$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150235.roa File: AS150235.roa (raw, json) Hash identifier: bRAeQaX1nEcbLW9pOFAlIW6YNd4ovyweVoTUWmLMtYg= Subject key identifier: 01:16:09:55:E8:08:1A:8C:EB:85:83:2F:40:2D:3E:74:80:82:B0:35 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 59217ACFD15CC7D9A80334F2F9D1B8C9897486D4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150235.roa Signing time: Tue 10 Mar 2026 04:00:00 +0000 ROA not before: Tue 10 Mar 2026 03:55:00 +0000 ROA not after: Tue 09 Mar 2027 04:00:00 +0000 asID: 150235 IP address blocks: 103.72.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:21:7a:cf:d1:5c:c7:d9:a8:03:34:f2:f9:d1:b8:c9:89:74:86:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 10 03:55:00 2026 GMT Not After : Mar 9 04:00:00 2027 GMT Subject: CN=01160955E8081A8CEB85832F402D3E748082B035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0b:04:7d:7b:ac:4e:b1:0e:5e:5d:56:0b:86: 58:de:f0:35:b6:b7:ab:45:41:b3:c4:c1:7e:05:f5: f6:ba:79:5b:47:ef:b4:e0:36:ae:99:24:61:5e:6d: 80:2a:b6:f1:35:4b:32:4c:22:bf:01:f0:7c:7f:10: 36:b1:87:d1:9f:f7:4d:06:86:dc:63:0b:f2:69:d9: c4:f4:a6:fd:cd:0a:18:a8:49:53:94:11:38:86:c1: 2f:bc:ce:7e:45:3e:9d:4c:db:8d:01:1b:71:28:8e: ba:d7:26:1e:fd:6f:e0:db:78:dd:7e:52:42:b1:99: a8:c5:21:f2:f5:0d:b0:b7:a3:2a:6c:b1:94:83:31: d8:56:bc:4a:4d:6f:e3:bf:b0:7d:24:c9:c9:9b:68: e9:56:3c:82:94:16:4d:40:f1:83:0d:39:a0:a8:6e: b5:b2:af:62:b2:46:38:95:00:76:d1:5c:d5:f9:2c: 1b:8d:10:d2:85:0f:97:a7:8c:d3:63:eb:6b:55:54: bf:56:28:f6:7b:cd:e1:3d:10:4d:f9:93:bf:15:29: 75:41:e4:cc:79:49:ea:cf:54:9c:14:10:21:29:b7: df:1f:24:82:14:0e:1e:f8:75:ee:82:7a:6a:3c:d0: c9:cc:4f:b5:c4:af:7c:ae:9d:7c:6f:5b:5f:04:8c: ee:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:16:09:55:E8:08:1A:8C:EB:85:83:2F:40:2D:3E:74:80:82:B0:35 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.72.89.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:13:49:73:4c:1f:ce:de:72:ea:1b:d1:79:09:28:b5:24:85: 1f:ad:c6:e5:26:4c:f2:7a:c2:e4:0c:8e:f5:32:28:72:17:70: 5f:b8:79:be:9e:b4:e9:26:1e:c0:55:97:80:53:44:7d:c5:31: 30:d2:96:db:d7:a4:96:b6:a2:5c:f3:c0:e1:ad:45:96:c9:7b: 2c:44:b4:2f:d2:c2:4c:4b:34:b8:0e:61:f7:cb:40:0e:6d:2a: 7d:47:8f:85:cb:4f:10:4d:dc:31:35:7b:ea:a6:f1:55:f2:cb: eb:39:8c:03:49:06:7b:34:b9:f3:88:a9:66:7d:60:6b:5d:e0: b1:3c:9b:1d:a3:51:0d:2e:0c:97:d8:f2:8d:80:91:4e:92:55: 4a:2d:91:a0:18:c9:28:c4:3d:43:bc:fb:a8:6e:0e:98:7c:22: 1b:aa:e2:59:bf:7f:2a:12:5f:6a:c0:fd:47:26:8c:17:e1:99: 27:9d:ef:62:37:72:46:4a:36:e9:61:2d:cf:68:e1:22:0f:50: 30:5f:9e:d2:c0:d7:29:cb:87:b3:00:77:e1:99:2f:c3:99:6f: 09:c9:a0:76:80:f5:a8:5d:d1:d0:8b:c9:18:42:77:d0:f1:52: 07:c3:07:71:1b:36:d0:e0:42:c7:6f:43:3e:1c:28:f3:f0:57: 9b:e8:f1:0f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWSF6z9Fcx9moAzTy+dG4yYl0htQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxMDAzNTUwMFoX DTI3MDMwOTA0MDAwMFowMzExMC8GA1UEAxMoMDExNjA5NTVFODA4MUE4Q0VCODU4 MzJGNDAyRDNFNzQ4MDgyQjAzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoLBH17rE6xDl5dVguGWN7wNba3q0VBs8TBfgX19rp5W0fvtOA2rpkkYV5t gCq28TVLMkwivwHwfH8QNrGH0Z/3TQaG3GML8mnZxPSm/c0KGKhJU5QROIbBL7zO fkU+nUzbjQEbcSiOutcmHv1v4Nt43X5SQrGZqMUh8vUNsLejKmyxlIMx2Fa8Sk1v 47+wfSTJyZto6VY8gpQWTUDxgw05oKhutbKvYrJGOJUAdtFc1fksG40Q0oUPl6eM 02Pra1VUv1Yo9nvN4T0QTfmTvxUpdUHkzHlJ6s9UnBQQISm33x8kghQOHvh17oJ6 ajzQycxPtcSvfK6dfG9bXwSM7kcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQBFglV 6AgajOuFgy9ALT50gIKwNTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdIWTANBgkqhkiG9w0BAQsFAAOCAQEADxNJc0wfzt5y6hvReQko tSSFH63G5SZM8nrC5AyO9TIochdwX7h5vp606SYewFWXgFNEfcUxMNKW29eklrai XPPA4a1Flsl7LES0L9LCTEs0uA5h98tADm0qfUePhctPEE3cMTV76qbxVfLL6zmM A0kGezS584ipZn1ga13gsTybHaNRDS4Ml9jyjYCRTpJVSi2RoBjJKMQ9Q7z7qG4O mHwiG6riWb9/KhJfasD9RyaMF+GZJ53vYjdyRko26WEtz2jhIg9QMF+e0sDXKcuH swB34Zkvw5lvCcmgdoD1qF3R0IvJGEJ30PFSB8MHcRs20OBCx29DPhwo8/BXm+jx Dw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:01:34 2026 by rpki-client