$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151571.roa File: AS151571.roa (raw, json) Hash identifier: feJCYKzGiEppjeA4rLJXPXSMxTtCf1c4qSpf6RG11xw= Subject key identifier: BD:E7:D7:16:43:BC:22:CA:C6:FA:95:CB:0F:D7:77:CA:6C:9A:87:B9 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5F054CC7E5A7C47D15C9AAFDDF5CA4F9D97B95EC Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151571.roa Signing time: Sat 02 May 2026 21:20:51 +0000 ROA not before: Sat 02 May 2026 21:15:51 +0000 ROA not after: Sat 01 May 2027 21:20:51 +0000 asID: 151571 IP address blocks: 103.80.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:05:4c:c7:e5:a7:c4:7d:15:c9:aa:fd:df:5c:a4:f9:d9:7b:95:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:15:51 2026 GMT Not After : May 1 21:20:51 2027 GMT Subject: CN=BDE7D71643BC22CAC6FA95CB0FD777CA6C9A87B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:55:f1:67:70:e3:70:ce:93:51:f6:9b:af:b6: 88:c8:82:f8:fa:b0:c2:f4:76:93:91:69:cc:7e:ff: 65:39:d5:da:85:84:79:48:98:88:63:b3:2a:8d:4b: 7f:11:58:4d:29:84:be:2c:1a:fc:3c:89:0b:38:b9: 83:db:ff:fb:5e:e7:ba:ce:cb:19:8a:4c:1c:c8:45: d0:cd:18:e7:12:ab:34:ee:dd:a0:54:a9:12:cf:af: 22:c9:da:2d:3f:ce:73:a4:1d:c9:97:70:af:6c:30: 9d:04:18:de:da:25:5b:11:78:f8:29:0a:8c:93:2a: 4c:81:09:86:4b:88:a0:4f:ee:7e:f5:f8:10:43:90: 6c:83:85:f6:a0:18:e4:22:42:a7:d0:b5:d8:75:f7: 05:27:83:f5:55:c0:dc:73:26:08:eb:4f:d3:3d:dc: e3:2f:fc:9f:4f:9f:65:b1:63:32:45:31:98:31:ed: 2c:9f:23:4d:bc:ac:31:12:53:1c:1a:44:b0:17:f5: 67:44:5d:c2:e0:18:f9:fe:3c:c2:5f:64:cb:7f:1f: 14:4a:54:9d:32:9b:07:fa:4d:97:f7:27:4a:80:1c: 34:f8:cf:01:40:7a:d4:da:43:7c:4b:b3:4d:a1:06: b7:a9:bd:58:78:78:a0:b8:9c:ac:b8:8b:32:61:33: 79:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E7:D7:16:43:BC:22:CA:C6:FA:95:CB:0F:D7:77:CA:6C:9A:87:B9 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151571.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.228.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:c8:cd:7b:0e:4b:ec:c0:87:8f:84:bf:af:04:f8:80:a8:ca: 62:9b:b2:08:35:e0:06:f7:aa:29:2c:21:1a:cf:c4:77:1d:0b: da:ee:8f:23:f0:6d:5c:99:a3:7d:e3:10:d6:37:ed:36:00:73: 99:47:c6:ee:d5:30:3f:9b:76:c2:50:cf:2d:bb:4f:aa:8f:04: 8e:60:97:a8:ef:2e:3e:33:9a:7b:35:46:96:a9:9c:57:9c:a4: 59:f0:72:10:b5:48:ac:f7:1f:36:fb:db:8d:e1:42:d3:af:70: 82:0e:3c:9b:fd:d4:ee:d2:0c:9f:c6:11:eb:ec:ad:92:86:69: a0:e8:48:21:be:fb:54:6f:b3:e1:44:5e:87:a8:b3:86:61:1f: ba:c3:79:83:63:e9:8e:a2:89:6e:e1:9f:ee:75:6f:41:47:1f: ac:dc:91:e0:f6:93:a7:6a:67:d5:fb:6a:b4:e0:9c:14:78:8a: d5:60:7b:9e:3f:25:69:e3:ac:c5:51:2d:a7:19:75:1d:8d:b3: 6c:20:99:a1:a0:e2:28:6e:a8:23:c2:48:cd:08:56:6d:26:8f: 16:e2:a6:3f:34:ee:98:df:92:eb:6a:9d:e0:ab:00:e5:f8:bb: 01:0a:a4:ff:67:aa:0b:e3:ba:c5:52:31:10:0e:15:4b:38:e5: 68:02:9f:22 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUXwVMx+WnxH0Vyar931yk+dl7lewwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTU1MVoX DTI3MDUwMTIxMjA1MVowMzExMC8GA1UEAxMoQkRFN0Q3MTY0M0JDMjJDQUM2RkE5 NUNCMEZENzc3Q0E2QzlBODdCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5V8Wdw43DOk1H2m6+2iMiC+PqwwvR2k5FpzH7/ZTnV2oWEeUiYiGOzKo1L fxFYTSmEviwa/DyJCzi5g9v/+17nus7LGYpMHMhF0M0Y5xKrNO7doFSpEs+vIsna LT/Oc6QdyZdwr2wwnQQY3tolWxF4+CkKjJMqTIEJhkuIoE/ufvX4EEOQbIOF9qAY 5CJCp9C12HX3BSeD9VXA3HMmCOtP0z3c4y/8n0+fZbFjMkUxmDHtLJ8jTbysMRJT HBpEsBf1Z0RdwuAY+f48wl9ky38fFEpUnTKbB/pNl/cnSoAcNPjPAUB61NpDfEuz TaEGt6m9WHh4oLicrLiLMmEzeTsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBS959cW Q7wiysb6lcsP13fKbJqHuTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTcxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ1DkMA0GCSqGSIb3DQEBCwUAA4IBAQAcyM17DkvswIePhL+vBPiAqMpi m7IINeAG96opLCEaz8R3HQva7o8j8G1cmaN94xDWN+02AHOZR8bu1TA/m3bCUM8t u0+qjwSOYJeo7y4+M5p7NUaWqZxXnKRZ8HIQtUis9x82+9uN4ULTr3CCDjyb/dTu 0gyfxhHr7K2Shmmg6EghvvtUb7PhRF6HqLOGYR+6w3mDY+mOoolu4Z/udW9BRx+s 3JHg9pOnamfV+2q04JwUeIrVYHuePyVp46zFUS2nGXUdjbNsIJmhoOIobqgjwkjN CFZtJo8W4qY/NO6Y35Lrap3gqwDl+LsBCqT/Z6oL47rFUjEQDhVLOOVoAp8i -----END CERTIFICATE-----Generated at Sun May 3 01:40:02 2026 by rpki-client