$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150554.roa File: AS150554.roa (raw, json) Hash identifier: qxWDGPY9gDYTuBbEQm4qiK0dP+/Ey4o90JKDdAZ68R8= Subject key identifier: FA:9E:01:E2:AC:7A:94:8F:4A:93:13:21:2B:66:D1:AC:B9:B6:47:03 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6EE3B1B15B5BF4AF2D209F03CF1D5B32AF3D31BB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150554.roa Signing time: Sat 02 May 2026 08:34:54 +0000 ROA not before: Sat 02 May 2026 08:29:54 +0000 ROA not after: Sat 01 May 2027 08:34:54 +0000 asID: 150554 IP address blocks: 2001:df3:83c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:e3:b1:b1:5b:5b:f4:af:2d:20:9f:03:cf:1d:5b:32:af:3d:31:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:29:54 2026 GMT Not After : May 1 08:34:54 2027 GMT Subject: CN=FA9E01E2AC7A948F4A9313212B66D1ACB9B64703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6a:28:d3:b8:24:61:ad:b5:ae:d9:e4:be:e6: f3:26:b0:70:82:7f:99:85:09:59:f5:d3:4e:1b:48: 5f:bb:04:ba:2f:54:72:5a:f1:98:7c:7d:0e:ee:e8: 46:ef:b9:17:53:e5:b8:32:38:1e:ba:0a:fb:b6:36: 18:14:d6:3d:6d:0c:f7:92:07:be:4c:19:55:ab:65: e0:0b:97:fa:7f:b2:c3:2d:4e:1e:f5:bf:7c:b2:1e: d3:78:3c:fb:14:04:da:c9:dd:3e:59:41:a9:65:29: 92:de:7b:73:25:a8:63:15:39:ac:97:fa:49:fe:c5: 60:6a:d5:ac:93:b4:59:9c:75:0f:69:bb:e7:5f:3b: 30:ef:42:77:a5:19:da:e8:d9:6f:4c:28:96:f6:d0: 0d:9f:d8:2a:0f:02:a5:c2:1b:e1:be:8f:d7:5b:a2: 87:fd:e2:50:ac:25:f6:18:30:5e:e6:a4:86:d2:31: 6e:0b:e6:e7:ad:d3:09:43:3d:3e:6d:4d:a6:17:e6: 85:f5:4b:de:c4:74:66:fc:5c:aa:1b:37:e8:da:a3: 22:2a:43:2c:5d:d0:f1:02:38:1c:df:99:75:43:06: 48:09:68:0e:59:63:7d:6c:74:82:3e:24:de:3b:26: 03:73:4e:47:23:ab:8f:16:a2:6d:38:16:e9:e6:47: 07:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9E:01:E2:AC:7A:94:8F:4A:93:13:21:2B:66:D1:AC:B9:B6:47:03 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:83c0::/48 Signature Algorithm: sha256WithRSAEncryption 43:d8:02:82:a5:a8:0f:6d:96:0c:50:9a:02:c3:bb:bc:1d:ca: 03:bb:c2:d9:cb:03:aa:85:e6:9f:2a:d8:79:30:96:a0:96:c4: 69:13:cf:5c:72:7c:85:42:48:a4:b1:1f:b7:59:45:15:16:63: 8a:fc:fd:e2:37:4a:8e:67:19:a2:88:6c:cd:20:ee:2f:2e:41: 5f:cb:a7:1b:1c:e6:ad:83:e8:4b:68:cf:e4:89:54:a7:7f:47: a9:9d:0d:c2:1f:83:66:7a:0e:e7:29:3b:25:49:2f:e6:b8:ed: a7:e1:1f:3d:0e:71:71:d9:0a:75:ac:ad:d9:b3:1f:36:18:77: 9e:56:d0:f1:d6:51:dc:35:4b:d3:03:fb:39:fa:6e:86:44:85: 94:9b:fb:63:2c:b3:e9:c3:4c:39:c0:57:e8:c3:c2:fc:a0:73: ec:63:96:84:c5:7b:86:10:76:89:7c:59:4a:40:c6:83:8a:61: 2f:07:4f:22:51:c8:77:5f:cb:aa:bd:71:5b:65:66:62:d9:71: 97:c7:83:b0:1b:59:6a:5c:94:75:c0:35:a4:d9:58:ae:bf:66: 41:9d:06:88:4c:af:80:c7:8b:32:17:34:86:b6:e9:42:b7:9c: 26:19:8e:93:7d:ee:56:0c:33:91:da:dd:6e:8b:b7:7a:84:82: 58:c3:f8:92 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUbuOxsVtb9K8tIJ8Dzx1bMq89MbswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4Mjk1NFoX DTI3MDUwMTA4MzQ1NFowMzExMC8GA1UEAxMoRkE5RTAxRTJBQzdBOTQ4RjRBOTMx MzIxMkI2NkQxQUNCOUI2NDcwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFqKNO4JGGtta7Z5L7m8yawcIJ/mYUJWfXTThtIX7sEui9UclrxmHx9Du7o Ru+5F1PluDI4HroK+7Y2GBTWPW0M95IHvkwZVatl4AuX+n+ywy1OHvW/fLIe03g8 +xQE2sndPllBqWUpkt57cyWoYxU5rJf6Sf7FYGrVrJO0WZx1D2m75187MO9Cd6UZ 2ujZb0wolvbQDZ/YKg8CpcIb4b6P11uih/3iUKwl9hgwXuakhtIxbgvm563TCUM9 Pm1NphfmhfVL3sR0Zvxcqhs36NqjIipDLF3Q8QI4HN+ZdUMGSAloDlljfWx0gj4k 3jsmA3NORyOrjxaibTgW6eZHBwsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBT6ngHi rHqUj0qTEyErZtGsubZHAzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNTU0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN84PAMA0GCSqGSIb3DQEBCwUAA4IBAQBD2AKCpagPbZYMUJoCw7u8 HcoDu8LZywOqheafKth5MJaglsRpE89ccnyFQkiksR+3WUUVFmOK/P3iN0qOZxmi iGzNIO4vLkFfy6cbHOatg+hLaM/kiVSnf0epnQ3CH4Nmeg7nKTslSS/muO2n4R89 DnFx2Qp1rK3Zsx82GHeeVtDx1lHcNUvTA/s5+m6GRIWUm/tjLLPpw0w5wFfow8L8 oHPsY5aExXuGEHaJfFlKQMaDimEvB08iUch3X8uqvXFbZWZi2XGXx4OwG1lqXJR1 wDWk2Viuv2ZBnQaITK+Ax4syFzSGtulCt5wmGY6Tfe5WDDOR2t1ui7d6hIJYw/iS -----END CERTIFICATE-----Generated at Sun May 3 00:39:41 2026 by rpki-client