$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150690.roa File: AS150690.roa (raw, json) Hash identifier: 6fxSd988jiU+b7X7ao2UDyNdV8YuM8fQH2pcBSUDJ0k= Subject key identifier: 95:93:D0:E9:C6:40:D8:5C:37:0E:DD:BB:00:AF:5A:7E:6F:CF:E2:70 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7B4C0ECE090891E4CA84B66E87A2C90873789077 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150690.roa Signing time: Sat 02 May 2026 09:26:35 +0000 ROA not before: Sat 02 May 2026 09:21:35 +0000 ROA not after: Sat 01 May 2027 09:26:35 +0000 asID: 150690 IP address blocks: 2001:df5:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:4c:0e:ce:09:08:91:e4:ca:84:b6:6e:87:a2:c9:08:73:78:90:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:35 2026 GMT Not After : May 1 09:26:35 2027 GMT Subject: CN=9593D0E9C640D85C370EDDBB00AF5A7E6FCFE270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:18:e5:69:46:8c:27:34:71:61:6b:b3:9d:32: d2:2c:8c:b2:ac:94:4a:79:24:ee:0e:fd:25:4b:c8: b1:9c:7f:ba:e3:8e:32:3d:3d:04:39:76:bf:18:b4: 07:65:3a:37:c1:da:27:f8:03:69:25:b9:40:7f:bf: 98:3b:ce:45:71:13:f8:9a:b7:b8:59:8f:1a:07:ef: 3b:69:5a:67:2f:bd:65:8b:04:0e:af:93:66:ba:97: 21:27:79:b2:02:1c:5a:e6:4d:c9:5a:b1:c0:36:2d: 23:1e:8d:76:8e:c5:27:b3:d0:04:4a:e9:40:54:98: a5:dd:53:55:a7:c6:62:e6:16:57:a1:3e:6e:8b:eb: 2b:c4:61:b3:f8:af:8b:0d:70:b5:23:b0:d1:fe:ed: dd:d8:1a:21:2a:c3:2c:0e:d1:ca:fc:1a:e3:31:23: bd:3b:72:02:a9:78:08:c8:13:b7:a9:2e:0c:31:7e: e2:1c:e2:2d:8c:bc:bf:44:27:31:e6:34:e0:da:c3: bd:bd:54:57:94:15:1c:f3:b1:65:92:85:5a:5b:55: 98:36:3a:d9:3a:07:89:20:63:88:9c:c1:6a:6b:1b: 6e:02:08:55:b4:83:c1:6b:d1:8c:4e:e1:4d:33:b2: cc:8d:48:c1:08:0f:74:53:77:83:5c:0b:fe:72:44: 9f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:93:D0:E9:C6:40:D8:5C:37:0E:DD:BB:00:AF:5A:7E:6F:CF:E2:70 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150690.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:c040::/48 Signature Algorithm: sha256WithRSAEncryption 11:5d:45:a7:3b:55:53:04:2e:d8:ca:d4:87:6c:02:f5:10:a6: 60:e0:dc:b5:d1:ae:f1:ee:e5:ae:5e:3f:4d:3d:46:ca:6d:1d: ac:ff:98:81:46:75:4d:9e:a8:92:2b:b7:f5:80:a0:88:3d:f0: d2:5f:29:ef:75:1d:b2:73:28:a8:e3:ff:25:a2:09:bb:cf:90: 87:ac:9a:6f:fd:1b:ee:23:f2:22:4a:2e:e9:32:cd:16:2f:8f: af:38:3f:ef:eb:b2:e9:e1:89:54:4f:e1:6b:f4:25:e0:b5:43: 6a:1c:56:20:48:71:0d:20:99:6a:79:72:b5:64:e5:e5:89:af: ef:c6:30:86:1a:ff:1d:95:ff:a4:b8:f4:15:d1:2b:47:5a:f6: 6c:5d:45:f4:cc:87:2b:4e:b9:ee:9f:4e:cf:27:99:f6:58:92: 34:1e:ce:a5:c7:34:96:e1:76:8c:b2:31:84:19:3d:dd:68:a4: 3a:ce:e9:5e:fe:99:e6:5e:20:d7:d7:43:bc:37:47:22:55:9d: f0:53:c5:a3:31:ec:45:b8:a5:36:3f:07:6b:c5:e0:7d:8f:9b: 2a:ea:7c:36:5f:42:a3:b8:4a:5d:ba:ca:75:10:67:aa:89:fb: 7b:79:8a:4b:92:3f:3b:23:6c:97:ce:60:9d:e9:37:95:e7:58: 17:85:17:45 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUe0wOzgkIkeTKhLZuh6LJCHN4kHcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEzNVoX DTI3MDUwMTA5MjYzNVowMzExMC8GA1UEAxMoOTU5M0QwRTlDNjQwRDg1QzM3MEVE REJCMDBBRjVBN0U2RkNGRTI3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUY5WlGjCc0cWFrs50y0iyMsqyUSnkk7g79JUvIsZx/uuOOMj09BDl2vxi0 B2U6N8HaJ/gDaSW5QH+/mDvORXET+Jq3uFmPGgfvO2laZy+9ZYsEDq+TZrqXISd5 sgIcWuZNyVqxwDYtIx6Ndo7FJ7PQBErpQFSYpd1TVafGYuYWV6E+bovrK8Rhs/iv iw1wtSOw0f7t3dgaISrDLA7Ryvwa4zEjvTtyAql4CMgTt6kuDDF+4hziLYy8v0Qn MeY04NrDvb1UV5QVHPOxZZKFWltVmDY62ToHiSBjiJzBamsbbgIIVbSDwWvRjE7h TTOyzI1IwQgPdFN3g1wL/nJEn4ECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSVk9Dp xkDYXDcO3bsAr1p+b8/icDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwNjkwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9cBAMA0GCSqGSIb3DQEBCwUAA4IBAQARXUWnO1VTBC7YytSHbAL1 EKZg4Ny10a7x7uWuXj9NPUbKbR2s/5iBRnVNnqiSK7f1gKCIPfDSXynvdR2ycyio 4/8logm7z5CHrJpv/RvuI/IiSi7pMs0WL4+vOD/v67Lp4YlUT+Fr9CXgtUNqHFYg SHENIJlqeXK1ZOXlia/vxjCGGv8dlf+kuPQV0StHWvZsXUX0zIcrTrnun07PJ5n2 WJI0Hs6lxzSW4XaMsjGEGT3daKQ6zule/pnmXiDX10O8N0ciVZ3wU8WjMexFuKU2 PwdrxeB9j5sq6nw2X0KjuEpdusp1EGeqift7eYpLkj87I2yXzmCd6TeV51gXhRdF -----END CERTIFICATE-----Generated at Sun May 3 00:40:31 2026 by rpki-client