$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS38150.roa File: AS38150.roa (raw, json) Hash identifier: aFJQatpUKUwePexgvxZFxaGeELJnvwHyvfMbGgyIPH4= Subject key identifier: 91:BC:13:FB:4B:CC:5C:93:0E:58:FB:B7:68:87:2F:BD:CA:8B:BF:B6 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7EBBDA9A4EEE3CCE3F4E963CBF8EB8875913AA12 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38150.roa Signing time: Sat 02 May 2026 21:14:16 +0000 ROA not before: Sat 02 May 2026 21:09:16 +0000 ROA not after: Sat 01 May 2027 21:14:16 +0000 asID: 38150 IP address blocks: 103.156.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:bb:da:9a:4e:ee:3c:ce:3f:4e:96:3c:bf:8e:b8:87:59:13:aa:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:09:16 2026 GMT Not After : May 1 21:14:16 2027 GMT Subject: CN=91BC13FB4BCC5C930E58FBB768872FBDCA8BBFB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f7:98:bd:58:86:c0:b2:23:ce:69:f3:90:de: 57:2d:31:3e:04:c9:7c:34:b3:54:40:a9:01:95:18: b6:dd:fb:cc:8b:58:4a:dc:54:ee:2e:dd:b2:7c:42: d1:94:63:13:56:75:ab:ad:fe:ec:21:c9:00:52:09: 2b:30:a5:e6:a6:70:d7:9d:34:24:1e:79:fb:3a:a0: 03:ca:d6:81:15:87:52:ea:3c:2e:e2:a5:e3:54:6f: 70:a9:71:8c:5c:3c:23:36:2a:84:ad:e5:f3:60:9c: 1a:ae:7a:4a:5b:cb:fe:4c:80:e8:46:da:ed:1d:f8: f5:55:49:9b:2c:15:83:5b:07:77:1b:86:cf:32:41: 35:56:92:25:a3:7b:4b:b0:c3:82:72:3c:e5:ac:79: b8:8e:dc:82:75:77:aa:69:f7:1e:2a:bc:71:1a:5b: f3:da:31:e8:74:b7:14:cd:be:1b:b5:b4:15:69:a5: ef:47:a7:90:4c:2e:71:48:79:e1:84:56:89:c8:f3: 28:5b:30:a6:cf:d4:7d:8d:f9:d4:e7:95:bd:96:f0: ca:4e:fd:da:97:1b:5a:e5:be:ef:a9:b1:9e:5e:31: d0:36:e0:5c:53:37:a1:e8:1f:f0:d5:fd:2d:4e:54: fb:e3:a3:9d:f4:3b:9e:d7:3e:70:cd:88:21:ab:5e: 04:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:BC:13:FB:4B:CC:5C:93:0E:58:FB:B7:68:87:2F:BD:CA:8B:BF:B6 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS38150.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.240.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:0f:37:ca:81:07:df:07:90:45:cc:a8:6f:cc:20:0b:87:bb: 82:e9:c4:81:8d:6d:5a:b6:a7:22:88:6a:fd:2d:11:18:51:72: ff:0c:00:f8:24:0d:aa:f7:a4:21:f5:b1:12:76:23:97:6b:8a: fc:a4:69:1e:73:71:d2:50:89:f6:30:5e:09:c4:f3:5f:7f:53: 4a:56:01:0d:fa:ba:f0:56:c8:6e:c5:2e:12:c8:27:8f:29:a3: bf:33:3a:53:4a:f1:f1:85:9e:3a:54:8d:08:3e:f9:cd:cf:16: e2:a3:37:1b:6d:fd:7f:59:e6:a2:73:8d:7f:f4:bb:a6:0b:4c: 2a:fa:02:e0:00:50:61:81:05:6a:47:a3:62:89:ff:5f:28:60: af:fb:9a:71:91:4c:f9:5c:59:33:02:a1:f3:b9:a6:1c:45:67: e5:80:0b:dc:11:35:30:19:d8:66:b2:ef:01:06:55:f4:c6:e7: b4:b0:8a:4c:61:b9:83:43:c8:ad:47:9d:de:79:9f:9e:d6:60: a3:f1:9e:60:38:ec:a1:7f:9c:3d:81:b7:47:7a:be:cd:d0:22: cf:b6:4d:7e:c5:ac:2f:97:fa:09:b0:61:85:72:fd:6e:34:82: cb:c5:02:19:42:4c:e0:7b:8b:93:a9:5c:00:c4:98:17:45:41: 11:ef:2b:b9 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUfrvamk7uPM4/TpY8v464h1kTqhIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDkxNloX DTI3MDUwMTIxMTQxNlowMzExMC8GA1UEAxMoOTFCQzEzRkI0QkNDNUM5MzBFNThG QkI3Njg4NzJGQkRDQThCQkZCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ33mL1YhsCyI85p85DeVy0xPgTJfDSzVECpAZUYtt37zItYStxU7i7dsnxC 0ZRjE1Z1q63+7CHJAFIJKzCl5qZw1500JB55+zqgA8rWgRWHUuo8LuKl41RvcKlx jFw8IzYqhK3l82CcGq56SlvL/kyA6Eba7R349VVJmywVg1sHdxuGzzJBNVaSJaN7 S7DDgnI85ax5uI7cgnV3qmn3Hiq8cRpb89ox6HS3FM2+G7W0FWml70enkEwucUh5 4YRWicjzKFswps/UfY351OeVvZbwyk792pcbWuW+76mxnl4x0DbgXFM3oegf8NX9 LU5U++OjnfQ7ntc+cM2IIateBP0CAwEAAaOCAcswggHHMB0GA1UdDgQWBBSRvBP7 S8xckw5Y+7dohy+9you/tjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMzgxNTAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnnPAwDQYJKoZIhvcNAQELBQADggEBAFwPN8qBB98HkEXMqG/MIAuHu4Lp xIGNbVq2pyKIav0tERhRcv8MAPgkDar3pCH1sRJ2I5drivykaR5zcdJQifYwXgnE 819/U0pWAQ36uvBWyG7FLhLIJ48po78zOlNK8fGFnjpUjQg++c3PFuKjNxtt/X9Z 5qJzjX/0u6YLTCr6AuAAUGGBBWpHo2KJ/18oYK/7mnGRTPlcWTMCofO5phxFZ+WA C9wRNTAZ2Gay7wEGVfTG57SwikxhuYNDyK1Hnd55n57WYKPxnmA47KF/nD2Bt0d6 vs3QIs+2TX7FrC+X+gmwYYVy/W40gsvFAhlCTOB7i5OpXADEmBdFQRHvK7k= -----END CERTIFICATE-----Generated at Sun May 3 00:40:18 2026 by rpki-client