$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa File: AS150938.roa (raw, json) Hash identifier: 2NYIX1jLJuFNcx9fBe1MGUG5nzCb2MjnLmIgP8HJm6k= Subject key identifier: DF:77:D7:FB:15:01:85:E8:10:E7:92:3C:0D:8D:DD:1B:C5:89:7B:1B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09E23C5BC38DDA5747CB20B27F90B16A7F049C69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa Signing time: Mon 30 Mar 2026 03:00:00 +0000 ROA not before: Mon 30 Mar 2026 02:55:00 +0000 ROA not after: Mon 29 Mar 2027 03:00:00 +0000 asID: 150938 IP address blocks: 103.212.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e2:3c:5b:c3:8d:da:57:47:cb:20:b2:7f:90:b1:6a:7f:04:9c:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 30 02:55:00 2026 GMT Not After : Mar 29 03:00:00 2027 GMT Subject: CN=DF77D7FB150185E810E7923C0D8DDD1BC5897B1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:13:d1:b4:eb:62:5b:77:c1:4e:66:f6:31:2f: 9c:52:38:d2:8d:3a:9a:67:9b:0b:6b:64:70:d5:44: e8:84:9e:b8:2d:a0:b9:26:c4:bd:81:bf:8b:ab:ca: 6f:4a:90:5a:52:bd:95:59:07:5b:4f:3b:6e:bc:4a: 49:45:32:ca:d3:94:5c:e3:58:e1:66:e5:42:a3:b1: 33:98:79:c0:56:59:07:6b:d5:5b:70:45:90:df:8d: c7:fc:4e:ec:97:f7:f3:35:d2:96:ad:f7:6d:08:b4: 5e:f0:b8:96:96:54:5b:90:58:3a:ec:ea:94:44:46: 5f:d8:62:34:1c:b6:77:2c:cf:06:4c:22:25:5b:21: fe:0d:65:cc:d7:69:c3:72:21:24:de:c1:69:6c:e1: 4c:f3:c6:b6:89:b1:53:7d:1b:ee:49:e3:cd:05:37: db:3b:2c:c9:bb:b1:0b:ab:3d:75:92:1f:a8:0e:6f: f3:86:e1:ea:57:de:5c:46:a5:e6:ae:66:03:06:5d: 56:75:d9:fb:56:81:1c:5c:95:4f:70:7c:e8:67:c4: ed:7d:c0:e1:2f:1b:d4:d7:10:b7:35:97:ab:c4:f0: be:eb:f7:ea:ec:92:d7:70:40:1c:4c:fe:11:41:8d: 69:5f:51:64:74:0c:a3:92:14:6f:3b:4e:da:c8:fb: 21:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:77:D7:FB:15:01:85:E8:10:E7:92:3C:0D:8D:DD:1B:C5:89:7B:1B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.177.0/24 Signature Algorithm: sha256WithRSAEncryption 66:e8:b2:01:84:73:87:0f:5e:eb:83:da:a7:5c:8f:06:3a:e5: 59:bd:62:d3:46:97:4f:73:67:f5:35:ec:0b:8a:e0:8e:a7:4b: 18:86:a2:34:1e:cb:09:c6:48:1a:fb:11:da:56:35:f7:7b:03: e4:54:3c:68:6f:cc:ff:cd:e6:4d:da:8a:a0:d4:92:92:d1:74: c5:24:d2:e4:2d:ed:b1:69:f2:e1:9e:f7:2b:b0:34:e9:03:29: 33:de:75:1b:58:fd:24:e4:51:be:0b:ff:3a:42:4b:33:62:c2: 9c:95:c3:0d:8a:c7:4d:6b:20:c0:7c:7b:c3:61:64:c0:42:d6: de:78:16:29:36:f0:f6:0c:ca:63:74:8c:95:a0:62:64:c9:50: 9a:1b:50:cf:fa:9d:7a:f7:8d:fe:80:08:27:75:f4:56:bf:c5: 18:5c:ae:b9:6d:be:23:b5:a8:e0:2c:bf:9a:92:e1:a4:bd:71: 37:e5:76:6e:fe:45:58:25:d2:24:b7:f0:f3:96:65:d8:7a:b6: 9c:f8:f9:f8:8f:e9:5c:db:eb:08:ed:b7:5d:9b:8b:67:2b:36: b5:dd:e7:29:17:57:c4:2c:fe:4b:5f:fe:ff:f5:2e:2d:c3:0f: af:a1:c2:c3:3f:c5:d0:ec:4c:a1:9c:b1:c3:ca:2c:c9:ae:19: e8:05:0d:c4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCeI8W8ON2ldHyyCyf5Cxan8EnGkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMzMDAyNTUwMFoX DTI3MDMyOTAzMDAwMFowMzExMC8GA1UEAxMoREY3N0Q3RkIxNTAxODVFODEwRTc5 MjNDMEQ4REREMUJDNTg5N0IxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgT0bTrYlt3wU5m9jEvnFI40o06mmebC2tkcNVE6ISeuC2guSbEvYG/i6vK b0qQWlK9lVkHW087brxKSUUyytOUXONY4WblQqOxM5h5wFZZB2vVW3BFkN+Nx/xO 7Jf38zXSlq33bQi0XvC4lpZUW5BYOuzqlERGX9hiNBy2dyzPBkwiJVsh/g1lzNdp w3IhJN7BaWzhTPPGtomxU30b7knjzQU32zssybuxC6s9dZIfqA5v84bh6lfeXEal 5q5mAwZdVnXZ+1aBHFyVT3B86GfE7X3A4S8b1NcQtzWXq8Twvuv36uyS13BAHEz+ EUGNaV9RZHQMo5IUbztO2sj7IT8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTfd9f7 FQGF6BDnkjwNjd0bxYl7GzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfUsTANBgkqhkiG9w0BAQsFAAOCAQEAZuiyAYRzhw9e64Pap1yP BjrlWb1i00aXT3Nn9TXsC4rgjqdLGIaiNB7LCcZIGvsR2lY193sD5FQ8aG/M/83m TdqKoNSSktF0xSTS5C3tsWny4Z73K7A06QMpM951G1j9JORRvgv/OkJLM2LCnJXD DYrHTWsgwHx7w2FkwELW3ngWKTbw9gzKY3SMlaBiZMlQmhtQz/qdeveN/oAIJ3X0 Vr/FGFyuuW2+I7Wo4Cy/mpLhpL1xN+V2bv5FWCXSJLfw85Zl2Hq2nPj5+I/pXNvr CO23XZuLZys2td3nKRdXxCz+S1/+//UuLcMPr6HCwz/F0OxMoZyxw8osya4Z6AUN xA== -----END CERTIFICATE-----Generated at Fri Apr 17 08:17:17 2026 by rpki-client