$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149393.roa File: AS149393.roa (raw, json) Hash identifier: vn1/0IlxsHgAOD9BLWDa2rm4Hu7e8+3TYm9GQdGsv9E= Subject key identifier: DC:91:4E:48:9B:FD:BD:AD:05:F4:2A:D6:1C:6E:C1:39:0A:02:93:CC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 39A146B2E03E1691C1EE3FDACC7C697A0CEA10A0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149393.roa Signing time: Thu 17 Jul 2025 02:14:20 +0000 ROA not before: Thu 17 Jul 2025 02:09:20 +0000 ROA not after: Thu 16 Jul 2026 02:14:20 +0000 asID: 149393 IP address blocks: 210.87.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a1:46:b2:e0:3e:16:91:c1:ee:3f:da:cc:7c:69:7a:0c:ea:10:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 17 02:09:20 2025 GMT Not After : Jul 16 02:14:20 2026 GMT Subject: CN=DC914E489BFDBDAD05F42AD61C6EC1390A0293CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:86:43:94:a7:7a:88:e4:59:78:d0:24:d7:ad: 66:50:95:6f:2a:db:84:8a:5e:b6:61:97:42:77:58: b3:ca:bc:ae:c7:5f:e9:f0:17:10:b3:19:f4:47:bd: 90:6b:81:b7:b1:18:b0:8f:40:25:32:98:58:b7:b1: ff:bd:f6:5f:69:bc:b2:3d:08:08:10:8c:c6:fa:6a: 24:87:5b:45:8d:cb:3f:94:6b:28:43:32:ac:eb:d4: 3e:76:9f:85:b5:61:50:c5:62:83:81:26:c6:f8:fe: c3:8d:26:50:e0:27:6a:27:ef:42:c5:b8:a2:5d:b2: 79:e8:d7:87:7d:a2:16:b0:93:57:b4:a4:11:69:a7: 57:ee:fd:94:a8:51:f3:fd:63:78:ac:2a:c2:e7:df: 84:f2:eb:38:35:12:07:5e:0b:13:0d:06:29:42:28: 57:e8:17:85:8f:53:fa:21:af:de:04:5d:97:7d:98: 61:33:7b:ae:96:35:a0:dc:71:cf:8e:6e:c8:33:8a: fa:45:e7:35:e6:8d:07:0f:66:58:18:b4:5c:2b:fd: 02:5e:fa:db:15:55:1a:d8:ac:0c:65:0d:93:a7:d9: 2a:83:23:14:c7:2b:ce:8d:fc:e6:d8:6a:e6:b8:82: 89:a8:06:51:06:47:21:36:f6:ec:b6:df:2a:f0:78: dc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:91:4E:48:9B:FD:BD:AD:05:F4:2A:D6:1C:6E:C1:39:0A:02:93:CC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149393.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.96.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:6a:58:f7:31:56:21:50:91:85:b9:10:c9:a7:bf:d9:4c:85: c6:78:a5:b7:b3:70:c0:61:e5:f0:97:3c:58:53:36:a7:7b:1e: f9:a3:75:bd:be:90:88:5f:6a:9d:17:70:ca:ce:2b:40:62:1f: 62:7d:4b:b8:da:8d:0d:07:56:3a:5a:26:b3:18:06:42:88:fb: 6a:5c:ef:c3:8f:e4:8f:db:8e:dd:e8:3d:91:25:e5:1f:03:93: e1:42:b4:92:ff:92:a7:7c:1d:13:0f:e0:6f:49:70:d2:ec:a0: c2:5d:aa:bb:fb:12:b7:ee:f0:38:cf:b8:77:84:c1:34:ad:99: 0b:7f:2a:e1:0f:c3:0c:37:eb:6b:60:3d:b9:fe:25:aa:c4:9b: cc:42:70:29:cb:c1:a4:10:30:24:2a:3d:82:5d:12:8c:1f:05: b1:d1:4f:1c:60:88:e1:cb:19:5e:5d:0d:90:ce:c2:b2:b2:58: 80:22:81:cb:8d:8c:14:c5:01:66:4f:c9:08:8d:05:4c:82:b7: c6:f0:e3:18:fa:e1:26:f4:62:77:00:b2:8f:d0:a6:72:34:be: 38:01:8e:d3:e8:38:23:dc:db:f9:f4:06:d5:6d:46:df:7b:fc: 07:bf:7f:f6:4e:51:af:83:55:a7:9a:12:d2:f0:b0:24:68:9a: a2:4c:5c:d8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOaFGsuA+FpHB7j/azHxpegzqEKAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNzAyMDkyMFoX DTI2MDcxNjAyMTQyMFowMzExMC8GA1UEAxMoREM5MTRFNDg5QkZEQkRBRDA1RjQy QUQ2MUM2RUMxMzkwQTAyOTNDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmGQ5SneojkWXjQJNetZlCVbyrbhIpetmGXQndYs8q8rsdf6fAXELMZ9Ee9 kGuBt7EYsI9AJTKYWLex/732X2m8sj0ICBCMxvpqJIdbRY3LP5RrKEMyrOvUPnaf hbVhUMVig4Emxvj+w40mUOAnaifvQsW4ol2yeejXh32iFrCTV7SkEWmnV+79lKhR 8/1jeKwqwuffhPLrODUSB14LEw0GKUIoV+gXhY9T+iGv3gRdl32YYTN7rpY1oNxx z45uyDOK+kXnNeaNBw9mWBi0XCv9Al762xVVGtisDGUNk6fZKoMjFMcrzo385thq 5riCiagGUQZHITb27LbfKvB43MkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTckU5I m/29rQX0KtYcbsE5CgKTzDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdJXYDANBgkqhkiG9w0BAQsFAAOCAQEAXGpY9zFWIVCRhbkQyae/ 2UyFxnilt7NwwGHl8Jc8WFM2p3se+aN1vb6QiF9qnRdwys4rQGIfYn1LuNqNDQdW OlomsxgGQoj7alzvw4/kj9uO3eg9kSXlHwOT4UK0kv+Sp3wdEw/gb0lw0uygwl2q u/sSt+7wOM+4d4TBNK2ZC38q4Q/DDDfra2A9uf4lqsSbzEJwKcvBpBAwJCo9gl0S jB8FsdFPHGCI4csZXl0NkM7CsrJYgCKBy42MFMUBZk/JCI0FTIK3xvDjGPrhJvRi dwCyj9CmcjS+OAGO0+g4I9zb+fQG1W1G33v8B79/9k5Rr4NVp5oS0vCwJGiaokxc 2A== -----END CERTIFICATE-----Generated at Mon Jul 21 00:07:05 2025 by rpki-client