$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150976.roa File: AS150976.roa (raw, json) Hash identifier: 0qO9O7tr75bX0rrcDtKyEkWzBE1eWHn5JDs7XsJJ53M= Subject key identifier: DA:DC:42:F5:A4:12:0D:DE:4B:0B:13:61:FF:7A:C4:67:6E:FB:CA:59 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1B9DBE1362C350A9E79367CD5B5DE0ADE23E31E8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150976.roa Signing time: Sat 02 May 2026 08:34:58 +0000 ROA not before: Sat 02 May 2026 08:29:58 +0000 ROA not after: Sat 01 May 2027 08:34:58 +0000 asID: 150976 IP address blocks: 103.242.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:9d:be:13:62:c3:50:a9:e7:93:67:cd:5b:5d:e0:ad:e2:3e:31:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:29:58 2026 GMT Not After : May 1 08:34:58 2027 GMT Subject: CN=DADC42F5A4120DDE4B0B1361FF7AC4676EFBCA59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:eb:54:2b:63:89:ec:ee:4c:b0:fd:95:7a:e7: f9:dd:ed:2d:ab:85:de:32:58:c4:21:2a:a4:e7:f1: 98:eb:4c:e5:0f:5b:96:d9:2c:44:38:67:9f:c4:1e: a8:e9:1a:48:11:e7:33:c6:52:c5:93:57:7b:aa:54: 0a:2a:fb:97:3f:a5:3d:7d:dc:1a:f3:ba:32:8c:cb: 77:67:6e:a9:ea:9a:8f:68:95:63:ca:c0:3b:b3:70: 06:47:da:8a:f2:23:51:94:46:20:56:fa:a2:62:a8: 7e:e2:2a:d4:a3:f8:f5:80:b8:0b:b2:eb:19:f2:1a: c8:2e:db:c8:58:a3:ba:56:7b:ad:a3:da:00:35:5c: d1:35:73:82:d2:dc:89:31:22:dd:79:3d:80:6b:c8: 4f:18:0c:3a:b9:2a:23:04:d2:6a:5c:a1:07:26:10: eb:08:c5:be:bb:32:76:43:7d:06:f8:23:de:73:93: b6:e3:e1:e7:c0:70:f1:93:22:46:ff:82:61:8a:0d: 7e:33:a7:6e:cd:74:0d:cd:cc:7f:61:d6:8f:d9:b3: e3:21:fc:b2:ce:14:9e:a0:3f:3a:c1:5e:23:b4:5a: 8f:05:68:26:57:74:0d:70:0e:bb:7a:a6:52:e1:9c: 45:95:24:cf:89:9f:43:37:2a:40:d6:09:cf:2a:7e: 4a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DC:42:F5:A4:12:0D:DE:4B:0B:13:61:FF:7A:C4:67:6E:FB:CA:59 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150976.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.234.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:29:0a:fb:43:f9:1d:57:09:1c:c1:55:1e:48:be:67:1a:be: 57:91:fa:b6:01:92:20:6b:ae:0c:08:2d:24:42:07:fc:10:07: cf:4e:a5:6e:9b:3b:6a:da:6e:69:53:02:33:06:53:31:d1:1b: 41:e8:91:78:eb:c0:a6:b5:9d:70:e7:1a:12:13:b1:28:dc:ac: ca:36:fe:0f:c3:17:4c:72:bb:1e:d7:4e:56:b7:ce:83:56:da: 41:7e:5c:62:bb:64:09:63:c5:b1:77:75:a2:d0:b4:ca:0c:2d: 2e:ad:42:7f:e6:b4:20:dc:e9:89:4f:9f:11:66:d9:6e:db:f6: 8b:f9:58:91:a8:ee:fd:90:0f:5a:dd:96:19:77:87:cc:20:bd: f0:7e:73:df:b1:7f:e9:7f:27:e3:f5:58:bd:b7:35:48:2e:31: 5c:28:45:a5:4a:54:fc:90:8a:4c:9d:fe:59:0f:58:7c:4f:97: 51:07:65:7d:af:87:79:ea:f0:3e:7e:d2:2b:25:87:69:d0:ef: be:0b:48:6c:2a:8c:8a:a9:75:f3:26:7e:bd:f0:cc:16:dc:aa: f5:80:96:21:e0:09:bb:2c:a7:7a:e2:5e:a4:9c:db:f2:be:8c: c9:ed:80:20:56:2e:dd:10:0d:9f:2e:49:d0:98:7e:ad:ad:6c: ba:7a:a2:e7 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUG52+E2LDUKnnk2fNW13greI+MegwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4Mjk1OFoX DTI3MDUwMTA4MzQ1OFowMzExMC8GA1UEAxMoREFEQzQyRjVBNDEyMERERTRCMEIx MzYxRkY3QUM0Njc2RUZCQ0E1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHrVCtjiezuTLD9lXrn+d3tLauF3jJYxCEqpOfxmOtM5Q9bltksRDhnn8Qe qOkaSBHnM8ZSxZNXe6pUCir7lz+lPX3cGvO6MozLd2duqeqaj2iVY8rAO7NwBkfa ivIjUZRGIFb6omKofuIq1KP49YC4C7LrGfIayC7byFijulZ7raPaADVc0TVzgtLc iTEi3Xk9gGvITxgMOrkqIwTSalyhByYQ6wjFvrsydkN9Bvgj3nOTtuPh58Bw8ZMi Rv+CYYoNfjOnbs10Dc3Mf2HWj9mz4yH8ss4UnqA/OsFeI7RajwVoJld0DXAOu3qm UuGcRZUkz4mfQzcqQNYJzyp+SrMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTa3EL1 pBIN3ksLE2H/esRnbvvKWTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwOTc2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ/LqMA0GCSqGSIb3DQEBCwUAA4IBAQB7KQr7Q/kdVwkcwVUeSL5nGr5X kfq2AZIga64MCC0kQgf8EAfPTqVumztq2m5pUwIzBlMx0RtB6JF468CmtZ1w5xoS E7Eo3KzKNv4PwxdMcrse105Wt86DVtpBflxiu2QJY8Wxd3Wi0LTKDC0urUJ/5rQg 3OmJT58RZtlu2/aL+ViRqO79kA9a3ZYZd4fMIL3wfnPfsX/pfyfj9Vi9tzVILjFc KEWlSlT8kIpMnf5ZD1h8T5dRB2V9r4d56vA+ftIrJYdp0O++C0hsKoyKqXXzJn69 8MwW3Kr1gJYh4Am7LKd64l6knNvyvozJ7YAgVi7dEA2fLknQmH6trWy6eqLn -----END CERTIFICATE-----Generated at Sun May 3 01:40:05 2026 by rpki-client