$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150979.roa File: AS150979.roa (raw, json) Hash identifier: 4QMAm2sNdCGJYXioufewbW1QmLb6V9fldT7+8PanI9c= Subject key identifier: 44:94:54:25:AF:70:02:C2:C1:B8:04:8D:6C:E8:A5:66:CB:5B:80:1C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4F3B10A2C3A30A3934F41CC88186DC30E5772A46 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150979.roa Signing time: Sat 02 May 2026 21:19:39 +0000 ROA not before: Sat 02 May 2026 21:14:39 +0000 ROA not after: Sat 01 May 2027 21:19:39 +0000 asID: 150979 IP address blocks: 103.70.120.0/24 maxlen: 24 103.70.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3b:10:a2:c3:a3:0a:39:34:f4:1c:c8:81:86:dc:30:e5:77:2a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:14:39 2026 GMT Not After : May 1 21:19:39 2027 GMT Subject: CN=44945425AF7002C2C1B8048D6CE8A566CB5B801C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ef:66:23:b6:fd:37:7c:46:26:a6:ed:d4:7d: 59:39:53:92:df:7e:d8:ca:a1:43:53:42:8a:8e:b5: ce:cc:3c:0a:b6:ac:ef:b2:48:c2:67:18:49:82:88: d0:d8:94:52:d0:6e:0a:e1:e6:df:15:9b:5c:cd:76: 14:3b:40:49:30:bb:58:8d:97:9e:39:a2:bf:05:e4: e9:2a:df:b8:e2:3e:53:60:d3:fe:ec:97:f8:96:bc: bc:34:3a:7b:aa:32:6b:bc:42:c1:53:5a:94:03:ab: 35:09:48:50:8f:2f:d2:e6:17:1e:7f:5d:fd:6c:0e: ea:33:89:e3:d2:54:8d:c2:4a:f1:b2:ae:97:c8:c2: de:a2:aa:be:52:50:ee:16:ee:35:db:f2:e1:d7:4f: 62:4c:3c:ae:b2:74:4f:48:b7:78:b6:6b:cc:fd:3b: bd:6a:fe:a4:e8:78:e9:e3:dc:09:c2:f5:70:38:25: 5a:d2:87:e3:ad:72:52:27:b2:7c:8c:be:d3:7c:51: 5a:da:57:48:6d:25:ae:d6:11:c9:dd:5a:4c:dc:1d: 49:89:d3:05:9a:0f:f1:64:4c:77:11:40:e9:21:f7: 8f:fd:20:67:83:7a:a7:67:f4:8e:87:51:1b:c2:d3: 3f:90:7e:6a:83:28:31:17:44:cd:f1:1e:4d:8e:f2: 64:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:94:54:25:AF:70:02:C2:C1:B8:04:8D:6C:E8:A5:66:CB:5B:80:1C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150979.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.120.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:86:cc:1b:e0:cf:61:0b:6b:27:b6:a5:ef:35:63:fa:28:1a: 4e:62:4c:78:74:41:c3:32:7c:72:17:a6:35:f6:a5:b0:5f:05: df:e2:8d:e8:db:be:b4:eb:46:00:92:23:f6:37:6f:3f:e7:46: 73:6c:f9:f3:a4:2c:5a:17:73:d7:fb:79:45:e0:3f:0c:76:a2: 19:46:f8:49:0e:09:eb:16:17:7c:9b:fc:cc:70:af:01:74:54: a9:b7:9e:6a:51:2b:09:a5:79:e2:8f:1a:96:4b:3a:f0:50:82: 07:df:23:2d:1e:67:d2:25:b2:6a:97:62:ad:28:bb:ed:75:e0: 77:04:8f:9f:99:78:32:e1:ec:33:34:00:67:24:5b:e3:6d:7d: 91:48:2c:af:64:1a:39:86:c4:b4:10:9e:8c:74:cc:15:2f:b0: 3e:b0:7d:cc:7a:14:95:06:ba:ad:f6:b3:04:71:aa:ef:5a:c9: 03:eb:85:70:78:9e:f8:b3:4b:53:b8:d1:5d:db:0f:96:97:04: 81:f9:69:97:09:be:de:82:09:26:8a:b6:68:55:29:83:2b:91: 5e:78:37:ca:97:71:1e:15:a3:62:0e:f2:55:f7:9e:8a:54:00: f2:9a:35:7b:ee:1f:65:ef:61:c5:85:de:b9:23:e5:02:a6:b0: c6:95:ad:7d -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUTzsQosOjCjk09BzIgYbcMOV3KkYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTQzOVoX DTI3MDUwMTIxMTkzOVowMzExMC8GA1UEAxMoNDQ5NDU0MjVBRjcwMDJDMkMxQjgw NDhENkNFOEE1NjZDQjVCODAxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANrvZiO2/Td8Riam7dR9WTlTkt9+2MqhQ1NCio61zsw8Cras77JIwmcYSYKI 0NiUUtBuCuHm3xWbXM12FDtASTC7WI2XnjmivwXk6SrfuOI+U2DT/uyX+Ja8vDQ6 e6oya7xCwVNalAOrNQlIUI8v0uYXHn9d/WwO6jOJ49JUjcJK8bKul8jC3qKqvlJQ 7hbuNdvy4ddPYkw8rrJ0T0i3eLZrzP07vWr+pOh46ePcCcL1cDglWtKH461yUiey fIy+03xRWtpXSG0lrtYRyd1aTNwdSYnTBZoP8WRMdxFA6SH3j/0gZ4N6p2f0jodR G8LTP5B+aoMoMRdEzfEeTY7yZC8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRElFQl r3ACwsG4BI1s6KVmy1uAHDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwOTc5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ0Z4MA0GCSqGSIb3DQEBCwUAA4IBAQBdhswb4M9hC2sntqXvNWP6KBpO Ykx4dEHDMnxyF6Y19qWwXwXf4o3o276060YAkiP2N28/50ZzbPnzpCxaF3PX+3lF 4D8MdqIZRvhJDgnrFhd8m/zMcK8BdFSpt55qUSsJpXnijxqWSzrwUIIH3yMtHmfS JbJql2KtKLvtdeB3BI+fmXgy4ewzNABnJFvjbX2RSCyvZBo5hsS0EJ6MdMwVL7A+ sH3MehSVBrqt9rMEcarvWskD64VweJ74s0tTuNFd2w+WlwSB+WmXCb7eggkmirZo VSmDK5FeeDfKl3EeFaNiDvJV956KVADymjV77h9l72HFhd65I+UCprDGla19 -----END CERTIFICATE-----Generated at Sun May 3 00:40:37 2026 by rpki-client