$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150206.roa File: AS150206.roa (raw, json) Hash identifier: Ta2dhNHFGVd/8J5hx+p3Glts9W6qm0UqTCf59ut0z64= Subject key identifier: 91:9B:20:97:67:E9:6E:07:BC:C5:62:FE:EB:C3:27:12:2E:2C:A3:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63286A7D85441902C2CFD421FC6D2F0AEED63BD8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150206.roa Signing time: Thu 16 Apr 2026 07:00:00 +0000 ROA not before: Thu 16 Apr 2026 06:55:00 +0000 ROA not after: Thu 15 Apr 2027 07:00:00 +0000 asID: 150206 IP address blocks: 2401:85e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:28:6a:7d:85:44:19:02:c2:cf:d4:21:fc:6d:2f:0a:ee:d6:3b:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 16 06:55:00 2026 GMT Not After : Apr 15 07:00:00 2027 GMT Subject: CN=919B209767E96E07BCC562FEEBC327122E2CA3FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d2:38:cb:52:6f:1b:50:8c:c3:40:a4:0f:d1: f4:5d:2a:26:ae:52:62:89:e3:ff:a6:0d:3a:23:4c: f2:27:bc:4e:82:90:19:67:39:45:fc:c1:c3:10:0a: 04:1c:10:bf:a3:4b:92:91:1f:db:ca:9f:cb:cd:22: f6:d0:ec:47:13:33:50:79:78:33:a6:6a:9a:11:f6: 24:e3:ed:3f:80:dc:d9:29:3f:c5:05:88:5b:91:54: 03:66:f8:a9:b3:80:d2:1e:6f:62:bc:bd:fb:ea:b9: 8a:f5:ee:49:e1:81:38:25:aa:62:74:2a:95:58:99: 0b:21:20:62:50:b6:b6:34:97:2f:62:b2:fd:ce:e4: e1:a9:0c:6f:2b:63:7b:95:a8:d6:29:dd:89:bd:da: 68:d9:e7:50:87:ef:8b:05:17:a7:32:ee:9c:53:1e: 73:90:3c:a5:fd:cc:bf:a4:73:07:9f:f6:d9:6a:46: 42:16:49:bb:1d:28:b6:14:2b:85:5e:15:c8:05:ab: 13:ab:15:d7:6b:7e:ce:e4:1f:dc:ce:e2:2a:e6:70: 75:9c:46:7e:71:22:1e:93:8f:1d:f1:b8:ea:5f:e5: b9:17:90:05:a3:86:b3:34:c2:d6:f8:8f:a9:ea:8c: 6b:16:5a:a1:f2:02:19:5b:77:c4:fd:06:83:0c:98: ad:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9B:20:97:67:E9:6E:07:BC:C5:62:FE:EB:C3:27:12:2E:2C:A3:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150206.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:85e0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:0f:56:ee:a3:55:12:17:da:58:5f:62:ae:c1:5a:78:ac:52: 5a:a1:be:9e:c5:1e:0d:d9:35:ed:42:27:d3:c8:ee:c2:9c:99: 4b:f8:fb:27:13:f4:8f:af:66:70:23:87:03:4d:fd:03:ce:f8: 33:cc:46:60:f3:1b:bc:f0:a5:21:5b:db:8d:24:83:59:9f:1f: dd:d7:a4:3f:f2:8a:a3:09:b7:8c:cd:9b:03:a0:c0:6a:41:5c: 7a:ac:c3:59:14:3f:a8:c8:13:16:e8:b9:57:71:c2:fd:14:da: 03:ec:2b:25:2e:96:33:b8:fc:41:05:d0:22:28:bf:2a:79:19: 54:ce:8d:43:b4:e0:41:f6:a7:5c:c2:d8:bc:e9:31:a9:f8:29: 19:e4:17:7d:38:ba:51:84:ce:c4:f5:c7:1c:ae:86:cc:4b:8f: ca:02:3c:c5:c4:dc:02:83:3e:a0:94:53:1a:92:e0:2e:f8:82: 01:ed:f7:32:c6:6e:37:75:bc:6d:1a:c4:e1:73:00:fe:da:7e: 17:5b:2b:dd:1b:73:1f:24:44:3b:41:45:f2:ed:82:46:b7:67: 19:ba:43:5c:47:44:35:89:33:d9:a5:e3:03:09:ad:97:e6:18: f2:2e:ed:b8:23:d6:83:97:d1:2d:ed:36:7a:dc:de:17:3b:74: c3:e2:46:4b -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUYyhqfYVEGQLCz9Qh/G0vCu7WO9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQxNjA2NTUwMFoX DTI3MDQxNTA3MDAwMFowMzExMC8GA1UEAxMoOTE5QjIwOTc2N0U5NkUwN0JDQzU2 MkZFRUJDMzI3MTIyRTJDQTNGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvSOMtSbxtQjMNApA/R9F0qJq5SYonj/6YNOiNM8ie8ToKQGWc5RfzBwxAK BBwQv6NLkpEf28qfy80i9tDsRxMzUHl4M6ZqmhH2JOPtP4Dc2Sk/xQWIW5FUA2b4 qbOA0h5vYry9++q5ivXuSeGBOCWqYnQqlViZCyEgYlC2tjSXL2Ky/c7k4akMbytj e5Wo1indib3aaNnnUIfviwUXpzLunFMec5A8pf3Mv6RzB5/22WpGQhZJux0othQr hV4VyAWrE6sV12t+zuQf3M7iKuZwdZxGfnEiHpOPHfG46l/luReQBaOGszTC1viP qeqMaxZaofICGVt3xP0GgwyYrX8CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSRmyCX Z+luB7zFYv7rwycSLiyj/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBheAwDQYJKoZIhvcNAQELBQADggEBACoPVu6jVRIX2lhfYq7B WnisUlqhvp7FHg3ZNe1CJ9PI7sKcmUv4+ycT9I+vZnAjhwNN/QPO+DPMRmDzG7zw pSFb240kg1mfH93XpD/yiqMJt4zNmwOgwGpBXHqsw1kUP6jIExbouVdxwv0U2gPs KyUuljO4/EEF0CIovyp5GVTOjUO04EH2p1zC2LzpMan4KRnkF304ulGEzsT1xxyu hsxLj8oCPMXE3AKDPqCUUxqS4C74ggHt9zLGbjd1vG0axOFzAP7afhdbK90bcx8k RDtBRfLtgka3Zxm6Q1xHRDWJM9ml4wMJrZfmGPIu7bgj1oOX0S3tNnrc3hc7dMPi Rks= -----END CERTIFICATE-----Generated at Fri Apr 17 11:11:24 2026 by rpki-client