$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS150913.roa File: AS150913.roa (raw, json) Hash identifier: 1FW38//MeJ0QN1xzUPpSaPpvjFLwUldZ6ofMII4pbyw= Subject key identifier: 5D:53:3E:95:1D:16:5C:66:35:BC:31:5B:DB:95:0A:52:72:55:C7:33 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3F62AB14559B76A8A1D25253531D479CECF4BA21 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150913.roa Signing time: Sun 03 May 2026 14:34:51 +0000 ROA not before: Sun 03 May 2026 14:29:51 +0000 ROA not after: Sun 02 May 2027 14:34:51 +0000 asID: 150913 IP address blocks: 103.89.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:62:ab:14:55:9b:76:a8:a1:d2:52:53:53:1d:47:9c:ec:f4:ba:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 14:29:51 2026 GMT Not After : May 2 14:34:51 2027 GMT Subject: CN=5D533E951D165C6635BC315BDB950A527255C733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:8e:4f:dc:7b:e2:6a:e0:c9:e3:78:80:c2:1d: 29:6b:67:33:00:a8:dc:2a:80:a7:15:22:7d:ef:54: 24:97:c6:2b:7d:ba:a2:19:2b:56:4f:a6:02:0b:ba: 65:a2:27:50:48:2b:be:bc:f4:bb:2b:c4:19:c7:13: 2f:6e:bc:50:3f:f6:b3:aa:2c:68:bc:69:29:07:fc: b0:b0:72:db:dc:c6:ae:c7:f8:7c:35:ea:d1:d5:1e: 45:f8:47:d6:17:b3:b8:ea:74:e6:38:b2:1e:4c:a2: ef:58:76:3a:f1:28:fa:8f:f1:99:99:58:db:9b:3c: 15:62:9b:b9:e3:ae:b6:74:2c:8d:50:15:74:24:3b: b6:72:fa:89:23:38:eb:f8:33:c4:07:59:e2:0f:8e: 41:c5:b8:cb:2e:f7:6c:7c:31:23:eb:86:01:15:b8: db:db:02:97:cd:fa:69:e1:a2:59:44:80:c9:c2:9c: e7:e9:f3:6d:91:01:42:c1:70:61:d1:3c:87:6a:a1: 18:7b:7a:eb:ac:d8:ac:06:f6:c1:f1:6c:31:9b:f1: 54:ef:da:0c:84:b1:d0:d9:6d:8e:d8:05:ce:49:6b: 06:68:1a:03:a1:1a:42:da:dc:c3:ce:2c:62:55:9e: dc:bc:16:33:ef:bb:e6:95:a4:88:f6:01:e9:49:e5: 26:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:53:3E:95:1D:16:5C:66:35:BC:31:5B:DB:95:0A:52:72:55:C7:33 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS150913.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.242.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:1e:c8:bd:c2:79:ed:cb:45:8c:05:76:8e:c2:cf:3f:a4:b4: 6c:34:a1:e3:ef:88:12:41:21:46:96:5c:93:ac:05:9e:85:30: db:a4:fd:b6:d0:50:91:b4:7a:82:f1:0b:9a:8e:49:59:17:c7: 3c:ba:3a:44:b1:9f:90:4e:5b:d3:94:f0:48:4a:e3:4b:48:d1: 29:52:1b:61:15:cc:cb:20:9f:6e:a7:5e:3e:f1:20:68:f8:29: 36:1f:4f:6d:18:a0:d4:75:c6:80:e5:3f:29:91:5d:14:90:e2: 6e:48:78:be:a9:c5:0a:ec:d9:e4:05:b3:5f:81:4c:76:d8:d5: 4e:81:c3:24:f7:cc:db:93:ad:12:07:dd:27:4a:25:39:1b:3e: 7f:d8:0c:32:d6:46:9c:cc:31:28:82:1b:30:5e:d2:56:16:76: f5:6b:3a:dc:14:a2:39:bf:17:42:8a:6c:e8:80:78:ce:ed:68: 7b:13:56:ba:94:a8:54:9c:e6:6e:d0:a2:8b:1f:02:8c:61:ef: 7b:51:ea:1b:f6:df:bb:ce:d5:91:af:a9:52:97:c4:17:f6:d7: 0f:f4:3e:fd:60:f7:35:8c:da:30:bc:e8:53:6b:1a:4d:06:1c: 54:a9:6a:d4:a0:a2:85:13:e0:6f:46:f6:d6:a3:a4:91:9e:99: 7a:c2:fb:95 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUP2KrFFWbdqih0lJTUx1HnOz0uiEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzE0Mjk1MVoX DTI3MDUwMjE0MzQ1MVowMzExMC8GA1UEAxMoNUQ1MzNFOTUxRDE2NUM2NjM1QkMz MTVCREI5NTBBNTI3MjU1QzczMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIWOT9x74mrgyeN4gMIdKWtnMwCo3CqApxUife9UJJfGK326ohkrVk+mAgu6 ZaInUEgrvrz0uyvEGccTL268UD/2s6osaLxpKQf8sLBy29zGrsf4fDXq0dUeRfhH 1hezuOp05jiyHkyi71h2OvEo+o/xmZlY25s8FWKbueOutnQsjVAVdCQ7tnL6iSM4 6/gzxAdZ4g+OQcW4yy73bHwxI+uGARW429sCl836aeGiWUSAycKc5+nzbZEBQsFw YdE8h2qhGHt666zYrAb2wfFsMZvxVO/aDISx0NltjtgFzklrBmgaA6EaQtrcw84s YlWe3LwWM++75pWkiPYB6UnlJk0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRdUz6V HRZcZjW8MVvblQpSclXHMzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTUwOTEzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ1nyMA0GCSqGSIb3DQEBCwUAA4IBAQBeHsi9wnnty0WMBXaOws8/pLRs NKHj74gSQSFGllyTrAWehTDbpP220FCRtHqC8QuajklZF8c8ujpEsZ+QTlvTlPBI SuNLSNEpUhthFczLIJ9up14+8SBo+Ck2H09tGKDUdcaA5T8pkV0UkOJuSHi+qcUK 7NnkBbNfgUx22NVOgcMk98zbk60SB90nSiU5Gz5/2Awy1kaczDEoghswXtJWFnb1 azrcFKI5vxdCimzogHjO7Wh7E1a6lKhUnOZu0KKLHwKMYe97Ueob9t+7ztWRr6lS l8QX9tcP9D79YPc1jNowvOhTaxpNBhxUqWrUoKKFE+BvRvbWo6SRnpl6wvuV -----END CERTIFICATE-----Generated at Tue May 12 22:56:52 2026 by rpki-client