$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147078.roa File: AS147078.roa (raw, json) Hash identifier: sMOrXRe4g8Tu1ei4cQGx2H5GfhvzU5c7jcWcZLI0Tkk= Subject key identifier: 56:BC:FA:8F:12:82:31:95:0D:6B:87:7E:03:96:E1:7F:36:12:43:FF Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 48975370CDF16A15231E0268AEA46DC1355611A2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147078.roa Signing time: Sat 02 May 2026 08:35:31 +0000 ROA not before: Sat 02 May 2026 08:30:31 +0000 ROA not after: Sat 01 May 2027 08:35:31 +0000 asID: 147078 IP address blocks: 2001:df3:b9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:97:53:70:cd:f1:6a:15:23:1e:02:68:ae:a4:6d:c1:35:56:11:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:31 2026 GMT Not After : May 1 08:35:31 2027 GMT Subject: CN=56BCFA8F128231950D6B877E0396E17F361243FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:8e:bc:55:c5:09:c6:bf:a1:1e:b8:de:02:62: 0c:3b:94:66:24:b7:62:c0:77:5e:b5:cb:af:c8:e4: 2b:ad:a7:95:78:f2:a4:ae:18:e4:55:84:59:1b:93: e3:17:bf:e8:25:b9:cb:b1:2f:31:f6:a2:54:da:3f: 1c:dc:05:a9:8e:43:e0:e0:f1:4c:77:64:56:9f:3e: 84:9b:82:ad:a4:b9:6a:30:f0:3e:fa:bc:72:d8:c9: b6:e4:fe:c3:17:b4:b2:24:0a:22:90:64:8c:56:ba: ff:94:9c:85:44:b3:29:c9:91:62:2b:0d:16:41:3f: ae:68:4a:47:37:45:80:1f:de:a5:2a:a2:27:cd:de: 4c:ec:76:72:86:d6:01:26:75:79:f8:b5:f8:63:c0: d1:3d:91:7a:ca:14:99:45:d6:7d:b5:1a:ca:7c:8c: c6:95:e9:9f:04:e5:34:39:7f:79:00:e4:93:1f:e7: c3:8b:96:b3:73:e7:af:eb:73:8c:fc:a0:75:f6:f2: 02:a0:e4:c1:c7:3e:ec:bf:55:8c:cb:97:b4:6e:76: 50:da:f5:50:80:dd:db:6d:d5:16:21:45:1c:d8:78: 33:43:f4:27:c9:1d:db:50:43:03:7b:7d:8b:58:44: 86:51:e4:7a:8e:c2:29:b1:bf:c8:96:7b:a4:2f:e6: 3b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BC:FA:8F:12:82:31:95:0D:6B:87:7E:03:96:E1:7F:36:12:43:FF X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147078.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b9c0::/48 Signature Algorithm: sha256WithRSAEncryption 96:79:38:02:7c:98:fd:bf:8d:58:bd:6a:09:aa:c8:1f:73:1e: 69:7c:33:3a:36:d0:cf:d4:12:42:8f:c6:2c:23:e6:1f:73:1c: 9e:f8:0c:87:92:9f:14:ee:11:8b:17:0a:f4:6d:0b:57:68:e3: 51:0a:66:7e:06:1e:f9:43:e7:3a:eb:14:58:94:6f:33:ff:85: 2a:61:c9:08:a5:0f:43:a6:b5:73:7a:58:b0:c4:4e:ce:12:63: ef:91:97:50:31:1e:91:34:4c:1b:d0:f4:8a:de:12:ac:6b:ad: ac:92:3b:1e:19:d6:89:4f:4c:f2:61:ac:06:75:40:97:d3:cc: dc:89:eb:fd:09:0b:f8:9f:36:23:5f:26:5f:71:20:84:99:5f: 9a:53:80:d1:0c:19:f9:1f:30:62:7c:7e:95:1c:87:31:92:ac: 89:02:60:94:04:ab:79:35:eb:64:e5:60:36:6f:64:ba:66:70: 8e:0e:a4:2a:d9:84:64:e7:6a:47:9d:e6:11:19:36:27:c4:5a: e0:b7:b1:b1:f3:eb:c5:b8:69:bf:b2:0e:4e:ca:87:37:aa:9a: 76:a9:84:87:7d:f0:d2:96:02:55:a1:6e:46:f4:c2:3a:e2:e4: ab:c7:1c:9c:a4:34:23:0e:bb:28:aa:b1:e4:00:a7:25:ec:a8: aa:8e:15:74 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUSJdTcM3xahUjHgJorqRtwTVWEaIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAzMVoX DTI3MDUwMTA4MzUzMVowMzExMC8GA1UEAxMoNTZCQ0ZBOEYxMjgyMzE5NTBENkI4 NzdFMDM5NkUxN0YzNjEyNDNGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIyOvFXFCca/oR643gJiDDuUZiS3YsB3XrXLr8jkK62nlXjypK4Y5FWEWRuT 4xe/6CW5y7EvMfaiVNo/HNwFqY5D4ODxTHdkVp8+hJuCraS5ajDwPvq8ctjJtuT+ wxe0siQKIpBkjFa6/5SchUSzKcmRYisNFkE/rmhKRzdFgB/epSqiJ83eTOx2cobW ASZ1efi1+GPA0T2ResoUmUXWfbUaynyMxpXpnwTlNDl/eQDkkx/nw4uWs3Pnr+tz jPygdfbyAqDkwcc+7L9VjMuXtG52UNr1UIDd223VFiFFHNh4M0P0J8kd21BDA3t9 i1hEhlHkeo7CKbG/yJZ7pC/mO8UCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRWvPqP EoIxlQ1rh34DluF/NhJD/zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MDc4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN87nAMA0GCSqGSIb3DQEBCwUAA4IBAQCWeTgCfJj9v41YvWoJqsgf cx5pfDM6NtDP1BJCj8YsI+Yfcxye+AyHkp8U7hGLFwr0bQtXaONRCmZ+Bh75Q+c6 6xRYlG8z/4UqYckIpQ9DprVzeliwxE7OEmPvkZdQMR6RNEwb0PSK3hKsa62skjse GdaJT0zyYawGdUCX08zciev9CQv4nzYjXyZfcSCEmV+aU4DRDBn5HzBifH6VHIcx kqyJAmCUBKt5Netk5WA2b2S6ZnCODqQq2YRk52pHneYRGTYnxFrgt7Gx8+vFuGm/ sg5Oyoc3qpp2qYSHffDSlgJVoW5G9MI64uSrxxycpDQjDrsoqrHkAKcl7KiqjhV0 -----END CERTIFICATE-----Generated at Sun May 3 00:42:25 2026 by rpki-client