$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150961.roa File: AS150961.roa (raw, json) Hash identifier: WiRI0Pb2q7KWlwRRsl6tOSPqx5unZ+mB556/CUbmcsg= Subject key identifier: BD:3C:71:A5:26:96:9D:4F:29:72:80:0A:6E:FF:4E:B4:DB:2D:A6:09 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4E7338CD4DE43580310EAA638C07B79DE6ED86A3 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150961.roa Signing time: Sat 02 May 2026 17:49:14 +0000 ROA not before: Sat 02 May 2026 17:44:14 +0000 ROA not after: Sat 01 May 2027 17:49:14 +0000 asID: 150961 IP address blocks: 103.230.81.0/24 maxlen: 24 103.245.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:73:38:cd:4d:e4:35:80:31:0e:aa:63:8c:07:b7:9d:e6:ed:86:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 17:44:14 2026 GMT Not After : May 1 17:49:14 2027 GMT Subject: CN=BD3C71A526969D4F2972800A6EFF4EB4DB2DA609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:4b:ed:fc:3f:04:c9:9b:78:40:53:eb:cd: 06:2d:9c:d3:a4:ac:7f:15:ab:c8:b1:4f:ab:76:b2: f9:0a:76:ec:67:43:f0:d0:fb:dc:18:ad:7d:1e:d7: 84:57:af:48:31:fa:95:ae:60:0d:a0:c3:c4:89:22: fc:a3:22:94:db:a6:e5:e4:d9:88:ba:57:c0:43:f4: e5:ad:15:77:de:03:69:0f:6c:10:a3:45:c3:45:6b: b1:61:de:bf:88:27:05:5b:82:63:cc:73:75:9c:f3: b9:c0:f9:8f:0b:a9:46:74:43:9a:f1:87:cd:75:cd: bf:1f:44:27:aa:c3:6e:08:b8:fe:22:93:4a:bf:5e: d1:45:9c:a1:e9:d6:cc:cf:1f:55:7d:86:a1:6b:2b: 70:2b:a3:b1:52:85:c9:b1:6f:15:d0:e0:57:de:6d: 09:76:ae:fd:2d:dd:dd:1d:3a:fc:76:ba:52:9a:cd: 07:b7:13:80:f0:99:0c:f2:82:c4:cb:cd:f2:76:7a: c8:ab:3d:c7:94:5e:8a:f1:60:60:6c:0d:03:f4:3c: 7c:4b:66:4a:5c:03:ab:ed:da:6d:b0:9e:d2:9f:68: bc:ba:ac:f6:67:ab:7f:84:00:b2:94:48:9f:90:52: 63:24:32:06:1a:00:e1:8e:76:88:ca:d7:0c:c0:c6: 8a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3C:71:A5:26:96:9D:4F:29:72:80:0A:6E:FF:4E:B4:DB:2D:A6:09 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150961.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.230.81.0/24 103.245.58.0/23 Signature Algorithm: sha256WithRSAEncryption 16:aa:52:f7:b7:be:52:7c:ab:6e:d5:52:d4:fb:25:ce:cb:02: fe:05:fd:19:c5:4e:21:b1:dd:ce:bc:a5:f5:8d:7b:0a:99:3a: 44:24:60:bb:48:bd:f2:de:60:d8:42:aa:2c:18:ec:a4:aa:fd: 7b:3b:d6:f7:84:30:2e:06:02:1e:1e:b3:c9:8a:93:fa:67:f3: 0c:5a:0d:67:05:d8:d1:df:10:35:5a:72:bb:ba:a7:dd:dc:89: d9:bc:3d:8c:b3:3d:07:0c:5a:6e:eb:d2:30:bb:99:82:0d:be: e4:5d:7a:e9:ae:00:8c:f7:48:2b:c6:66:57:53:cd:f6:ee:13: 34:7d:a8:1d:2d:0f:71:32:2c:65:f8:56:da:dc:b4:d4:08:33: 0c:00:d2:5a:f3:4e:17:53:20:e4:c1:4c:65:75:6c:7b:ab:a7: 27:85:31:25:14:e5:98:8a:cd:40:97:0d:46:b6:ba:e4:8c:39: ce:1f:09:5b:c2:5d:96:b1:6c:68:ab:0e:b5:cc:25:58:4a:f8: b7:db:b6:72:a1:61:1a:99:3c:2c:fc:22:f6:bf:91:e8:a9:92: e6:b4:2d:a0:c2:cc:c5:25:44:fc:a1:bb:70:e8:cd:bc:8e:c7: 5d:97:7c:b7:8b:4d:3d:c2:ef:d0:3c:39:e5:b1:6c:31:a1:16: bc:f9:29:6f -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUTnM4zU3kNYAxDqpjjAe3nebthqMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE3NDQxNFoX DTI3MDUwMTE3NDkxNFowMzExMC8GA1UEAxMoQkQzQzcxQTUyNjk2OUQ0RjI5NzI4 MDBBNkVGRjRFQjREQjJEQTYwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALueS+38PwTJm3hAU+vNBi2c06SsfxWryLFPq3ay+Qp27GdD8ND73BitfR7X hFevSDH6la5gDaDDxIki/KMilNum5eTZiLpXwEP05a0Vd94DaQ9sEKNFw0VrsWHe v4gnBVuCY8xzdZzzucD5jwupRnRDmvGHzXXNvx9EJ6rDbgi4/iKTSr9e0UWcoenW zM8fVX2GoWsrcCujsVKFybFvFdDgV95tCXau/S3d3R06/Ha6UprNB7cTgPCZDPKC xMvN8nZ6yKs9x5ReivFgYGwNA/Q8fEtmSlwDq+3abbCe0p9ovLqs9merf4QAspRI n5BSYyQyBhoA4Y52iMrXDMDGigcCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBS9PHGl JpadTylygApu/0602y2mCTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwOTYxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAZ+ZRAwQBZ/U6MA0GCSqGSIb3DQEBCwUAA4IBAQAWqlL3t75SfKtu1VLU +yXOywL+Bf0ZxU4hsd3OvKX1jXsKmTpEJGC7SL3y3mDYQqosGOykqv17O9b3hDAu BgIeHrPJipP6Z/MMWg1nBdjR3xA1WnK7uqfd3InZvD2Msz0HDFpu69Iwu5mCDb7k XXrprgCM90grxmZXU8327hM0fagdLQ9xMixl+Fba3LTUCDMMANJa804XUyDkwUxl dWx7q6cnhTElFOWYis1Alw1GtrrkjDnOHwlbwl2WsWxoqw61zCVYSvi327ZyoWEa mTws/CL2v5HoqZLmtC2gwszFJUT8obtw6M28jsddl3y3i009wu/QPDnlsWwxoRa8 +Slv -----END CERTIFICATE-----Generated at Sun May 3 00:42:29 2026 by rpki-client