$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150501.roa File: AS150501.roa (raw, json) Hash identifier: 3t6QmH3urBRAsT1HxyCMD5/zYPR5+dp4s6Lp92e3q7Y= Subject key identifier: 41:40:22:46:F3:A0:E9:D8:AB:1C:FB:1E:6D:E2:57:EA:BB:94:00:F7 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5C37EDBAAFDCB88956672C04D6130BAFCD2551DD Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150501.roa Signing time: Sat 02 May 2026 15:25:04 +0000 ROA not before: Sat 02 May 2026 15:20:04 +0000 ROA not after: Sat 01 May 2027 15:25:04 +0000 asID: 150501 IP address blocks: 103.120.76.0/24 maxlen: 24 2001:df2:2140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:37:ed:ba:af:dc:b8:89:56:67:2c:04:d6:13:0b:af:cd:25:51:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 15:20:04 2026 GMT Not After : May 1 15:25:04 2027 GMT Subject: CN=41402246F3A0E9D8AB1CFB1E6DE257EABB9400F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:11:dc:14:44:fb:48:8e:68:0f:5b:14:11: 95:04:e6:6a:8a:d6:bf:6c:cc:63:14:45:39:fb:8b: c3:66:45:7a:de:17:d4:bb:eb:bf:3f:dd:51:6f:c9: 80:e9:dd:ee:a1:55:9b:39:87:c0:c5:85:4d:23:63: 84:ab:9c:86:33:79:1c:f5:b1:21:8d:41:7f:d7:9f: e5:dd:fa:96:6a:c5:47:bc:1f:8e:cb:b7:33:25:5c: a8:49:8b:9b:ff:ce:16:5d:b0:40:f7:08:6f:88:7c: 30:71:3d:8a:03:72:4c:6e:47:4d:fb:10:6a:ce:a5: 97:a4:5d:17:37:b6:e3:a1:a3:1c:e2:e6:fb:3d:25: 01:e2:d2:8c:6b:7c:3f:4b:9f:2b:3f:15:40:f7:1f: c1:b3:2f:69:68:09:b8:d9:06:29:c0:b5:ca:c5:97: 6d:a3:e3:e0:3b:08:87:49:dd:07:c8:ed:14:72:7c: e4:04:28:d7:15:0c:65:d3:97:7f:59:3c:90:6f:95: 05:8a:34:7e:1b:d7:8a:2c:90:25:75:2d:81:66:1a: eb:22:52:d9:32:79:8f:5c:1d:2c:2f:dc:5b:c5:0a: e3:2a:c2:b0:2c:bf:4d:cf:d1:68:8e:94:62:34:72: 12:1f:f1:49:33:64:d8:e3:5c:ad:32:f4:c9:1a:70: c1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:40:22:46:F3:A0:E9:D8:AB:1C:FB:1E:6D:E2:57:EA:BB:94:00:F7 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150501.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.76.0/24 IPv6: 2001:df2:2140::/48 Signature Algorithm: sha256WithRSAEncryption 64:b6:27:06:c4:83:4b:fa:e0:2b:f9:a3:6e:f4:f5:e7:5c:37: b1:5b:9e:3d:fd:16:5c:76:47:5c:b8:27:cd:c8:88:0a:47:63: c4:4d:61:a1:e5:34:66:d7:8e:99:d0:34:75:f8:9a:f0:03:84: 07:c1:09:9a:f1:39:29:64:91:09:e9:2c:6e:a0:2b:8e:24:ac: 42:12:16:1c:5d:70:5f:0c:83:43:2f:e0:ba:4c:95:5e:57:12: 71:56:ee:ed:29:04:00:b5:09:12:6c:d8:fc:2c:34:59:94:2d: db:7d:f4:bf:09:01:3b:6e:ad:8f:4f:ab:85:36:cd:ec:71:3d: 55:d1:45:8a:df:fb:27:c5:75:47:2a:6b:ad:d1:a1:c3:24:7d: 73:16:8d:9f:75:72:68:f2:36:9c:50:75:8c:6c:1d:f9:1a:97: cd:f4:c3:14:e4:1a:f9:57:97:d1:7b:85:f7:8b:27:78:a5:fe: 93:65:b0:46:f0:8c:1b:70:fa:bc:0b:01:13:eb:c4:ff:c7:0b: 24:d8:ad:e7:82:e8:5e:ae:da:97:2d:3c:b2:89:48:64:9f:7e: cc:45:97:52:a3:1e:ce:16:ff:9e:6d:ad:67:12:e1:eb:0f:b3: 71:f5:ad:77:ae:ea:f8:35:09:e5:69:f5:f3:f0:98:0c:e7:15: ba:c7:00:21 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXDftuq/cuIlWZywE1hMLr80lUd0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE1MjAwNFoX DTI3MDUwMTE1MjUwNFowMzExMC8GA1UEAxMoNDE0MDIyNDZGM0EwRTlEOEFCMUNG QjFFNkRFMjU3RUFCQjk0MDBGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrbEdwURPtIjmgPWxQRlQTmaorWv2zMYxRFOfuLw2ZFet4X1Lvrvz/dUW/J gOnd7qFVmzmHwMWFTSNjhKuchjN5HPWxIY1Bf9ef5d36lmrFR7wfjsu3MyVcqEmL m//OFl2wQPcIb4h8MHE9igNyTG5HTfsQas6ll6RdFze246GjHOLm+z0lAeLSjGt8 P0ufKz8VQPcfwbMvaWgJuNkGKcC1ysWXbaPj4DsIh0ndB8jtFHJ85AQo1xUMZdOX f1k8kG+VBYo0fhvXiiyQJXUtgWYa6yJS2TJ5j1wdLC/cW8UK4yrCsCy/Tc/RaI6U YjRyEh/xSTNk2ONcrTL0yRpwwTMCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBRBQCJG 86Dp2Ksc+x5t4lfqu5QA9zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNTAxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ3hMMA8EAgACMAkDBwAgAQ3yIUAwDQYJKoZIhvcNAQELBQADggEBAGS2 JwbEg0v64Cv5o2709edcN7Fbnj39Flx2R1y4J83IiApHY8RNYaHlNGbXjpnQNHX4 mvADhAfBCZrxOSlkkQnpLG6gK44krEISFhxdcF8Mg0Mv4LpMlV5XEnFW7u0pBAC1 CRJs2PwsNFmULdt99L8JATturY9Pq4U2zexxPVXRRYrf+yfFdUcqa63RocMkfXMW jZ91cmjyNpxQdYxsHfkal830wxTkGvlXl9F7hfeLJ3il/pNlsEbwjBtw+rwLARPr xP/HCyTYreeC6F6u2pctPLKJSGSffsxFl1KjHs4W/55trWcS4esPs3H1rXeu6vg1 CeVp9fPwmAznFbrHACE= -----END CERTIFICATE-----Generated at Sun May 3 00:40:37 2026 by rpki-client