$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150549.roa File: AS150549.roa (raw, json) Hash identifier: sjAxl5vBqjT9hzOeb0jdpNAuR5hLe+Mr5sn9F8NsIsQ= Subject key identifier: 75:B9:4E:87:F3:71:D5:2D:90:12:72:5F:1D:61:F3:DF:C9:8E:52:4E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 62FB05DDDB51978061565C0919B60163270B9AEA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150549.roa Signing time: Sat 02 May 2026 08:35:57 +0000 ROA not before: Sat 02 May 2026 08:30:57 +0000 ROA not after: Sat 01 May 2027 08:35:57 +0000 asID: 150549 IP address blocks: 2001:df2:24c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:fb:05:dd:db:51:97:80:61:56:5c:09:19:b6:01:63:27:0b:9a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:57 2026 GMT Not After : May 1 08:35:57 2027 GMT Subject: CN=75B94E87F371D52D9012725F1D61F3DFC98E524E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:42:95:60:c2:54:4d:96:47:f4:c3:a8:38:ac: 20:c6:2c:7d:97:cb:07:29:72:89:97:ed:9a:c2:e6: 54:30:f0:23:89:bc:f9:c6:0f:f1:60:39:c0:95:3b: de:54:10:b6:c5:9d:b2:13:d8:ab:76:c9:6a:b8:4d: 7e:8c:4c:fd:84:a1:5c:73:4c:76:1d:8d:27:44:5d: e2:14:15:74:7d:d3:ae:6b:d1:a0:76:e6:94:0d:df: 2d:74:84:f5:a2:e3:00:04:16:31:c4:23:06:c7:65: ea:4c:3b:a8:10:be:d0:26:e2:4a:50:c8:2b:8a:68: c9:5a:11:1b:c5:71:f2:4d:bd:b8:cf:28:d7:6a:6b: 68:4d:e6:91:2f:aa:10:d0:cb:cc:b6:4d:b5:53:56: 60:94:a4:db:ae:d1:6b:1a:92:d3:08:5c:33:f5:5e: 98:9a:64:03:29:cd:2e:bf:70:0c:b8:05:28:df:a9: 8a:79:29:6b:14:03:d3:22:d5:6a:d1:e1:dc:1c:4a: 19:8f:3c:e3:bc:1d:4f:21:f1:2b:61:12:36:3d:de: 5c:94:f2:ce:3c:95:55:33:77:95:45:07:d6:ce:2a: 76:58:0b:93:43:2d:c2:a1:a5:78:36:be:65:c1:92: 94:49:0a:0e:67:ac:a0:b9:1d:f3:ff:a6:2d:7a:02: 22:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B9:4E:87:F3:71:D5:2D:90:12:72:5F:1D:61:F3:DF:C9:8E:52:4E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150549.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:24c0::/48 Signature Algorithm: sha256WithRSAEncryption 63:6e:71:90:c7:46:c2:f0:b0:bf:21:9e:29:42:b0:0b:52:77: 67:cf:6a:13:89:ab:08:0e:0b:d1:64:a7:03:35:c2:a3:77:10: af:73:ac:7f:84:95:5d:cb:99:7f:d2:40:69:89:62:50:eb:13: 29:11:a1:52:1c:78:b6:3d:64:c8:75:ea:42:8a:61:b2:e1:7e: c3:4c:25:4f:a8:88:2b:6a:d0:b5:98:d1:3b:4d:bd:8f:b2:e7: 99:39:ec:9f:e7:f4:56:63:e5:46:d6:2b:fd:7c:90:8c:80:20: 0f:75:75:0f:a0:3e:af:7f:a0:73:9e:7d:be:ef:d1:63:10:c6: 36:29:3e:40:d4:e4:f1:6a:ad:26:bc:db:ca:3d:fc:79:f9:3b: c4:1a:e9:2c:64:dd:4b:83:43:86:e3:d1:c6:ae:9b:4a:36:f4: 2b:49:70:2a:98:63:ec:62:a1:a5:5c:f9:4a:16:8a:ca:72:13: d4:bf:42:af:34:5c:d8:c1:4b:e8:82:53:54:f3:98:ee:1f:06: 42:5f:9f:98:6d:1f:51:2d:9e:67:68:78:b9:3f:57:f7:11:97: 23:cc:06:6a:e4:c1:6d:c1:87:69:42:dc:90:7c:b9:5e:0d:68: 15:95:4e:0f:d4:eb:f9:1f:5a:68:02:30:15:7c:e6:ba:a4:47: d9:6c:ba:f3 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUYvsF3dtRl4BhVlwJGbYBYycLmuowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA1N1oX DTI3MDUwMTA4MzU1N1owMzExMC8GA1UEAxMoNzVCOTRFODdGMzcxRDUyRDkwMTI3 MjVGMUQ2MUYzREZDOThFNTI0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpClWDCVE2WR/TDqDisIMYsfZfLBylyiZftmsLmVDDwI4m8+cYP8WA5wJU7 3lQQtsWdshPYq3bJarhNfoxM/YShXHNMdh2NJ0Rd4hQVdH3TrmvRoHbmlA3fLXSE 9aLjAAQWMcQjBsdl6kw7qBC+0CbiSlDIK4poyVoRG8Vx8k29uM8o12praE3mkS+q ENDLzLZNtVNWYJSk267RaxqS0whcM/VemJpkAynNLr9wDLgFKN+pinkpaxQD0yLV atHh3BxKGY8847wdTyHxK2ESNj3eXJTyzjyVVTN3lUUH1s4qdlgLk0MtwqGleDa+ ZcGSlEkKDmesoLkd8/+mLXoCIuUCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBR1uU6H 83HVLZAScl8dYfPfyY5STjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNTQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN8iTAMA0GCSqGSIb3DQEBCwUAA4IBAQBjbnGQx0bC8LC/IZ4pQrAL Undnz2oTiasIDgvRZKcDNcKjdxCvc6x/hJVdy5l/0kBpiWJQ6xMpEaFSHHi2PWTI depCimGy4X7DTCVPqIgratC1mNE7Tb2PsueZOeyf5/RWY+VG1iv9fJCMgCAPdXUP oD6vf6Bznn2+79FjEMY2KT5A1OTxaq0mvNvKPfx5+TvEGuksZN1Lg0OG49HGrptK NvQrSXAqmGPsYqGlXPlKForKchPUv0KvNFzYwUvoglNU85juHwZCX5+YbR9RLZ5n aHi5P1f3EZcjzAZq5MFtwYdpQtyQfLleDWgVlU4P1Ov5H1poAjAVfOa6pEfZbLrz -----END CERTIFICATE-----Generated at Sun May 3 00:40:29 2026 by rpki-client