$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150251.roa File: AS150251.roa (raw, json) Hash identifier: /UnkFsRhwUhtakxVPdO/n1PuFV/PqEJk7EnA9HrwgfM= Subject key identifier: 96:3F:1C:01:DE:5F:99:FB:F4:98:B9:BB:91:49:29:2B:1C:E5:6C:5D Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 27887CD428DA15B4B88C3D3902E57C9BF2040B58 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150251.roa Signing time: Sat 02 May 2026 09:27:36 +0000 ROA not before: Sat 02 May 2026 09:22:36 +0000 ROA not after: Sat 01 May 2027 09:27:36 +0000 asID: 150251 IP address blocks: 49.156.58.0/23 maxlen: 24 49.156.61.0/24 maxlen: 24 49.156.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:88:7c:d4:28:da:15:b4:b8:8c:3d:39:02:e5:7c:9b:f2:04:0b:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:36 2026 GMT Not After : May 1 09:27:36 2027 GMT Subject: CN=963F1C01DE5F99FBF498B9BB9149292B1CE56C5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:88:5a:c8:3b:8e:49:a8:50:1e:3f:f5:36:a9: ae:09:d3:d1:1f:67:fe:ec:bc:a2:bc:fa:b6:fe:c9: 42:0e:16:b9:62:72:11:58:74:d7:a0:d6:15:60:9b: 05:7f:02:a7:35:3d:70:1b:e5:5f:2e:98:bf:60:6a: 0a:98:98:a5:21:84:e1:cd:24:98:fa:1b:b5:3f:df: 18:79:35:33:da:f6:9b:a8:46:ac:05:d2:dd:42:95: 69:51:0a:4d:1d:79:0c:ca:43:9f:66:51:d3:a8:bf: b8:c1:e7:db:6a:2b:e4:bf:28:6c:d5:a9:b3:9f:37: 24:22:24:cd:9c:3a:85:57:4d:be:c6:0a:7a:48:73: ad:b5:d5:88:97:5c:ff:cd:01:f9:1c:d8:5e:d3:ed: 1f:9e:6d:f3:3f:cf:b2:41:a7:3f:e5:1c:e0:b6:89: f6:39:69:38:18:a9:01:3e:8d:47:c9:63:c2:ff:ba: 5f:c9:be:8e:5b:37:cb:4b:21:08:81:61:b0:a2:b1: ab:68:32:d6:a5:e0:09:74:c7:05:25:3f:6c:a1:cf: a7:59:82:e1:bd:b7:4c:3c:1e:61:ac:27:00:d9:7c: c0:4b:47:c7:40:7b:06:71:eb:c5:94:79:69:a8:93: e6:00:f2:c1:38:6c:2f:ca:46:5e:29:83:09:97:81: 8c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3F:1C:01:DE:5F:99:FB:F4:98:B9:BB:91:49:29:2B:1C:E5:6C:5D X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150251.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.58.0/23 49.156.61.0-49.156.63.255 Signature Algorithm: sha256WithRSAEncryption 78:a6:9d:46:43:82:00:3f:cc:f9:63:d7:7b:54:6d:9d:85:62: 3e:6b:a9:04:32:96:e7:a8:1a:08:dd:16:a0:da:6c:8e:4f:d4: 02:78:cb:ee:6f:5b:ca:1a:13:3f:5f:8c:02:37:15:71:f6:17: fa:90:3d:5a:33:04:85:ee:c1:c4:93:75:3b:9f:27:48:88:bd: 48:4f:f4:e0:b7:67:b7:39:04:32:7a:c5:9e:8f:3c:be:44:ad: 1e:73:90:2c:3b:2e:54:94:c2:26:be:91:d3:b4:ab:a1:99:a2: 3c:a2:ce:c2:8e:d1:be:4c:75:fd:2b:79:88:96:f2:aa:bc:54: 1c:6b:60:b3:9b:5d:e8:c2:45:68:fe:ef:dc:e1:9a:77:9a:a4: 23:20:0f:88:2c:d5:92:d2:7a:94:5e:fa:4a:ef:cc:f2:77:08: a8:07:6c:89:f4:61:75:6d:e9:19:0a:f2:48:0b:4c:50:5a:9b: 95:ad:f0:6c:64:88:18:16:fd:76:fb:40:fb:99:d0:26:b3:46: d7:d1:ae:15:ef:7d:d6:30:32:83:99:28:3c:28:4f:02:74:c7: 76:53:a8:fb:5d:43:27:17:cf:55:b7:62:d3:b8:81:3b:f2:03: 80:87:7c:0b:f1:2c:62:8e:d1:a8:e2:28:32:52:f8:9d:a5:cb: 22:75:46:1a -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgIUJ4h81CjaFbS4jD05AuV8m/IEC1gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIzNloX DTI3MDUwMTA5MjczNlowMzExMC8GA1UEAxMoOTYzRjFDMDFERTVGOTlGQkY0OThC OUJCOTE0OTI5MkIxQ0U1NkM1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJOIWsg7jkmoUB4/9TaprgnT0R9n/uy8orz6tv7JQg4WuWJyEVh016DWFWCb BX8CpzU9cBvlXy6Yv2BqCpiYpSGE4c0kmPobtT/fGHk1M9r2m6hGrAXS3UKVaVEK TR15DMpDn2ZR06i/uMHn22or5L8obNWps583JCIkzZw6hVdNvsYKekhzrbXViJdc /80B+RzYXtPtH55t8z/PskGnP+Uc4LaJ9jlpOBipAT6NR8ljwv+6X8m+jls3y0sh CIFhsKKxq2gy1qXgCXTHBSU/bKHPp1mC4b23TDweYawnANl8wEtHx0B7BnHrxZR5 aaiT5gDywThsL8pGXimDCZeBjL8CAwEAAaOCAdowggHWMB0GA1UdDgQWBBSWPxwB 3l+Z+/SYubuRSSkrHOVsXTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMjUxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIA ATAUAwQBMZw6MAwDBAAxnD0DBAYxnAAwDQYJKoZIhvcNAQELBQADggEBAHimnUZD ggA/zPlj13tUbZ2FYj5rqQQylueoGgjdFqDabI5P1AJ4y+5vW8oaEz9fjAI3FXH2 F/qQPVozBIXuwcSTdTufJ0iIvUhP9OC3Z7c5BDJ6xZ6PPL5ErR5zkCw7LlSUwia+ kdO0q6GZojyizsKO0b5Mdf0reYiW8qq8VBxrYLObXejCRWj+79zhmneapCMgD4gs 1ZLSepRe+krvzPJ3CKgHbIn0YXVt6RkK8kgLTFBam5Wt8GxkiBgW/Xb7QPuZ0Caz RtfRrhXvfdYwMoOZKDwoTwJ0x3ZTqPtdQycXz1W3YtO4gTvyA4CHfAvxLGKO0aji KDJS+J2lyyJ1Rho= -----END CERTIFICATE-----Generated at Sun May 3 00:42:07 2026 by rpki-client