$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151584.roa File: AS151584.roa (raw, json) Hash identifier: W0J1Frf3LZrXVlIiG0swuCxuTCyGEIil3JQV69MLQks= Subject key identifier: C0:D6:D8:25:90:A6:61:F6:00:7D:5C:47:B3:D1:7C:53:F2:44:E2:14 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1D1B49C81041A7B0E24AB99846AB6B31873B23E9 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151584.roa Signing time: Sat 02 May 2026 09:21:24 +0000 ROA not before: Sat 02 May 2026 09:16:24 +0000 ROA not after: Sat 01 May 2027 09:21:24 +0000 asID: 151584 IP address blocks: 103.216.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:1b:49:c8:10:41:a7:b0:e2:4a:b9:98:46:ab:6b:31:87:3b:23:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:24 2026 GMT Not After : May 1 09:21:24 2027 GMT Subject: CN=C0D6D82590A661F6007D5C47B3D17C53F244E214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:14:22:30:10:c9:d6:a0:85:c9:18:b7:29:9a: e4:e0:12:b3:d9:a6:ae:a3:38:1d:2e:8b:3b:f0:b9: 43:08:4e:73:ae:22:f2:e1:42:56:37:e3:8f:85:38: 6f:05:92:66:69:69:1b:03:0d:99:04:5e:85:79:b5: 23:e8:de:86:10:93:15:86:81:37:d1:89:78:cb:95: 8e:29:e8:a6:22:9c:8f:b1:2d:81:e0:1d:2b:cf:e9: b7:4a:fd:e9:26:11:50:f5:66:a5:a6:a1:60:51:32: 8e:10:20:f0:4c:74:8e:92:cc:79:5f:f5:c9:38:ae: 51:ab:4b:d0:4f:79:3c:f7:f4:42:c2:69:69:36:79: b9:27:79:90:85:65:fe:ff:d4:4a:d0:34:5a:af:33: 8c:07:f5:6b:53:9a:1b:a2:2c:06:bd:7f:ec:01:e1: 71:9f:8d:69:c1:24:85:5b:e3:f6:88:af:b0:74:c6: c7:f5:b5:6c:08:01:59:f4:a1:60:67:25:e4:15:74: 77:13:f9:ae:db:14:fd:ad:e6:e3:3a:be:b0:f9:14: 54:8b:5a:a7:13:d1:cd:83:c4:22:dc:a1:d5:75:62: fd:1a:6a:8b:8c:0b:c4:ef:07:4c:38:e1:e2:5a:4e: eb:66:e4:99:71:a3:5b:5f:e4:d9:a8:a6:69:62:b9: c5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D6:D8:25:90:A6:61:F6:00:7D:5C:47:B3:D1:7C:53:F2:44:E2:14 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151584.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.106.0/23 Signature Algorithm: sha256WithRSAEncryption 21:0b:06:96:5b:e9:c4:3d:e5:4e:34:cc:62:d3:78:74:57:14: 82:4a:b7:a8:74:24:ef:10:3b:50:e6:b5:4a:e3:cf:93:03:f9: c5:b5:8f:bb:f1:01:72:06:bd:d7:f7:13:3f:97:02:ab:b1:05: 75:7d:43:c1:b9:06:13:e5:cb:b0:a9:d2:cd:ec:39:f2:f2:39: d2:e3:19:63:04:1b:17:40:aa:4e:fa:3d:87:c5:4f:e0:cb:e7: 1c:47:02:cd:be:6a:bf:04:3f:60:e6:0e:92:24:46:7b:65:02: c0:1b:bd:16:3b:4a:28:a5:5f:eb:f1:28:0b:a7:8d:bf:27:4a: 1f:1e:13:71:e5:f3:02:46:cc:48:37:8f:c5:aa:69:65:c7:61: b6:b5:2d:29:d9:89:67:73:f1:ce:bc:23:7e:ed:73:9d:5b:ca: 12:8d:33:8e:cc:eb:ff:bb:87:b2:37:95:d2:40:30:43:b8:6c: db:9c:75:ac:2c:24:71:8b:a4:79:c5:a8:fa:51:b3:11:15:1d: 1e:d5:35:2d:4d:76:91:4a:b9:af:02:82:24:03:7f:96:81:0e: 76:c9:3f:37:56:74:71:f8:ec:2a:b6:f5:1c:5c:e1:64:f9:b1: 44:1f:e4:62:f7:fb:6d:01:f8:47:67:fb:c8:06:61:9c:a5:f0: c2:bf:5e:e9 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUHRtJyBBBp7DiSrmYRqtrMYc7I+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTYyNFoX DTI3MDUwMTA5MjEyNFowMzExMC8GA1UEAxMoQzBENkQ4MjU5MEE2NjFGNjAwN0Q1 QzQ3QjNEMTdDNTNGMjQ0RTIxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgUIjAQydaghckYtyma5OASs9mmrqM4HS6LO/C5QwhOc64i8uFCVjfjj4U4 bwWSZmlpGwMNmQRehXm1I+jehhCTFYaBN9GJeMuVjinopiKcj7EtgeAdK8/pt0r9 6SYRUPVmpaahYFEyjhAg8Ex0jpLMeV/1yTiuUatL0E95PPf0QsJpaTZ5uSd5kIVl /v/UStA0Wq8zjAf1a1OaG6IsBr1/7AHhcZ+NacEkhVvj9oivsHTGx/W1bAgBWfSh YGcl5BV0dxP5rtsU/a3m4zq+sPkUVItapxPRzYPEItyh1XVi/Rpqi4wLxO8HTDjh 4lpO62bkmXGjW1/k2aimaWK5xVkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTA1tgl kKZh9gB9XEez0XxT8kTiFDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxNTg0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ9hqMA0GCSqGSIb3DQEBCwUAA4IBAQAhCwaWW+nEPeVONMxi03h0VxSC SreodCTvEDtQ5rVK48+TA/nFtY+78QFyBr3X9xM/lwKrsQV1fUPBuQYT5cuwqdLN 7Dny8jnS4xljBBsXQKpO+j2HxU/gy+ccRwLNvmq/BD9g5g6SJEZ7ZQLAG70WO0oo pV/r8SgLp42/J0ofHhNx5fMCRsxIN4/Fqmllx2G2tS0p2Ylnc/HOvCN+7XOdW8oS jTOOzOv/u4eyN5XSQDBDuGzbnHWsLCRxi6R5xaj6UbMRFR0e1TUtTXaRSrmvAoIk A3+WgQ52yT83VnRx+OwqtvUcXOFk+bFEH+Ri9/ttAfhHZ/vIBmGcpfDCv17p -----END CERTIFICATE-----Generated at Sun May 3 00:39:47 2026 by rpki-client