$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150530.roa File: AS150530.roa (raw, json) Hash identifier: 1lRTM3fvZry/YmkMde9PgYMMS4KB+u7x6qNkWXcseVc= Subject key identifier: C4:66:D8:5E:DE:42:AA:ED:FA:F4:B1:0C:E2:2A:55:0D:89:61:17:B4 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4BB9B0C89A5686CB894857D53E9181D9C626DA3A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150530.roa Signing time: Sat 02 May 2026 08:35:29 +0000 ROA not before: Sat 02 May 2026 08:30:29 +0000 ROA not after: Sat 01 May 2027 08:35:29 +0000 asID: 150530 IP address blocks: 2001:df2:440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b9:b0:c8:9a:56:86:cb:89:48:57:d5:3e:91:81:d9:c6:26:da:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:29 2026 GMT Not After : May 1 08:35:29 2027 GMT Subject: CN=C466D85EDE42AAEDFAF4B10CE22A550D896117B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:84:9d:32:26:c7:4a:ba:92:9e:1c:88:99:62: 8e:4e:20:5b:a4:ba:47:72:58:57:88:af:10:b5:01: 2f:94:df:f4:5d:ae:41:db:4c:0c:07:42:52:90:1c: 5a:2f:8e:0e:0b:24:b9:fd:a2:7b:79:71:92:3d:7f: e3:d2:ba:e3:51:57:67:64:86:2f:aa:88:61:df:f0: 31:0d:31:53:78:4c:8c:42:31:e8:82:2c:f1:46:83: 10:48:f0:a7:eb:54:0a:f5:86:b8:6a:17:c2:d2:4d: 85:54:06:42:a3:ac:9b:ee:02:2c:e7:14:36:2b:cf: 2f:fd:c0:39:3a:7e:91:22:59:37:07:d3:22:ad:87: 55:1a:7c:ef:97:4f:f8:7c:3f:0f:18:bd:38:1b:05: 00:4c:62:cb:4a:38:4e:13:91:0c:ca:dc:ad:4b:c8: 7c:ac:18:8f:c8:f7:ac:bf:06:cb:f4:02:21:d7:9c: 11:a4:fb:6c:07:cf:e5:c4:80:61:e7:2e:54:7d:ae: 54:a4:3f:a3:18:a3:fa:8f:69:5b:d9:6c:cc:79:41: 70:f2:d5:aa:60:a2:5e:72:34:82:08:d9:6c:26:c2: 0e:88:ef:5c:1c:cb:35:c0:37:e6:05:17:eb:9e:f4: b5:af:9a:45:55:45:a8:1d:2a:a2:5e:3a:fa:4c:c4: 15:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:66:D8:5E:DE:42:AA:ED:FA:F4:B1:0C:E2:2A:55:0D:89:61:17:B4 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:440::/48 Signature Algorithm: sha256WithRSAEncryption 4d:b2:54:ef:88:a4:52:78:d7:a0:b1:fb:aa:5f:ab:e0:b0:72: 0c:c6:d9:21:55:76:59:1f:fe:f5:ec:d4:fc:9a:6d:15:71:28: 96:db:fd:00:59:f4:ca:2c:3b:2e:99:2f:e7:f8:d9:36:43:ca: cf:c5:e7:03:42:e3:51:a5:54:27:77:5e:a3:32:56:59:a7:76: 9f:39:4b:e8:ba:6a:92:68:05:08:a4:9e:bd:b2:7b:b1:c6:5a: cd:8d:f6:0b:06:a0:3b:89:19:64:5a:11:37:db:40:08:ba:45: 0d:eb:a1:d3:cc:0f:34:bb:db:68:ba:2b:d1:76:87:a2:14:88: 28:22:6b:da:8c:48:4d:80:04:8b:8a:1f:b7:f0:13:40:03:c5: e0:62:6f:d5:81:87:7a:66:3e:a5:8b:0a:ec:7f:a6:93:16:23: e7:4c:c4:9b:26:2b:7a:9c:31:e2:48:c2:f6:ae:03:73:51:f0: 4e:be:8a:e4:2d:27:a1:3f:3f:d8:5a:b8:25:04:36:d1:86:21: 7c:3a:1f:b2:60:93:bc:69:3f:80:5e:cf:58:8d:2b:ff:9f:3d: 22:3f:e3:3b:05:b1:34:7a:33:37:38:f3:db:3e:22:3e:24:48: 3a:5b:5c:ed:38:07:2c:d9:6f:ac:a3:40:6f:30:b1:5c:cd:c4: a0:40:a1:35 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUS7mwyJpWhsuJSFfVPpGB2cYm2jowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAyOVoX DTI3MDUwMTA4MzUyOVowMzExMC8GA1UEAxMoQzQ2NkQ4NUVERTQyQUFFREZBRjRC MTBDRTIyQTU1MEQ4OTYxMTdCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+EnTImx0q6kp4ciJlijk4gW6S6R3JYV4ivELUBL5Tf9F2uQdtMDAdCUpAc Wi+ODgskuf2ie3lxkj1/49K641FXZ2SGL6qIYd/wMQ0xU3hMjEIx6IIs8UaDEEjw p+tUCvWGuGoXwtJNhVQGQqOsm+4CLOcUNivPL/3AOTp+kSJZNwfTIq2HVRp875dP +Hw/Dxi9OBsFAExiy0o4ThORDMrcrUvIfKwYj8j3rL8Gy/QCIdecEaT7bAfP5cSA YecuVH2uVKQ/oxij+o9pW9lszHlBcPLVqmCiXnI0ggjZbCbCDojvXBzLNcA35gUX 6570ta+aRVVFqB0qol46+kzEFa0CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTEZthe 3kKq7fr0sQziKlUNiWEXtDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNTMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN8gRAMA0GCSqGSIb3DQEBCwUAA4IBAQBNslTviKRSeNegsfuqX6vg sHIMxtkhVXZZH/717NT8mm0VcSiW2/0AWfTKLDsumS/n+Nk2Q8rPxecDQuNRpVQn d16jMlZZp3afOUvoumqSaAUIpJ69snuxxlrNjfYLBqA7iRlkWhE320AIukUN66HT zA80u9touivRdoeiFIgoImvajEhNgASLih+38BNAA8XgYm/VgYd6Zj6liwrsf6aT FiPnTMSbJit6nDHiSML2rgNzUfBOvorkLSehPz/YWrglBDbRhiF8Oh+yYJO8aT+A Xs9YjSv/nz0iP+M7BbE0ejM3OPPbPiI+JEg6W1ztOAcs2W+so0BvMLFczcSgQKE1 -----END CERTIFICATE-----Generated at Sun May 3 00:42:32 2026 by rpki-client