$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa File: AS150233.roa (raw, json) Hash identifier: trwZbbzIUoN1s52v+Q5qqKCUSam1BkhOODsFXJZ9tj8= Subject key identifier: 75:E6:37:D7:0F:E0:14:1E:77:CF:D1:AE:CD:45:A6:D5:25:94:9A:33 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 46AD1810B6B0097E92440D98B69DD0E90FA9551E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa Signing time: Mon 01 Sep 2025 03:00:00 +0000 ROA not before: Mon 01 Sep 2025 02:55:00 +0000 ROA not after: Mon 31 Aug 2026 03:00:00 +0000 asID: 150233 IP address blocks: 103.71.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ad:18:10:b6:b0:09:7e:92:44:0d:98:b6:9d:d0:e9:0f:a9:55:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 1 02:55:00 2025 GMT Not After : Aug 31 03:00:00 2026 GMT Subject: CN=75E637D70FE0141E77CFD1AECD45A6D525949A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1d:f4:0f:06:7a:b5:0a:88:b1:18:5e:42:5f: cb:54:7e:e8:d4:4a:bd:0f:cb:97:cf:37:ae:5a:e3: 6d:5e:3c:30:6c:3f:da:0b:00:9e:ad:62:1d:65:0a: 36:2f:d8:3f:bf:20:6f:a4:a9:f7:72:cd:0c:c9:36: 38:22:1f:58:8e:9e:f9:af:2f:db:64:c4:1e:ad:9e: 41:34:7c:f6:b7:f7:a6:82:83:36:6f:59:4a:66:b0: 2d:ab:0c:d7:ff:3c:4c:35:ee:32:67:6f:e6:c9:65: 0a:2f:8f:b6:5c:91:49:64:7a:5b:57:35:88:bf:2d: 76:7a:90:ff:f2:cd:fe:7e:bc:aa:92:76:2a:e0:0c: f8:e2:22:c2:29:cd:cc:79:33:df:59:f7:12:d1:5e: 22:db:d1:08:a5:55:c1:5f:86:d7:4f:c0:4b:81:32: 08:82:d5:12:c2:43:27:49:d5:27:ac:11:c9:da:a3: d5:e0:03:52:97:f0:18:7d:b0:3a:5c:18:60:a4:f9: 17:bf:9b:aa:11:eb:45:a7:06:2d:5d:56:f6:af:e8: ce:3b:0a:3d:a9:82:36:4d:dd:5a:17:da:06:7b:70: ae:0d:cf:2b:b0:d6:77:19:c8:f3:3f:2a:4b:fa:ed: 92:d0:25:cb:96:fc:5d:12:15:e0:3a:cf:e3:c7:83: b9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E6:37:D7:0F:E0:14:1E:77:CF:D1:AE:CD:45:A6:D5:25:94:9A:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.25.0/24 Signature Algorithm: sha256WithRSAEncryption 87:74:34:3c:e9:21:10:ca:33:6f:dc:a9:6f:64:3c:87:49:9e: 56:64:60:99:21:9e:da:4b:a3:59:40:d8:6a:ef:5a:4e:d7:ce: 1c:19:19:4c:74:84:92:68:e2:73:cb:19:0c:99:8a:7a:6e:72: 8f:c7:7d:f0:6b:8a:ff:8f:5e:1a:53:2d:97:22:34:18:2e:1e: 63:3e:ed:ad:d3:7c:d6:bd:b1:59:9d:8a:89:de:0f:57:13:16: d7:7c:49:65:0d:13:90:f5:de:a3:19:e1:ef:ad:6b:7b:30:47: ee:b4:71:d4:3f:8a:21:f0:b9:c9:de:93:c3:63:c7:44:af:f9: 01:b4:5f:3a:b2:37:25:1d:f1:de:be:1c:07:29:0f:72:ab:36: 58:19:a9:70:9e:bd:d0:9d:c4:0a:76:af:8e:60:82:4e:df:10: 47:d4:2f:85:be:33:57:2a:25:52:be:f1:cf:db:fd:9a:0a:c1: df:47:ee:1c:3a:e4:77:f3:80:42:9b:e6:78:f4:13:3a:04:a4: d9:5d:4f:6b:df:ea:ba:52:9c:be:7d:d1:2d:12:d0:d8:21:73: b3:d6:12:7b:20:8f:4d:3e:3d:0e:c6:b6:c6:7c:b1:e4:d3:4a: 41:aa:b2:a7:29:f3:14:21:c2:f3:cb:3d:21:32:74:0a:e5:78: f6:4b:1f:17 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURq0YELawCX6SRA2Ytp3Q6Q+pVR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMTAyNTUwMFoX DTI2MDgzMTAzMDAwMFowMzExMC8GA1UEAxMoNzVFNjM3RDcwRkUwMTQxRTc3Q0ZE MUFFQ0Q0NUE2RDUyNTk0OUEzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKId9A8GerUKiLEYXkJfy1R+6NRKvQ/Ll883rlrjbV48MGw/2gsAnq1iHWUK Ni/YP78gb6Sp93LNDMk2OCIfWI6e+a8v22TEHq2eQTR89rf3poKDNm9ZSmawLasM 1/88TDXuMmdv5sllCi+PtlyRSWR6W1c1iL8tdnqQ//LN/n68qpJ2KuAM+OIiwinN zHkz31n3EtFeItvRCKVVwV+G10/AS4EyCILVEsJDJ0nVJ6wRydqj1eADUpfwGH2w OlwYYKT5F7+bqhHrRacGLV1W9q/ozjsKPamCNk3dWhfaBntwrg3PK7DWdxnI8z8q S/rtktAly5b8XRIV4DrP48eDuUECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR15jfX D+AUHnfP0a7NRabVJZSaMzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdHGTANBgkqhkiG9w0BAQsFAAOCAQEAh3Q0POkhEMozb9ypb2Q8 h0meVmRgmSGe2kujWUDYau9aTtfOHBkZTHSEkmjic8sZDJmKem5yj8d98GuK/49e GlMtlyI0GC4eYz7trdN81r2xWZ2Kid4PVxMW13xJZQ0TkPXeoxnh761rezBH7rRx 1D+KIfC5yd6Tw2PHRK/5AbRfOrI3JR3x3r4cBykPcqs2WBmpcJ690J3ECnavjmCC Tt8QR9Qvhb4zVyolUr7xz9v9mgrB30fuHDrkd/OAQpvmePQTOgSk2V1Pa9/qulKc vn3RLRLQ2CFzs9YSeyCPTT49Dsa2xnyx5NNKQaqypynzFCHC88s9ITJ0CuV49ksf Fw== -----END CERTIFICATE-----Generated at Fri Sep 5 08:12:14 2025 by rpki-client