$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150478.roa File: AS150478.roa (raw, json) Hash identifier: UbUuWIZtJRIO4Jn41hSlXIPXV+B5am6r7F+hEPxX1GU= Subject key identifier: 46:80:B7:AD:6F:52:C1:CB:C3:32:16:7F:39:56:64:BF:D7:91:95:7F Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 31CE8939BDD719728FC0C1AA2B3DB38D685872B4 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150478.roa Signing time: Sat 02 May 2026 09:25:24 +0000 ROA not before: Sat 02 May 2026 09:20:24 +0000 ROA not after: Sat 01 May 2027 09:25:24 +0000 asID: 150478 IP address blocks: 180.131.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ce:89:39:bd:d7:19:72:8f:c0:c1:aa:2b:3d:b3:8d:68:58:72:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:20:24 2026 GMT Not After : May 1 09:25:24 2027 GMT Subject: CN=4680B7AD6F52C1CBC332167F395664BFD791957F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d7:c8:1d:06:ba:1b:b7:aa:8e:81:ef:03:88: c2:a6:8e:27:ee:dd:b2:63:7d:87:ad:f3:2a:19:4c: 44:8f:55:f0:9b:fd:5a:58:ac:95:0b:fc:13:e5:b0: 9b:d8:ab:70:d7:45:5f:ea:25:4d:10:4b:9f:4f:b2: f5:d9:dd:63:a5:b8:61:31:c0:c7:fb:14:1a:0d:63: c3:41:20:ee:2c:31:a3:a2:52:0f:f9:af:81:43:d3: 82:95:b7:66:5c:f5:2a:03:89:fc:e7:3c:e9:24:67: ee:e8:af:57:99:94:da:c1:55:4d:e2:a0:fe:04:42: e5:3e:90:ff:0a:af:37:e9:ac:64:22:a9:fa:62:a7: c9:2f:fc:f2:74:3c:64:f7:f7:38:19:06:c3:4d:bb: 96:49:91:01:53:98:8f:32:5b:47:a1:0a:16:b8:5f: 3d:f7:6f:fb:99:8a:8a:b9:03:ee:94:c7:97:c5:96: 2d:eb:8a:ad:86:0c:41:d1:6c:c4:8d:76:3b:e9:04: a8:8b:bd:93:35:3c:2e:50:37:86:da:38:d9:40:e0: 7a:20:8d:36:08:c7:ef:d8:46:5b:2b:0c:29:f4:13: 8a:b5:bd:d7:54:f6:b2:c8:3b:be:15:ed:7e:07:94: af:53:66:49:d7:b1:ec:8e:64:0d:14:09:87:7d:62: a6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:80:B7:AD:6F:52:C1:CB:C3:32:16:7F:39:56:64:BF:D7:91:95:7F X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150478.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.131.0/24 Signature Algorithm: sha256WithRSAEncryption 16:fa:7f:8e:68:e2:be:f5:89:95:91:16:13:de:9e:d6:45:cb: c6:70:d1:4a:ce:ba:e6:c4:aa:10:92:e1:24:0d:f4:ae:45:90: 40:2d:f4:e2:ee:ae:09:04:6a:1e:0a:f2:a2:17:66:62:95:cd: 9a:22:66:14:de:87:a6:6b:e9:d0:35:6c:57:49:e6:9d:dd:53: 09:a7:a2:2b:a2:6e:d8:6c:10:2a:bc:44:e9:da:a2:68:28:0c: 9c:7e:73:a5:fc:8f:ea:ff:43:7b:48:aa:81:1f:4c:39:08:95: 7a:52:b6:71:d4:d1:08:05:30:9e:87:6a:28:97:f1:8d:25:5e: a6:7b:1c:56:7c:e7:cb:ac:73:dd:f8:d2:d9:8c:10:4f:73:cc: 1d:a8:4a:4c:0d:4c:a4:72:6f:84:3b:ee:e9:d0:b7:c6:9d:9a: a8:03:f8:a9:03:f1:7f:1a:1c:54:62:d7:7c:c0:4e:39:67:87: d5:d2:b7:ae:7d:4e:7b:d1:47:f5:23:9d:09:88:40:47:07:e6: a6:ae:32:06:f7:0c:10:f3:56:68:da:39:38:3c:24:6a:7c:23: 3e:4e:e9:2e:40:5f:07:23:7b:6a:87:99:9a:c7:ce:8c:38:47: 9b:f9:f5:23:de:fd:35:e3:21:44:45:97:c7:bc:f8:d6:73:9d: 47:3f:fe:2d -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUMc6JOb3XGXKPwMGqKz2zjWhYcrQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjAyNFoX DTI3MDUwMTA5MjUyNFowMzExMC8GA1UEAxMoNDY4MEI3QUQ2RjUyQzFDQkMzMzIx NjdGMzk1NjY0QkZENzkxOTU3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKjXyB0Guhu3qo6B7wOIwqaOJ+7dsmN9h63zKhlMRI9V8Jv9WlislQv8E+Ww m9ircNdFX+olTRBLn0+y9dndY6W4YTHAx/sUGg1jw0Eg7iwxo6JSD/mvgUPTgpW3 Zlz1KgOJ/Oc86SRn7uivV5mU2sFVTeKg/gRC5T6Q/wqvN+msZCKp+mKnyS/88nQ8 ZPf3OBkGw027lkmRAVOYjzJbR6EKFrhfPfdv+5mKirkD7pTHl8WWLeuKrYYMQdFs xI12O+kEqIu9kzU8LlA3hto42UDgeiCNNgjH79hGWysMKfQTirW911T2ssg7vhXt fgeUr1NmSdex7I5kDRQJh31ipqsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRGgLet b1LBy8MyFn85VmS/15GVfzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNDc4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAtIODMA0GCSqGSIb3DQEBCwUAA4IBAQAW+n+OaOK+9YmVkRYT3p7WRcvG cNFKzrrmxKoQkuEkDfSuRZBALfTi7q4JBGoeCvKiF2Zilc2aImYU3oema+nQNWxX Sead3VMJp6Irom7YbBAqvETp2qJoKAycfnOl/I/q/0N7SKqBH0w5CJV6UrZx1NEI BTCeh2ool/GNJV6mexxWfOfLrHPd+NLZjBBPc8wdqEpMDUykcm+EO+7p0LfGnZqo A/ipA/F/GhxUYtd8wE45Z4fV0reufU570Uf1I50JiEBHB+amrjIG9wwQ81Zo2jk4 PCRqfCM+TukuQF8HI3tqh5max86MOEeb+fUj3v014yFERZfHvPjWc51HP/4t -----END CERTIFICATE-----Generated at Sun May 3 00:40:40 2026 by rpki-client