$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS151993.roa File: AS151993.roa (raw, json) Hash identifier: 2WDySeQO/RbT0DxuGC2y7ZuVa05QD0iHYEGxypwPbIs= Subject key identifier: C4:B1:82:25:B4:A9:A8:96:7C:42:78:76:BE:F6:67:8C:D0:F9:5D:EC Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 41D13567BA3C3FC187217C7B0EE40FFB70F59000 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151993.roa Signing time: Sat 02 May 2026 21:29:45 +0000 ROA not before: Sat 02 May 2026 21:24:45 +0000 ROA not after: Sat 01 May 2027 21:29:45 +0000 asID: 151993 IP address blocks: 203.111.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:d1:35:67:ba:3c:3f:c1:87:21:7c:7b:0e:e4:0f:fb:70:f5:90:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:24:45 2026 GMT Not After : May 1 21:29:45 2027 GMT Subject: CN=C4B18225B4A9A8967C427876BEF6678CD0F95DEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9d:1c:44:de:30:4e:08:37:f9:0c:25:c1:a8: 6e:67:45:d5:56:17:ad:fb:a1:a8:45:6e:d8:83:87: 8f:ad:29:da:e4:c6:79:80:c7:9c:2f:63:9f:b8:30: 39:c0:50:01:bc:00:46:50:05:38:e2:7d:ac:1b:08: b4:f2:80:ce:56:35:48:70:15:98:03:1e:e6:e7:05: ef:60:18:50:7a:ae:a9:aa:e0:4f:97:d2:3d:17:92: f7:51:d2:39:23:cb:b7:05:08:f6:d3:5a:43:ad:00: 6d:1f:6d:83:a3:eb:6f:fd:6b:a7:5c:47:60:9f:d2: 11:9f:d2:20:05:47:37:81:2b:cf:35:09:c7:37:a2: 7d:11:eb:bf:e1:ff:56:13:5e:b6:b9:ed:72:79:4b: b5:79:64:04:0f:33:b0:56:2e:64:24:f6:16:f1:a0: 04:c3:9d:b0:71:05:b5:1e:80:44:6e:61:13:a2:c6: f9:6a:39:fa:64:14:59:24:f9:ae:63:56:25:15:8e: 66:c9:ff:99:eb:7f:ef:6a:8e:81:dd:de:bb:76:e0: 81:63:36:ba:df:e5:f6:fa:c1:71:13:7b:a7:d3:56: e5:aa:c3:2c:57:58:d2:38:1a:f2:6f:bf:b1:b8:0e: 05:44:94:94:fa:19:68:6f:98:14:c9:16:96:96:3d: e9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B1:82:25:B4:A9:A8:96:7C:42:78:76:BE:F6:67:8C:D0:F9:5D:EC X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS151993.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.111.252.0/23 Signature Algorithm: sha256WithRSAEncryption 14:20:97:81:5b:2c:45:37:ef:10:71:03:1f:78:af:6d:65:d9: 56:30:4c:6d:c5:d6:54:9e:1f:83:47:e6:59:00:82:40:db:c0: 85:dd:bf:20:c0:ac:81:bf:81:e7:ae:08:a5:9e:62:18:34:16: 19:87:51:c6:77:53:5f:73:45:65:11:af:37:fa:3d:89:00:9f: cd:bb:80:da:d9:69:6d:3b:02:ba:64:d0:70:e4:b8:97:68:e3: b7:10:54:f1:9f:b1:98:b9:c7:2f:84:9f:93:7c:c3:e8:40:7f: 96:5d:9a:ae:f5:3a:ec:da:0f:2b:7c:9e:e9:fe:5b:8b:08:b3: 30:6f:ee:27:bb:ca:68:b0:ca:c7:40:7f:04:ae:98:8b:43:b1: 91:ae:ac:be:3b:7e:be:9c:0d:1f:33:32:52:8c:cc:17:6f:2f: 7c:be:c9:30:4f:83:16:86:4f:94:d9:53:13:9b:e4:a1:10:d0: 15:7c:13:65:92:05:aa:e0:62:f4:13:ff:91:f1:8f:63:04:93: 13:86:5a:3c:e2:49:e6:7b:77:78:30:be:de:58:f9:26:5d:9c: 04:7f:ac:e9:0b:01:17:68:4d:10:24:f9:f3:84:d3:c6:61:06: 56:d2:16:6c:23:d9:bd:40:fe:9c:a9:bb:e4:1a:4a:79:5f:a3: 2a:d2:24:e1 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUQdE1Z7o8P8GHIXx7DuQP+3D1kAAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjQ0NVoX DTI3MDUwMTIxMjk0NVowMzExMC8GA1UEAxMoQzRCMTgyMjVCNEE5QTg5NjdDNDI3 ODc2QkVGNjY3OENEMEY5NURFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKCdHETeME4IN/kMJcGobmdF1VYXrfuhqEVu2IOHj60p2uTGeYDHnC9jn7gw OcBQAbwARlAFOOJ9rBsItPKAzlY1SHAVmAMe5ucF72AYUHquqargT5fSPReS91HS OSPLtwUI9tNaQ60AbR9tg6Prb/1rp1xHYJ/SEZ/SIAVHN4ErzzUJxzeifRHrv+H/ VhNetrntcnlLtXlkBA8zsFYuZCT2FvGgBMOdsHEFtR6ARG5hE6LG+Wo5+mQUWST5 rmNWJRWOZsn/met/72qOgd3eu3bggWM2ut/l9vrBcRN7p9NW5arDLFdY0jga8m+/ sbgOBUSUlPoZaG+YFMkWlpY96asCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTEsYIl tKmolnxCeHa+9meM0Pld7DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUxOTkzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBy2/8MA0GCSqGSIb3DQEBCwUAA4IBAQAUIJeBWyxFN+8QcQMfeK9tZdlW MExtxdZUnh+DR+ZZAIJA28CF3b8gwKyBv4HnrgilnmIYNBYZh1HGd1Nfc0VlEa83 +j2JAJ/Nu4Da2WltOwK6ZNBw5LiXaOO3EFTxn7GYuccvhJ+TfMPoQH+WXZqu9Trs 2g8rfJ7p/luLCLMwb+4nu8posMrHQH8ErpiLQ7GRrqy+O36+nA0fMzJSjMwXby98 vskwT4MWhk+U2VMTm+ShENAVfBNlkgWq4GL0E/+R8Y9jBJMThlo84knme3d4ML7e WPkmXZwEf6zpCwEXaE0QJPnzhNPGYQZW0hZsI9m9QP6cqbvkGkp5X6Mq0iTh -----END CERTIFICATE-----Generated at Sun May 3 00:40:38 2026 by rpki-client