$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150204.roa File: AS150204.roa (raw, json) Hash identifier: fdfA4JgqL5nDQkW08iyNPx8A9GbrUqgAQofLhg68KWY= Subject key identifier: EB:78:BA:F5:36:1F:D7:9E:EA:4D:D4:D1:C9:5B:62:A9:0D:1C:90:99 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 19F40A9F670CA25D99A8382F7EB48ABB92DF11BD Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150204.roa Signing time: Sat 02 May 2026 09:22:24 +0000 ROA not before: Sat 02 May 2026 09:17:24 +0000 ROA not after: Sat 01 May 2027 09:22:24 +0000 asID: 150204 IP address blocks: 119.47.93.0/24 maxlen: 24 119.47.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f4:0a:9f:67:0c:a2:5d:99:a8:38:2f:7e:b4:8a:bb:92:df:11:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:17:24 2026 GMT Not After : May 1 09:22:24 2027 GMT Subject: CN=EB78BAF5361FD79EEA4DD4D1C95B62A90D1C9099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:34:a1:28:62:ac:c7:e3:69:df:88:51:71:28: 17:4b:c2:e9:13:51:df:bd:d1:a6:32:9b:ad:52:bd: cf:ec:a6:4c:9d:c6:38:7a:6c:2b:6b:3b:dc:0e:bb: b6:36:66:bc:eb:4f:95:7f:bd:96:7c:f6:0a:f9:f1: 45:a0:6f:e3:b3:ed:85:cb:c1:0d:47:e2:b3:74:52: b9:d9:32:8c:25:8c:6b:6e:72:02:31:de:b8:2e:84: aa:6b:83:90:ac:81:45:4c:05:68:ce:40:8d:3b:b6: 00:00:d7:4a:67:7e:34:0e:e6:86:a4:1f:0d:d9:07: b7:2c:8c:0c:6d:a0:78:17:43:0b:96:b9:a5:5c:a3: 08:fe:d4:9c:c1:51:d3:68:f6:90:c1:92:62:f4:95: 20:1e:11:79:c0:82:b0:ab:21:df:2d:ca:a7:95:8a: b0:c3:43:d2:dc:d4:52:ea:c1:e4:bb:81:1f:f2:12: 9e:35:d1:a4:09:b4:62:61:b1:ef:5c:e3:ad:e1:ab: f5:71:15:57:42:5d:56:fe:27:51:6a:2b:3d:10:36: 1f:22:81:7c:7f:de:3e:c8:05:87:1b:8c:1b:15:1c: 51:b7:67:85:5b:1d:44:e6:70:38:07:92:e3:79:39: 43:1b:c4:8c:0e:65:d1:e2:3b:67:17:15:f0:17:6c: dd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:78:BA:F5:36:1F:D7:9E:EA:4D:D4:D1:C9:5B:62:A9:0D:1C:90:99 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150204.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.47.93.0-119.47.94.255 Signature Algorithm: sha256WithRSAEncryption 37:af:03:51:87:2c:a5:ff:1c:77:04:82:93:64:83:cf:2c:58: 85:e2:dd:25:a7:b7:ce:ec:e5:59:30:f2:bb:bb:99:fc:3e:7f: 23:a7:c5:b9:07:b1:1e:27:0f:de:17:5f:48:95:1d:3c:2a:fd: db:39:9a:3b:29:97:cb:62:6b:71:31:04:f9:af:33:aa:c1:6a: 9d:c5:e2:80:fb:c2:e7:c2:3e:ac:96:16:3a:4c:3e:f4:1a:67: 56:8b:b5:60:89:ef:dc:3c:81:9c:c5:46:e4:d4:ae:97:07:b4: 60:db:b9:11:14:28:ec:42:42:64:a6:27:05:02:51:10:d7:78: 3e:2e:30:56:53:ce:80:cf:e8:f1:af:7e:eb:eb:39:8a:27:9c: 57:e1:5e:83:80:d5:09:29:9c:15:76:d6:a8:4f:a8:6e:d2:b8: 3a:bd:a7:49:f8:a6:86:ba:0c:31:ee:1e:51:bc:61:1e:6a:5b: ad:c5:c1:45:14:a2:69:93:3e:0d:5b:b9:08:07:b4:cb:cd:35: 42:7a:0c:33:ac:d4:c3:54:7d:39:97:26:3f:81:77:e5:1e:c5: 21:70:64:4b:b0:eb:7e:c6:98:ce:c7:27:f2:f3:fe:d0:91:65: b1:e9:2f:5f:f7:a8:11:2e:e4:35:84:6f:7e:2e:e9:79:77:1b: 2a:44:32:4f -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUGfQKn2cMol2ZqDgvfrSKu5LfEb0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTcyNFoX DTI3MDUwMTA5MjIyNFowMzExMC8GA1UEAxMoRUI3OEJBRjUzNjFGRDc5RUVBNERE NEQxQzk1QjYyQTkwRDFDOTA5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK80oShirMfjad+IUXEoF0vC6RNR373RpjKbrVK9z+ymTJ3GOHpsK2s73A67 tjZmvOtPlX+9lnz2CvnxRaBv47PthcvBDUfis3RSudkyjCWMa25yAjHeuC6EqmuD kKyBRUwFaM5AjTu2AADXSmd+NA7mhqQfDdkHtyyMDG2geBdDC5a5pVyjCP7UnMFR 02j2kMGSYvSVIB4RecCCsKsh3y3Kp5WKsMND0tzUUurB5LuBH/ISnjXRpAm0YmGx 71zjreGr9XEVV0JdVv4nUWorPRA2HyKBfH/ePsgFhxuMGxUcUbdnhVsdROZwOAeS 43k5QxvEjA5l0eI7ZxcV8Bds3c8CAwEAAaOCAdQwggHQMB0GA1UdDgQWBBTreLr1 Nh/XnupN1NHJW2KpDRyQmTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMjA0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIA ATAOMAwDBAB3L10DBAB3L14wDQYJKoZIhvcNAQELBQADggEBADevA1GHLKX/HHcE gpNkg88sWIXi3SWnt87s5Vkw8ru7mfw+fyOnxbkHsR4nD94XX0iVHTwq/ds5mjsp l8tia3ExBPmvM6rBap3F4oD7wufCPqyWFjpMPvQaZ1aLtWCJ79w8gZzFRuTUrpcH tGDbuREUKOxCQmSmJwUCURDXeD4uMFZTzoDP6PGvfuvrOYonnFfhXoOA1QkpnBV2 1qhPqG7SuDq9p0n4poa6DDHuHlG8YR5qW63FwUUUommTPg1buQgHtMvNNUJ6DDOs 1MNUfTmXJj+Bd+UexSFwZEuw637GmM7HJ/Lz/tCRZbHpL1/3qBEu5DWEb34u6Xl3 GypEMk8= -----END CERTIFICATE-----Generated at Sun May 3 01:44:44 2026 by rpki-client