$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa File: AS150994.roa (raw, json) Hash identifier: pSw7rAdhuf6StVJbsBppaLA7WdbR6ONZC4jNDVgtens= Subject key identifier: DE:04:4A:0C:5C:EF:AC:57:52:60:41:96:BE:66:00:3B:A8:1B:6F:34 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 222CC2328B9B1758867A6EABEDC7854BA8ADA867 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa Signing time: Tue 06 May 2025 05:00:00 +0000 ROA not before: Tue 06 May 2025 04:55:00 +0000 ROA not after: Tue 05 May 2026 05:00:00 +0000 asID: 150994 IP address blocks: 103.182.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:2c:c2:32:8b:9b:17:58:86:7a:6e:ab:ed:c7:85:4b:a8:ad:a8:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 6 04:55:00 2025 GMT Not After : May 5 05:00:00 2026 GMT Subject: CN=DE044A0C5CEFAC5752604196BE66003BA81B6F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:27:7e:ba:15:1e:c1:74:ce:b3:64:e6:73:39: e3:3b:9d:09:7b:aa:e2:c9:65:d3:3c:38:e0:4f:d5: 41:3b:37:1d:7f:22:3c:21:7a:3e:dd:01:2e:18:ad: 3e:ab:09:c5:2d:0c:76:b8:ee:47:9d:08:be:50:54: 60:9f:4c:82:34:6c:e6:39:34:f9:f8:f9:f2:22:ee: 33:0d:37:09:11:70:1e:95:25:4c:96:45:e8:fc:f1: e7:13:90:a9:19:63:c2:2f:1f:6b:71:db:c4:72:73: c3:1c:f1:04:b7:a0:d7:3b:06:9f:ee:9a:11:7c:64: dc:24:15:06:b1:e5:24:bb:2c:63:b5:6f:0d:96:71: 6d:a0:1f:58:95:5f:af:18:8f:6b:69:8b:71:ae:3d: 16:50:12:58:7d:8c:c8:46:97:be:c9:7f:da:33:3e: 42:dc:74:a4:ea:38:3c:6b:45:52:26:aa:78:98:35: 2c:65:73:17:04:ee:f5:59:0b:4d:22:53:7f:66:d3: c2:c0:09:8a:af:cd:5b:5a:1c:d6:06:48:90:82:8f: 91:99:55:b6:cc:8a:dd:ab:96:4d:96:f8:9a:33:0e: 33:7f:9c:81:ab:7e:5b:23:2f:f1:ce:80:c8:86:7c: 97:00:cb:8f:bc:c7:b3:c3:b2:7e:2f:2e:9f:fa:0d: 68:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:04:4A:0C:5C:EF:AC:57:52:60:41:96:BE:66:00:3B:A8:1B:6F:34 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.248.0/24 Signature Algorithm: sha256WithRSAEncryption 81:a7:5f:b5:70:9e:34:a3:1a:15:1a:3d:7a:c6:fb:f5:40:35: a7:72:12:81:b7:f6:97:5c:bb:71:6a:44:6d:90:62:1b:43:56: 77:53:f9:0d:d8:07:55:89:c6:ce:00:b0:b0:17:5a:1d:1f:c3: 06:e5:65:68:cc:7f:6f:e2:78:90:cc:c9:99:35:ee:50:4e:0b: 6b:4d:b0:bf:82:eb:ce:fc:91:fa:3b:80:8a:3f:3c:b7:44:70: bc:d4:48:31:50:dd:2e:4a:78:d7:1d:b4:45:81:83:43:0c:e0: 5d:c5:48:60:04:93:54:cc:36:d9:79:97:32:61:a1:00:19:ab: 69:5f:c5:bb:e7:31:7f:e6:57:02:aa:66:b4:c8:a1:8e:72:dc: 4e:10:03:6a:28:e6:ff:65:b1:50:a1:35:b8:e5:a3:68:46:02: 66:04:75:24:0a:97:7a:ab:4e:42:68:5d:24:8f:68:76:24:bb: bd:8e:05:4b:15:91:d5:86:bb:b2:4c:65:bc:89:26:40:8a:9a: d1:dd:23:ca:80:b9:5a:c9:e2:8f:25:d4:24:7d:cf:d3:1d:f8: 11:12:3f:24:93:f2:4e:4f:62:c1:39:8f:c2:b3:77:9d:c5:c0: 17:75:cf:b7:b2:ff:07:21:83:9d:8d:93:36:29:50:af:9d:d4: a5:2b:c0:31 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIizCMoubF1iGem6r7ceFS6itqGcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNjA0NTUwMFoX DTI2MDUwNTA1MDAwMFowMzExMC8GA1UEAxMoREUwNDRBMEM1Q0VGQUM1NzUyNjA0 MTk2QkU2NjAwM0JBODFCNkYzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOsnfroVHsF0zrNk5nM54zudCXuq4sll0zw44E/VQTs3HX8iPCF6Pt0BLhit PqsJxS0MdrjuR50IvlBUYJ9MgjRs5jk0+fj58iLuMw03CRFwHpUlTJZF6Pzx5xOQ qRljwi8fa3HbxHJzwxzxBLeg1zsGn+6aEXxk3CQVBrHlJLssY7VvDZZxbaAfWJVf rxiPa2mLca49FlASWH2MyEaXvsl/2jM+Qtx0pOo4PGtFUiaqeJg1LGVzFwTu9VkL TSJTf2bTwsAJiq/NW1oc1gZIkIKPkZlVtsyK3auWTZb4mjMOM3+cgat+WyMv8c6A yIZ8lwDLj7zHs8Oyfi8un/oNaC8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTeBEoM XO+sV1JgQZa+ZgA7qBtvNDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe2+DANBgkqhkiG9w0BAQsFAAOCAQEAgadftXCeNKMaFRo9esb7 9UA1p3ISgbf2l1y7cWpEbZBiG0NWd1P5DdgHVYnGzgCwsBdaHR/DBuVlaMx/b+J4 kMzJmTXuUE4La02wv4LrzvyR+juAij88t0RwvNRIMVDdLkp41x20RYGDQwzgXcVI YASTVMw22XmXMmGhABmraV/Fu+cxf+ZXAqpmtMihjnLcThADaijm/2WxUKE1uOWj aEYCZgR1JAqXeqtOQmhdJI9odiS7vY4FSxWR1Ya7skxlvIkmQIqa0d0jyoC5Wsni jyXUJH3P0x34ERI/JJPyTk9iwTmPwrN3ncXAF3XPt7L/ByGDnY2TNilQr53UpSvA MQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:13:20 2025 by rpki-client