$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa File: AS150540.roa (raw, json) Hash identifier: M2/NBQsEfEobTo2ctMD7gHsR84nOViZ+r0FQ23FPqOE= Subject key identifier: F9:17:C8:8D:68:11:49:7B:53:08:F2:1B:C8:C4:46:A5:32:DF:40:83 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1CA4E034DA23536B0232324D87F63A88A29DD258 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa Signing time: Thu 16 Oct 2025 05:00:00 +0000 ROA not before: Thu 16 Oct 2025 04:55:00 +0000 ROA not after: Thu 15 Oct 2026 05:00:00 +0000 asID: 150540 IP address blocks: 103.83.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a4:e0:34:da:23:53:6b:02:32:32:4d:87:f6:3a:88:a2:9d:d2:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 16 04:55:00 2025 GMT Not After : Oct 15 05:00:00 2026 GMT Subject: CN=F917C88D6811497B5308F21BC8C446A532DF4083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:07:98:52:77:dd:0d:ab:c4:5e:c4:75:ea:d7: eb:a7:33:9f:94:c5:17:65:3b:f0:a6:dd:6f:48:37: fe:04:24:61:68:ce:b1:72:41:c3:ad:56:eb:e7:87: 96:ce:e2:a4:57:72:f8:18:9c:86:e0:5a:27:d0:88: ab:fe:8d:ee:a7:5d:14:bf:b9:96:e0:81:f4:72:63: d3:ec:5e:3d:3a:65:ca:2b:b2:5e:da:ee:2b:40:67: b9:47:e5:9a:41:f9:f6:d7:11:eb:f2:ca:6c:15:26: f3:85:f4:54:d9:67:51:f0:88:8c:c8:83:12:26:da: 02:7c:2c:44:08:c4:f6:72:e9:95:ed:01:eb:fa:93: c4:74:2e:f8:cc:41:81:4a:bc:fb:88:08:3b:66:5a: 86:09:ef:30:c2:2a:bf:a6:23:73:44:da:74:98:ee: bd:10:d5:d5:2b:a0:70:14:1e:0b:46:6b:0f:24:62: a8:88:ed:b4:a6:b0:40:88:e9:ac:8b:24:21:50:1a: a4:60:fb:34:f2:c5:ce:b5:b9:c6:2a:b6:00:10:c4: e2:80:4f:66:17:60:37:49:92:c0:6c:c4:65:df:80: 97:49:14:5f:f5:8b:b0:5c:58:ea:a1:d2:97:bb:a1: 00:62:d7:2d:82:63:cb:b9:86:90:bb:48:27:29:96: 08:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:C8:8D:68:11:49:7B:53:08:F2:1B:C8:C4:46:A5:32:DF:40:83 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.236.0/23 Signature Algorithm: sha256WithRSAEncryption 03:aa:2e:5a:13:e9:c4:a3:d1:c1:e2:45:92:49:0d:bc:e2:09: ef:6e:3c:68:67:a8:90:07:12:8f:c4:2b:45:1b:90:ad:a5:6a: f9:eb:7a:e2:11:d1:92:ed:be:21:da:3e:be:4a:7a:e1:fb:9a: 75:7e:c3:4b:c5:00:c5:56:45:55:8c:fb:3a:b3:9b:89:9d:07: 5c:a1:50:35:1a:44:a1:2d:c7:1c:67:02:9c:c2:ba:ba:de:ba: 8f:d9:98:a0:c3:ce:e2:6e:69:6a:9a:56:a0:06:15:fb:15:95: f2:cd:e9:8d:9f:73:94:0b:fa:b8:7d:ce:0a:7c:c0:d5:f3:3a: a7:1c:33:90:58:dd:58:88:75:ac:1a:96:34:c1:34:b6:6d:0f: e9:9e:b2:e0:bf:c0:84:7c:36:fe:75:f1:1e:8a:ba:6f:52:b7: b3:bc:4b:f8:8b:f5:fa:17:f7:81:0f:ce:2e:84:7e:02:fd:22: 53:61:c9:f0:06:a6:f0:af:a2:87:be:5d:76:94:b5:1b:fb:74: bb:59:f4:8f:e0:56:94:a0:04:2b:ee:58:9d:06:f9:f4:4d:19: 52:eb:1a:c7:ed:8c:45:8d:37:4b:3b:7c:72:a7:cb:ce:86:bc: c0:15:83:ad:24:61:f3:55:14:d3:3c:f3:27:55:c1:39:4e:51: 4f:f2:d8:6b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHKTgNNojU2sCMjJNh/Y6iKKd0lgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAxNjA0NTUwMFoX DTI2MTAxNTA1MDAwMFowMzExMC8GA1UEAxMoRjkxN0M4OEQ2ODExNDk3QjUzMDhG MjFCQzhDNDQ2QTUzMkRGNDA4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO8HmFJ33Q2rxF7EderX66czn5TFF2U78Kbdb0g3/gQkYWjOsXJBw61W6+eH ls7ipFdy+BichuBaJ9CIq/6N7qddFL+5luCB9HJj0+xePTplyiuyXtruK0BnuUfl mkH59tcR6/LKbBUm84X0VNlnUfCIjMiDEibaAnwsRAjE9nLple0B6/qTxHQu+MxB gUq8+4gIO2ZahgnvMMIqv6Yjc0TadJjuvRDV1SugcBQeC0ZrDyRiqIjttKawQIjp rIskIVAapGD7NPLFzrW5xiq2ABDE4oBPZhdgN0mSwGzEZd+Al0kUX/WLsFxY6qHS l7uhAGLXLYJjy7mGkLtIJymWCJECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT5F8iN aBFJe1MI8hvIxEalMt9AgzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdT7DANBgkqhkiG9w0BAQsFAAOCAQEAA6ouWhPpxKPRweJFkkkN vOIJ7248aGeokAcSj8QrRRuQraVq+et64hHRku2+Ido+vkp64fuadX7DS8UAxVZF VYz7OrObiZ0HXKFQNRpEoS3HHGcCnMK6ut66j9mYoMPO4m5pappWoAYV+xWV8s3p jZ9zlAv6uH3OCnzA1fM6pxwzkFjdWIh1rBqWNME0tm0P6Z6y4L/AhHw2/nXxHoq6 b1K3s7xL+Iv1+hf3gQ/OLoR+Av0iU2HJ8Aam8K+ih75ddpS1G/t0u1n0j+BWlKAE K+5YnQb59E0ZUusax+2MRY03Szt8cqfLzoa8wBWDrSRh81UU0zzzJ1XBOU5RT/LY aw== -----END CERTIFICATE-----Generated at Mon Oct 20 03:03:33 2025 by rpki-client