$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150281.roa File: AS150281.roa (raw, json) Hash identifier: j8BYQMxZp53UPdyz2KZU/WEvPv3xEVZL5YLz9wVqS/M= Subject key identifier: BF:5D:E7:D1:6F:CB:B1:E2:D8:98:9B:98:FF:13:C2:81:60:F7:DC:AF Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 44BB3BC3260BE33D28989E4C567987B97F65DD76 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150281.roa Signing time: Tue 19 Aug 2025 03:48:55 +0000 ROA not before: Tue 19 Aug 2025 03:43:55 +0000 ROA not after: Tue 18 Aug 2026 03:48:55 +0000 asID: 150281 IP address blocks: 161.248.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:bb:3b:c3:26:0b:e3:3d:28:98:9e:4c:56:79:87:b9:7f:65:dd:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 19 03:43:55 2025 GMT Not After : Aug 18 03:48:55 2026 GMT Subject: CN=BF5DE7D16FCBB1E2D8989B98FF13C28160F7DCAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d6:44:6a:33:e4:89:3f:a9:43:65:ca:17:1e: bb:28:42:ea:b1:ba:2c:99:e4:ab:2f:a8:62:cb:8b: ee:75:fb:33:9b:04:7c:58:c0:d5:a8:8f:89:d8:2f: 69:ff:56:c8:c4:54:dd:d0:39:7e:32:7e:38:5e:3f: 97:8c:a1:66:9a:40:ca:b1:8f:78:41:fe:0d:08:fa: b7:db:08:fe:d6:e0:13:7b:7b:f3:af:6a:26:d0:f3: a0:98:bd:cf:fd:42:33:64:e9:96:60:f7:fb:77:6e: b0:18:4f:b1:95:28:43:a4:22:95:b9:8c:22:cd:86: 45:db:5f:8d:07:e8:41:6c:c8:d3:25:0f:0d:99:28: f2:fd:7a:18:9c:8b:cd:09:50:ef:1a:49:63:cf:67: c8:93:21:b3:e9:ae:3a:54:50:6e:a4:ce:82:68:65: af:eb:51:86:96:34:78:43:83:d2:7e:24:71:15:b3: 19:1c:eb:e9:d4:f7:8d:d1:52:9c:eb:f7:49:40:05: ed:c6:45:73:00:6e:b2:bd:5f:e3:6a:32:bf:37:6e: 39:f5:87:df:e2:f6:9b:98:29:4a:21:ee:70:85:ab: 90:5b:cb:09:8c:05:ff:f4:c5:2a:0e:79:c6:1a:1b: 88:46:36:2a:b6:05:96:ad:24:b1:26:37:5d:01:63: f0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5D:E7:D1:6F:CB:B1:E2:D8:98:9B:98:FF:13:C2:81:60:F7:DC:AF X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150281.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.248.107.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:93:84:a0:a2:33:9e:5f:7f:9b:1e:73:65:92:37:bd:0e:05: 4b:3a:e0:01:3e:17:aa:04:71:33:61:ac:4c:38:df:f5:e9:52: d5:48:33:85:df:85:13:f3:22:47:25:27:0b:2a:a9:ce:6e:db: 3a:df:cd:59:44:15:e7:70:6f:9e:75:b0:2b:8f:b7:13:5d:29: 8d:d9:cb:30:3e:34:d8:97:c2:1c:37:fa:7a:25:c7:d7:db:4d: e7:05:d3:15:f4:02:32:37:b3:ab:27:b3:53:4a:30:d8:d1:7d: de:ee:89:50:85:6b:1e:15:2f:39:da:08:47:65:a1:51:34:ff: ed:e1:1d:37:54:a5:79:c2:a2:49:1e:73:3a:a0:6a:eb:24:c2: ed:29:f7:70:71:35:32:c2:a4:11:dc:29:18:0b:14:f1:e0:4b: 09:4f:c3:04:3b:7d:0d:ae:31:f2:9d:49:a3:4e:b4:c4:ea:b8: bf:35:66:88:b8:61:33:fd:bb:5a:da:59:a0:01:59:9c:ad:46: a9:a5:08:22:c1:cc:a7:c5:09:51:8c:56:26:a6:77:44:1c:51: eb:39:ae:fe:b4:c6:c2:c2:61:ff:5d:d6:94:80:da:5c:22:25: df:f6:81:aa:a7:e8:a3:d9:50:04:d9:cc:c4:54:0e:bf:5b:55: e8:ba:57:13 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURLs7wyYL4z0omJ5MVnmHuX9l3XYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDgxOTAzNDM1NVoX DTI2MDgxODAzNDg1NVowMzExMC8GA1UEAxMoQkY1REU3RDE2RkNCQjFFMkQ4OTg5 Qjk4RkYxM0MyODE2MEY3RENBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANrWRGoz5Ik/qUNlyhceuyhC6rG6LJnkqy+oYsuL7nX7M5sEfFjA1aiPidgv af9WyMRU3dA5fjJ+OF4/l4yhZppAyrGPeEH+DQj6t9sI/tbgE3t7869qJtDzoJi9 z/1CM2TplmD3+3dusBhPsZUoQ6QilbmMIs2GRdtfjQfoQWzI0yUPDZko8v16GJyL zQlQ7xpJY89nyJMhs+muOlRQbqTOgmhlr+tRhpY0eEOD0n4kcRWzGRzr6dT3jdFS nOv3SUAF7cZFcwBusr1f42oyvzduOfWH3+L2m5gpSiHucIWrkFvLCYwF//TFKg55 xhobiEY2KrYFlq0ksSY3XQFj8CUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS/XefR b8ux4tiYm5j/E8KBYPfcrzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MDI4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKH4azANBgkqhkiG9w0BAQsFAAOCAQEAP5OEoKIznl9/mx5zZZI3 vQ4FSzrgAT4XqgRxM2GsTDjf9elS1Ugzhd+FE/MiRyUnCyqpzm7bOt/NWUQV53Bv nnWwK4+3E10pjdnLMD402JfCHDf6eiXH19tN5wXTFfQCMjezqyezU0ow2NF93u6J UIVrHhUvOdoIR2WhUTT/7eEdN1SlecKiSR5zOqBq6yTC7Sn3cHE1MsKkEdwpGAsU 8eBLCU/DBDt9Da4x8p1Jo060xOq4vzVmiLhhM/27WtpZoAFZnK1GqaUIIsHMp8UJ UYxWJqZ3RBxR6zmu/rTGwsJh/13WlIDaXCIl3/aBqqfoo9lQBNnMxFQOv1tV6LpX Ew== -----END CERTIFICATE-----Generated at Sat Aug 23 20:01:08 2025 by rpki-client