$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151992.roa File: AS151992.roa (raw, json) Hash identifier: NiF0kcEkFBYWWTOZ7khc4m3EgEomIs14crOQs9X9DtE= Subject key identifier: 33:1E:AB:A2:D6:CB:AE:72:38:04:14:51:FA:65:75:17:B1:97:93:34 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 732E14A595B192C1DD951ED6847A74B3FC08195A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151992.roa Signing time: Sat 02 May 2026 09:25:52 +0000 ROA not before: Sat 02 May 2026 09:20:52 +0000 ROA not after: Sat 01 May 2027 09:25:52 +0000 asID: 151992 IP address blocks: 103.42.242.0/24 maxlen: 24 2001:df3:4b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2e:14:a5:95:b1:92:c1:dd:95:1e:d6:84:7a:74:b3:fc:08:19:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:52 2026 GMT Not After : May 1 09:25:52 2027 GMT Subject: CN=331EABA2D6CBAE7238041451FA657517B1979334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:c5:a4:44:f6:20:49:2d:40:25:6b:26:e7: cb:bc:ce:79:61:75:03:1a:70:15:00:fd:35:e6:5e: e6:17:a1:ff:33:ff:38:9e:58:f1:c3:2f:92:6c:2d: 96:41:ae:2c:39:42:7b:1b:b5:67:36:99:76:a2:ef: 75:c8:05:e8:24:a3:5f:9f:5d:48:54:26:62:39:3a: 3b:e7:6f:a5:39:25:44:a1:94:17:75:91:d9:ce:c7: 72:40:12:d6:60:b9:0e:8a:64:d6:5f:fb:d1:c9:85: ca:9f:b8:9a:c6:92:3f:85:7d:fb:5c:3c:d3:c7:70: 81:f6:71:22:be:1c:d9:58:13:3a:ec:8c:95:45:ca: 75:b1:53:59:5b:1b:32:30:76:1d:2f:50:61:45:d6: a2:f4:e6:f1:04:99:bf:31:14:ed:05:d9:e9:e1:58: 49:6c:d4:66:64:18:1a:4e:94:8f:4e:6c:ca:f5:19: 6e:c3:21:d1:07:14:aa:c0:e9:7f:25:e6:03:6e:0d: 2e:62:45:a1:03:79:00:66:78:25:7c:80:94:7f:59: 8d:30:c0:13:9b:93:3d:f1:4d:7f:15:0e:24:3d:1b: 46:44:75:7d:5b:dd:d8:ba:82:2e:eb:f4:62:1f:01: c5:d6:ea:a3:88:c3:a4:94:04:ca:1a:74:0e:83:1a: bb:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:1E:AB:A2:D6:CB:AE:72:38:04:14:51:FA:65:75:17:B1:97:93:34 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151992.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.242.0/24 IPv6: 2001:df3:4b40::/48 Signature Algorithm: sha256WithRSAEncryption 44:28:53:00:76:2a:25:5e:96:c2:f1:c1:7c:47:d1:1b:d1:f3: 2e:ab:74:82:20:fd:a1:66:f6:74:51:17:e9:e9:ec:5e:48:98: 99:71:56:c0:26:f2:1f:e0:81:75:a1:c0:26:fe:e1:ec:e1:ee: 50:32:22:bb:49:7d:20:8a:15:7a:b5:02:e4:9f:f7:ae:ab:b7: f0:74:99:ac:18:60:6d:66:a9:3c:69:d6:07:78:8f:d8:c2:bb: 41:26:69:5d:3c:81:3b:ed:c9:d2:0f:39:d0:10:3e:07:90:6d: f4:9b:70:2e:2d:1c:00:4f:54:01:e7:c3:5b:ee:08:69:f6:99: 0e:33:09:fe:a3:0b:73:ce:c3:43:05:20:e8:83:92:fa:a8:c1: 9b:06:80:d6:39:ee:9b:5a:5c:d5:63:a1:36:80:8d:88:4a:2a: 19:a2:79:e7:08:5a:4f:b5:20:54:db:8b:ff:81:b0:72:e4:a4: ba:3e:3d:88:90:ae:1e:9e:2c:8f:06:2f:6f:89:c7:b6:8f:8c: 15:dd:9b:10:44:83:65:ee:a2:cd:43:68:2a:b9:d5:04:62:41: 14:39:aa:c5:cb:a7:c3:c9:b2:8d:13:26:cf:7b:3e:22:ec:0e: fb:69:0a:d2:ed:1c:7e:63:aa:d7:90:4c:9c:10:ab:3f:0c:bf: 12:61:b7:19 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcy4UpZWxksHdlR7WhHp0s/wIGVowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjA1MloX DTI3MDUwMTA5MjU1MlowMzExMC8GA1UEAxMoMzMxRUFCQTJENkNCQUU3MjM4MDQx NDUxRkE2NTc1MTdCMTk3OTMzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAQxaRE9iBJLUAlaybny7zOeWF1AxpwFQD9NeZe5heh/zP/OJ5Y8cMvkmwt lkGuLDlCexu1ZzaZdqLvdcgF6CSjX59dSFQmYjk6O+dvpTklRKGUF3WR2c7HckAS 1mC5Dopk1l/70cmFyp+4msaSP4V9+1w808dwgfZxIr4c2VgTOuyMlUXKdbFTWVsb MjB2HS9QYUXWovTm8QSZvzEU7QXZ6eFYSWzUZmQYGk6Uj05syvUZbsMh0QcUqsDp fyXmA24NLmJFoQN5AGZ4JXyAlH9ZjTDAE5uTPfFNfxUOJD0bRkR1fVvd2LqCLuv0 Yh8Bxdbqo4jDpJQEyhp0DoMauz8CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQzHqui 1suucjgEFFH6ZXUXsZeTNDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxOTkyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZyryMA8EAgACMAkDBwAgAQ3zS0AwDQYJKoZIhvcNAQELBQADggEBAEQo UwB2KiVelsLxwXxH0RvR8y6rdIIg/aFm9nRRF+np7F5ImJlxVsAm8h/ggXWhwCb+ 4ezh7lAyIrtJfSCKFXq1AuSf966rt/B0mawYYG1mqTxp1gd4j9jCu0EmaV08gTvt ydIPOdAQPgeQbfSbcC4tHABPVAHnw1vuCGn2mQ4zCf6jC3POw0MFIOiDkvqowZsG gNY57ptaXNVjoTaAjYhKKhmieecIWk+1IFTbi/+BsHLkpLo+PYiQrh6eLI8GL2+J x7aPjBXdmxBEg2Xuos1DaCq51QRiQRQ5qsXLp8PJso0TJs97PiLsDvtpCtLtHH5j qteQTJwQqz8MvxJhtxk= -----END CERTIFICATE-----Generated at Sun May 3 01:40:37 2026 by rpki-client