$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147088.roa File: AS147088.roa (raw, json) Hash identifier: ewxwvXACQfTCPAQv4fmOCbya4TFc9dPcb/+8KuO/GQQ= Subject key identifier: 86:39:76:4B:F9:16:8F:7D:79:64:8D:18:CB:C8:C5:60:01:74:3B:06 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5A0F437EB9A49481B2DA5C78F69F231D9077C603 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147088.roa Signing time: Sat 02 May 2026 18:15:23 +0000 ROA not before: Sat 02 May 2026 18:10:23 +0000 ROA not after: Sat 01 May 2027 18:15:23 +0000 asID: 147088 IP address blocks: 103.149.203.0/24 maxlen: 24 103.162.55.0/24 maxlen: 24 103.164.180.0/24 maxlen: 24 103.172.172.0/24 maxlen: 24 103.173.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:0f:43:7e:b9:a4:94:81:b2:da:5c:78:f6:9f:23:1d:90:77:c6:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 18:10:23 2026 GMT Not After : May 1 18:15:23 2027 GMT Subject: CN=8639764BF9168F7D79648D18CBC8C56001743B06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:d1:87:81:d8:10:d4:b8:9a:99:92:ff:f0:19: 63:f9:24:c5:f2:6d:ed:45:7c:dc:a3:00:70:67:bc: ab:fb:49:11:18:ee:01:17:9a:fd:dd:d5:01:13:58: d2:13:a1:ff:cf:e8:67:3b:e7:3a:ac:e2:73:9e:a8: b2:ee:a9:16:e6:3b:9f:bc:cb:dd:55:a3:47:8c:99: 9b:2b:4b:39:68:95:fd:68:3b:5b:b6:62:32:fe:17: 83:58:7a:3f:4f:42:1e:6e:98:f6:fc:bd:26:30:c9: 0c:1c:eb:67:0b:ec:40:36:37:07:ce:ff:50:83:b7: 45:88:e0:28:3d:27:f9:3b:aa:9e:51:34:61:ee:60: 9d:be:00:0c:21:ea:5a:8f:9f:75:47:39:12:34:0e: 76:b4:c1:c5:ec:59:2d:f2:8a:9f:83:a2:dd:77:39: 93:37:3b:8d:16:f5:4c:c3:22:90:eb:11:94:5f:52: db:d3:a9:e4:55:60:4e:57:47:25:bc:c4:8f:a3:bf: 65:af:c7:a7:52:24:26:1a:44:f8:84:05:83:a9:ed: 22:2c:31:b7:6a:a3:05:4e:19:9a:20:bd:9e:32:83: 8f:ad:c2:1b:3c:cf:4c:17:7c:80:8b:ea:92:c3:08: c3:b7:98:86:05:39:5c:df:e8:ce:af:eb:b9:5e:53: c2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:39:76:4B:F9:16:8F:7D:79:64:8D:18:CB:C8:C5:60:01:74:3B:06 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147088.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.203.0/24 103.162.55.0/24 103.164.180.0/24 103.172.172.0/24 103.173.232.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:50:62:2f:0e:55:77:1b:ca:b3:42:68:73:df:5b:f7:f7:2b: fa:78:57:db:a8:b8:e8:56:2e:72:a2:e5:11:5e:53:85:38:f4: a2:a2:26:46:53:62:54:12:71:db:4c:4e:d8:4d:bc:b2:d9:57: a8:b1:63:e6:2f:9e:f7:5a:e2:bb:40:38:2a:a8:94:de:f3:3d: a5:0c:0e:69:64:e6:07:77:1f:0f:3f:43:97:cd:17:64:28:a3: 7f:3e:19:ff:ca:bb:98:05:ba:79:f8:c7:f4:4c:27:49:21:44: e4:ff:07:58:e7:5c:9f:27:07:32:73:3c:a1:5c:f0:8b:bb:a2: ff:1e:77:12:16:7a:ef:80:ed:2a:2c:d6:85:9e:11:65:7d:df: b0:91:7e:3d:10:88:1c:5b:40:2f:8d:54:36:4c:f9:ef:5d:8b: 93:4f:36:ce:bb:c8:15:68:96:12:ba:17:58:30:5f:9c:78:44: 0d:cf:5d:dc:36:e6:31:28:7d:a7:4e:0d:e6:5b:85:e9:e9:7d: 7f:75:ab:5e:da:06:3e:aa:15:05:3a:eb:2e:a7:e6:62:1c:53: 14:99:d7:50:bb:fd:73:6b:37:78:bc:18:07:68:5e:71:16:b9: 29:29:b5:7c:af:6c:5e:a5:a9:38:a2:e0:01:1a:f3:52:90:d4: 61:3f:ba:aa -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUWg9DfrmklIGy2lx49p8jHZB3xgMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE4MTAyM1oX DTI3MDUwMTE4MTUyM1owMzExMC8GA1UEAxMoODYzOTc2NEJGOTE2OEY3RDc5NjQ4 RDE4Q0JDOEM1NjAwMTc0M0IwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJHRh4HYENS4mpmS//AZY/kkxfJt7UV83KMAcGe8q/tJERjuARea/d3VARNY 0hOh/8/oZzvnOqzic56osu6pFuY7n7zL3VWjR4yZmytLOWiV/Wg7W7ZiMv4Xg1h6 P09CHm6Y9vy9JjDJDBzrZwvsQDY3B87/UIO3RYjgKD0n+TuqnlE0Ye5gnb4ADCHq Wo+fdUc5EjQOdrTBxexZLfKKn4Oi3Xc5kzc7jRb1TMMikOsRlF9S29Op5FVgTldH JbzEj6O/Za/Hp1IkJhpE+IQFg6ntIiwxt2qjBU4ZmiC9njKDj63CGzzPTBd8gIvq ksMIw7eYhgU5XN/ozq/ruV5TwikCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBSGOXZL +RaPfXlkjRjLyMVgAXQ7BjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MDg4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIA ATAeAwQAZ5XLAwQAZ6I3AwQAZ6S0AwQAZ6ysAwQBZ63oMA0GCSqGSIb3DQEBCwUA A4IBAQBPUGIvDlV3G8qzQmhz31v39yv6eFfbqLjoVi5youURXlOFOPSioiZGU2JU EnHbTE7YTbyy2VeosWPmL573WuK7QDgqqJTe8z2lDA5pZOYHdx8PP0OXzRdkKKN/ Phn/yruYBbp5+Mf0TCdJIUTk/wdY51yfJwcyczyhXPCLu6L/HncSFnrvgO0qLNaF nhFlfd+wkX49EIgcW0AvjVQ2TPnvXYuTTzbOu8gVaJYSuhdYMF+ceEQNz13cNuYx KH2nTg3mW4Xp6X1/date2gY+qhUFOusup+ZiHFMUmddQu/1zazd4vBgHaF5xFrkp KbV8r2xepak4ouABGvNSkNRhP7qq -----END CERTIFICATE-----Generated at Sun May 3 00:42:21 2026 by rpki-client