$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS59150.roa File: AS59150.roa (raw, json) Hash identifier: ArITfwUgvOrC1RbDHXVsFDjozhyTmjBft1jPunJbcFQ= Subject key identifier: 39:18:BA:0E:2B:9F:B5:7E:DE:61:48:82:1D:7E:A6:8F:E7:C4:B8:70 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 07C813C38734FBFC35D5EE6D7AC20BF08BB6B2EC Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59150.roa Signing time: Sat 02 May 2026 21:20:57 +0000 ROA not before: Sat 02 May 2026 21:15:57 +0000 ROA not after: Sat 01 May 2027 21:20:57 +0000 asID: 59150 IP address blocks: 103.81.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c8:13:c3:87:34:fb:fc:35:d5:ee:6d:7a:c2:0b:f0:8b:b6:b2:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:15:57 2026 GMT Not After : May 1 21:20:57 2027 GMT Subject: CN=3918BA0E2B9FB57EDE6148821D7EA68FE7C4B870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:cf:3e:b2:5e:30:9a:a7:cf:af:d6:54:cd:5c: 63:76:7f:62:b5:b6:81:c1:78:c9:7e:5a:a0:21:8d: 46:bc:28:60:74:5f:b5:92:ad:51:c3:86:2d:60:92: ea:cc:00:41:99:94:bf:aa:6f:38:bd:29:b2:76:e9: d7:59:77:aa:8c:7a:da:9f:6c:c1:8b:10:cd:a6:fd: be:e7:e8:96:1a:a4:1b:ec:26:49:0a:cb:47:4e:ec: 0c:7b:95:c9:6d:cc:a4:e0:9e:08:41:b5:99:66:50: 80:58:b2:5f:ed:e2:7c:7c:cb:e0:56:86:08:ad:42: 6d:0f:3d:72:36:92:60:50:61:0e:32:50:c3:dc:ef: fc:63:6b:69:b6:85:34:40:74:51:8f:e3:b6:3e:6c: fa:90:7c:d8:17:a8:ff:a1:14:b6:91:2e:06:27:ba: 10:f7:f1:eb:bf:cf:d8:a3:b6:1c:77:e4:8d:65:02: f6:16:2f:b0:1a:83:e2:d7:0f:10:17:7a:46:78:35: 63:18:52:d1:83:c4:00:f4:5a:db:98:94:f1:2e:f5: a6:e4:a5:fd:e2:d0:09:25:65:fa:4a:47:9d:9d:86: 90:46:09:a6:1a:6f:51:cd:df:d5:22:f4:a5:74:68: 2e:dd:bc:94:5f:c1:01:69:9f:27:f0:cf:5c:1b:38: d8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:18:BA:0E:2B:9F:B5:7E:DE:61:48:82:1D:7E:A6:8F:E7:C4:B8:70 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59150.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.194.0/23 Signature Algorithm: sha256WithRSAEncryption 40:f6:8a:47:9e:d1:96:fb:9a:b7:c7:01:92:67:19:ef:25:df: 93:ed:f1:e0:43:d1:89:1a:b3:a7:41:29:cd:dc:fe:88:60:47: e5:6e:ec:77:5f:8e:e6:0a:0d:88:90:ff:a9:c9:c9:dd:1a:c6: ad:16:60:91:1f:1b:d1:de:7e:bc:57:d6:c5:4b:63:72:d8:9d: 2d:14:48:94:4f:8e:09:a5:d7:d5:c5:5d:1c:f0:28:3a:ab:7b: c3:c9:7f:75:1d:b5:a6:a9:ab:b3:2e:79:45:9c:be:f3:7d:4a: 4f:e1:e7:06:0f:f5:8a:22:36:4a:0e:65:e9:bf:6a:50:19:de: 61:4d:c4:fe:e7:1c:41:98:25:75:d2:73:5f:8c:66:be:68:55: a7:87:0f:ea:29:92:7c:c9:d8:5e:67:d3:64:15:93:50:b9:a2: 91:58:1c:c6:3d:f5:2a:87:81:ac:55:4a:82:39:c6:01:23:e1: e6:a5:27:de:78:a7:e9:55:f8:3c:e8:15:e4:36:60:17:34:9f: 85:bc:0e:4b:42:ee:c8:2d:c8:cf:7b:e4:50:18:94:c2:45:4d: f5:b8:fc:fb:ba:59:50:f6:2f:25:96:5e:61:49:40:c2:9d:d6: b4:6c:df:85:4b:93:6a:3a:6b:c2:33:e1:51:f4:96:44:7b:55: 6c:cf:62:69 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUB8gTw4c0+/w11e5tesIL8Iu2suwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTU1N1oX DTI3MDUwMTIxMjA1N1owMzExMC8GA1UEAxMoMzkxOEJBMEUyQjlGQjU3RURFNjE0 ODgyMUQ3RUE2OEZFN0M0Qjg3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIfPPrJeMJqnz6/WVM1cY3Z/YrW2gcF4yX5aoCGNRrwoYHRftZKtUcOGLWCS 6swAQZmUv6pvOL0psnbp11l3qox62p9swYsQzab9vufolhqkG+wmSQrLR07sDHuV yW3MpOCeCEG1mWZQgFiyX+3ifHzL4FaGCK1CbQ89cjaSYFBhDjJQw9zv/GNrabaF NEB0UY/jtj5s+pB82Beo/6EUtpEuBie6EPfx67/P2KO2HHfkjWUC9hYvsBqD4tcP EBd6Rng1YxhS0YPEAPRa25iU8S71puSl/eLQCSVl+kpHnZ2GkEYJphpvUc3f1SL0 pXRoLt28lF/BAWmfJ/DPXBs42NMCAwEAAaOCAcswggHHMB0GA1UdDgQWBBQ5GLoO K5+1ft5hSIIdfqaP58S4cDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTkxNTAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnUcIwDQYJKoZIhvcNAQELBQADggEBAED2ikee0Zb7mrfHAZJnGe8l35Pt 8eBD0Ykas6dBKc3c/ohgR+Vu7HdfjuYKDYiQ/6nJyd0axq0WYJEfG9HefrxX1sVL Y3LYnS0USJRPjgml19XFXRzwKDqre8PJf3Udtaapq7MueUWcvvN9Sk/h5wYP9Yoi NkoOZem/alAZ3mFNxP7nHEGYJXXSc1+MZr5oVaeHD+opknzJ2F5n02QVk1C5opFY HMY99SqHgaxVSoI5xgEj4ealJ954p+lV+DzoFeQ2YBc0n4W8DktC7sgtyM975FAY lMJFTfW4/Pu6WVD2LyWWXmFJQMKd1rRs34VLk2o6a8Iz4VH0lkR7VWzPYmk= -----END CERTIFICATE-----Generated at Sun May 3 00:40:18 2026 by rpki-client