$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149677.roa File: AS149677.roa (raw, json) Hash identifier: Cfocu3pXzHQPv9j67DEi6MbRj4ta4nLB9Jg8okWP4nI= Subject key identifier: 5C:B8:E2:86:3B:83:29:C0:79:7A:37:FE:99:72:74:51:1A:D4:C9:2F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1957016DD00C66B51435F23C5D7D0EB6EB746478 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149677.roa Signing time: Wed 04 Mar 2026 04:30:57 +0000 ROA not before: Wed 04 Mar 2026 04:25:57 +0000 ROA not after: Wed 03 Mar 2027 04:30:57 +0000 asID: 149677 IP address blocks: 103.180.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 09:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:57:01:6d:d0:0c:66:b5:14:35:f2:3c:5d:7d:0e:b6:eb:74:64:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 4 04:25:57 2026 GMT Not After : Mar 3 04:30:57 2027 GMT Subject: CN=5CB8E2863B8329C0797A37FE997274511AD4C92F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6c:ba:59:a8:d0:b3:91:dd:b6:69:31:c5:8d: 8f:9c:1e:a2:2f:32:1f:92:a5:49:77:90:05:4f:8b: 70:8a:00:05:fc:0a:9c:75:13:96:8f:33:7a:08:35: 1d:6a:d4:57:45:ac:b8:61:5e:bc:32:9e:46:fd:45: bb:10:15:53:7c:81:4d:04:ae:01:05:a3:02:4a:00: de:29:4f:3d:7b:f2:7a:da:c0:04:85:56:0e:69:0c: 5b:4e:f0:10:1c:e3:ba:d7:06:bf:a5:a9:5b:1f:6e: e2:8f:30:78:19:a9:de:8f:48:19:ff:fe:29:11:1f: 45:6a:04:d2:83:90:04:fc:a0:15:fa:ee:cc:09:d0: dc:95:72:04:36:02:12:c6:e2:b3:aa:e4:34:61:21: 61:85:b2:9a:98:26:59:28:fc:d0:ed:19:01:00:c8: 1f:8d:6e:4f:96:d7:ac:ad:59:ba:f2:04:d0:d6:8c: c7:51:ef:48:00:82:55:3a:09:51:97:7e:51:1b:1c: bb:28:c3:1d:c1:c2:1e:d7:b2:43:03:ce:dd:32:da: 61:f1:ce:7b:ff:a9:ba:70:4a:ee:57:49:5b:96:43: 9c:a1:e3:8f:b2:f7:63:da:47:01:43:5a:8e:78:2b: fc:a6:09:1b:b3:12:83:14:0b:b6:69:e3:60:89:bf: 18:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B8:E2:86:3B:83:29:C0:79:7A:37:FE:99:72:74:51:1A:D4:C9:2F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149677.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.116.0/23 Signature Algorithm: sha256WithRSAEncryption 56:70:09:b0:e1:a8:3a:be:da:5c:c5:f5:aa:31:46:47:38:93: a6:3f:36:8b:fe:95:f9:e4:31:f5:cd:99:90:a8:8e:e3:e1:29: b0:7a:e0:34:1f:ff:a1:c3:2d:92:eb:bd:2d:8e:0a:0e:87:cb: 9f:c0:01:e5:b4:66:69:d4:57:5b:77:f6:69:8e:da:0e:58:b6: 3e:4a:4c:ab:aa:90:cb:89:22:93:1a:6e:c9:78:bc:11:c9:0c: 77:a4:a8:0e:51:31:5c:e1:4f:02:92:9b:77:41:ae:7d:7e:65: 23:8d:6f:66:ca:16:7b:1e:1c:69:68:49:69:01:c6:d9:f9:b1: 8e:69:dd:f5:c4:e8:53:67:68:81:8e:fc:1f:94:ea:4c:c5:b5: 37:1b:69:e9:96:66:9a:db:0e:ab:d5:0f:85:2f:d1:9a:cb:65: 50:a5:13:df:e2:a6:a9:a1:13:29:16:c1:63:dd:6f:58:e8:c1: b7:88:53:16:9a:25:7e:fd:1f:d3:53:f9:ea:6b:dc:66:d2:5e: 89:3d:ff:5c:b4:e1:fe:95:f7:02:92:06:f7:59:cf:f2:6e:9a: 27:fe:f0:d3:ee:26:a4:13:1c:2a:b5:0c:08:52:d5:63:28:2a: 08:3d:e3:b9:ba:be:97:fd:a1:eb:e3:41:e2:55:cb:10:55:31: 49:fb:35:ae -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGVcBbdAMZrUUNfI8XX0Otut0ZHgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMwNDA0MjU1N1oX DTI3MDMwMzA0MzA1N1owMzExMC8GA1UEAxMoNUNCOEUyODYzQjgzMjlDMDc5N0Ez N0ZFOTk3Mjc0NTExQUQ0QzkyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJtsulmo0LOR3bZpMcWNj5weoi8yH5KlSXeQBU+LcIoABfwKnHUTlo8zegg1 HWrUV0WsuGFevDKeRv1FuxAVU3yBTQSuAQWjAkoA3ilPPXvyetrABIVWDmkMW07w EBzjutcGv6WpWx9u4o8weBmp3o9IGf/+KREfRWoE0oOQBPygFfruzAnQ3JVyBDYC Esbis6rkNGEhYYWympgmWSj80O0ZAQDIH41uT5bXrK1ZuvIE0NaMx1HvSACCVToJ UZd+URscuyjDHcHCHteyQwPO3TLaYfHOe/+punBK7ldJW5ZDnKHjj7L3Y9pHAUNa jngr/KYJG7MSgxQLtmnjYIm/GMMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRcuOKG O4MpwHl6N/6ZcnRRGtTJLzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY3Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe0dDANBgkqhkiG9w0BAQsFAAOCAQEAVnAJsOGoOr7aXMX1qjFG RziTpj82i/6V+eQx9c2ZkKiO4+EpsHrgNB//ocMtkuu9LY4KDofLn8AB5bRmadRX W3f2aY7aDli2PkpMq6qQy4kikxpuyXi8EckMd6SoDlExXOFPApKbd0GufX5lI41v ZsoWex4caWhJaQHG2fmxjmnd9cToU2dogY78H5TqTMW1Nxtp6ZZmmtsOq9UPhS/R mstlUKUT3+KmqaETKRbBY91vWOjBt4hTFpolfv0f01P56mvcZtJeiT3/XLTh/pX3 ApIG91nP8m6aJ/7w0+4mpBMcKrUMCFLVYygqCD3jubq+l/2h6+NB4lXLEFUxSfs1 rg== -----END CERTIFICATE-----Generated at Thu Mar 19 08:11:53 2026 by rpki-client