$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150996.roa File: AS150996.roa (raw, json) Hash identifier: JIuZi6JNVLsz74OjoRkq11vkxqNOOIU4K4sRjwN/RRE= Subject key identifier: D8:AD:1E:A4:DD:B9:36:55:79:F0:59:09:A6:9E:58:EF:75:0F:83:72 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 18379CFC3380195D3E616CA37AC1048DAD40937C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150996.roa Signing time: Sat 02 May 2026 09:21:32 +0000 ROA not before: Sat 02 May 2026 09:16:32 +0000 ROA not after: Sat 01 May 2027 09:21:32 +0000 asID: 150996 IP address blocks: 103.210.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:37:9c:fc:33:80:19:5d:3e:61:6c:a3:7a:c1:04:8d:ad:40:93:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:32 2026 GMT Not After : May 1 09:21:32 2027 GMT Subject: CN=D8AD1EA4DDB9365579F05909A69E58EF750F8372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:28:4c:57:b8:56:5b:a3:53:6b:02:a9:2d:57: 70:7e:cf:64:cc:26:00:89:80:9c:ba:86:69:e4:70: cc:ea:93:64:c5:09:7b:0c:5f:a6:cf:e8:16:7a:27: c8:bb:ca:70:82:aa:01:71:fe:ae:37:c4:82:f8:14: 93:cb:e0:04:0a:66:64:c1:08:33:43:48:41:46:fb: d5:09:f0:0f:b2:3a:40:b9:54:e3:20:f6:38:bf:cf: c7:20:89:4e:24:8c:67:2e:00:6f:60:be:ec:b6:13: 10:64:33:60:0a:80:50:bc:76:13:fe:73:13:02:fc: a6:7f:01:63:7e:76:9c:5b:60:e8:02:e8:56:5d:35: d5:e2:2c:ce:00:80:ca:d4:9a:3a:49:78:56:c7:2e: c1:15:4f:8b:d8:02:c6:94:c4:05:b0:8a:5e:4c:ec: bb:43:cc:c4:52:3e:17:2f:b9:db:f8:66:a2:90:de: 09:07:0c:23:85:dd:6d:52:6d:d0:72:d9:09:d9:30: 1b:88:37:76:69:38:24:f8:c5:52:6e:23:aa:4c:c3: c4:9e:4c:b2:31:8b:50:e2:d1:e8:85:f3:50:6f:23: 4b:ab:77:4e:c3:dc:c5:f8:c2:e1:9b:27:de:99:e6: d5:82:b9:bd:27:5f:65:55:91:a4:e8:18:2e:f5:cf: d8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AD:1E:A4:DD:B9:36:55:79:F0:59:09:A6:9E:58:EF:75:0F:83:72 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150996.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.70.0/23 Signature Algorithm: sha256WithRSAEncryption 43:7f:5c:76:17:d1:dc:4b:75:ef:10:95:18:80:55:68:b2:c6: 12:e3:58:93:6e:a1:d3:16:9b:6e:b3:da:f1:b7:7f:86:55:39: 89:41:60:f3:6d:f6:db:78:0a:b0:de:66:db:46:d1:d3:39:ad: 94:e5:c4:bf:85:97:04:df:7b:96:d7:ff:a3:19:55:a0:8c:e1: 28:86:53:68:f2:3d:e7:e1:2b:fb:e6:21:15:3e:bf:d7:3e:47: 91:f1:5c:00:f8:6b:c1:26:a5:26:eb:64:f5:db:97:57:c2:f8: 20:8d:6d:bf:8d:21:19:6e:c4:67:85:4a:b7:20:51:b0:ee:04: 99:91:e2:05:eb:78:69:51:f8:35:63:f4:1f:01:3f:55:a4:f5: 3d:f1:04:41:71:4d:75:ac:6d:6d:5c:64:f0:ec:3d:a5:ed:69: 0d:4a:bc:0a:1b:93:d8:cf:b3:0b:57:a2:5d:a8:fd:e4:8f:cf: fd:ce:94:86:f3:3d:58:9d:61:63:7c:57:68:3a:ba:a7:63:57: 99:57:ca:2b:87:59:93:8d:c7:3b:02:d2:13:79:a2:3f:ee:70: f9:d3:94:3d:67:5f:75:63:d0:9d:a9:e7:70:45:f0:22:dc:9c: 46:ad:db:8c:97:30:ae:8f:5e:c9:c5:6a:88:2d:ed:62:16:16: 55:8d:97:9a -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUGDec/DOAGV0+YWyjesEEja1Ak3wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTYzMloX DTI3MDUwMTA5MjEzMlowMzExMC8GA1UEAxMoRDhBRDFFQTREREI5MzY1NTc5RjA1 OTA5QTY5RTU4RUY3NTBGODM3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsoTFe4VlujU2sCqS1XcH7PZMwmAImAnLqGaeRwzOqTZMUJewxfps/oFnon yLvKcIKqAXH+rjfEgvgUk8vgBApmZMEIM0NIQUb71QnwD7I6QLlU4yD2OL/PxyCJ TiSMZy4Ab2C+7LYTEGQzYAqAULx2E/5zEwL8pn8BY352nFtg6ALoVl011eIszgCA ytSaOkl4VscuwRVPi9gCxpTEBbCKXkzsu0PMxFI+Fy+52/hmopDeCQcMI4XdbVJt 0HLZCdkwG4g3dmk4JPjFUm4jqkzDxJ5MsjGLUOLR6IXzUG8jS6t3TsPcxfjC4Zsn 3pnm1YK5vSdfZVWRpOgYLvXP2AcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTYrR6k 3bk2VXnwWQmmnljvdQ+DcjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwOTk2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ9JGMA0GCSqGSIb3DQEBCwUAA4IBAQBDf1x2F9HcS3XvEJUYgFVossYS 41iTbqHTFptus9rxt3+GVTmJQWDzbfbbeAqw3mbbRtHTOa2U5cS/hZcE33uW1/+j GVWgjOEohlNo8j3n4Sv75iEVPr/XPkeR8VwA+GvBJqUm62T125dXwvggjW2/jSEZ bsRnhUq3IFGw7gSZkeIF63hpUfg1Y/QfAT9VpPU98QRBcU11rG1tXGTw7D2l7WkN SrwKG5PYz7MLV6JdqP3kj8/9zpSG8z1YnWFjfFdoOrqnY1eZV8orh1mTjcc7AtIT eaI/7nD505Q9Z191Y9CdqedwRfAi3JxGrduMlzCuj17JxWqILe1iFhZVjZea -----END CERTIFICATE-----Generated at Sun May 3 00:41:53 2026 by rpki-client