$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150249.roa File: AS150249.roa (raw, json) Hash identifier: GJzExjlSVVDCLcoMozDQo/YZNaB5Aqy43fdm162DTaE= Subject key identifier: 08:C7:DD:E8:9C:34:53:98:D3:CD:34:8F:A4:91:22:B1:8B:3B:BE:C0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3F76288A996CD28EFC969BBFDD790E944875D219 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150249.roa Signing time: Sat 02 May 2026 15:22:27 +0000 ROA not before: Sat 02 May 2026 15:17:27 +0000 ROA not after: Sat 01 May 2027 15:22:27 +0000 asID: 150249 IP address blocks: 103.87.68.0/24 maxlen: 24 2001:df1:7340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 21:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:76:28:8a:99:6c:d2:8e:fc:96:9b:bf:dd:79:0e:94:48:75:d2:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 15:17:27 2026 GMT Not After : May 1 15:22:27 2027 GMT Subject: CN=08C7DDE89C345398D3CD348FA49122B18B3BBEC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d1:f3:0d:e2:ad:b3:dd:13:2b:23:c8:6e:58: 1c:80:33:6d:94:17:ac:c7:05:57:79:b1:6f:81:50: fa:8e:6e:05:56:41:6e:82:b1:1d:3c:a3:fe:21:49: 3e:e5:5b:33:eb:0b:5d:30:37:57:eb:7d:ea:5c:b8: 41:a7:92:cb:c2:2c:50:68:7a:f9:89:b6:e8:f0:2c: b6:77:a4:50:a2:24:f8:33:cd:01:32:6d:c4:9d:54: 2f:19:f8:5b:64:92:b4:ae:59:3f:fb:43:02:a2:d1: b0:67:d2:c2:16:80:4d:3f:f8:b9:7a:5e:53:07:99: e8:4b:9c:39:03:21:5d:b8:52:d9:f8:57:b0:d1:b7: 62:2a:56:0e:d3:ab:3a:1c:69:b7:0d:28:80:bb:0f: af:cb:c1:40:51:81:93:54:dc:1f:c3:ca:6a:bd:e5: 1d:6c:b2:1c:02:0b:62:82:7a:4b:47:2e:ef:c6:b6: 60:d3:88:51:e7:3e:ae:14:ca:ef:3c:21:1e:27:b2: 70:7a:e0:f5:95:25:15:ea:fb:c5:07:b1:17:44:05: 69:fa:fc:92:ab:46:43:f4:2c:e4:5b:88:c0:6f:2b: 0c:fc:ba:0c:64:ba:d3:e2:cc:ae:b8:5c:fc:7c:95: fb:0a:da:82:7b:b3:c0:17:cf:9b:39:fa:80:82:49: b7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C7:DD:E8:9C:34:53:98:D3:CD:34:8F:A4:91:22:B1:8B:3B:BE:C0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150249.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.68.0/24 IPv6: 2001:df1:7340::/48 Signature Algorithm: sha256WithRSAEncryption 37:5f:94:4e:92:c9:4e:65:f0:d8:3e:78:e7:62:fa:8b:60:bc: 30:8a:03:52:ea:10:62:f5:84:37:28:c2:e2:76:d6:4f:a8:25: df:91:d1:fa:af:ee:12:50:b1:a5:f7:4d:ba:9e:7c:70:a4:2f: 68:13:2e:0b:0c:60:88:f3:79:8c:32:b3:0f:f9:18:ad:d1:87: 1d:bb:73:c7:3a:a1:a3:90:1b:0f:36:35:ce:62:66:b9:0c:7d: 29:67:4c:ca:68:3b:8b:ad:09:b7:c8:24:00:24:e1:94:7b:eb: a9:bd:c8:22:3d:40:60:46:cb:af:f6:43:b7:c4:69:ed:9d:9b: 9c:3b:c6:6b:7d:93:32:7b:2c:cc:39:cf:8f:71:53:da:30:07: 77:50:37:8e:54:d3:84:a6:77:f7:37:c3:2e:e6:fc:73:eb:91: 48:c4:5c:51:1c:d3:1d:16:05:ee:fc:4a:4f:1a:da:49:9e:91: d5:71:0f:82:56:70:12:0a:58:3c:78:62:f5:00:c6:91:b8:8c: 2e:05:50:f0:e9:b6:b6:78:4f:6e:01:8c:8b:16:4d:56:2b:b5: eb:1c:4b:70:ba:49:e6:87:97:60:6f:ff:c6:3c:d4:26:8a:0f: 98:2e:7a:ed:70:3e:cc:6d:2c:b2:52:6b:eb:f4:17:00:77:49: 17:41:18:bf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUP3Yoipls0o78lpu/3XkOlEh10hkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE1MTcyN1oX DTI3MDUwMTE1MjIyN1owMzExMC8GA1UEAxMoMDhDN0RERTg5QzM0NTM5OEQzQ0Qz NDhGQTQ5MTIyQjE4QjNCQkVDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfR8w3irbPdEysjyG5YHIAzbZQXrMcFV3mxb4FQ+o5uBVZBboKxHTyj/iFJ PuVbM+sLXTA3V+t96ly4QaeSy8IsUGh6+Ym26PAstnekUKIk+DPNATJtxJ1ULxn4 W2SStK5ZP/tDAqLRsGfSwhaATT/4uXpeUweZ6EucOQMhXbhS2fhXsNG3YipWDtOr Ohxptw0ogLsPr8vBQFGBk1TcH8PKar3lHWyyHAILYoJ6S0cu78a2YNOIUec+rhTK 7zwhHieycHrg9ZUlFer7xQexF0QFafr8kqtGQ/Qs5FuIwG8rDPy6DGS60+LMrrhc /HyV+wragnuzwBfPmzn6gIJJtw8CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQIx93o nDRTmNPNNI+kkSKxizu+wDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMjQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ1dEMA8EAgACMAkDBwAgAQ3xc0AwDQYJKoZIhvcNAQELBQADggEBADdf lE6SyU5l8Ng+eOdi+otgvDCKA1LqEGL1hDcowuJ21k+oJd+R0fqv7hJQsaX3Tbqe fHCkL2gTLgsMYIjzeYwysw/5GK3Rhx27c8c6oaOQGw82Nc5iZrkMfSlnTMpoO4ut CbfIJAAk4ZR766m9yCI9QGBGy6/2Q7fEae2dm5w7xmt9kzJ7LMw5z49xU9owB3dQ N45U04Smd/c3wy7m/HPrkUjEXFEc0x0WBe78Sk8a2kmekdVxD4JWcBIKWDx4YvUA xpG4jC4FUPDptrZ4T24BjIsWTVYrtescS3C6SeaHl2Bv/8Y81CaKD5gueu1wPsxt LLJSa+v0FwB3SRdBGL8= -----END CERTIFICATE-----Generated at Sat May 2 22:51:09 2026 by rpki-client