$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa File: AS150999.roa (raw, json) Hash identifier: k1Tsv8Onc0pSWy628DKpSbf8AQ8E2DpvTQsKGyVp8/4= Subject key identifier: 11:2D:C0:5D:22:F3:BB:95:AE:E7:77:80:AC:1B:79:04:65:38:FF:8F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 412DB0AFA179E5CCC9A2251BDB119924EEDD820F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa Signing time: Thu 15 May 2025 09:00:00 +0000 ROA not before: Thu 15 May 2025 08:55:00 +0000 ROA not after: Thu 14 May 2026 09:00:00 +0000 asID: 150999 IP address blocks: 103.205.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:2d:b0:af:a1:79:e5:cc:c9:a2:25:1b:db:11:99:24:ee:dd:82:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 15 08:55:00 2025 GMT Not After : May 14 09:00:00 2026 GMT Subject: CN=112DC05D22F3BB95AEE77780AC1B79046538FF8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:08:cf:83:28:9e:f6:05:cc:74:78:16:b8:15: 7f:f2:b0:a9:33:70:1b:0f:d7:a6:35:79:97:79:d0: cc:c5:bb:94:44:db:c3:3a:8d:e3:27:75:2d:46:49: bc:17:5d:97:7c:12:fc:29:e1:95:1a:21:f7:3f:c7: b4:05:34:c8:d8:d7:1d:ab:a6:d4:b5:14:ac:c9:aa: e2:69:a1:59:27:63:9f:bf:42:b5:cc:4b:00:cf:c0: 3d:9a:b0:c9:a6:c8:d1:2b:8d:dd:93:04:21:99:23: e9:b7:11:88:9b:e7:58:bc:8c:74:a2:22:9a:21:e0: d0:ae:3a:61:68:42:c0:35:69:48:18:43:da:cb:7d: 15:9a:d4:bb:88:80:3e:db:eb:00:f6:05:c4:b9:f7: 76:16:67:3b:5b:3e:6d:29:13:5a:d2:7e:b9:5b:e5: 4b:37:57:01:07:c5:c7:e2:7f:95:1b:a1:41:d1:15: 12:f0:3e:12:4c:06:0d:1f:c2:c5:51:9f:0f:85:57: 33:aa:0d:7f:1b:13:d0:92:0d:01:98:13:c0:d5:5c: 6a:05:62:1a:70:37:ca:36:b7:31:52:9b:77:66:eb: 54:cd:b6:86:87:89:3a:58:4c:f1:ee:01:a9:56:45: aa:17:61:43:8f:18:73:fc:11:9d:d3:62:60:1c:a5: 28:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:2D:C0:5D:22:F3:BB:95:AE:E7:77:80:AC:1B:79:04:65:38:FF:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.222.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:86:7c:4b:fe:4e:28:30:ed:9c:5b:0f:17:6b:46:0e:f3:07: d5:66:fa:38:c0:2a:95:9b:93:15:35:4c:67:9f:c9:3a:39:3c: 24:9b:a6:4b:4c:30:29:a2:6c:49:55:d7:c9:a2:a6:a9:69:f0: 7d:f9:ff:7c:fd:b8:4a:d0:34:31:19:e7:27:37:bf:64:aa:ef: 19:ef:0e:fa:84:7b:3c:6e:8b:84:7c:8f:a4:7e:a7:6e:0d:b2: f2:ff:e5:a8:14:74:ac:7c:a5:56:d2:77:c4:c9:e4:16:bc:97: df:fd:31:cc:19:bd:ba:52:b7:1c:18:36:1e:4a:10:a5:48:c2: db:61:db:21:5a:02:b6:2f:3b:f1:82:fe:a6:b2:61:27:a3:57: be:85:fc:93:00:6f:32:00:13:aa:f2:be:f3:9f:75:43:73:8e: ce:73:b6:23:4a:dd:5d:e9:97:4c:4b:47:99:d8:f7:fb:22:64: fe:08:6f:e1:68:9c:49:ec:74:98:9c:13:ed:2c:d9:b8:0e:df: 63:6c:e8:fa:81:af:b9:dd:c4:e0:43:d4:bc:1f:3f:eb:22:d1: eb:06:87:58:08:2b:55:b5:de:23:77:ff:6b:c2:1b:40:ca:b5: dd:60:b7:10:e8:dd:3f:83:71:c0:db:36:49:d6:f1:da:05:92: 36:67:63:08 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQS2wr6F55czJoiUb2xGZJO7dgg8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUxNTA4NTUwMFoX DTI2MDUxNDA5MDAwMFowMzExMC8GA1UEAxMoMTEyREMwNUQyMkYzQkI5NUFFRTc3 NzgwQUMxQjc5MDQ2NTM4RkY4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANkIz4MonvYFzHR4FrgVf/KwqTNwGw/XpjV5l3nQzMW7lETbwzqN4yd1LUZJ vBddl3wS/CnhlRoh9z/HtAU0yNjXHaum1LUUrMmq4mmhWSdjn79CtcxLAM/APZqw yabI0SuN3ZMEIZkj6bcRiJvnWLyMdKIimiHg0K46YWhCwDVpSBhD2st9FZrUu4iA PtvrAPYFxLn3dhZnO1s+bSkTWtJ+uVvlSzdXAQfFx+J/lRuhQdEVEvA+EkwGDR/C xVGfD4VXM6oNfxsT0JINAZgTwNVcagViGnA3yja3MVKbd2brVM22hoeJOlhM8e4B qVZFqhdhQ48Yc/wRndNiYBylKHcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQRLcBd IvO7la7nd4CsG3kEZTj/jzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfN3jANBgkqhkiG9w0BAQsFAAOCAQEAeoZ8S/5OKDDtnFsPF2tG DvMH1Wb6OMAqlZuTFTVMZ5/JOjk8JJumS0wwKaJsSVXXyaKmqWnwffn/fP24StA0 MRnnJze/ZKrvGe8O+oR7PG6LhHyPpH6nbg2y8v/lqBR0rHylVtJ3xMnkFryX3/0x zBm9ulK3HBg2HkoQpUjC22HbIVoCti878YL+prJhJ6NXvoX8kwBvMgATqvK+8591 Q3OOznO2I0rdXemXTEtHmdj3+yJk/ghv4WicSex0mJwT7SzZuA7fY2zo+oGvud3E 4EPUvB8/6yLR6waHWAgrVbXeI3f/a8IbQMq13WC3EOjdP4NxwNs2Sdbx2gWSNmdj CA== -----END CERTIFICATE-----Generated at Tue Jun 3 23:09:41 2025 by rpki-client