$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa File: AS150966.roa (raw, json) Hash identifier: YI0qSjsm23AlKF/iWG+cs30I00cge+ZK77rtsuKI8jA= Subject key identifier: F2:4C:85:23:17:F5:5E:9B:E3:D4:7C:AE:1A:96:FC:87:12:63:1B:08 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1930D11A8EADC3D3180A41D823D9CAF9E717363F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa Signing time: Thu 05 Jun 2025 05:00:00 +0000 ROA not before: Thu 05 Jun 2025 04:55:00 +0000 ROA not after: Thu 04 Jun 2026 05:00:00 +0000 asID: 150966 IP address blocks: 2001:df2:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:30:d1:1a:8e:ad:c3:d3:18:0a:41:d8:23:d9:ca:f9:e7:17:36:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 5 04:55:00 2025 GMT Not After : Jun 4 05:00:00 2026 GMT Subject: CN=F24C852317F55E9BE3D47CAE1A96FC8712631B08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a9:ee:96:db:29:a2:d6:9c:64:4c:2d:de:6b: 61:a4:65:45:e3:e1:2f:e7:e9:ce:4b:25:cc:b5:62: 8f:73:e1:de:6d:bd:b2:a4:40:1a:3b:19:cb:15:27: a6:31:37:4e:eb:37:9e:77:7d:cb:39:22:53:97:14: e9:d3:98:eb:31:e1:48:47:e4:65:a7:c5:72:66:db: 25:0c:b9:31:91:86:b9:08:e6:29:c9:45:de:66:61: 22:76:7d:02:62:e5:47:46:eb:61:fa:b1:29:3d:e5: 00:b6:61:ff:37:55:a3:6d:b1:16:23:6a:bc:f1:d9: a6:3a:e5:0e:e0:81:16:60:1f:2e:27:81:09:36:f1: 01:d6:e1:53:70:4c:3e:14:e3:f6:a6:2d:8e:0d:30: a4:33:56:45:23:63:5c:fb:6d:6c:4c:56:8f:bf:cd: 17:3e:54:ed:79:18:13:03:c4:c9:99:82:85:7f:e8: 57:f2:44:6a:2d:06:7e:bd:3c:c0:e9:0c:a3:29:49: 8b:3c:25:1e:d3:69:e6:15:c4:6a:3f:52:79:81:48: 82:2e:d5:68:0e:9d:6e:24:c1:ea:0f:f2:be:3d:b4: c5:60:91:69:e5:1d:41:97:36:1c:3c:7e:57:9e:03: 59:42:fe:cc:97:d9:d7:55:24:0f:4a:66:5e:46:d8: 5e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4C:85:23:17:F5:5E:9B:E3:D4:7C:AE:1A:96:FC:87:12:63:1B:08 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:88:2d:f0:3c:be:79:ad:bf:d2:f1:d1:ca:94:0a:3f:a5:53: 1d:3e:ca:3b:75:2d:e1:d3:f4:f5:00:21:77:7a:c4:12:df:5e: be:7e:9c:e6:70:0d:a9:ba:48:e0:e1:3e:84:cd:b3:93:72:f3: 6c:0d:16:05:08:d4:12:02:4e:0f:2a:08:1c:e7:85:23:f2:b3: 3b:35:b3:8e:cd:90:3d:92:7a:fd:ac:42:29:fb:c0:a2:d9:ab: 70:7f:88:94:25:77:1c:f4:30:98:1f:a2:66:81:aa:79:6b:cb: dc:1f:75:bd:60:47:63:73:c1:ae:5f:06:14:11:f1:a6:31:3f: 70:9e:52:c3:7c:39:30:36:64:f6:7b:2d:4e:cc:85:81:a5:8e: 77:ea:85:32:21:07:07:89:04:2c:47:d6:c9:a9:da:28:cc:e6: 33:95:09:dd:20:49:01:54:f6:f9:fc:9a:89:55:c1:6d:c1:18: 02:42:5d:2c:76:8e:fb:bf:7b:e8:28:1b:5b:29:60:1f:78:76: 72:6c:28:63:d8:b5:d5:b4:17:74:6b:67:24:6e:ac:1f:9c:64: ad:4f:cc:7a:8a:f8:40:71:0b:15:53:c3:cd:91:8d:6b:27:7d: 7b:86:63:37:f8:a3:b1:9e:1f:7c:68:e5:33:2e:27:a0:9b:86: 4d:33:63:cd -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUGTDRGo6tw9MYCkHYI9nK+ecXNj8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNTA0NTUwMFoX DTI2MDYwNDA1MDAwMFowMzExMC8GA1UEAxMoRjI0Qzg1MjMxN0Y1NUU5QkUzRDQ3 Q0FFMUE5NkZDODcxMjYzMUIwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSp7pbbKaLWnGRMLd5rYaRlRePhL+fpzkslzLVij3Ph3m29sqRAGjsZyxUn pjE3Tus3nnd9yzkiU5cU6dOY6zHhSEfkZafFcmbbJQy5MZGGuQjmKclF3mZhInZ9 AmLlR0brYfqxKT3lALZh/zdVo22xFiNqvPHZpjrlDuCBFmAfLieBCTbxAdbhU3BM PhTj9qYtjg0wpDNWRSNjXPttbExWj7/NFz5U7XkYEwPEyZmChX/oV/JEai0Gfr08 wOkMoylJizwlHtNp5hXEaj9SeYFIgi7VaA6dbiTB6g/yvj20xWCRaeUdQZc2HDx+ V54DWUL+zJfZ11UkD0pmXkbYXm8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTyTIUj F/Vem+PUfK4alvyHEmMbCDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfJWwDANBgkqhkiG9w0BAQsFAAOCAQEAP4gt8Dy+ea2/0vHR ypQKP6VTHT7KO3Ut4dP09QAhd3rEEt9evn6c5nANqbpI4OE+hM2zk3LzbA0WBQjU EgJODyoIHOeFI/KzOzWzjs2QPZJ6/axCKfvAotmrcH+IlCV3HPQwmB+iZoGqeWvL 3B91vWBHY3PBrl8GFBHxpjE/cJ5Sw3w5MDZk9nstTsyFgaWOd+qFMiEHB4kELEfW yanaKMzmM5UJ3SBJAVT2+fyaiVXBbcEYAkJdLHaO+7976CgbWylgH3h2cmwoY9i1 1bQXdGtnJG6sH5xkrU/Meor4QHELFVPDzZGNayd9e4ZjN/ijsZ4ffGjlMy4noJuG TTNjzQ== -----END CERTIFICATE-----Generated at Sun Jun 8 01:33:09 2025 by rpki-client