$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa File: AS150213.roa (raw, json) Hash identifier: Knoo84pmlQYObakIBkeHsQ5tuxqA1Y6E/sLIiLkiJJc= Subject key identifier: ED:F5:0A:42:84:1A:34:EB:4F:6E:84:C0:A1:60:C8:F1:04:37:FF:91 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E4744605A99EFE52CC6525441BC8C1C0C301366 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa Signing time: Mon 01 Sep 2025 04:00:00 +0000 ROA not before: Mon 01 Sep 2025 03:55:00 +0000 ROA not after: Mon 31 Aug 2026 04:00:00 +0000 asID: 150213 IP address blocks: 103.246.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:47:44:60:5a:99:ef:e5:2c:c6:52:54:41:bc:8c:1c:0c:30:13:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 1 03:55:00 2025 GMT Not After : Aug 31 04:00:00 2026 GMT Subject: CN=EDF50A42841A34EB4F6E84C0A160C8F10437FF91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ba:c9:1d:ac:3d:fa:9a:b0:8c:98:cd:89:64: ec:89:f6:ed:2f:94:3a:2b:88:46:53:3f:7a:81:6f: 2b:55:91:73:5c:ee:64:e5:3d:01:64:bd:63:0b:80: db:13:8a:0e:a9:86:43:66:a2:9a:9d:ae:c2:e4:11: 0a:60:7f:70:d1:4a:31:1c:91:ad:16:51:b1:84:68: 72:01:3f:4c:87:4a:9e:d8:4d:5d:1c:eb:58:d8:63: 15:f8:2c:91:9a:80:74:26:0c:5a:f4:4b:dc:1f:ed: 80:e3:b0:57:0f:14:9a:2a:7f:d2:37:6a:3e:f9:c2: e7:bd:0d:d1:31:22:7d:ec:aa:1c:1f:94:47:52:62: 0d:57:a3:dc:c4:f0:fa:76:dc:9a:9c:25:2c:5b:65: 75:a5:97:31:b7:53:f7:66:0f:dd:84:96:d7:07:19: 08:95:94:53:b4:8c:7d:99:3f:f5:49:e7:79:41:fc: 8f:b7:3a:d4:a8:4f:47:83:22:6a:76:13:be:f5:ce: fe:07:1d:9e:af:12:77:2f:1a:1e:c8:e6:d1:78:54: d3:63:f0:e3:a1:0c:ca:76:e6:a9:28:43:30:a2:f4: eb:c5:8b:f8:03:f6:10:57:2b:df:4a:ac:08:4f:bd: 34:e9:07:ef:ef:e9:c1:7d:32:65:09:52:74:1b:83: 85:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F5:0A:42:84:1A:34:EB:4F:6E:84:C0:A1:60:C8:F1:04:37:FF:91 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.78.0/23 Signature Algorithm: sha256WithRSAEncryption 57:e9:d2:ac:b8:d6:58:af:da:cd:27:fb:00:4b:93:0d:b5:fb: 56:16:38:71:71:49:e3:6d:96:79:d4:2a:8b:1b:17:4b:23:6d: 36:24:2b:3f:0c:a6:3b:9b:0f:ab:a2:19:9f:8e:60:b8:5d:1d: 49:bc:5e:09:20:4e:85:7d:58:58:18:2a:b5:b0:61:e1:2f:9c: a0:d4:f2:f9:55:62:c0:ee:1c:23:58:29:43:87:26:04:24:50: 21:8e:d5:52:42:0d:09:44:79:4e:bb:6c:96:d1:99:20:cc:da: 28:52:64:bc:33:34:a7:7e:5f:c2:e6:2a:a7:ee:64:27:dd:25: a2:c7:c8:79:e9:ba:58:1d:6d:5b:03:dd:b3:4e:ba:e1:61:08: b5:7c:68:ec:48:0c:09:4c:78:bb:1e:94:17:04:97:6d:8d:6e: 70:94:14:3c:42:ce:02:cf:5d:1a:97:dd:d4:ee:3f:a6:ef:2d: 64:77:34:e7:44:ee:9f:e9:34:48:c1:97:be:78:aa:3c:05:68: 69:76:03:d2:b4:51:2a:6d:1f:05:0e:6c:cf:f0:d1:e2:78:fb: b5:aa:d5:04:f8:65:84:1a:91:db:35:81:3c:21:32:cd:8b:b0: f7:80:09:3b:a8:02:fb:c8:c7:f2:0f:08:b4:62:1e:a0:85:84: 85:61:60:25 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULkdEYFqZ7+UsxlJUQbyMHAwwE2YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMTAzNTUwMFoX DTI2MDgzMTA0MDAwMFowMzExMC8GA1UEAxMoRURGNTBBNDI4NDFBMzRFQjRGNkU4 NEMwQTE2MEM4RjEwNDM3RkY5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALu6yR2sPfqasIyYzYlk7In27S+UOiuIRlM/eoFvK1WRc1zuZOU9AWS9YwuA 2xOKDqmGQ2aimp2uwuQRCmB/cNFKMRyRrRZRsYRocgE/TIdKnthNXRzrWNhjFfgs kZqAdCYMWvRL3B/tgOOwVw8Umip/0jdqPvnC570N0TEifeyqHB+UR1JiDVej3MTw +nbcmpwlLFtldaWXMbdT92YP3YSW1wcZCJWUU7SMfZk/9UnneUH8j7c61KhPR4Mi anYTvvXO/gcdnq8Sdy8aHsjm0XhU02Pw46EMynbmqShDMKL068WL+AP2EFcr30qs CE+9NOkH7+/pwX0yZQlSdBuDhX0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTt9QpC hBo0609uhMChYMjxBDf/kTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf2TjANBgkqhkiG9w0BAQsFAAOCAQEAV+nSrLjWWK/azSf7AEuT DbX7VhY4cXFJ422WedQqixsXSyNtNiQrPwymO5sPq6IZn45guF0dSbxeCSBOhX1Y WBgqtbBh4S+coNTy+VViwO4cI1gpQ4cmBCRQIY7VUkINCUR5TrtsltGZIMzaKFJk vDM0p35fwuYqp+5kJ90losfIeem6WB1tWwPds0664WEItXxo7EgMCUx4ux6UFwSX bY1ucJQUPELOAs9dGpfd1O4/pu8tZHc050Tun+k0SMGXvniqPAVoaXYD0rRRKm0f BQ5sz/DR4nj7tarVBPhlhBqR2zWBPCEyzYuw94AJO6gC+8jH8g8ItGIeoIWEhWFg JQ== -----END CERTIFICATE-----Generated at Fri Sep 5 10:11:44 2025 by rpki-client