$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150976.roa File: AS150976.roa (raw, json) Hash identifier: maK8su+oNPmoOMWrwUFvGQeqtIoaX5WDPLd9xE0Q59c= Subject key identifier: 85:30:3B:98:EC:33:66:2A:6B:D0:9F:EE:1D:24:26:14:22:B1:BF:74 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53FBBAEC80DDCE1A084F132638C9A401DD835695 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150976.roa Signing time: Thu 26 Jun 2025 06:00:00 +0000 ROA not before: Thu 26 Jun 2025 05:55:00 +0000 ROA not after: Thu 25 Jun 2026 06:00:00 +0000 asID: 150976 IP address blocks: 103.242.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:fb:ba:ec:80:dd:ce:1a:08:4f:13:26:38:c9:a4:01:dd:83:56:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 26 05:55:00 2025 GMT Not After : Jun 25 06:00:00 2026 GMT Subject: CN=85303B98EC33662A6BD09FEE1D24261422B1BF74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:62:70:d4:57:9f:f9:c6:28:7a:8f:5e:d3:c1: a6:62:f6:71:4e:c9:e1:ef:92:74:a9:31:3d:87:ae: a0:f8:50:8c:f7:02:00:95:28:63:7a:b8:8a:fb:d8: 41:6a:f9:59:0c:76:6c:fe:84:1c:eb:bf:92:1a:1b: bb:a2:91:d9:9d:7a:a8:80:d2:18:d4:33:0b:4c:d5: 06:e4:02:64:d2:dc:3d:99:a9:9b:dc:c4:fa:ab:eb: c7:65:09:a9:b8:bc:d9:4f:32:0b:22:55:ca:2e:66: 3d:ca:ef:08:34:ad:a1:a3:01:ff:13:a6:a7:a7:e8: 8f:27:b5:bf:e9:e0:5b:9d:40:a6:8a:23:6e:e7:6b: 65:59:9c:be:41:46:88:71:32:bb:62:fb:bc:89:40: bd:36:41:82:4f:71:53:1b:15:46:7e:a9:ee:70:7c: 8d:e7:df:fb:ce:52:f7:8f:d8:b8:11:ab:6c:ee:0d: 22:34:c2:ac:1d:b8:61:7e:eb:99:f3:40:5c:5c:47: ca:1d:f6:98:aa:f9:f8:9e:28:19:c9:84:d2:c6:e1: 64:27:14:86:33:5e:96:81:86:2c:e7:7f:b7:25:bd: 0c:e1:53:05:f1:66:45:5b:19:ed:e0:0e:96:71:67: 1f:b6:96:fc:05:fc:0a:ba:a9:ee:3d:cc:d6:74:b0: 5e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:30:3B:98:EC:33:66:2A:6B:D0:9F:EE:1D:24:26:14:22:B1:BF:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150976.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.234.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:c7:04:d0:14:10:9e:7f:f5:09:d6:ae:b8:b8:45:1a:88:e7: 83:98:4e:5e:c6:57:93:0f:96:32:e1:34:52:fb:e5:f0:84:69: 16:2f:4b:b6:de:9d:e1:d4:ef:15:28:d8:b8:1a:0c:ea:c6:86: 73:a5:1a:c5:4c:24:be:8c:a6:7d:7f:f6:3c:32:05:f1:82:90: de:6d:5c:f1:6c:4f:dc:bd:05:e0:c8:b3:6f:c3:ef:5b:d1:0d: 13:22:bd:42:17:22:3a:76:1f:5e:73:34:22:4e:b9:9c:0c:e0: af:27:02:3e:09:99:da:89:d5:4c:08:ec:4a:c9:73:fc:7f:a8: 31:5c:b4:a5:1d:e2:42:2e:17:d9:6b:9b:c4:d0:e8:17:4c:0a: 53:61:9a:64:87:94:47:f2:71:39:79:3f:5d:25:05:40:ec:32: 24:59:fd:91:32:8e:c4:f5:a5:9b:a6:10:48:a0:06:3b:a3:1a: 29:3d:41:8f:e9:91:00:71:0d:ca:7b:da:9a:a8:97:68:e5:ff: b7:e2:dc:98:e9:e1:ef:c5:36:7a:ed:88:27:b4:b3:1e:58:b5: b1:56:40:8d:ef:d3:f2:2d:f1:c2:e2:7e:92:1e:86:89:78:7d: 09:90:20:f5:7b:b2:bf:e3:7b:d2:8d:e4:ce:f6:56:dc:fc:2d: af:54:16:b1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUU/u67IDdzhoITxMmOMmkAd2DVpUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyNjA1NTUwMFoX DTI2MDYyNTA2MDAwMFowMzExMC8GA1UEAxMoODUzMDNCOThFQzMzNjYyQTZCRDA5 RkVFMUQyNDI2MTQyMkIxQkY3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOxicNRXn/nGKHqPXtPBpmL2cU7J4e+SdKkxPYeuoPhQjPcCAJUoY3q4ivvY QWr5WQx2bP6EHOu/khobu6KR2Z16qIDSGNQzC0zVBuQCZNLcPZmpm9zE+qvrx2UJ qbi82U8yCyJVyi5mPcrvCDStoaMB/xOmp6fojye1v+ngW51ApoojbudrZVmcvkFG iHEyu2L7vIlAvTZBgk9xUxsVRn6p7nB8jeff+85S94/YuBGrbO4NIjTCrB24YX7r mfNAXFxHyh32mKr5+J4oGcmE0sbhZCcUhjNeloGGLOd/tyW9DOFTBfFmRVsZ7eAO lnFnH7aW/AX8Crqp7j3M1nSwXm8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSFMDuY 7DNmKmvQn+4dJCYUIrG/dDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfy6jANBgkqhkiG9w0BAQsFAAOCAQEAa8cE0BQQnn/1CdauuLhF Gojng5hOXsZXkw+WMuE0Uvvl8IRpFi9Ltt6d4dTvFSjYuBoM6saGc6UaxUwkvoym fX/2PDIF8YKQ3m1c8WxP3L0F4Mizb8PvW9ENEyK9QhciOnYfXnM0Ik65nAzgrycC PgmZ2onVTAjsSslz/H+oMVy0pR3iQi4X2WubxNDoF0wKU2GaZIeUR/JxOXk/XSUF QOwyJFn9kTKOxPWlm6YQSKAGO6MaKT1Bj+mRAHENynvamqiXaOX/t+LcmOnh78U2 eu2IJ7SzHli1sVZAje/T8i3xwuJ+kh6GiXh9CZAg9Xuyv+N70o3kzvZW3Pwtr1QW sQ== -----END CERTIFICATE-----Generated at Sun Jun 29 12:23:27 2025 by rpki-client