$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150226.roa File: AS150226.roa (raw, json) Hash identifier: RA9jLtuFS4eEQ36/J97ua3yKIKDAri9BxSxgA+c1JqM= Subject key identifier: F9:9D:5E:B5:2F:70:A7:9C:2C:39:24:FB:DD:3A:6B:67:9B:A8:39:02 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 088AAA01222CB785AE47FCE5319FCF2ECAAEBBFA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150226.roa Signing time: Sat 02 May 2026 09:20:33 +0000 ROA not before: Sat 02 May 2026 09:15:33 +0000 ROA not after: Sat 01 May 2027 09:20:33 +0000 asID: 150226 IP address blocks: 103.17.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:8a:aa:01:22:2c:b7:85:ae:47:fc:e5:31:9f:cf:2e:ca:ae:bb:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:33 2026 GMT Not After : May 1 09:20:33 2027 GMT Subject: CN=F99D5EB52F70A79C2C3924FBDD3A6B679BA83902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:aa:10:95:f9:60:2c:9d:2a:4c:e5:21:77:2a: be:35:0a:cf:44:1a:c1:f8:61:29:63:00:f7:9f:40: 23:75:4e:e5:1b:ac:8a:fb:b8:c9:dd:62:72:bc:53: 02:e6:23:df:de:71:3e:69:69:8d:aa:32:7e:a1:64: 64:ab:30:5a:88:f1:ce:d9:70:e2:61:96:6c:c4:ff: c2:73:ac:15:8a:bc:88:5f:d5:48:95:48:b6:f3:7e: eb:5e:b2:fb:c7:36:6c:85:54:6c:2a:fc:06:96:a7: 44:4e:98:26:da:e8:89:f1:54:42:66:a7:ee:0d:c6: b4:aa:e8:2d:4c:25:ea:f4:40:91:56:4b:7c:41:7b: 8e:71:ee:5a:54:32:bb:fd:44:e3:63:97:54:0c:2b: cb:c4:46:bd:7d:f1:b7:80:1f:4e:16:0c:cf:b0:c6: eb:c4:db:3b:41:ec:9b:7e:08:9a:fe:fd:3c:c6:54: 7b:4c:e0:10:7c:8e:59:e2:cf:4c:98:ed:85:28:50: c8:28:3b:36:ef:61:4a:27:64:a6:a6:b7:ba:aa:30: ec:1e:6f:5b:fe:a7:13:bb:83:5f:cc:25:bf:e9:20: f4:3d:bb:00:45:d5:b5:31:ed:f2:27:96:39:d6:ec: f8:e9:06:e5:20:a8:4b:56:8f:e2:00:46:37:d2:51: 06:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9D:5E:B5:2F:70:A7:9C:2C:39:24:FB:DD:3A:6B:67:9B:A8:39:02 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150226.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.178.0/23 Signature Algorithm: sha256WithRSAEncryption 08:56:fe:b3:e9:bf:fa:20:9d:6e:f2:21:d8:cd:d3:22:af:37: 49:be:99:05:10:71:be:fd:3b:35:d6:c8:04:d8:b8:ca:f1:23: de:c5:84:dd:4d:09:7e:dd:e9:93:08:54:e6:2d:52:d8:63:03: 4a:df:79:8c:72:36:86:4e:a0:a7:8d:75:7d:a5:99:d4:c0:cd: af:80:fb:08:24:26:10:c6:a1:20:57:f7:ce:58:be:e7:9e:a2: cd:39:6b:da:35:52:8a:19:41:9c:f6:61:74:11:26:bc:06:1e: ec:34:fa:80:e2:1b:88:30:ca:22:4f:b6:1f:e2:9e:d0:9f:49: c1:85:6f:fa:02:74:56:8d:77:10:83:28:3e:12:f8:3a:82:a4: 45:65:86:de:7c:cb:40:53:3f:1a:2b:97:c2:15:07:21:a4:c3: 2c:bd:5b:9e:5c:dc:04:9e:05:61:5d:f7:d0:5e:b4:b6:04:2d: d5:36:43:62:ce:46:83:73:ff:a1:9f:63:a0:70:9c:fc:4b:ef: 7e:e4:29:55:0c:d5:87:1d:9c:63:07:ca:0d:5c:8b:48:2b:6f: e8:c1:bc:a4:ac:82:52:dc:70:1f:1c:d3:2a:3c:5d:06:94:97: 8d:d0:c0:45:e9:ab:e6:43:dc:1b:67:ac:87:80:55:aa:71:c8: ae:f9:59:06 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUCIqqASIst4WuR/zlMZ/PLsquu/owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUzM1oX DTI3MDUwMTA5MjAzM1owMzExMC8GA1UEAxMoRjk5RDVFQjUyRjcwQTc5QzJDMzky NEZCREQzQTZCNjc5QkE4MzkwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMqqEJX5YCydKkzlIXcqvjUKz0QawfhhKWMA959AI3VO5Rusivu4yd1icrxT AuYj395xPmlpjaoyfqFkZKswWojxztlw4mGWbMT/wnOsFYq8iF/VSJVItvN+616y +8c2bIVUbCr8BpanRE6YJtroifFUQman7g3GtKroLUwl6vRAkVZLfEF7jnHuWlQy u/1E42OXVAwry8RGvX3xt4AfThYMz7DG68TbO0Hsm34Imv79PMZUe0zgEHyOWeLP TJjthShQyCg7Nu9hSidkpqa3uqow7B5vW/6nE7uDX8wlv+kg9D27AEXVtTHt8ieW Odbs+OkG5SCoS1aP4gBGN9JRBlUCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT5nV61 L3CnnCw5JPvdOmtnm6g5AjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMjI2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZxGyMA0GCSqGSIb3DQEBCwUAA4IBAQAIVv6z6b/6IJ1u8iHYzdMirzdJ vpkFEHG+/Ts11sgE2LjK8SPexYTdTQl+3emTCFTmLVLYYwNK33mMcjaGTqCnjXV9 pZnUwM2vgPsIJCYQxqEgV/fOWL7nnqLNOWvaNVKKGUGc9mF0ESa8Bh7sNPqA4huI MMoiT7Yf4p7Qn0nBhW/6AnRWjXcQgyg+Evg6gqRFZYbefMtAUz8aK5fCFQchpMMs vVueXNwEngVhXffQXrS2BC3VNkNizkaDc/+hn2OgcJz8S+9+5ClVDNWHHZxjB8oN XItIK2/owbykrIJS3HAfHNMqPF0GlJeN0MBF6avmQ9wbZ6yHgFWqcciu+VkG -----END CERTIFICATE-----Generated at Sun May 3 01:44:55 2026 by rpki-client