$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150997.roa File: AS150997.roa (raw, json) Hash identifier: mOP2ZbBcso415Pgf08L2OHDj99/Jtf8K9Hh8Sk6hlaw= Subject key identifier: 6C:A8:0D:B4:6D:48:D0:2A:5B:89:AC:FA:A8:D6:1D:7C:CC:BC:2F:B7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 73246A7AF88B0385E138A1219CD9938AC4F0DCC0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150997.roa Signing time: Mon 05 May 2025 10:02:23 +0000 ROA not before: Mon 05 May 2025 09:57:23 +0000 ROA not after: Mon 04 May 2026 10:02:23 +0000 asID: 150997 IP address blocks: 103.205.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:24:6a:7a:f8:8b:03:85:e1:38:a1:21:9c:d9:93:8a:c4:f0:dc:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 5 09:57:23 2025 GMT Not After : May 4 10:02:23 2026 GMT Subject: CN=6CA80DB46D48D02A5B89ACFAA8D61D7CCCBC2FB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3d:10:bc:83:34:cd:fe:6a:40:42:6f:72:0d: 3d:a2:7e:a9:d3:ff:f7:6a:c3:13:7c:5a:48:2c:04: 5c:d0:3f:d0:9e:22:c4:d7:35:af:00:ca:e2:b7:92: 55:94:56:7a:88:1e:2f:f1:c8:96:f0:2e:1b:78:9b: 14:a1:13:b8:4d:2a:cb:a9:43:6f:df:b8:3d:e2:c7: 75:43:6a:26:37:6b:a0:50:77:7c:b3:87:1c:e5:fc: 4e:5b:ea:d3:62:94:b1:b5:c0:29:89:f2:09:97:6d: 4e:28:cd:01:31:28:e7:a1:f0:c2:2c:42:51:c6:e7: 05:e5:4b:76:be:2c:cb:98:fa:51:97:c6:d2:42:56: c9:0a:90:d9:36:ee:cb:1f:90:33:63:07:db:58:9a: 9d:bd:cb:12:27:da:19:2a:0c:4c:2e:7c:62:a0:1f: 00:fc:30:b0:a3:a0:71:c1:b4:c0:0d:d4:5a:66:44: 45:da:7e:c6:69:b6:b7:8a:6a:3f:43:0e:28:ee:48: 25:ae:26:55:f3:96:b4:d6:6f:2b:56:8c:1f:b1:96: b6:51:bf:5a:a7:22:2c:0e:83:02:ce:85:c6:4d:eb: 34:2b:9a:33:0b:95:74:f1:b5:f1:06:d1:2b:53:f1: 25:f0:ad:cb:e6:93:64:3f:06:4b:86:05:8e:80:b2: f6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A8:0D:B4:6D:48:D0:2A:5B:89:AC:FA:A8:D6:1D:7C:CC:BC:2F:B7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150997.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.220.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:e3:4a:0c:56:07:d2:b8:a7:68:cf:e0:3b:62:aa:c0:f3:2a: 16:34:b5:f6:00:4c:3d:d2:2f:f6:6d:9c:2a:0b:95:25:ad:64: 7b:b1:ee:5d:13:8a:54:2d:3f:6e:9b:d9:cd:4f:b2:cb:00:a3: 22:5e:20:87:7b:e7:26:50:87:20:61:e8:7f:56:9c:38:eb:5c: 54:1c:93:41:1a:c5:7e:83:76:73:1d:a9:77:25:9a:3b:9d:bd: 9e:ff:27:ca:0b:31:ec:97:86:a3:e8:22:0f:1e:9c:43:12:0d: 6f:99:24:e0:56:cc:bd:c9:d7:28:56:1a:f3:ff:71:9c:ad:97: 50:82:0f:a0:94:34:3f:21:1a:d5:c8:b4:d6:3e:1b:cb:d1:54: af:3f:b4:2d:f0:80:cd:a9:19:7f:c8:34:7a:1a:fe:7d:e3:5c: 0d:42:1f:f6:10:28:e6:f1:10:40:15:3b:e7:07:1d:8d:cc:89: 34:1d:2e:14:63:ec:91:32:7c:0a:07:ef:ef:f1:82:8a:64:03: c2:83:2e:a2:50:47:ef:cf:37:5f:53:28:d6:a6:7a:f2:7f:e4: c5:6e:9e:85:4c:1f:71:b5:2d:1e:93:4a:f5:c7:19:c7:97:87: 52:cf:40:6c:a7:da:82:20:be:16:0d:70:19:e6:6d:fc:6b:46: 17:7e:d4:d1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcyRqeviLA4XhOKEhnNmTisTw3MAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNTA5NTcyM1oX DTI2MDUwNDEwMDIyM1owMzExMC8GA1UEAxMoNkNBODBEQjQ2RDQ4RDAyQTVCODlB Q0ZBQThENjFEN0NDQ0JDMkZCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMo9ELyDNM3+akBCb3INPaJ+qdP/92rDE3xaSCwEXNA/0J4ixNc1rwDK4reS VZRWeogeL/HIlvAuG3ibFKETuE0qy6lDb9+4PeLHdUNqJjdroFB3fLOHHOX8Tlvq 02KUsbXAKYnyCZdtTijNATEo56HwwixCUcbnBeVLdr4sy5j6UZfG0kJWyQqQ2Tbu yx+QM2MH21ianb3LEifaGSoMTC58YqAfAPwwsKOgccG0wA3UWmZERdp+xmm2t4pq P0MOKO5IJa4mVfOWtNZvK1aMH7GWtlG/WqciLA6DAs6Fxk3rNCuaMwuVdPG18QbR K1PxJfCty+aTZD8GS4YFjoCy9uUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRsqA20 bUjQKluJrPqo1h18zLwvtzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfN3DANBgkqhkiG9w0BAQsFAAOCAQEAS+NKDFYH0rinaM/gO2Kq wPMqFjS19gBMPdIv9m2cKguVJa1ke7HuXROKVC0/bpvZzU+yywCjIl4gh3vnJlCH IGHof1acOOtcVByTQRrFfoN2cx2pdyWaO529nv8nygsx7JeGo+giDx6cQxINb5kk 4FbMvcnXKFYa8/9xnK2XUIIPoJQ0PyEa1ci01j4by9FUrz+0LfCAzakZf8g0ehr+ feNcDUIf9hAo5vEQQBU75wcdjcyJNB0uFGPskTJ8Cgfv7/GCimQDwoMuolBH7883 X1Mo1qZ68n/kxW6ehUwfcbUtHpNK9ccZx5eHUs9AbKfagiC+Fg1wGeZt/GtGF37U 0Q== -----END CERTIFICATE-----Generated at Tue Jun 3 23:12:20 2025 by rpki-client