$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150504.roa File: AS150504.roa (raw, json) Hash identifier: /CF28YogXBaL2fl6+OULBeXcipsJKqMVIs1Wlw0gGPE= Subject key identifier: 9E:79:1D:6D:D7:7C:DB:1A:7F:DB:11:7B:75:4E:BB:A7:73:04:A9:E8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6F2C0C0B342CEC86EF0945C66D7A7B2D7F5BEBB4 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150504.roa Signing time: Sat 02 May 2026 21:25:57 +0000 ROA not before: Sat 02 May 2026 21:20:57 +0000 ROA not after: Sat 01 May 2027 21:25:57 +0000 asID: 150504 IP address blocks: 2001:df1:ccc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:2c:0c:0b:34:2c:ec:86:ef:09:45:c6:6d:7a:7b:2d:7f:5b:eb:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:20:57 2026 GMT Not After : May 1 21:25:57 2027 GMT Subject: CN=9E791D6DD77CDB1A7FDB117B754EBBA77304A9E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:48:d5:7f:eb:aa:93:a8:78:53:ba:57:54:a6: 94:18:fa:0f:43:bb:fa:50:bf:75:bd:dd:28:8d:19: 78:04:58:e7:fe:06:88:f3:49:58:16:7f:70:e0:98: 6e:bf:6c:a4:56:38:1e:e4:1f:9b:73:98:2e:3e:ac: 62:de:d0:a6:68:91:03:8a:e6:0a:a2:5c:a4:64:45: 8e:b0:3a:fb:ca:79:e3:10:4b:f9:e3:f7:1d:4c:2e: fe:09:bf:15:77:04:38:ee:a6:25:42:c2:3b:d4:1b: 02:7b:c9:dd:f0:c1:a0:33:90:da:6a:94:d2:e4:d5: dc:9a:f4:8f:b4:e3:3c:52:e7:67:81:54:c8:53:1c: 88:9e:d5:28:78:8b:e4:79:8e:01:1b:60:80:09:a5: 00:93:0b:0b:b1:6f:da:3c:32:b4:67:80:58:2a:6b: 4f:23:01:9e:b6:b2:99:a6:c6:e2:df:74:da:46:1d: 03:4a:4f:83:a9:f7:56:1e:a0:ad:59:a8:69:5f:a4: 9b:8d:e8:39:9c:71:b3:23:57:19:76:e5:54:58:b2: 93:8b:38:5a:52:04:8a:7a:2a:c0:4b:46:64:57:b0: ac:73:85:01:5c:ce:ec:c5:29:e9:d2:56:09:5f:0b: e8:37:fe:e9:c7:21:d7:bd:ad:a3:73:47:44:9b:1c: 82:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:79:1D:6D:D7:7C:DB:1A:7F:DB:11:7B:75:4E:BB:A7:73:04:A9:E8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:ccc0::/48 Signature Algorithm: sha256WithRSAEncryption 0e:f0:6e:46:87:4b:90:45:7a:e9:a8:b0:6f:e9:e1:e5:98:aa: 05:7d:4d:69:bc:03:33:24:48:f7:33:fd:d3:ce:2a:10:69:d0: a5:58:e5:e2:46:56:97:df:f3:ef:80:c9:0e:35:f3:0c:e8:bd: 37:60:ce:89:da:82:60:a8:e3:0b:e9:75:be:a4:b3:87:e4:5e: 99:45:56:ab:fb:5d:aa:45:97:42:b9:81:be:7b:51:fb:ed:90: 1f:43:45:d1:f6:6b:7b:48:c9:70:18:44:8b:09:5d:17:7e:52: bf:99:c4:b3:4f:15:c6:7c:11:39:83:dd:a8:87:5e:5e:2d:f5: 73:96:81:b2:f1:0c:a6:9e:1f:8d:b8:9a:f4:fb:29:b0:46:fe: 63:0d:b6:8f:4c:02:e0:8e:67:dc:d0:97:96:ca:20:31:a8:92: 01:d8:e6:92:c5:f7:5d:d4:28:05:bb:d6:64:8b:17:46:c8:09: 00:9a:5a:0d:4d:fb:80:33:a3:79:7b:4f:e3:e7:d6:59:d8:53: 32:fd:82:46:61:a8:bb:4a:ff:67:20:b6:8b:88:21:5b:e0:9b: 2f:a2:37:de:b7:60:64:c8:d1:b4:55:24:bb:a4:32:0a:25:e2: 82:8a:27:88:a8:eb:ff:ab:70:11:12:1e:f7:e4:85:b0:04:58: 06:3e:34:58 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUbywMCzQs7IbvCUXGbXp7LX9b67QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjA1N1oX DTI3MDUwMTIxMjU1N1owMzExMC8GA1UEAxMoOUU3OTFENkRENzdDREIxQTdGREIx MTdCNzU0RUJCQTc3MzA0QTlFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNI1X/rqpOoeFO6V1SmlBj6D0O7+lC/db3dKI0ZeARY5/4GiPNJWBZ/cOCY br9spFY4HuQfm3OYLj6sYt7QpmiRA4rmCqJcpGRFjrA6+8p54xBL+eP3HUwu/gm/ FXcEOO6mJULCO9QbAnvJ3fDBoDOQ2mqU0uTV3Jr0j7TjPFLnZ4FUyFMciJ7VKHiL 5HmOARtggAmlAJMLC7Fv2jwytGeAWCprTyMBnraymabG4t902kYdA0pPg6n3Vh6g rVmoaV+km43oOZxxsyNXGXblVFiyk4s4WlIEinoqwEtGZFewrHOFAVzO7MUp6dJW CV8L6Df+6cch172to3NHRJscgnECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSeeR1t 13zbGn/bEXt1TruncwSp6DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNTA0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN8czAMA0GCSqGSIb3DQEBCwUAA4IBAQAO8G5Gh0uQRXrpqLBv6eHl mKoFfU1pvAMzJEj3M/3TzioQadClWOXiRlaX3/PvgMkONfMM6L03YM6J2oJgqOML 6XW+pLOH5F6ZRVar+12qRZdCuYG+e1H77ZAfQ0XR9mt7SMlwGESLCV0XflK/mcSz TxXGfBE5g92oh15eLfVzloGy8Qymnh+NuJr0+ymwRv5jDbaPTALgjmfc0JeWyiAx qJIB2OaSxfdd1CgFu9ZkixdGyAkAmloNTfuAM6N5e0/j59ZZ2FMy/YJGYai7Sv9n ILaLiCFb4Jsvojfet2BkyNG0VSS7pDIKJeKCiieIqOv/q3AREh735IWwBFgGPjRY -----END CERTIFICATE-----Generated at Sun May 3 00:40:30 2026 by rpki-client