$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147081.roa File: AS147081.roa (raw, json) Hash identifier: 05V/0CfJTRPwfne1a+DHsmAk1K49KZDLb/vp6gaUaZo= Subject key identifier: 13:67:49:8B:6B:8F:DC:63:E0:C4:4F:D1:8D:8F:E9:5D:76:6F:E3:9F Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7BFC2C30AB46B25DEC59854AA44238F0D1D5825E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147081.roa Signing time: Sat 02 May 2026 21:32:22 +0000 ROA not before: Sat 02 May 2026 21:27:22 +0000 ROA not after: Sat 01 May 2027 21:32:22 +0000 asID: 147081 IP address blocks: 2401:5be0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:fc:2c:30:ab:46:b2:5d:ec:59:85:4a:a4:42:38:f0:d1:d5:82:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:27:22 2026 GMT Not After : May 1 21:32:22 2027 GMT Subject: CN=1367498B6B8FDC63E0C44FD18D8FE95D766FE39F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:2b:a5:4d:3d:f8:e4:b5:c0:c3:a6:0c:24: e2:e5:8d:2d:2c:53:1b:8d:27:a5:39:cc:5f:86:43: b2:e7:71:d3:7a:3a:95:4a:29:19:c4:35:1d:13:43: 32:44:f5:cd:74:24:2d:63:d5:b5:c8:23:20:a3:9f: 10:7e:02:1b:4b:36:c3:c0:21:ce:fe:39:09:f7:b6: 09:17:36:73:22:44:90:fc:ce:81:37:a6:0d:f1:9c: 0d:8d:f1:8e:20:3c:b8:a0:92:fd:0b:a8:74:70:35: 8d:c7:71:35:21:5d:07:ee:25:ad:1c:8d:17:76:e2: 1c:ce:a6:9b:4f:54:d8:d2:13:ff:11:74:30:ce:11: f9:f0:7a:a2:5b:be:57:aa:fa:44:1f:6c:6d:1c:af: 89:b3:f1:ad:09:e4:df:70:32:3f:07:4a:0b:f7:a2: a7:c2:95:b7:6d:ac:03:f3:25:b7:00:e9:c0:b0:f5: e3:36:4f:3f:ad:f7:6d:26:59:64:f7:06:fa:9a:54: 4f:4c:97:3a:47:a0:ac:56:27:3e:62:80:71:9c:fe: f2:ea:8f:26:34:e8:18:3d:5e:00:59:84:0b:93:46: d8:22:7b:d9:f5:12:60:01:81:6b:9b:38:f5:68:a4: 92:87:f3:bd:b6:21:1d:2f:40:e4:e1:99:0b:bd:77: 51:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:67:49:8B:6B:8F:DC:63:E0:C4:4F:D1:8D:8F:E9:5D:76:6F:E3:9F X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147081.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5be0::/32 Signature Algorithm: sha256WithRSAEncryption 59:ea:a2:cb:90:86:54:b5:6d:66:a5:65:4b:69:d0:5c:ce:c8: 87:a0:f6:99:10:c2:e3:33:e7:ff:24:87:ad:bd:4f:f5:98:b3: 4e:42:4d:14:f8:85:69:be:cf:44:07:1a:89:ea:9d:51:f8:d1: 5a:e8:65:2d:83:83:da:de:63:76:66:fb:98:52:f9:54:ef:30: 97:a5:7b:4e:76:62:08:24:b8:0a:60:60:7b:27:cb:13:94:d1: 19:8a:93:ee:64:4b:b9:7b:60:7b:91:37:87:ae:18:cb:a9:48: 06:59:9f:79:82:45:66:5d:45:04:99:aa:00:6d:28:2e:b4:52: 00:20:d3:4e:2e:63:5a:07:48:bb:c7:56:1f:06:0a:29:6a:bf: f0:43:82:38:dc:a0:10:18:f6:89:73:6f:f9:ac:2a:01:3e:ae: 50:c6:a0:9c:19:94:de:5f:a0:50:fb:24:30:26:21:05:10:a3: 5e:7c:47:6b:97:a2:2b:6b:c0:cf:7d:dd:5c:54:57:45:ad:17: 94:b6:14:ef:8d:fa:2b:2c:70:92:79:3a:4d:ec:8b:93:e9:14: c8:26:1e:73:5a:79:87:32:94:6e:c1:65:2e:45:66:af:34:4f: ed:7d:f9:97:7b:39:89:65:db:ae:3c:bc:54:63:59:33:f9:e9: ca:5a:34:a1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUe/wsMKtGsl3sWYVKpEI48NHVgl4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjcyMloX DTI3MDUwMTIxMzIyMlowMzExMC8GA1UEAxMoMTM2NzQ5OEI2QjhGREM2M0UwQzQ0 RkQxOEQ4RkU5NUQ3NjZGRTM5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKy/K6VNPfjktcDDpgwk4uWNLSxTG40npTnMX4ZDsudx03o6lUopGcQ1HRND MkT1zXQkLWPVtcgjIKOfEH4CG0s2w8Ahzv45Cfe2CRc2cyJEkPzOgTemDfGcDY3x jiA8uKCS/QuodHA1jcdxNSFdB+4lrRyNF3biHM6mm09U2NIT/xF0MM4R+fB6olu+ V6r6RB9sbRyvibPxrQnk33AyPwdKC/eip8KVt22sA/MltwDpwLD14zZPP633bSZZ ZPcG+ppUT0yXOkegrFYnPmKAcZz+8uqPJjToGD1eAFmEC5NG2CJ72fUSYAGBa5s4 9WikkofzvbYhHS9A5OGZC713UacCAwEAAaOCAc0wggHJMB0GA1UdDgQWBBQTZ0mL a4/cY+DET9GNj+lddm/jnzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MDgxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAFb4DANBgkqhkiG9w0BAQsFAAOCAQEAWeqiy5CGVLVtZqVlS2nQXM7I h6D2mRDC4zPn/ySHrb1P9ZizTkJNFPiFab7PRAcaieqdUfjRWuhlLYOD2t5jdmb7 mFL5VO8wl6V7TnZiCCS4CmBgeyfLE5TRGYqT7mRLuXtge5E3h64Yy6lIBlmfeYJF Zl1FBJmqAG0oLrRSACDTTi5jWgdIu8dWHwYKKWq/8EOCONygEBj2iXNv+awqAT6u UMagnBmU3l+gUPskMCYhBRCjXnxHa5eiK2vAz33dXFRXRa0XlLYU7436Kyxwknk6 TeyLk+kUyCYec1p5hzKUbsFlLkVmrzRP7X35l3s5iWXbrjy8VGNZM/npylo0oQ== -----END CERTIFICATE-----Generated at Sun May 3 00:42:28 2026 by rpki-client