$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150254.roa File: AS150254.roa (raw, json) Hash identifier: F+dneFp4H/6XiKacFeNRv1zHbgVEhA1CyXmg20CxxE4= Subject key identifier: FE:53:E3:FE:E6:9F:EC:80:8C:22:BB:05:C9:19:BE:E9:F2:6F:3A:C6 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 70D1D9A10D61B5C055EBE23FE995CEF4D8A382A8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150254.roa Signing time: Sat 02 May 2026 08:35:53 +0000 ROA not before: Sat 02 May 2026 08:30:53 +0000 ROA not after: Sat 01 May 2027 08:35:53 +0000 asID: 150254 IP address blocks: 103.28.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d1:d9:a1:0d:61:b5:c0:55:eb:e2:3f:e9:95:ce:f4:d8:a3:82:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:53 2026 GMT Not After : May 1 08:35:53 2027 GMT Subject: CN=FE53E3FEE69FEC808C22BB05C919BEE9F26F3AC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:97:09:69:28:c6:0d:ef:63:70:f0:21:06:30: c6:5b:1e:1d:d0:93:b6:a4:fa:c5:db:63:23:3a:ae: 03:a9:d5:6e:a9:6f:5c:79:d9:2a:e9:e7:fc:17:90: 4e:a5:17:96:8c:26:ee:c5:93:38:e4:96:ef:a7:63: 09:69:12:6e:6f:a6:29:f0:45:1c:ec:fc:e6:68:48: 5e:46:32:9c:b6:b9:40:2a:19:79:d9:11:c4:f6:d6: b2:da:07:7a:6a:c4:dd:24:79:06:ed:b8:5b:f7:5a: 35:f3:29:16:b5:5d:c8:60:a1:18:a9:92:b3:11:2c: 04:28:bc:94:c7:2b:db:d4:a4:10:0a:e9:e5:30:26: 0f:32:8f:68:02:80:1a:3d:d3:f5:ff:70:51:c6:a1: c6:1c:41:22:ba:ca:70:32:e4:ea:2a:66:72:99:ce: 15:12:7f:bd:79:4c:42:34:23:fd:31:e4:e2:61:5e: 7f:4b:2f:83:2d:67:bf:b8:1a:a2:b2:0b:72:e2:6c: 46:99:a3:da:29:39:04:18:e5:6e:1b:32:87:bc:64: e1:17:09:13:27:fc:b4:75:6d:0d:b8:ca:d5:fd:fe: f0:27:c4:ef:75:44:f5:0b:df:fe:41:08:da:d7:63: cc:5e:d0:4d:46:98:9e:5a:f0:52:7d:aa:8d:7e:ed: b8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:53:E3:FE:E6:9F:EC:80:8C:22:BB:05:C9:19:BE:E9:F2:6F:3A:C6 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150254.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.16.0/23 Signature Algorithm: sha256WithRSAEncryption 87:e4:06:18:8f:a1:18:91:d2:d8:d4:51:57:cd:12:f0:16:01: 9e:e9:05:d9:cc:06:60:1b:4e:68:82:b8:9f:04:61:33:98:db: 1a:a6:bf:ae:4f:87:52:34:6c:b3:43:c5:ab:7e:a6:72:be:0f: 69:e4:69:3a:4b:00:3b:b1:62:77:54:45:02:d5:59:ad:5d:c2: f7:da:e0:9c:ba:00:c6:1f:b4:bc:15:00:14:55:6d:f1:a1:30: 97:17:e9:6e:27:3a:ef:88:d8:9c:46:1a:15:d4:a1:6b:a6:25: c0:da:e7:58:20:dc:25:3a:2c:d9:00:5a:12:99:29:37:9e:8b: 77:c6:fa:0e:07:25:6c:cc:98:b7:88:90:bc:83:03:09:cc:02: 78:39:b0:eb:3e:c1:f3:2e:9a:b6:80:d0:5e:27:e8:c1:3f:57: 77:62:d7:5b:62:6c:67:7b:7f:91:7f:3d:1a:d2:7e:be:6b:df: be:a2:32:ef:71:58:9b:85:14:73:23:da:30:a3:e4:08:e2:d0: 8b:37:89:b5:1d:43:93:d0:ff:1d:19:d3:da:db:85:99:e1:93: 69:4a:ad:f9:3d:85:4c:c8:85:b8:35:36:3f:ac:02:59:57:44: 56:99:73:27:3d:cc:b3:69:f4:b7:c6:e7:1c:3e:f8:f7:26:84: 57:7f:ef:37 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcNHZoQ1htcBV6+I/6ZXO9NijgqgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA1M1oX DTI3MDUwMTA4MzU1M1owMzExMC8GA1UEAxMoRkU1M0UzRkVFNjlGRUM4MDhDMjJC QjA1QzkxOUJFRTlGMjZGM0FDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKKXCWkoxg3vY3DwIQYwxlseHdCTtqT6xdtjIzquA6nVbqlvXHnZKunn/BeQ TqUXlowm7sWTOOSW76djCWkSbm+mKfBFHOz85mhIXkYynLa5QCoZedkRxPbWstoH emrE3SR5Bu24W/daNfMpFrVdyGChGKmSsxEsBCi8lMcr29SkEArp5TAmDzKPaAKA Gj3T9f9wUcahxhxBIrrKcDLk6ipmcpnOFRJ/vXlMQjQj/THk4mFef0svgy1nv7ga orILcuJsRpmj2ik5BBjlbhsyh7xk4RcJEyf8tHVtDbjK1f3+8CfE73VE9Qvf/kEI 2tdjzF7QTUaYnlrwUn2qjX7tuMECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT+U+P+ 5p/sgIwiuwXJGb7p8m86xjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMjU0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZxwQMA0GCSqGSIb3DQEBCwUAA4IBAQCH5AYYj6EYkdLY1FFXzRLwFgGe 6QXZzAZgG05ogrifBGEzmNsapr+uT4dSNGyzQ8WrfqZyvg9p5Gk6SwA7sWJ3VEUC 1VmtXcL32uCcugDGH7S8FQAUVW3xoTCXF+luJzrviNicRhoV1KFrpiXA2udYINwl OizZAFoSmSk3not3xvoOByVszJi3iJC8gwMJzAJ4ObDrPsHzLpq2gNBeJ+jBP1d3 YtdbYmxne3+Rfz0a0n6+a9++ojLvcVibhRRzI9owo+QI4tCLN4m1HUOT0P8dGdPa 24WZ4ZNpSq35PYVMyIW4NTY/rAJZV0RWmXMnPcyzafS3xuccPvj3JoRXf+83 -----END CERTIFICATE-----Generated at Tue May 5 08:25:03 2026 by rpki-client