$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150938.roa File: AS150938.roa (raw, json) Hash identifier: hsWLv+ysDe6/vImPD6kn0xcQDMTmhIsb2RppHyeA0Cg= Subject key identifier: 7B:DD:69:28:D7:A7:2A:86:D5:2E:6F:0F:F5:72:B6:5F:62:25:EB:AF Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 61ED6109F51FB1970C32F191906B9648A981EC45 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150938.roa Signing time: Sat 02 May 2026 09:21:20 +0000 ROA not before: Sat 02 May 2026 09:16:20 +0000 ROA not after: Sat 01 May 2027 09:21:20 +0000 asID: 150938 IP address blocks: 103.212.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ed:61:09:f5:1f:b1:97:0c:32:f1:91:90:6b:96:48:a9:81:ec:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:20 2026 GMT Not After : May 1 09:21:20 2027 GMT Subject: CN=7BDD6928D7A72A86D52E6F0FF572B65F6225EBAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ad:40:95:84:47:7c:26:1f:9f:a0:e5:87:46: da:55:d6:2d:ed:41:b0:d6:d9:e1:40:b6:9b:7f:54: 17:dc:d9:65:cd:07:a4:07:f3:06:c0:0c:ef:c4:2b: d1:1a:9b:6e:39:43:b2:c2:77:07:ba:00:6c:27:24: d7:d0:a3:fd:dd:9b:d5:f4:59:b2:1b:03:4e:fe:0e: 14:6c:c6:c7:43:cb:db:8e:cd:67:35:85:73:93:85: 6d:0a:73:54:e5:ad:2d:58:0f:62:30:2c:f8:68:7c: 4e:08:a7:be:ff:98:60:57:a1:c1:6a:c3:f8:50:77: b3:5c:30:c4:1b:73:7c:72:72:e8:63:71:6a:57:46: 51:bb:29:34:ec:02:8b:81:00:1e:4c:66:bf:9b:a6: c5:0b:2d:23:48:e2:3c:de:88:59:58:82:71:d7:0c: ea:3e:66:d6:5f:dd:a2:79:41:d5:0c:73:39:ab:b6: 44:5d:e4:e9:67:22:98:3b:a6:7e:5a:a0:89:bd:f0: 87:2f:6a:80:bb:51:59:cd:14:57:cd:32:11:db:4b: e4:7a:66:a2:a3:f6:fd:b7:4a:83:76:e6:b6:a5:cc: 31:0b:13:06:08:0c:7c:89:35:09:9a:ba:e2:e5:93: 02:c5:e3:30:96:1c:b1:73:5f:29:44:c0:87:bf:3b: 2c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:DD:69:28:D7:A7:2A:86:D5:2E:6F:0F:F5:72:B6:5F:62:25:EB:AF X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.177.0/24 Signature Algorithm: sha256WithRSAEncryption 83:32:25:47:6a:d9:a2:51:67:57:35:07:ee:3d:b9:2e:8b:ab: fc:e8:1b:b0:10:4f:7f:df:dc:1b:90:55:aa:08:ff:8c:44:43: 76:7b:c3:63:d6:52:06:32:35:9b:b5:4c:41:74:07:f1:45:03: b8:77:04:23:f5:70:a4:be:77:02:31:3b:23:1c:be:f8:3a:c4: 4c:84:a7:21:22:4d:03:e8:74:44:c7:79:1c:0d:f2:c7:1d:01: 3f:12:8b:59:f1:2b:4e:e3:e2:4a:1d:4b:02:93:9e:d6:09:3c: 1c:c6:90:d2:8a:1f:ea:c9:6e:5f:46:f2:f3:70:04:49:ff:e8: bd:93:43:73:c8:22:97:e0:48:4d:2e:82:0c:ea:b9:85:07:3d: d1:70:61:f6:24:29:b2:33:52:20:7f:7d:4d:02:1c:89:06:ac: 70:a6:3e:69:70:a6:cc:8b:01:2c:20:d3:b5:c1:45:3a:f1:ea: ce:09:72:6f:0a:25:f9:03:88:0a:29:37:05:fd:2d:a4:ab:90: 66:b2:23:24:52:23:37:6b:ca:1f:43:dc:05:b3:d8:58:1f:6b: e8:bd:a7:ea:cf:ab:15:c4:67:4f:fd:dd:94:12:4e:b6:99:ab: 8c:6b:0b:fc:2c:6c:a5:ca:2a:5b:c2:73:f7:bf:bc:96:ed:6a: 35:b8:d2:0d -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUYe1hCfUfsZcMMvGRkGuWSKmB7EUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTYyMFoX DTI3MDUwMTA5MjEyMFowMzExMC8GA1UEAxMoN0JERDY5MjhEN0E3MkE4NkQ1MkU2 RjBGRjU3MkI2NUY2MjI1RUJBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWtQJWER3wmH5+g5YdG2lXWLe1BsNbZ4UC2m39UF9zZZc0HpAfzBsAM78Qr 0RqbbjlDssJ3B7oAbCck19Cj/d2b1fRZshsDTv4OFGzGx0PL247NZzWFc5OFbQpz VOWtLVgPYjAs+Gh8Tginvv+YYFehwWrD+FB3s1wwxBtzfHJy6GNxaldGUbspNOwC i4EAHkxmv5umxQstI0jiPN6IWViCcdcM6j5m1l/donlB1QxzOau2RF3k6WcimDum flqgib3why9qgLtRWc0UV80yEdtL5HpmoqP2/bdKg3bmtqXMMQsTBggMfIk1CZq6 4uWTAsXjMJYcsXNfKUTAh787LCcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBR73Wko 16cqhtUubw/1crZfYiXrrzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwOTM4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ9SxMA0GCSqGSIb3DQEBCwUAA4IBAQCDMiVHatmiUWdXNQfuPbkui6v8 6BuwEE9/39wbkFWqCP+MREN2e8Nj1lIGMjWbtUxBdAfxRQO4dwQj9XCkvncCMTsj HL74OsRMhKchIk0D6HREx3kcDfLHHQE/EotZ8StO4+JKHUsCk57WCTwcxpDSih/q yW5fRvLzcARJ/+i9k0NzyCKX4EhNLoIM6rmFBz3RcGH2JCmyM1Igf31NAhyJBqxw pj5pcKbMiwEsINO1wUU68erOCXJvCiX5A4gKKTcF/S2kq5BmsiMkUiM3a8ofQ9wF s9hYH2vovafqz6sVxGdP/d2UEk62mauMawv8LGylyipbwnP3v7yW7Wo1uNIN -----END CERTIFICATE-----Generated at Sun May 3 00:42:34 2026 by rpki-client