$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150515.roa File: AS150515.roa (raw, json) Hash identifier: 7HZcxO2EDaN4xWYiYSSymUHWTbcyh8G+2b/7usMEUrU= Subject key identifier: B1:1E:58:95:0B:9F:13:34:48:2C:61:56:03:8A:0C:31:B2:5F:ED:E0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4CC20C8095EF50E524B151A8FF2656368CD4A971 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150515.roa Signing time: Sat 02 May 2026 09:21:52 +0000 ROA not before: Sat 02 May 2026 09:16:52 +0000 ROA not after: Sat 01 May 2027 09:21:52 +0000 asID: 150515 IP address blocks: 103.61.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:c2:0c:80:95:ef:50:e5:24:b1:51:a8:ff:26:56:36:8c:d4:a9:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:52 2026 GMT Not After : May 1 09:21:52 2027 GMT Subject: CN=B11E58950B9F1334482C6156038A0C31B25FEDE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f7:40:20:c7:0f:b0:06:dd:b0:3a:39:1b:32: 75:ae:69:b6:b9:e2:2b:5e:d9:1f:13:e1:dc:e5:fa: fb:34:cc:51:0b:d5:78:66:de:68:aa:c4:46:38:e4: 2b:d0:4f:95:28:32:14:68:e2:95:61:37:c8:a4:af: 87:1d:19:dd:4c:3b:17:02:6f:d8:90:17:37:eb:e0: 54:0f:08:88:fb:65:4a:d2:e9:a0:01:0d:77:4f:47: 72:26:4f:21:19:a1:b1:5d:dd:72:55:a7:7c:33:ec: ae:72:58:6f:7a:c1:10:26:ac:6a:62:81:d9:96:ff: 62:a6:05:c8:4d:1a:5f:63:4a:19:d0:4c:10:65:de: b8:e9:57:01:5c:8c:d9:76:d6:0c:ea:15:8d:b4:06: 9a:36:f4:36:98:c0:ac:06:ce:39:a1:3c:e2:fb:2f: 25:79:47:9a:35:51:e9:4b:8d:24:78:87:5e:22:55: 47:43:3e:f7:a0:b5:9a:24:d7:5a:d5:76:a9:21:7b: 5e:2a:5c:35:57:c3:db:b0:11:89:9e:0d:5b:c2:24: 5f:20:b0:b1:9d:3f:da:ff:cb:db:14:37:75:97:f7: 35:f5:7f:33:c5:df:5b:56:7a:ed:b6:15:ea:9d:61: 75:e4:23:bc:0a:2f:16:c2:1c:b7:f3:52:14:8f:27: 4e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1E:58:95:0B:9F:13:34:48:2C:61:56:03:8A:0C:31:B2:5F:ED:E0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150515.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.6.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:11:80:4e:c4:ca:31:18:13:ef:e0:50:6d:7e:c0:21:ff:14: 11:29:b4:9f:5e:7f:5b:f7:20:b1:41:40:71:92:9d:be:e3:7d: 66:89:ff:6c:22:70:be:5f:da:6a:d0:bb:bc:ad:65:2a:4a:e6: ff:55:29:5f:39:ca:fe:85:e6:fd:ff:65:ab:2a:c9:b2:46:5b: df:b9:be:81:3e:82:ee:f8:ea:fd:eb:fa:f9:ea:e3:18:6a:94: 95:a2:cb:6a:55:b0:cf:f8:d6:6b:1c:34:0d:9e:0d:7e:05:c6: 38:bd:7b:df:05:f7:97:f6:f3:0a:d4:2d:8d:9e:05:00:95:61: 5d:f2:52:5d:c3:a9:59:49:ba:82:67:bc:c1:e0:77:14:01:c4: 7a:ee:e3:e1:09:a0:f7:fd:6c:eb:9a:83:09:0f:8c:8a:98:67: ce:b1:80:e9:a7:d7:f1:0c:71:54:56:ec:4a:54:b1:a1:f0:68: dc:f3:b7:86:af:f1:fa:7a:c6:2f:c9:e9:51:64:41:30:d6:f8: b5:aa:8a:ca:65:9f:fd:b2:50:fc:7f:5e:5c:df:d4:3f:84:2c: 47:a6:91:3e:74:05:5c:8f:e9:15:00:86:9f:24:ce:8a:b8:d0: b9:a2:50:95:9a:f6:df:03:ac:a4:e6:d2:ad:4e:08:2d:17:85: eb:d5:ba:fe -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUTMIMgJXvUOUksVGo/yZWNozUqXEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTY1MloX DTI3MDUwMTA5MjE1MlowMzExMC8GA1UEAxMoQjExRTU4OTUwQjlGMTMzNDQ4MkM2 MTU2MDM4QTBDMzFCMjVGRURFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJn3QCDHD7AG3bA6ORsyda5ptrniK17ZHxPh3OX6+zTMUQvVeGbeaKrERjjk K9BPlSgyFGjilWE3yKSvhx0Z3Uw7FwJv2JAXN+vgVA8IiPtlStLpoAENd09HciZP IRmhsV3dclWnfDPsrnJYb3rBECasamKB2Zb/YqYFyE0aX2NKGdBMEGXeuOlXAVyM 2XbWDOoVjbQGmjb0NpjArAbOOaE84vsvJXlHmjVR6UuNJHiHXiJVR0M+96C1miTX WtV2qSF7XipcNVfD27ARiZ4NW8IkXyCwsZ0/2v/L2xQ3dZf3NfV/M8XfW1Z67bYV 6p1hdeQjvAovFsIct/NSFI8nTq8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSxHliV C58TNEgsYVYDigwxsl/t4DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNTE1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZz0GMA0GCSqGSIb3DQEBCwUAA4IBAQAMEYBOxMoxGBPv4FBtfsAh/xQR KbSfXn9b9yCxQUBxkp2+431mif9sInC+X9pq0Lu8rWUqSub/VSlfOcr+heb9/2Wr KsmyRlvfub6BPoLu+Or96/r56uMYapSVostqVbDP+NZrHDQNng1+BcY4vXvfBfeX 9vMK1C2NngUAlWFd8lJdw6lZSbqCZ7zB4HcUAcR67uPhCaD3/WzrmoMJD4yKmGfO sYDpp9fxDHFUVuxKVLGh8Gjc87eGr/H6esYvyelRZEEw1vi1qorKZZ/9slD8f15c 39Q/hCxHppE+dAVcj+kVAIafJM6KuNC5olCVmvbfA6yk5tKtTggtF4Xr1br+ -----END CERTIFICATE-----Generated at Sun May 3 00:42:07 2026 by rpki-client