$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149890.roa File: AS149890.roa (raw, json) Hash identifier: iE+7jXrYkib+rA+DH29eX0hcHJcUg8Kyx6OttUD3U40= Subject key identifier: 5B:03:CF:33:21:8D:F7:FB:C1:E2:98:D6:C4:8E:0E:4F:41:68:3E:8E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 65563A44945BEA3D0F1060B9B8C81DE8F238B0E3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149890.roa Signing time: Fri 19 Sep 2025 08:29:39 +0000 ROA not before: Fri 19 Sep 2025 08:24:39 +0000 ROA not after: Fri 18 Sep 2026 08:29:39 +0000 asID: 149890 IP address blocks: 103.190.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:56:3a:44:94:5b:ea:3d:0f:10:60:b9:b8:c8:1d:e8:f2:38:b0:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 19 08:24:39 2025 GMT Not After : Sep 18 08:29:39 2026 GMT Subject: CN=5B03CF33218DF7FBC1E298D6C48E0E4F41683E8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:25:7d:a9:22:43:ea:a3:d6:c1:83:50:58:fa: d9:4a:eb:a6:ac:e3:e8:82:f6:3e:fd:eb:6c:10:ed: b6:69:25:e5:97:ad:7c:4c:75:56:f9:ad:52:93:32: aa:0b:5e:00:fd:8f:03:04:00:f5:53:7c:38:da:d2: 72:ac:33:3e:e6:dd:42:2f:4d:d1:b6:6f:93:90:77: e0:16:16:d4:4b:52:67:bb:ca:be:50:bb:8a:45:ed: bf:08:a8:cf:3a:8d:d1:8a:a3:84:7d:48:4c:d2:0f: b6:b7:de:cf:80:a5:b4:f3:a1:85:a7:f4:a0:cb:2b: c8:51:35:3a:bf:21:77:f5:d4:74:f4:b0:67:e7:94: 79:15:8a:d0:e5:88:da:50:e6:b2:26:1a:0b:1b:9c: f8:3a:dc:94:8d:97:ba:d8:9e:98:03:43:f5:30:5d: cf:eb:4d:4b:d3:ab:a6:8b:7a:a8:ba:08:c5:cc:09: bc:c5:30:5a:6d:27:c3:cc:85:74:6d:c9:cd:36:59: d5:52:b2:6a:58:e8:d6:96:6d:22:d7:0f:f4:06:23: 90:8a:cf:82:b7:fa:16:b1:5d:14:26:47:9e:89:07: 19:a4:cd:f4:52:82:e4:d2:8b:6c:e1:bd:d2:3b:07: 17:3b:44:60:7d:a8:38:db:eb:6d:9f:92:fb:fa:cb: 3b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:03:CF:33:21:8D:F7:FB:C1:E2:98:D6:C4:8E:0E:4F:41:68:3E:8E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.0.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:72:ae:aa:7a:be:a4:26:dd:04:23:ce:53:4f:84:87:cf:d9: e5:34:a0:61:5f:e0:67:05:a0:70:b2:79:71:4b:5e:15:78:eb: e6:31:51:65:54:a7:c8:a4:f3:fb:5f:33:16:1a:c1:8f:e2:05: fa:53:c1:86:bb:c4:2b:0f:26:4a:df:41:81:74:9d:9d:e2:e3: 60:03:58:53:d2:4e:46:20:68:bf:4d:17:08:7d:3f:6c:37:ab: 01:2a:45:21:48:9b:31:ab:55:59:f1:47:fc:9e:77:3d:e6:f5: 51:28:f5:81:c6:8d:89:f1:a8:95:3b:3d:de:f8:ee:3e:47:ea: 15:74:76:62:7b:ea:67:bf:a2:0f:d4:59:11:0a:c6:f0:8d:e6: d3:f9:d2:df:fe:21:43:42:ad:87:2b:6b:13:40:ce:6b:94:11: 49:75:88:b2:8a:b9:7e:07:b2:87:60:94:fb:d3:c9:4f:b4:60: ae:9b:5f:ff:a1:bf:89:3f:fe:88:43:c7:c3:24:9e:a0:e8:55: 5c:b7:4b:32:28:f6:6e:cf:90:bb:5e:69:62:dc:89:f1:85:8b: 1d:a2:66:46:7b:07:96:f5:12:56:3d:fb:49:be:cf:cd:ce:36: 34:31:cc:86:4b:34:83:51:d6:39:f8:fd:3a:af:f5:fd:53:be: a9:5c:58:db -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZVY6RJRb6j0PEGC5uMgd6PI4sOMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxOTA4MjQzOVoX DTI2MDkxODA4MjkzOVowMzExMC8GA1UEAxMoNUIwM0NGMzMyMThERjdGQkMxRTI5 OEQ2QzQ4RTBFNEY0MTY4M0U4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMslfakiQ+qj1sGDUFj62Urrpqzj6IL2Pv3rbBDttmkl5ZetfEx1VvmtUpMy qgteAP2PAwQA9VN8ONrScqwzPubdQi9N0bZvk5B34BYW1EtSZ7vKvlC7ikXtvwio zzqN0YqjhH1ITNIPtrfez4CltPOhhaf0oMsryFE1Or8hd/XUdPSwZ+eUeRWK0OWI 2lDmsiYaCxuc+DrclI2XutiemAND9TBdz+tNS9Orpot6qLoIxcwJvMUwWm0nw8yF dG3JzTZZ1VKyaljo1pZtItcP9AYjkIrPgrf6FrFdFCZHnokHGaTN9FKC5NKLbOG9 0jsHFztEYH2oONvrbZ+S+/rLOxMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRbA88z IY33+8HimNbEjg5PQWg+jjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTg5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+ADANBgkqhkiG9w0BAQsFAAOCAQEAHXKuqnq+pCbdBCPOU0+E h8/Z5TSgYV/gZwWgcLJ5cUteFXjr5jFRZVSnyKTz+18zFhrBj+IF+lPBhrvEKw8m St9BgXSdneLjYANYU9JORiBov00XCH0/bDerASpFIUibMatVWfFH/J53Peb1USj1 gcaNifGolTs93vjuPkfqFXR2YnvqZ7+iD9RZEQrG8I3m0/nS3/4hQ0KthytrE0DO a5QRSXWIsoq5fgeyh2CU+9PJT7Rgrptf/6G/iT/+iEPHwySeoOhVXLdLMij2bs+Q u15pYtyJ8YWLHaJmRnsHlvUSVj37Sb7Pzc42NDHMhks0g1HWOfj9Oq/1/VO+qVxY 2w== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:24 2025 by rpki-client