$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150263.roa File: AS150263.roa (raw, json) Hash identifier: 7gwB9Qp2v4ixZgYwWH0XSVp0cK2Jp91h37tvWr5Yh44= Subject key identifier: 62:48:DA:AA:D2:F7:3C:51:86:EA:B6:D1:5E:A1:40:C2:14:18:21:51 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0AC830FAEB6E600B676E744A4FA0A77EE9B06B23 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150263.roa Signing time: Sat 02 May 2026 21:26:07 +0000 ROA not before: Sat 02 May 2026 21:21:07 +0000 ROA not after: Sat 01 May 2027 21:26:07 +0000 asID: 150263 IP address blocks: 2001:df1:d940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c8:30:fa:eb:6e:60:0b:67:6e:74:4a:4f:a0:a7:7e:e9:b0:6b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:21:07 2026 GMT Not After : May 1 21:26:07 2027 GMT Subject: CN=6248DAAAD2F73C5186EAB6D15EA140C214182151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:71:66:77:21:61:f7:cf:07:07:c1:02:9f:21: 9f:79:90:f4:dd:16:ae:85:ed:28:39:e7:ab:77:0f: 30:c9:8b:89:cf:ba:1a:75:95:b2:49:9a:7d:f7:07: 6c:6b:4f:27:97:b1:d4:13:b8:52:0b:cb:b4:2c:eb: 5b:d5:91:03:05:a0:51:74:2a:02:b5:a1:4f:cb:53: c8:4e:62:04:ef:89:61:aa:92:98:22:a3:71:60:cb: 1c:4c:f3:cb:47:a9:d6:46:14:0e:d7:ae:11:cb:36: 6f:d6:98:3e:02:2a:87:00:3c:9b:7c:1e:73:dd:85: ed:ed:95:ac:73:57:a9:01:fe:3b:f0:64:dd:6c:52: cc:76:7a:a3:4e:f5:fa:00:f2:85:7c:6a:8a:68:ac: 08:7b:44:fb:cb:ad:c5:db:98:1f:e2:96:a4:75:89: b8:a3:6f:8d:ae:e3:96:37:c5:13:8c:c2:03:19:75: c3:0e:bd:ff:bd:af:d5:87:6a:42:98:99:9f:98:5a: 22:4e:98:0d:5e:fa:ee:0e:31:cf:3c:70:70:16:11: 91:2c:de:da:65:8b:e9:55:6e:7e:9a:d9:14:0e:84: cf:aa:e6:d2:4d:b0:14:33:f0:00:8c:17:0d:40:9a: 3f:70:3f:ab:e3:8a:80:88:69:4f:7b:02:fd:eb:3f: c0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:48:DA:AA:D2:F7:3C:51:86:EA:B6:D1:5E:A1:40:C2:14:18:21:51 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:d940::/48 Signature Algorithm: sha256WithRSAEncryption 02:ce:80:78:fc:5b:30:b0:db:9a:de:8c:20:d1:1b:74:20:77: 3b:ce:74:35:59:b9:8a:5f:ad:ac:b3:ea:77:c2:74:c4:1c:f6: 44:85:30:9e:1f:ad:7f:a4:00:7b:06:68:02:0a:69:05:5d:5f: cb:e5:4d:4b:7c:9b:db:2c:c6:cc:04:5d:0d:78:76:18:d1:95: eb:0d:dc:a2:5d:34:38:48:c7:01:9a:f7:bd:45:5f:87:c2:e3: e5:85:3b:a4:db:f9:30:30:30:29:54:da:d0:ba:e8:91:72:8e: 4b:1d:3a:ff:f5:d3:81:66:20:9c:9d:ba:c4:6f:56:01:9e:52: 70:aa:fc:8a:df:86:a2:7f:14:f1:98:21:ea:e8:54:00:6d:f3: 93:37:a3:8e:25:ba:d8:5d:08:9a:3d:49:4f:b9:ff:37:df:6b: c1:00:f3:9b:61:51:8e:c0:a3:f4:04:ae:80:4f:c7:9c:28:53: 07:e2:20:8b:23:c9:97:2d:93:97:13:06:44:d5:02:8f:03:b9: 3a:ca:de:1c:b0:bc:fb:1e:c6:7d:d7:58:ec:6f:7b:ed:c1:33: 5d:82:3c:43:fd:43:b0:32:9a:1f:de:d7:53:75:a8:d0:65:c2: a8:51:66:37:4e:b3:86:72:3d:26:60:b2:82:db:35:f6:8b:e4: 2c:15:19:14 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUCsgw+utuYAtnbnRKT6CnfumwayMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjEwN1oX DTI3MDUwMTIxMjYwN1owMzExMC8GA1UEAxMoNjI0OERBQUFEMkY3M0M1MTg2RUFC NkQxNUVBMTQwQzIxNDE4MjE1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANVxZnchYffPBwfBAp8hn3mQ9N0WroXtKDnnq3cPMMmLic+6GnWVskmaffcH bGtPJ5ex1BO4UgvLtCzrW9WRAwWgUXQqArWhT8tTyE5iBO+JYaqSmCKjcWDLHEzz y0ep1kYUDteuEcs2b9aYPgIqhwA8m3wec92F7e2VrHNXqQH+O/Bk3WxSzHZ6o071 +gDyhXxqimisCHtE+8utxduYH+KWpHWJuKNvja7jljfFE4zCAxl1ww69/72v1Ydq QpiZn5haIk6YDV767g4xzzxwcBYRkSze2mWL6VVufprZFA6Ez6rm0k2wFDPwAIwX DUCaP3A/q+OKgIhpT3sC/es/wBUCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRiSNqq 0vc8UYbqttFeoUDCFBghUTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwMjYzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN8dlAMA0GCSqGSIb3DQEBCwUAA4IBAQACzoB4/FswsNua3owg0Rt0 IHc7znQ1WbmKX62ss+p3wnTEHPZEhTCeH61/pAB7BmgCCmkFXV/L5U1LfJvbLMbM BF0NeHYY0ZXrDdyiXTQ4SMcBmve9RV+HwuPlhTuk2/kwMDApVNrQuuiRco5LHTr/ 9dOBZiCcnbrEb1YBnlJwqvyK34aifxTxmCHq6FQAbfOTN6OOJbrYXQiaPUlPuf83 32vBAPObYVGOwKP0BK6AT8ecKFMH4iCLI8mXLZOXEwZE1QKPA7k6yt4csLz7HsZ9 11jsb3vtwTNdgjxD/UOwMpof3tdTdajQZcKoUWY3TrOGcj0mYLKC2zX2i+QsFRkU -----END CERTIFICATE-----Generated at Sun May 3 00:39:53 2026 by rpki-client