$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147096.roa File: AS147096.roa (raw, json) Hash identifier: LADERssJJF/L1sRlQwTwujxBwKj+7RKJX8/B7IeXc6g= Subject key identifier: 49:72:E8:50:76:AF:55:82:81:C3:16:10:2E:D2:41:0D:44:48:7A:55 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 77E141769240CF4CF758AED2946FE77D3701DA34 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147096.roa Signing time: Sat 02 May 2026 14:30:08 +0000 ROA not before: Sat 02 May 2026 14:25:08 +0000 ROA not after: Sat 01 May 2027 14:30:08 +0000 asID: 147096 IP address blocks: 103.174.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e1:41:76:92:40:cf:4c:f7:58:ae:d2:94:6f:e7:7d:37:01:da:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 14:25:08 2026 GMT Not After : May 1 14:30:08 2027 GMT Subject: CN=4972E85076AF558281C316102ED2410D44487A55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d4:82:a5:9a:f0:4a:c9:a5:ad:d4:b9:a1:5d: 61:e5:f8:e5:35:d6:ee:a7:9d:ff:01:f0:c2:20:c3: cb:38:f9:16:8b:f4:93:c8:3b:56:28:7f:45:11:77: 10:b6:b8:cb:d8:09:83:15:66:16:e9:fc:31:5f:09: 43:e9:fb:23:fa:42:6f:e1:70:53:c8:54:a8:29:9d: 93:a0:3a:b5:2e:4b:9d:23:65:a1:77:65:41:fb:54: 64:81:5a:cd:a3:63:1e:14:cd:3e:31:73:2b:bd:3b: 56:47:7e:06:e1:dc:be:55:70:3f:71:6e:38:21:77: cb:db:49:5d:bc:82:20:f9:53:2e:a4:66:97:59:a4: 68:fa:df:18:6b:eb:8e:5f:92:7b:dc:81:45:47:bc: 3d:97:2b:52:a7:65:cd:1f:e6:73:7b:3f:49:42:28: cd:06:f0:06:59:e2:ff:49:dc:2f:c3:7d:25:31:39: 5f:8b:ba:71:49:56:11:9f:6d:93:88:eb:4c:21:39: 3e:9c:3c:39:d6:1f:59:31:de:8e:3f:fa:bd:15:b3: 5b:4b:a5:2b:84:bc:16:d2:00:c3:f2:d1:6e:f0:2a: 7c:9f:72:54:8c:f9:c1:27:0d:c3:12:50:ca:42:b6: ce:44:7b:2a:5a:bb:50:57:3a:e8:80:0f:52:a8:97: b4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:72:E8:50:76:AF:55:82:81:C3:16:10:2E:D2:41:0D:44:48:7A:55 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147096.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.122.0/23 Signature Algorithm: sha256WithRSAEncryption 51:04:8c:a5:76:76:2b:4d:e6:c5:c7:b8:41:18:aa:ed:a6:e5: 46:a3:fb:85:be:5b:18:0e:6f:94:47:88:3c:e2:7c:75:4b:e6: 5a:a5:74:66:f2:23:01:bf:b9:63:a2:46:35:29:d5:09:22:da: 56:16:1a:8a:4a:ec:e1:f1:2b:e9:de:3e:0a:a3:fd:71:e0:c2: 2b:08:63:12:45:4f:07:ce:65:01:f0:ca:ed:a2:7f:07:41:b9: 7c:d6:35:88:b2:59:fc:b2:1f:2a:55:97:61:dd:53:98:cb:94: 21:33:34:89:e0:11:f7:45:b1:65:90:4e:87:0a:d2:66:a7:3f: 34:16:5e:a4:31:de:1e:47:d5:6a:45:83:11:55:db:71:03:92: c6:aa:5b:3f:50:ce:52:72:0a:cc:f1:e7:99:34:02:b3:bb:ca: 70:ba:b1:66:b6:64:3c:db:05:b6:16:02:56:06:d2:4a:84:4d: 58:4e:84:eb:a6:21:ba:14:6d:2e:97:63:e9:63:01:a1:ea:60: 67:52:77:bf:e3:88:03:bc:ae:97:e5:a3:55:5f:28:8b:78:a9: a9:82:ed:42:6d:1b:bf:5e:d4:22:15:0a:b2:cf:aa:27:d8:18: e3:00:e3:dc:03:e7:4e:46:42:17:aa:a4:25:85:bf:3f:0e:b8: 8c:b1:d0:28 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUd+FBdpJAz0z3WK7SlG/nfTcB2jQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE0MjUwOFoX DTI3MDUwMTE0MzAwOFowMzExMC8GA1UEAxMoNDk3MkU4NTA3NkFGNTU4MjgxQzMx NjEwMkVEMjQxMEQ0NDQ4N0E1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjUgqWa8ErJpa3UuaFdYeX45TXW7qed/wHwwiDDyzj5Fov0k8g7Vih/RRF3 ELa4y9gJgxVmFun8MV8JQ+n7I/pCb+FwU8hUqCmdk6A6tS5LnSNloXdlQftUZIFa zaNjHhTNPjFzK707Vkd+BuHcvlVwP3FuOCF3y9tJXbyCIPlTLqRml1mkaPrfGGvr jl+Se9yBRUe8PZcrUqdlzR/mc3s/SUIozQbwBlni/0ncL8N9JTE5X4u6cUlWEZ9t k4jrTCE5Ppw8OdYfWTHejj/6vRWzW0ulK4S8FtIAw/LRbvAqfJ9yVIz5wScNwxJQ ykK2zkR7Klq7UFc66IAPUqiXtHECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRJcuhQ dq9VgoHDFhAu0kENREh6VTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MDk2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ656MA0GCSqGSIb3DQEBCwUAA4IBAQBRBIyldnYrTebFx7hBGKrtpuVG o/uFvlsYDm+UR4g84nx1S+ZapXRm8iMBv7ljokY1KdUJItpWFhqKSuzh8Svp3j4K o/1x4MIrCGMSRU8HzmUB8Mrton8HQbl81jWIsln8sh8qVZdh3VOYy5QhMzSJ4BH3 RbFlkE6HCtJmpz80Fl6kMd4eR9VqRYMRVdtxA5LGqls/UM5ScgrM8eeZNAKzu8pw urFmtmQ82wW2FgJWBtJKhE1YToTrpiG6FG0ul2PpYwGh6mBnUne/44gDvK6X5aNV XyiLeKmpgu1CbRu/XtQiFQqyz6on2BjjAOPcA+dORkIXqqQlhb8/DriMsdAo -----END CERTIFICATE-----Generated at Sun May 3 01:44:16 2026 by rpki-client