$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150216.roa File: AS150216.roa (raw, json) Hash identifier: 8qMkMHKNK7AOXrZycmEks8NwT9qqtB6Cfq6VIvYFxOM= Subject key identifier: 55:B4:4B:6D:E6:0D:5A:DA:A8:7F:2B:86:B2:62:4B:50:45:4B:EA:F4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DD7D1281AE9BC08C5AF67A26DE26AC8605E46C2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150216.roa Signing time: Mon 03 Nov 2025 08:13:23 +0000 ROA not before: Mon 03 Nov 2025 08:08:23 +0000 ROA not after: Mon 02 Nov 2026 08:13:23 +0000 asID: 150216 IP address blocks: 103.4.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 07:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d7:d1:28:1a:e9:bc:08:c5:af:67:a2:6d:e2:6a:c8:60:5e:46:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 3 08:08:23 2025 GMT Not After : Nov 2 08:13:23 2026 GMT Subject: CN=55B44B6DE60D5ADAA87F2B86B2624B50454BEAF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a5:31:70:c7:21:f1:28:66:7f:79:23:28:a3: 0c:6c:e5:b8:90:63:5e:7d:71:03:03:3b:97:b8:34: a4:ea:3b:42:e4:fc:db:03:eb:58:65:51:f8:a2:db: 85:19:cf:be:76:f6:f1:c9:eb:2c:91:6b:96:d5:3a: 6b:94:8a:35:51:ce:07:fc:a5:79:84:3e:fe:75:f2: 7f:87:1d:d0:a4:5b:37:ad:49:b6:7a:80:ef:81:0c: b3:f7:c4:97:d2:3e:73:9c:fc:e2:3a:ed:5e:88:f0: 22:6c:ac:88:19:cd:11:88:67:ea:51:ec:5a:16:39: 57:74:59:2e:cb:84:24:5a:7f:a6:be:64:68:e4:5e: ae:2d:c2:f5:b9:0e:f8:d6:38:92:47:18:dd:3b:f4: 23:d8:aa:cc:44:d5:3c:46:06:b9:09:20:ad:09:be: e4:8e:1a:e5:e4:07:07:99:0e:90:de:8a:fb:23:24: 61:fc:aa:53:6e:b8:d1:3a:f8:37:db:39:b3:7f:d4: d4:a6:ae:4d:1b:c0:a3:67:ff:48:09:91:85:65:39: 5e:42:f6:8c:07:98:fd:69:f2:5f:57:31:a6:90:72: e9:3b:a9:82:41:83:75:b9:6f:94:a7:a9:2e:68:28: 14:7e:82:e4:19:ee:5e:29:8c:31:5b:68:bc:6c:a9: 81:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B4:4B:6D:E6:0D:5A:DA:A8:7F:2B:86:B2:62:4B:50:45:4B:EA:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150216.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.76.0/23 Signature Algorithm: sha256WithRSAEncryption 50:f0:bd:c2:ce:c9:9c:fe:4a:2a:cd:58:60:84:9a:a5:09:69: ca:a3:cf:6e:c1:b3:61:de:7d:b9:aa:f7:8c:62:e9:1a:0b:ba: 3c:9b:ef:1b:16:8f:5f:36:f2:b7:28:da:6a:0e:ca:01:06:d1: e1:68:47:16:b2:59:2f:ec:80:90:97:25:6e:57:2d:35:76:4d: 8e:b9:a5:64:b9:24:e4:90:09:37:37:6f:d1:6e:57:92:72:2b: 67:16:a3:e9:ac:d4:40:57:35:43:dd:2b:18:d0:fe:29:e8:99: d3:2d:54:d9:64:8f:8a:f3:34:06:97:6d:76:13:29:41:c7:6a: c9:74:9a:8a:76:93:f0:e8:b3:fd:2f:93:c5:12:83:37:b9:da: 6b:4c:2e:10:19:2c:68:72:9f:49:62:3c:b4:11:e3:31:4a:b4: 0f:ee:55:6c:24:c5:9a:e0:dd:e6:27:b1:db:39:15:15:3e:58: 5c:f0:5f:4e:3f:88:b5:0b:5e:0c:f4:b9:e7:37:ee:d8:81:62: 08:b7:66:7a:28:93:b6:80:13:47:39:08:ef:d1:3b:7f:45:0f: 86:72:05:cb:1e:97:53:96:8e:8f:bb:b5:1f:6d:99:24:8e:52: 85:62:16:2b:dd:10:97:8e:fb:51:c9:16:19:d9:d1:a2:31:54: c6:2a:8c:6f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDdfRKBrpvAjFr2eibeJqyGBeRsIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwMzA4MDgyM1oX DTI2MTEwMjA4MTMyM1owMzExMC8GA1UEAxMoNTVCNDRCNkRFNjBENUFEQUE4N0Yy Qjg2QjI2MjRCNTA0NTRCRUFGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKlMXDHIfEoZn95IyijDGzluJBjXn1xAwM7l7g0pOo7QuT82wPrWGVR+KLb hRnPvnb28cnrLJFrltU6a5SKNVHOB/yleYQ+/nXyf4cd0KRbN61JtnqA74EMs/fE l9I+c5z84jrtXojwImysiBnNEYhn6lHsWhY5V3RZLsuEJFp/pr5kaOReri3C9bkO +NY4kkcY3Tv0I9iqzETVPEYGuQkgrQm+5I4a5eQHB5kOkN6K+yMkYfyqU2640Tr4 N9s5s3/U1KauTRvAo2f/SAmRhWU5XkL2jAeY/WnyX1cxppBy6TupgkGDdblvlKep LmgoFH6C5BnuXimMMVtovGypgT8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRVtEtt 5g1a2qh/K4ayYktQRUvq9DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIxNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWcETDANBgkqhkiG9w0BAQsFAAOCAQEAUPC9ws7JnP5KKs1YYISa pQlpyqPPbsGzYd59uar3jGLpGgu6PJvvGxaPXzbytyjaag7KAQbR4WhHFrJZL+yA kJclblctNXZNjrmlZLkk5JAJNzdv0W5XknIrZxaj6azUQFc1Q90rGND+KeiZ0y1U 2WSPivM0BpdtdhMpQcdqyXSainaT8Oiz/S+TxRKDN7naa0wuEBksaHKfSWI8tBHj MUq0D+5VbCTFmuDd5iex2zkVFT5YXPBfTj+ItQteDPS55zfu2IFiCLdmeiiTtoAT RzkI79E7f0UPhnIFyx6XU5aOj7u1H22ZJI5ShWIWK90Ql477UckWGdnRojFUxiqM bw== -----END CERTIFICATE-----Generated at Tue Nov 4 02:00:35 2025 by rpki-client