$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150949.roa File: AS150949.roa (raw, json) Hash identifier: 7y+uw3MBAUwutqMBCXqRuPrNQaxKusYrVSd7nmijG2I= Subject key identifier: 25:9C:D4:1D:1D:1B:F6:D7:F4:D0:61:44:26:8C:19:30:F9:D0:B6:6E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5A3D87FE9667BC325DB6C7263B222E66FE80D1B8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150949.roa Signing time: Tue 10 Mar 2026 08:00:00 +0000 ROA not before: Tue 10 Mar 2026 07:55:00 +0000 ROA not after: Tue 09 Mar 2027 08:00:00 +0000 asID: 150949 IP address blocks: 103.79.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:3d:87:fe:96:67:bc:32:5d:b6:c7:26:3b:22:2e:66:fe:80:d1:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 10 07:55:00 2026 GMT Not After : Mar 9 08:00:00 2027 GMT Subject: CN=259CD41D1D1BF6D7F4D06144268C1930F9D0B66E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:36:92:fc:27:8f:e9:30:c7:d1:b9:64:65:06: 39:52:91:68:fa:27:3d:cb:f0:3c:9d:6c:4f:ee:71: 65:8b:68:9c:59:ad:a8:b8:ed:15:20:77:71:5b:d4: a9:35:c7:79:5e:5d:c4:6e:77:e5:34:5e:c8:0b:63: e7:6b:16:f3:c1:4a:11:6a:0f:4d:e7:59:f6:63:b4: 1b:a9:33:bf:c4:36:c7:c7:96:c2:93:30:b7:37:23: 06:6a:d1:f1:b5:8c:ba:e0:06:c2:45:fc:34:98:af: 67:3c:9c:7b:4f:b1:9f:28:30:d8:5f:d1:d8:52:43: c0:16:22:3e:ad:08:50:2d:1b:c0:5e:2a:2d:b9:64: 93:7a:d4:80:4d:29:f7:ab:e8:89:89:d7:86:bd:a3: 1d:5f:46:bf:51:35:6a:08:c5:60:d7:c4:2d:8e:ce: 79:6b:84:7b:6b:c7:d6:55:84:ac:58:0d:ed:03:bc: e0:f5:a2:3d:23:d0:79:52:d4:86:26:29:ff:ac:3c: 93:ca:84:af:52:ad:3d:82:71:96:40:d7:5d:fe:4b: 91:08:72:3c:3d:64:4c:72:5c:4c:1b:89:3b:82:88: 3d:6c:3e:6f:a2:7c:b3:88:a6:f4:26:01:bd:21:17: 1f:14:5b:4c:e6:09:5f:19:a7:8c:d2:41:1f:35:2a: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9C:D4:1D:1D:1B:F6:D7:F4:D0:61:44:26:8C:19:30:F9:D0:B6:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150949.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.244.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:5b:4e:91:51:37:14:b6:50:f9:7e:d8:54:80:28:fb:d5:af: 17:a9:a7:13:01:73:5e:25:54:c0:73:04:0f:36:5d:63:97:0a: f9:09:a3:43:56:fe:d3:2e:e8:7a:ca:5c:76:8f:dc:d2:0e:94: 2c:9c:31:88:89:f4:2e:cb:fc:dc:85:24:af:10:a5:a2:e1:c8: 6a:2b:aa:b4:5f:ca:97:4c:8f:3a:6e:90:a1:45:00:92:ef:e8: 55:1b:00:5d:c1:2e:6b:6d:32:d6:9d:77:97:44:ed:df:2c:dc: 01:53:f2:15:a6:b4:59:ff:b8:13:7b:3f:12:5d:6e:aa:f0:57: bb:a7:4a:1f:56:48:49:23:35:c0:3c:84:f7:7e:a9:be:25:f1: d8:4b:24:6f:57:8f:fd:90:a1:20:04:f5:90:bf:4b:20:19:4f: 72:72:3e:69:fe:2d:43:7b:19:59:cc:c2:08:70:56:b5:3d:01: 67:13:a2:89:08:f1:f8:5c:29:7e:c6:36:28:c0:c8:54:a6:80: 45:b5:1e:91:0b:fb:3e:d1:4b:db:cc:08:46:21:68:a3:fc:d4: 23:19:8f:ad:a5:7a:85:a7:d7:92:a0:16:58:3c:3d:86:37:ae: d3:7a:53:29:b6:21:fa:29:6b:33:45:e6:ed:83:b0:6d:f4:7c: 93:d4:5c:49 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWj2H/pZnvDJdtscmOyIuZv6A0bgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMxMDA3NTUwMFoX DTI3MDMwOTA4MDAwMFowMzExMC8GA1UEAxMoMjU5Q0Q0MUQxRDFCRjZEN0Y0RDA2 MTQ0MjY4QzE5MzBGOUQwQjY2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOM2kvwnj+kwx9G5ZGUGOVKRaPonPcvwPJ1sT+5xZYtonFmtqLjtFSB3cVvU qTXHeV5dxG535TReyAtj52sW88FKEWoPTedZ9mO0G6kzv8Q2x8eWwpMwtzcjBmrR 8bWMuuAGwkX8NJivZzyce0+xnygw2F/R2FJDwBYiPq0IUC0bwF4qLblkk3rUgE0p 96voiYnXhr2jHV9Gv1E1agjFYNfELY7OeWuEe2vH1lWErFgN7QO84PWiPSPQeVLU hiYp/6w8k8qEr1KtPYJxlkDXXf5LkQhyPD1kTHJcTBuJO4KIPWw+b6J8s4im9CYB vSEXHxRbTOYJXxmnjNJBHzUqCn8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQlnNQd HRv21/TQYUQmjBkw+dC2bjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdP9DANBgkqhkiG9w0BAQsFAAOCAQEALFtOkVE3FLZQ+X7YVIAo +9WvF6mnEwFzXiVUwHMEDzZdY5cK+QmjQ1b+0y7oespcdo/c0g6ULJwxiIn0Lsv8 3IUkrxClouHIaiuqtF/Kl0yPOm6QoUUAku/oVRsAXcEua20y1p13l0Tt3yzcAVPy Faa0Wf+4E3s/El1uqvBXu6dKH1ZISSM1wDyE936pviXx2Eskb1eP/ZChIAT1kL9L IBlPcnI+af4tQ3sZWczCCHBWtT0BZxOiiQjx+FwpfsY2KMDIVKaARbUekQv7PtFL 28wIRiFoo/zUIxmPraV6hafXkqAWWDw9hjeu03pTKbYh+ilrM0Xm7YOwbfR8k9Rc SQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:11:08 2026 by rpki-client