$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150233.roa File: AS150233.roa (raw, json) Hash identifier: X3X7Gi/fL9DOS+LbuMdjhTvePR7h4SEHcAgC6rvVHjU= Subject key identifier: 92:56:5B:7B:CA:90:FE:F8:76:21:69:D1:D7:9E:E7:B9:67:EE:C1:CE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3AD528CC1B8C791965A1E050E8E1DCF85E5B76AA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150233.roa Signing time: Sat 02 May 2026 21:19:46 +0000 ROA not before: Sat 02 May 2026 21:14:46 +0000 ROA not after: Sat 01 May 2027 21:19:46 +0000 asID: 150233 IP address blocks: 103.71.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:d5:28:cc:1b:8c:79:19:65:a1:e0:50:e8:e1:dc:f8:5e:5b:76:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:14:46 2026 GMT Not After : May 1 21:19:46 2027 GMT Subject: CN=92565B7BCA90FEF8762169D1D79EE7B967EEC1CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:d6:45:46:b1:51:27:1c:80:31:ec:a6:76: ad:29:db:89:d3:a0:2d:fa:db:f6:4d:f8:75:06:54: 33:68:3f:7a:1b:94:50:2f:8f:b9:2c:33:b8:1f:30: 41:9e:89:3a:6f:44:65:7d:5c:96:5e:cf:3c:79:36: c8:fd:ef:50:16:ef:ec:7e:cb:d3:7c:3c:2b:b5:0d: 40:fb:3f:00:3d:2a:a7:ae:0d:05:d6:b7:6c:1f:11: 61:de:80:cd:29:7f:29:25:c1:09:ce:6d:84:d1:4a: 65:fb:52:32:d8:f1:45:bd:10:0c:51:70:5e:b5:08: 2b:68:ba:5c:fc:f2:46:65:0a:21:dd:46:b9:30:8f: 64:d0:77:e0:85:20:dc:1e:fb:d4:1b:3c:35:61:36: a1:fa:12:a3:cc:ec:ba:55:90:97:80:c0:64:17:c4: bf:00:9a:2e:9b:58:4d:65:11:00:24:a4:d1:5c:d6: 8f:c3:9c:b2:50:15:82:10:e2:a6:58:34:d0:36:3f: 1e:13:14:e6:27:e4:09:59:26:16:41:a9:90:04:97: f3:d9:e9:3c:4c:5b:ed:55:ab:7c:37:33:0a:83:92: c1:74:6b:ff:9d:9f:cf:d2:b4:96:03:71:f9:0c:f3: 48:b7:d5:c0:67:22:74:14:a8:fd:f1:e5:88:95:29: 72:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:56:5B:7B:CA:90:FE:F8:76:21:69:D1:D7:9E:E7:B9:67:EE:C1:CE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.25.0/24 Signature Algorithm: sha256WithRSAEncryption 45:ab:a9:54:f3:cb:37:97:58:76:23:72:ce:ee:22:a9:2f:b4: 41:6b:51:7c:53:d4:08:19:cd:03:03:ee:a5:0f:6e:1c:53:eb: a3:e1:03:e5:d2:e1:cf:40:a9:dc:cc:23:9a:f4:8d:30:87:ad: f8:2a:80:3d:3e:8f:4d:0b:1a:76:8d:e2:ba:66:f7:9e:78:7b: 0d:b2:34:12:3a:e2:f6:dd:d8:ef:a4:dd:db:34:c1:92:c9:f8: 50:aa:61:0c:7d:de:46:78:58:06:2f:65:04:06:7b:cf:b4:19: 97:43:3c:41:cd:59:da:2e:57:65:c4:a9:25:9d:9b:af:5f:8a: c9:01:7e:2c:d5:eb:b4:68:48:f8:eb:92:34:bc:a7:16:a4:94: fd:af:9f:0f:8b:4b:17:a5:6f:47:c4:ee:90:b3:1f:80:e3:30: ab:46:3c:55:7c:18:b8:df:18:7c:9e:54:5c:80:e0:5c:dd:e2: 0c:37:a2:f4:4b:b1:b5:86:ad:45:03:21:ac:ab:af:9f:f5:f3: 98:98:23:d8:3e:3c:60:2d:37:cb:d8:19:12:b3:22:34:ef:f5: 7e:1c:73:c8:f4:5e:44:17:79:c4:fa:ae:8d:2f:66:d4:4c:51: c3:36:f2:2e:52:c0:49:e5:fe:fb:63:ba:1d:5f:91:c0:fd:9e: c5:c2:58:39 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUOtUozBuMeRlloeBQ6OHc+F5bdqowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTQ0NloX DTI3MDUwMTIxMTk0NlowMzExMC8GA1UEAxMoOTI1NjVCN0JDQTkwRkVGODc2MjE2 OUQxRDc5RUU3Qjk2N0VFQzFDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVc1kVGsVEnHIAx7KZ2rSnbidOgLfrb9k34dQZUM2g/ehuUUC+PuSwzuB8w QZ6JOm9EZX1cll7PPHk2yP3vUBbv7H7L03w8K7UNQPs/AD0qp64NBda3bB8RYd6A zSl/KSXBCc5thNFKZftSMtjxRb0QDFFwXrUIK2i6XPzyRmUKId1GuTCPZNB34IUg 3B771Bs8NWE2ofoSo8zsulWQl4DAZBfEvwCaLptYTWURACSk0VzWj8OcslAVghDi plg00DY/HhMU5ifkCVkmFkGpkASX89npPExb7VWrfDczCoOSwXRr/52fz9K0lgNx +QzzSLfVwGcidBSo/fHliJUpck8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSSVlt7 ypD++HYhadHXnue5Z+7BzjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMjMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ0cZMA0GCSqGSIb3DQEBCwUAA4IBAQBFq6lU88s3l1h2I3LO7iKpL7RB a1F8U9QIGc0DA+6lD24cU+uj4QPl0uHPQKnczCOa9I0wh634KoA9Po9NCxp2jeK6 ZveeeHsNsjQSOuL23djvpN3bNMGSyfhQqmEMfd5GeFgGL2UEBnvPtBmXQzxBzVna LldlxKklnZuvX4rJAX4s1eu0aEj465I0vKcWpJT9r58Pi0sXpW9HxO6Qsx+A4zCr RjxVfBi43xh8nlRcgOBc3eIMN6L0S7G1hq1FAyGsq6+f9fOYmCPYPjxgLTfL2BkS syI07/V+HHPI9F5EF3nE+q6NL2bUTFHDNvIuUsBJ5f77Y7odX5HA/Z7Fwlg5 -----END CERTIFICATE-----Generated at Sun May 3 00:40:18 2026 by rpki-client