$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa File: AS150484.roa (raw, json) Hash identifier: SaRoYHI3bl6ISMrgbTHiOsGoaTLZw9xHaCIwuOva+V4= Subject key identifier: 67:A6:A7:20:8D:1E:A8:00:B6:F1:BE:40:02:8E:23:71:51:06:3C:4B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7CE9C691B6D520F4996C535A46F70673496F09A8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa Signing time: Thu 02 Oct 2025 03:04:25 +0000 ROA not before: Thu 02 Oct 2025 02:59:25 +0000 ROA not after: Thu 01 Oct 2026 03:04:25 +0000 asID: 150484 IP address blocks: 103.55.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e9:c6:91:b6:d5:20:f4:99:6c:53:5a:46:f7:06:73:49:6f:09:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 2 02:59:25 2025 GMT Not After : Oct 1 03:04:25 2026 GMT Subject: CN=67A6A7208D1EA800B6F1BE40028E237151063C4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:32:66:04:20:9b:94:7f:df:11:dd:c9:cf:e5: 05:f0:fe:3e:4e:38:2a:43:cf:5c:b9:1d:a6:68:15: a2:20:28:ce:6f:f0:a8:88:ef:21:ea:f9:ea:1a:e6: b1:01:41:ff:be:d8:78:a0:fc:44:1c:8c:a3:0b:fb: 6f:d6:c8:fa:df:0c:0b:40:a7:59:54:fd:66:fb:b9: 5e:ac:57:bf:2b:9a:81:0f:1c:cd:22:31:11:f9:62: 9a:f3:72:50:71:94:8e:e4:78:b1:af:c0:7a:0f:0c: 2f:e1:5c:11:de:29:d7:b2:6f:ae:24:e5:af:ec:fc: 41:aa:e4:ae:8e:f2:38:5c:63:3e:09:bb:b6:99:ad: bf:27:70:04:ef:1d:19:69:5f:21:b9:53:a2:88:4c: 6e:90:9f:58:d5:19:83:d7:b9:75:69:58:d3:4a:5b: c1:f5:4e:a9:2d:38:a5:2b:ba:58:e7:27:f4:d5:a9: 72:79:b3:b1:9a:45:96:99:4f:86:d5:3f:65:3c:9c: 03:2a:40:14:11:49:b1:a4:de:c2:a3:ff:61:02:3d: cf:25:e5:e0:68:7b:e3:e9:99:8d:55:a7:3b:53:f6: 9c:89:71:cc:86:c3:e4:cf:3a:99:af:20:68:56:27: 32:f7:e1:58:55:62:ae:31:3a:42:a6:fe:af:72:12: 4c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A6:A7:20:8D:1E:A8:00:B6:F1:BE:40:02:8E:23:71:51:06:3C:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.30.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:34:c6:dd:01:ff:32:5a:8b:d6:97:b9:8c:2f:2b:05:6e:53: 8f:17:73:e3:b5:0f:2d:8f:e5:08:d3:2d:6a:58:35:ba:df:24: 8e:f9:bd:83:5d:e6:57:2b:74:dc:37:fb:b0:dd:c2:40:80:f2: 1e:8b:78:32:8f:3d:2b:01:45:dc:95:9c:b7:dd:26:2d:d9:a6: da:8b:53:c1:39:00:a2:aa:67:b8:c1:fe:12:85:9a:a6:f4:f8: cb:6f:bb:d1:45:ca:be:63:b8:7c:2d:2e:6b:12:a6:78:3e:b3: e9:78:fb:40:b9:a7:98:4f:0b:7e:c6:52:dd:1f:e9:cb:34:94: d3:2d:64:20:12:43:38:39:70:b6:06:90:6c:83:29:82:ae:57: 29:f9:23:e1:c3:57:c1:48:bb:2b:30:e2:7d:61:ab:32:c3:60: a9:0a:99:a2:e3:66:9e:35:a1:ae:e6:f1:91:58:bc:07:dd:82: b8:4b:cf:7d:ef:c7:78:57:89:6c:73:f4:82:53:25:f9:83:17: 0a:f7:5c:ae:05:90:de:75:6c:fd:bb:54:87:e2:bd:0b:5b:fe: 69:34:c0:5c:88:ce:7b:50:33:41:56:9f:3f:08:d5:a5:48:90: cc:de:eb:9f:8c:63:92:38:93:42:be:c8:51:e5:fe:09:c9:cd: 0c:36:47:1c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfOnGkbbVIPSZbFNaRvcGc0lvCagwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwMjAyNTkyNVoX DTI2MTAwMTAzMDQyNVowMzExMC8GA1UEAxMoNjdBNkE3MjA4RDFFQTgwMEI2RjFC RTQwMDI4RTIzNzE1MTA2M0M0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8yZgQgm5R/3xHdyc/lBfD+Pk44KkPPXLkdpmgVoiAozm/wqIjvIer56hrm sQFB/77YeKD8RByMowv7b9bI+t8MC0CnWVT9Zvu5XqxXvyuagQ8czSIxEflimvNy UHGUjuR4sa/Aeg8ML+FcEd4p17JvriTlr+z8Qarkro7yOFxjPgm7tpmtvydwBO8d GWlfIblToohMbpCfWNUZg9e5dWlY00pbwfVOqS04pSu6WOcn9NWpcnmzsZpFlplP htU/ZTycAypAFBFJsaTewqP/YQI9zyXl4Gh74+mZjVWnO1P2nIlxzIbD5M86ma8g aFYnMvfhWFVirjE6Qqb+r3ISTKsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRnpqcg jR6oALbxvkACjiNxUQY8SzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWc3HjANBgkqhkiG9w0BAQsFAAOCAQEAGjTG3QH/MlqL1pe5jC8r BW5Tjxdz47UPLY/lCNMtalg1ut8kjvm9g13mVyt03Df7sN3CQIDyHot4Mo89KwFF 3JWct90mLdmm2otTwTkAoqpnuMH+EoWapvT4y2+70UXKvmO4fC0uaxKmeD6z6Xj7 QLmnmE8LfsZS3R/pyzSU0y1kIBJDODlwtgaQbIMpgq5XKfkj4cNXwUi7KzDifWGr MsNgqQqZouNmnjWhrubxkVi8B92CuEvPfe/HeFeJbHP0glMl+YMXCvdcrgWQ3nVs /btUh+K9C1v+aTTAXIjOe1AzQVafPwjVpUiQzN7rn4xjkjiTQr7IUeX+CcnNDDZH HA== -----END CERTIFICATE-----Generated at Mon Oct 20 05:59:05 2025 by rpki-client