$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150923.roa File: AS150923.roa (raw, json) Hash identifier: t775trvjuxcCcc7M1BjYgVClwNLCGqcwwGJlVMqYbxQ= Subject key identifier: 44:99:96:74:54:2D:46:92:24:52:30:0B:01:22:63:4B:13:FA:F2:E1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 445E42945ECEE82AB0DD6BCA4337D7CCF41C22C7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150923.roa Signing time: Tue 26 Aug 2025 07:00:00 +0000 ROA not before: Tue 26 Aug 2025 06:55:00 +0000 ROA not after: Tue 25 Aug 2026 07:00:00 +0000 asID: 150923 IP address blocks: 2001:df2:ffc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:5e:42:94:5e:ce:e8:2a:b0:dd:6b:ca:43:37:d7:cc:f4:1c:22:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 26 06:55:00 2025 GMT Not After : Aug 25 07:00:00 2026 GMT Subject: CN=44999674542D46922452300B0122634B13FAF2E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:57:f4:8e:ab:ad:2e:ef:1d:84:e4:1f:fb:63: 40:01:5b:09:db:3b:eb:f0:a7:5e:18:6e:4b:42:a8: bf:f9:ef:ca:91:71:d8:27:83:91:78:42:77:c5:8a: bb:df:1d:39:ed:b1:0c:44:f4:60:9c:1b:44:a5:6b: a2:cb:8c:92:b8:ff:23:84:73:a4:b6:ed:5b:01:16: 3e:3b:ce:e9:3b:0f:20:90:ef:55:b6:3b:d7:5d:33: 57:9c:85:84:bb:e9:04:c8:59:f6:84:12:57:3c:8f: 46:24:af:d2:23:99:d5:65:7c:8d:9a:d1:4a:2e:20: 98:26:91:d6:67:dd:14:c5:4e:6e:2c:d1:ab:d8:26: 07:3c:c2:d8:4f:46:1f:72:13:81:f4:22:58:cd:ed: 16:f2:2c:10:58:71:9c:92:4c:2f:1b:a0:99:2b:ea: 93:01:9c:a5:0d:af:64:3f:26:40:f4:7e:90:88:9e: 75:49:19:cb:45:4d:90:2d:01:6d:33:9f:4f:e0:d1: 6f:9d:68:86:38:b0:53:d5:31:86:ee:fb:3b:d3:58: 97:cf:2f:4e:d5:94:e3:91:24:45:a2:80:41:cb:6a: ac:d5:e1:bc:6d:7f:34:bb:96:2a:f8:8f:93:d9:38: cb:d2:d5:b8:eb:01:a2:d8:f2:be:e3:4c:5b:6c:32: f7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:99:96:74:54:2D:46:92:24:52:30:0B:01:22:63:4B:13:FA:F2:E1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150923.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:ffc0::/48 Signature Algorithm: sha256WithRSAEncryption 28:04:ae:3f:84:30:90:f4:52:8c:66:08:6e:bc:4f:10:55:58: 01:e0:db:65:af:69:86:30:93:77:db:71:4b:83:fd:29:55:07: ec:ab:df:73:8f:24:cc:4c:b5:5e:9c:3e:1e:cc:28:79:f8:ed: c7:3b:b2:9f:f4:48:9f:ff:ca:d7:c1:7b:64:e1:75:1e:a7:74: 4c:f6:dd:11:97:7f:ee:65:6d:a1:a8:ab:10:ae:89:7d:93:01: 42:48:43:e6:28:81:93:94:bd:57:a8:e2:89:7d:f0:9f:06:32: f2:b8:57:34:5f:42:97:cd:e6:5d:dc:45:1e:3d:1a:ac:d5:ce: 3a:a6:81:ec:69:c8:7c:ce:10:3c:65:81:c6:aa:34:b7:bb:51: bd:25:63:7c:c9:21:0f:af:1b:9d:77:d0:88:e5:86:b9:12:1e: 31:99:41:1f:72:ab:1e:de:ad:ef:ad:ee:b0:7c:7a:ec:82:55: ad:c6:e4:7a:01:d6:be:3b:f4:78:2e:a1:8a:66:72:4d:28:65: b2:ab:dc:b5:3c:81:ff:de:2f:25:af:f6:05:70:36:d7:2d:73: 47:28:49:8d:9e:2a:8b:65:78:87:69:e9:87:78:e0:f0:08:3f: 6a:8f:57:be:a3:04:95:1b:de:34:31:cc:84:5b:e3:d8:79:81: a5:62:d7:50 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIURF5ClF7O6Cqw3WvKQzfXzPQcIscwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyNjA2NTUwMFoX DTI2MDgyNTA3MDAwMFowMzExMC8GA1UEAxMoNDQ5OTk2NzQ1NDJENDY5MjI0NTIz MDBCMDEyMjYzNEIxM0ZBRjJFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhX9I6rrS7vHYTkH/tjQAFbCds76/CnXhhuS0Kov/nvypFx2CeDkXhCd8WK u98dOe2xDET0YJwbRKVrosuMkrj/I4RzpLbtWwEWPjvO6TsPIJDvVbY7110zV5yF hLvpBMhZ9oQSVzyPRiSv0iOZ1WV8jZrRSi4gmCaR1mfdFMVObizRq9gmBzzC2E9G H3ITgfQiWM3tFvIsEFhxnJJMLxugmSvqkwGcpQ2vZD8mQPR+kIiedUkZy0VNkC0B bTOfT+DRb51ohjiwU9Uxhu77O9NYl88vTtWU45EkRaKAQctqrNXhvG1/NLuWKviP k9k4y9LVuOsBotjyvuNMW2wy98sCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBREmZZ0 VC1GkiRSMAsBImNLE/ry4TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfL/wDANBgkqhkiG9w0BAQsFAAOCAQEAKASuP4QwkPRSjGYI brxPEFVYAeDbZa9phjCTd9txS4P9KVUH7Kvfc48kzEy1Xpw+Hswoefjtxzuyn/RI n//K18F7ZOF1Hqd0TPbdEZd/7mVtoairEK6JfZMBQkhD5iiBk5S9V6jiiX3wnwYy 8rhXNF9Cl83mXdxFHj0arNXOOqaB7GnIfM4QPGWBxqo0t7tRvSVjfMkhD68bnXfQ iOWGuRIeMZlBH3KrHt6t763usHx67IJVrcbkegHWvjv0eC6himZyTShlsqvctTyB /94vJa/2BXA21y1zRyhJjZ4qi2V4h2nph3jg8Ag/ao9XvqMElRveNDHMhFvj2HmB pWLXUA== -----END CERTIFICATE-----Generated at Fri Sep 5 08:17:24 2025 by rpki-client