnRUQ9yJ09yDXjRrvAMyV/7ol wFdIMD1AxjJhJbvdJNE= -----END CERTIFICATE-----Generated at Sun May 3 00:39:53 2026 by rpki-client