$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa File: AS150948.roa (raw, json) Hash identifier: B3xWsXLGLkzY2EE1NxEosUT/eWtERsRt+S92MurZJPU= Subject key identifier: 2E:6C:5C:EF:7E:19:A1:45:CB:95:9A:D1:5F:F0:97:07:9C:DC:8F:DA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 236A883FF58386AD1B70AFFB831AADB0A0E020A4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa Signing time: Wed 02 Jul 2025 08:00:00 +0000 ROA not before: Wed 02 Jul 2025 07:55:00 +0000 ROA not after: Wed 01 Jul 2026 08:00:00 +0000 asID: 150948 IP address blocks: 103.107.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:6a:88:3f:f5:83:86:ad:1b:70:af:fb:83:1a:ad:b0:a0:e0:20:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 07:55:00 2025 GMT Not After : Jul 1 08:00:00 2026 GMT Subject: CN=2E6C5CEF7E19A145CB959AD15FF097079CDC8FDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ca:ef:5c:c2:ef:1c:a5:5b:52:20:d3:b9:7a: 51:ca:71:c5:f7:f2:e3:5f:dd:61:01:83:1b:92:dc: 8f:27:52:80:b8:c0:eb:f8:e8:13:92:62:22:64:ed: bd:50:d9:37:bb:9d:cd:5e:cf:6c:50:cb:eb:89:0c: c5:81:8a:92:3a:13:67:9f:0d:c3:7e:12:be:cf:01: 68:8a:2e:55:53:81:8b:e3:84:d1:a7:e5:63:da:f6: 36:89:68:1a:01:f7:a3:5b:52:b6:a3:75:7f:c9:a5: 7d:d7:6b:64:77:15:de:73:75:15:ff:c0:50:dc:82: 70:6e:16:a6:7f:21:42:f0:f7:fc:6e:99:dd:c0:1a: ed:a5:b4:01:2c:29:a9:ad:f6:47:87:2d:fa:e4:5c: a8:f9:64:ef:7f:e1:4e:fa:64:2c:7d:3d:c9:6c:e6: 51:8b:08:e4:c8:19:e4:f0:9c:d4:df:73:00:ca:33: cf:4b:5c:6a:32:21:23:94:f9:2f:d4:69:cb:23:45: 18:dc:be:2a:a7:cd:e7:f9:45:22:2e:51:30:bd:f0: 59:d3:54:e6:c2:0a:3f:3d:1e:7f:64:e5:60:b9:38: 86:9d:df:e6:bc:6c:06:c8:06:7b:9e:79:d9:86:16: 23:69:dc:6c:0d:6a:fd:e2:ff:f7:47:2e:e7:1c:4d: cf:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6C:5C:EF:7E:19:A1:45:CB:95:9A:D1:5F:F0:97:07:9C:DC:8F:DA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.138.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:87:8e:4f:b3:b4:cf:89:2e:a0:d6:83:08:ab:50:94:39:13: 9d:f3:dc:60:f9:28:13:6b:f5:e3:cf:81:83:5f:6d:66:3d:e1: 93:86:d9:27:80:1a:f9:18:69:d6:da:d4:a2:28:5e:1c:7e:ff: c1:ac:aa:17:4b:8c:e3:d3:9e:02:e4:3f:35:be:07:b2:50:97: da:91:d7:50:fd:ee:1b:43:25:be:80:a5:c5:0f:de:82:3c:4a: ba:8d:15:df:ce:5d:98:27:25:ce:84:56:78:30:db:c8:b5:bb: fe:75:1c:86:a1:ed:37:99:2f:fe:a9:de:5d:ef:3c:e7:fa:02: 2d:8a:dd:b9:19:db:e1:34:46:6c:f3:c5:39:39:69:ba:b7:5a: a2:2d:7b:aa:84:b2:a2:df:e3:6e:d5:88:0f:94:f5:ca:8c:50: 52:ab:be:55:dd:ea:0a:cb:24:21:9f:4d:86:27:c9:71:92:0c: 20:ff:2e:6c:25:92:6b:5a:24:b3:2d:6f:42:e2:23:9c:7b:28: 39:9b:f0:04:ba:2e:48:b9:cb:4f:40:50:ee:c7:b0:81:78:01: 91:4d:87:78:19:4d:f7:78:d9:54:fc:1d:8f:9d:2e:7a:54:52: 39:29:2b:23:09:40:01:04:08:41:b1:26:1d:4e:b2:40:92:04: 26:79:7f:9f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUI2qIP/WDhq0bcK/7gxqtsKDgIKQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcwMjA3NTUwMFoX DTI2MDcwMTA4MDAwMFowMzExMC8GA1UEAxMoMkU2QzVDRUY3RTE5QTE0NUNCOTU5 QUQxNUZGMDk3MDc5Q0RDOEZEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrK71zC7xylW1Ig07l6Ucpxxffy41/dYQGDG5LcjydSgLjA6/joE5JiImTt vVDZN7udzV7PbFDL64kMxYGKkjoTZ58Nw34Svs8BaIouVVOBi+OE0aflY9r2Nolo GgH3o1tStqN1f8mlfddrZHcV3nN1Ff/AUNyCcG4Wpn8hQvD3/G6Z3cAa7aW0ASwp qa32R4ct+uRcqPlk73/hTvpkLH09yWzmUYsI5MgZ5PCc1N9zAMozz0tcajIhI5T5 L9RpyyNFGNy+KqfN5/lFIi5RML3wWdNU5sIKPz0ef2TlYLk4hp3f5rxsBsgGe555 2YYWI2ncbA1q/eL/90cu5xxNzzECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQubFzv fhmhRcuVmtFf8JcHnNyP2jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdrijANBgkqhkiG9w0BAQsFAAOCAQEAfoeOT7O0z4kuoNaDCKtQ lDkTnfPcYPkoE2v148+Bg19tZj3hk4bZJ4Aa+Rhp1trUoiheHH7/wayqF0uM49Oe AuQ/Nb4HslCX2pHXUP3uG0MlvoClxQ/egjxKuo0V385dmCclzoRWeDDbyLW7/nUc hqHtN5kv/qneXe885/oCLYrduRnb4TRGbPPFOTlpurdaoi17qoSyot/jbtWID5T1 yoxQUqu+Vd3qCsskIZ9NhifJcZIMIP8ubCWSa1oksy1vQuIjnHsoOZvwBLouSLnL T0BQ7sewgXgBkU2HeBlN93jZVPwdj50uelRSOSkrIwlAAQQIQbEmHU6yQJIEJnl/ nw== -----END CERTIFICATE-----Generated at Mon Jul 21 00:02:46 2025 by rpki-client