$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150488.roa File: AS150488.roa (raw, json) Hash identifier: d/i2JxTtjnIV4R+SwFT06XJGumDqyFpKXh7F2xKtB0c= Subject key identifier: EB:5F:F8:DE:17:3F:AC:4F:35:1A:60:14:01:CD:61:FE:8F:FF:E3:75 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4D6845195C51502552AF9BE8AB772068BC7896BB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150488.roa Signing time: Sat 02 May 2026 17:06:04 +0000 ROA not before: Sat 02 May 2026 17:01:04 +0000 ROA not after: Sat 01 May 2027 17:06:04 +0000 asID: 150488 IP address blocks: 103.39.72.0/23 maxlen: 24 2001:df2:740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:68:45:19:5c:51:50:25:52:af:9b:e8:ab:77:20:68:bc:78:96:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 17:01:04 2026 GMT Not After : May 1 17:06:04 2027 GMT Subject: CN=EB5FF8DE173FAC4F351A601401CD61FE8FFFE375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:04:6c:ab:04:e2:f7:14:68:0e:ce:1b:b6:72: 45:2d:95:d9:45:a0:e9:48:bb:e4:ee:67:94:dc:e8: 99:88:cc:19:ca:a6:67:d3:bb:7c:b8:6e:32:96:33: bd:c1:0a:13:d2:c8:8e:a5:9a:1f:1d:cf:25:30:ab: ee:47:c3:fa:d6:dd:f5:bb:1b:91:a4:a9:85:f1:f9: 6c:fa:05:df:f6:23:8f:15:c2:86:ef:61:fe:77:6e: 3c:b4:69:c3:dd:7e:ad:1d:85:19:5c:fe:a8:61:6f: e7:62:8b:d7:95:16:a1:4f:c5:62:30:c3:52:b9:49: 09:9e:26:fb:ad:3a:69:c5:cb:c2:a6:18:7f:3b:bd: a6:d7:85:84:50:da:a8:ec:cb:4a:11:86:d1:fe:90: 1f:71:8b:83:e0:89:88:41:4b:bf:62:c7:f2:75:57: 5e:42:fd:8c:a5:c9:39:d0:b0:ae:95:5d:22:d4:77: eb:a0:7b:e4:ab:b2:8a:cd:9b:bb:08:70:b8:6d:66: c4:6c:9f:a5:cf:fb:76:c0:db:e9:d6:a3:9c:17:54: 41:10:f8:2d:0f:41:50:08:32:48:ba:64:a6:ff:f4: d2:03:18:18:54:01:a5:45:48:c6:8b:25:0d:a5:d9: cd:48:9b:fb:45:b5:59:54:cb:8a:58:2c:f4:4e:06: e2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:5F:F8:DE:17:3F:AC:4F:35:1A:60:14:01:CD:61:FE:8F:FF:E3:75 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150488.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.72.0/23 IPv6: 2001:df2:740::/48 Signature Algorithm: sha256WithRSAEncryption 1e:35:11:68:6c:9b:24:e7:6d:4e:13:21:5e:df:e6:66:b5:e3: 1e:ea:f2:90:a0:d9:e8:77:8f:8a:ed:b8:88:c0:c0:c2:a4:41: cd:c9:57:1d:cd:43:91:07:21:4e:b1:69:21:8e:7b:43:9c:67: ec:64:16:9c:e7:e6:51:55:2e:45:53:5b:0e:28:5f:b9:78:a0: 1c:b0:8e:79:1d:fe:d5:38:d2:eb:41:a7:75:e8:e9:33:35:36: ec:e2:ea:3a:7d:f6:1c:98:26:e2:f0:e5:d9:19:da:05:63:74: c1:d3:2d:b7:78:f2:a4:ff:5a:37:54:fc:14:58:07:22:d2:7e: 70:a7:de:20:e5:6d:16:f3:c9:47:58:67:91:64:f4:c8:72:12: 44:eb:d0:6f:32:47:8a:37:10:55:20:10:b9:9a:58:1e:d9:9e: ef:44:8f:6d:b0:25:ad:c6:d7:d3:66:32:fa:aa:f9:66:2f:b3: 32:6b:1c:c6:ee:87:60:59:0d:74:1d:5d:17:92:e5:4a:29:3e: 2b:d4:ca:0d:bf:17:99:2c:28:46:e4:96:23:b5:ba:b7:cc:f0: 24:d0:66:c2:3f:5f:f2:70:ab:ec:de:e4:20:7a:32:aa:b4:62: b3:8c:75:e2:a4:55:73:37:71:2e:db:54:97:c5:9c:6a:22:48: 2f:b3:12:cc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTWhFGVxRUCVSr5voq3cgaLx4lrswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE3MDEwNFoX DTI3MDUwMTE3MDYwNFowMzExMC8GA1UEAxMoRUI1RkY4REUxNzNGQUM0RjM1MUE2 MDE0MDFDRDYxRkU4RkZGRTM3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOoEbKsE4vcUaA7OG7ZyRS2V2UWg6Ui75O5nlNzomYjMGcqmZ9O7fLhuMpYz vcEKE9LIjqWaHx3PJTCr7kfD+tbd9bsbkaSphfH5bPoF3/YjjxXChu9h/nduPLRp w91+rR2FGVz+qGFv52KL15UWoU/FYjDDUrlJCZ4m+606acXLwqYYfzu9pteFhFDa qOzLShGG0f6QH3GLg+CJiEFLv2LH8nVXXkL9jKXJOdCwrpVdItR366B75Kuyis2b uwhwuG1mxGyfpc/7dsDb6dajnBdUQRD4LQ9BUAgySLpkpv/00gMYGFQBpUVIxosl DaXZzUib+0W1WVTLilgs9E4G4j0CAwEAAaOCAd0wggHZMB0GA1UdDgQWBBTrX/je Fz+sTzUaYBQBzWH+j//jdTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNDg4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBZydIMA8EAgACMAkDBwAgAQ3yB0AwDQYJKoZIhvcNAQELBQADggEBAB41 EWhsmyTnbU4TIV7f5ma14x7q8pCg2eh3j4rtuIjAwMKkQc3JVx3NQ5EHIU6xaSGO e0OcZ+xkFpzn5lFVLkVTWw4oX7l4oBywjnkd/tU40utBp3Xo6TM1Nuzi6jp99hyY JuLw5dkZ2gVjdMHTLbd48qT/WjdU/BRYByLSfnCn3iDlbRbzyUdYZ5Fk9MhyEkTr 0G8yR4o3EFUgELmaWB7Znu9Ej22wJa3G19NmMvqq+WYvszJrHMbuh2BZDXQdXReS 5UopPivUyg2/F5ksKEbkliO1urfM8CTQZsI/X/Jwq+ze5CB6Mqq0YrOMdeKkVXM3 cS7bVJfFnGoiSC+zEsw= -----END CERTIFICATE-----Generated at Sun May 3 00:39:54 2026 by rpki-client