$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150284.roa File: AS150284.roa (raw, json) Hash identifier: r5mc7iUpmRjZVK7qIAkDsnIpEQqU71E6sx4s1LWDzto= Subject key identifier: 55:C7:4D:05:2A:38:5D:5D:18:74:E9:C3:F8:46:72:9B:F3:8F:68:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5DD0B047231020BF9CFA5504C525FC092140BD71 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150284.roa Signing time: Fri 19 Sep 2025 07:00:00 +0000 ROA not before: Fri 19 Sep 2025 06:55:00 +0000 ROA not after: Fri 18 Sep 2026 07:00:00 +0000 asID: 150284 IP address blocks: 203.96.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:d0:b0:47:23:10:20:bf:9c:fa:55:04:c5:25:fc:09:21:40:bd:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 19 06:55:00 2025 GMT Not After : Sep 18 07:00:00 2026 GMT Subject: CN=55C74D052A385D5D1874E9C3F846729BF38F68FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5b:93:fe:a6:54:63:d0:d6:cb:a2:fa:ba:e8: d3:57:fd:65:1a:62:a7:a2:d8:5c:45:97:4d:d4:7c: 69:b2:71:2a:d6:92:99:b6:ef:ba:8a:57:d8:1c:41: 50:82:8e:bc:e1:c8:00:9f:ab:a4:b0:c2:ae:3e:5f: 0e:37:23:8b:a2:24:90:08:1b:c8:4b:ba:09:48:b4: cc:6a:2f:66:ed:40:44:f4:47:c9:b2:d8:80:c8:b6: ab:1a:83:19:8b:c2:aa:76:47:e2:f6:9f:d2:4e:59: 91:8e:9a:4f:81:7f:c9:e0:63:94:bb:c5:9c:f5:5a: 5c:1f:38:0e:51:c6:82:33:b2:ae:ce:1f:e0:19:25: b0:97:bd:31:ea:b7:e6:78:08:7c:50:83:2b:82:1b: 53:b3:c0:57:fd:6e:a5:50:f8:d2:28:03:c1:54:40: 57:30:a5:85:98:92:b6:ba:61:2a:56:1d:71:d3:59: 54:78:ba:6d:5a:32:a0:69:41:1c:18:1a:29:33:32: e7:ad:33:b6:92:f1:df:1c:ce:99:02:4d:f5:91:53: 84:44:f4:2a:26:28:16:95:c2:d8:53:8e:4f:08:ba: ab:91:ac:bc:7b:ce:9b:5e:57:c4:ee:23:07:38:da: 0b:1a:d1:74:f2:91:24:b4:8c:c6:e4:6b:c6:55:ea: 7d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C7:4D:05:2A:38:5D:5D:18:74:E9:C3:F8:46:72:9B:F3:8F:68:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150284.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.96.230.0/23 Signature Algorithm: sha256WithRSAEncryption 86:2f:d5:c7:de:f0:f7:37:f9:cb:7c:28:3c:75:f0:28:bd:37: 75:77:73:84:47:f4:74:d4:e4:c2:ee:d8:ad:48:48:6c:1b:49: 60:b1:24:5a:80:ff:2e:c3:71:bc:2d:8c:72:e5:18:a6:60:12: eb:85:8a:14:7b:74:35:9e:fe:a1:7f:73:55:25:99:ac:8b:8a: 0e:1b:f6:c4:74:4d:b5:aa:6e:9a:57:35:5e:73:dd:aa:a7:df: ae:f9:a1:04:04:d4:22:2e:e0:f1:17:17:05:ba:78:fa:1a:83: ad:3d:18:98:0c:c0:34:e8:dc:36:c5:93:76:2f:3a:33:c9:9f: f0:d9:1e:e0:0b:8b:15:60:4a:64:30:75:3b:4e:62:ad:65:3e: 7c:0b:8e:14:2e:7b:d9:70:ea:6d:5f:1d:c5:cc:74:65:cf:25: 40:bd:4a:3b:7d:c2:07:af:ea:cd:76:74:d6:71:33:f3:9d:06: 8e:f2:83:c8:9f:63:4f:d9:67:2e:20:9a:5e:48:76:09:5a:bf: 41:62:8b:21:aa:89:aa:7f:ab:76:cb:77:ac:43:91:31:d4:ed: 7d:1a:21:70:34:aa:28:f0:0d:5d:24:65:d5:23:e5:ac:64:c1: 99:ec:3b:ca:d3:f9:d8:24:d1:f0:60:f7:d9:d4:09:f6:c9:01: 44:50:b8:2a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXdCwRyMQIL+c+lUExSX8CSFAvXEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxOTA2NTUwMFoX DTI2MDkxODA3MDAwMFowMzExMC8GA1UEAxMoNTVDNzREMDUyQTM4NUQ1RDE4NzRF OUMzRjg0NjcyOUJGMzhGNjhGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN1bk/6mVGPQ1sui+rro01f9ZRpip6LYXEWXTdR8abJxKtaSmbbvuopX2BxB UIKOvOHIAJ+rpLDCrj5fDjcji6IkkAgbyEu6CUi0zGovZu1ARPRHybLYgMi2qxqD GYvCqnZH4vaf0k5ZkY6aT4F/yeBjlLvFnPVaXB84DlHGgjOyrs4f4BklsJe9Meq3 5ngIfFCDK4IbU7PAV/1upVD40igDwVRAVzClhZiStrphKlYdcdNZVHi6bVoyoGlB HBgaKTMy560ztpLx3xzOmQJN9ZFThET0KiYoFpXC2FOOTwi6q5GsvHvOm15XxO4j BzjaCxrRdPKRJLSMxuRrxlXqfZ0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRVx00F KjhdXRh06cP4RnKb849o/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEActg5jANBgkqhkiG9w0BAQsFAAOCAQEAhi/Vx97w9zf5y3woPHXw KL03dXdzhEf0dNTkwu7YrUhIbBtJYLEkWoD/LsNxvC2McuUYpmAS64WKFHt0NZ7+ oX9zVSWZrIuKDhv2xHRNtapumlc1XnPdqqffrvmhBATUIi7g8RcXBbp4+hqDrT0Y mAzANOjcNsWTdi86M8mf8Nke4AuLFWBKZDB1O05irWU+fAuOFC572XDqbV8dxcx0 Zc8lQL1KO33CB6/qzXZ01nEz850GjvKDyJ9jT9lnLiCaXkh2CVq/QWKLIaqJqn+r dst3rEORMdTtfRohcDSqKPANXSRl1SPlrGTBmew7ytP52CTR8GD32dQJ9skBRFC4 Kg== -----END CERTIFICATE-----Generated at Tue Oct 21 20:24:14 2025 by rpki-client