$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150191.roa File: AS150191.roa (raw, json) Hash identifier: IuCp/uMUsULMK2tzAXFRwGxbNgYxyobk9w63wGeAiJ0= Subject key identifier: 0F:48:61:90:38:DC:CF:5E:81:10:F2:DB:34:87:31:33:5B:91:0F:C9 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 577822EBC1CD3AECFA86D6F75CAD9B909A620509 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150191.roa Signing time: Sat 02 May 2026 17:23:03 +0000 ROA not before: Sat 02 May 2026 17:18:03 +0000 ROA not after: Sat 01 May 2027 17:23:03 +0000 asID: 150191 IP address blocks: 103.44.19.0/24 maxlen: 24 103.152.21.0/24 maxlen: 24 103.255.109.0/24 maxlen: 24 2001:df2:5dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:78:22:eb:c1:cd:3a:ec:fa:86:d6:f7:5c:ad:9b:90:9a:62:05:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 17:18:03 2026 GMT Not After : May 1 17:23:03 2027 GMT Subject: CN=0F48619038DCCF5E8110F2DB348731335B910FC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5f:bd:5d:bb:13:1c:83:cd:06:12:dc:88:11: f9:20:b1:6d:34:4c:5b:68:a1:dc:d5:41:1a:94:16: b2:b7:f4:7b:11:f1:da:d5:29:81:67:ff:09:9a:66: 9f:1e:65:b6:ca:42:f0:e2:a1:b7:f8:90:3a:31:ff: c3:ea:72:91:0c:1b:1b:dc:d8:a8:31:0b:f8:34:6e: fd:81:da:56:56:a0:2e:43:83:a7:0f:06:37:a9:be: 11:a8:51:09:76:97:20:da:0f:bc:78:56:24:30:68: 1f:15:13:51:9c:66:e2:32:62:06:d1:a6:36:2d:a3: 1d:34:b6:0a:4a:d3:33:41:98:87:46:fe:b4:6e:f8: a0:e3:b4:64:4b:0e:4f:7c:76:40:fd:0a:c4:df:39: f4:d8:48:b1:37:1a:90:f3:ff:a8:82:7d:aa:ac:8a: 11:f9:2c:06:1d:a8:56:97:4f:1b:c4:86:c5:39:62: e2:fe:45:02:73:8b:59:06:c7:dc:93:00:dd:52:d9: bd:7b:fc:95:b0:93:05:01:55:3e:fa:c3:8d:d7:2c: c1:1b:83:a9:b0:46:d6:3d:ab:ed:b9:39:0d:7f:d3: c1:36:f9:7e:1a:6c:40:a0:b2:21:40:9f:33:57:b7: 13:8c:f1:e5:8c:dc:1b:dc:d2:b8:00:a0:db:bf:62: 50:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:48:61:90:38:DC:CF:5E:81:10:F2:DB:34:87:31:33:5B:91:0F:C9 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150191.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.19.0/24 103.152.21.0/24 103.255.109.0/24 IPv6: 2001:df2:5dc0::/48 Signature Algorithm: sha256WithRSAEncryption 0a:af:91:0e:00:f4:28:d3:6e:f5:56:96:f9:48:ef:58:fb:07: 60:5b:2a:61:79:03:f4:1d:75:14:2b:a7:b2:da:98:d7:2d:27: ac:b7:b8:bb:2c:5c:fd:65:53:8e:ae:2d:2d:45:d6:9d:af:16: 1c:3a:58:a9:11:8d:b5:b4:6e:99:42:cc:8d:24:04:2c:47:f4: 4b:f7:6f:e9:19:a0:a1:89:f5:6c:f5:73:f4:7b:76:23:75:8a: f2:1e:16:63:b1:e6:22:c8:22:7e:24:e5:72:ca:90:2c:16:30: 75:42:ae:33:79:1b:e4:d2:0b:eb:3c:98:f1:09:f4:d7:02:68: 84:11:a7:ae:e2:41:08:e9:8b:34:be:d0:c6:81:fa:61:9a:af: 4a:63:d4:12:1e:95:6a:1f:00:e7:a4:ed:5f:2b:fe:b6:0e:05: d6:7c:1e:20:f4:af:c7:09:17:2d:90:41:ce:11:ae:af:be:73: 98:54:e2:82:4b:29:b9:6d:39:bf:0b:55:ce:64:33:fe:2e:01: a9:4c:7d:16:cf:e5:18:48:f3:1a:53:bf:c6:9f:8b:7c:2d:52: 91:ca:86:7f:26:34:fd:e4:f9:9a:99:4d:aa:eb:83:29:6c:82: 80:43:91:c9:26:91:5c:84:be:c2:c8:14:55:dc:54:0e:27:81: bd:a7:ff:c7 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUV3gi68HNOuz6htb3XK2bkJpiBQkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE3MTgwM1oX DTI3MDUwMTE3MjMwM1owMzExMC8GA1UEAxMoMEY0ODYxOTAzOERDQ0Y1RTgxMTBG MkRCMzQ4NzMxMzM1QjkxMEZDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJRfvV27ExyDzQYS3IgR+SCxbTRMW2ih3NVBGpQWsrf0exHx2tUpgWf/CZpm nx5ltspC8OKht/iQOjH/w+pykQwbG9zYqDEL+DRu/YHaVlagLkODpw8GN6m+EahR CXaXINoPvHhWJDBoHxUTUZxm4jJiBtGmNi2jHTS2CkrTM0GYh0b+tG74oOO0ZEsO T3x2QP0KxN859NhIsTcakPP/qIJ9qqyKEfksBh2oVpdPG8SGxTli4v5FAnOLWQbH 3JMA3VLZvXv8lbCTBQFVPvrDjdcswRuDqbBG1j2r7bk5DX/TwTb5fhpsQKCyIUCf M1e3E4zx5YzcG9zSuACg279iUAUCAwEAAaOCAekwggHlMB0GA1UdDgQWBBQPSGGQ ONzPXoEQ8ts0hzEzW5EPyTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMTkxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIA ATASAwQAZywTAwQAZ5gVAwQAZ/9tMA8EAgACMAkDBwAgAQ3yXcAwDQYJKoZIhvcN AQELBQADggEBAAqvkQ4A9CjTbvVWlvlI71j7B2BbKmF5A/QddRQrp7LamNctJ6y3 uLssXP1lU46uLS1F1p2vFhw6WKkRjbW0bplCzI0kBCxH9Ev3b+kZoKGJ9Wz1c/R7 diN1ivIeFmOx5iLIIn4k5XLKkCwWMHVCrjN5G+TSC+s8mPEJ9NcCaIQRp67iQQjp izS+0MaB+mGar0pj1BIelWofAOek7V8r/rYOBdZ8HiD0r8cJFy2QQc4Rrq++c5hU 4oJLKbltOb8LVc5kM/4uAalMfRbP5RhI8xpTv8afi3wtUpHKhn8mNP3k+ZqZTarr gylsgoBDkckmkVyEvsLIFFXcVA4ngb2n/8c= -----END CERTIFICATE-----Generated at Sun May 3 00:39:41 2026 by rpki-client