$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147103.roa File: AS147103.roa (raw, json) Hash identifier: jk3b393f5qYs8K+2EEUawUhLvalBpbsPf4DpM2SK4KI= Subject key identifier: 31:C5:CF:B2:CF:05:56:94:C1:52:0A:EA:7E:19:99:1F:F5:BD:8D:EA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 794B5E990B832B7974F7EDF6F866D0EF4787638E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147103.roa Signing time: Sat 02 May 2026 09:20:40 +0000 ROA not before: Sat 02 May 2026 09:15:40 +0000 ROA not after: Sat 01 May 2027 09:20:40 +0000 asID: 147103 IP address blocks: 103.174.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:4b:5e:99:0b:83:2b:79:74:f7:ed:f6:f8:66:d0:ef:47:87:63:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:40 2026 GMT Not After : May 1 09:20:40 2027 GMT Subject: CN=31C5CFB2CF055694C1520AEA7E19991FF5BD8DEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:e3:7d:7a:c7:06:51:a0:4a:5a:83:1b:fd: ef:b9:bd:58:40:1b:05:4a:f0:ab:13:40:23:36:35: 5d:e9:8d:f3:f4:5c:94:3c:c0:4b:97:5b:93:e6:5a: 24:20:16:bb:65:4d:d7:d3:9d:14:7b:fb:56:1e:b7: 2b:66:ca:fa:6d:f5:65:e2:a2:6f:fb:60:28:72:a4: ff:38:f3:95:02:c1:b8:83:e1:b1:79:ea:61:a8:c3: 8a:42:83:71:1d:e3:bb:8a:13:3b:3c:29:e2:b7:d3: bc:8d:51:e8:b1:cb:cb:89:a3:53:a6:ce:a6:3d:3b: a2:01:9e:9d:7f:cc:95:15:d4:31:bb:9b:30:d5:67: bd:ca:6b:31:61:af:d6:c7:02:3b:c2:69:cc:e8:f1: 95:6d:52:e5:4d:5a:d9:36:92:ae:f9:b0:24:74:cc: 9b:2d:97:c7:9a:c3:da:f2:bf:61:ea:5b:33:12:42: 2d:77:ba:d2:7d:1a:0e:2e:ae:de:6b:b5:a5:a4:c9: 03:99:9e:bd:0f:4c:a3:7b:31:a3:83:a7:f0:fa:55: 04:fd:8e:98:fe:4b:1f:11:40:30:ec:af:87:79:96: ca:22:25:ef:9a:97:0a:93:34:25:9e:d5:53:2a:1c: f0:7b:29:40:58:a0:0b:35:6c:0b:75:be:c4:f7:d8: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C5:CF:B2:CF:05:56:94:C1:52:0A:EA:7E:19:99:1F:F5:BD:8D:EA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147103.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.223.0/24 Signature Algorithm: sha256WithRSAEncryption 00:d5:70:a9:cb:d8:6e:e4:2e:75:1b:df:87:fb:12:c7:a0:e8: fd:c8:6f:e4:14:ff:3a:ac:51:9f:40:c8:67:69:ce:7a:17:9a: 60:26:0c:ae:29:8e:ce:83:44:6a:09:e8:c5:c5:ba:cc:8d:10: 19:23:b9:68:18:f2:23:2a:12:2f:dd:80:1f:49:0e:2e:d6:5d: 3f:4a:27:b7:ae:94:ed:94:09:16:14:da:b4:8c:02:26:47:3f: a7:1a:9d:ac:b8:f7:39:82:a4:1d:76:46:68:a5:96:37:72:62: cf:69:5a:3f:ee:f6:dd:aa:2c:71:f2:59:aa:3d:68:95:65:9b: d0:0f:f8:f1:68:22:eb:56:60:0b:47:5d:85:75:6f:76:51:52: 1c:64:8b:02:4b:43:73:7c:3f:54:a2:57:b0:76:c8:54:33:7e: 97:15:70:06:d3:b3:dc:7d:0e:a0:f8:ca:b5:dd:7d:26:6c:24: cd:a7:03:b2:4b:65:b2:a2:0f:38:9b:56:28:49:5c:5b:f6:a4: a5:05:f5:9b:9b:90:11:03:ee:59:2a:6d:db:45:00:65:c7:fd: c3:d5:bb:ff:0d:24:85:de:3d:cc:f1:b0:d6:a4:9d:44:cb:b3: 1f:95:3a:19:6f:92:b9:3e:7f:6e:a9:71:d4:1d:45:ec:76:85: 3c:59:5e:28 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUeUtemQuDK3l09+32+GbQ70eHY44wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTU0MFoX DTI3MDUwMTA5MjA0MFowMzExMC8GA1UEAxMoMzFDNUNGQjJDRjA1NTY5NEMxNTIw QUVBN0UxOTk5MUZGNUJEOERFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvv4316xwZRoEpagxv977m9WEAbBUrwqxNAIzY1XemN8/RclDzAS5dbk+Za JCAWu2VN19OdFHv7Vh63K2bK+m31ZeKib/tgKHKk/zjzlQLBuIPhsXnqYajDikKD cR3ju4oTOzwp4rfTvI1R6LHLy4mjU6bOpj07ogGenX/MlRXUMbubMNVnvcprMWGv 1scCO8JpzOjxlW1S5U1a2TaSrvmwJHTMmy2Xx5rD2vK/YepbMxJCLXe60n0aDi6u 3mu1paTJA5mevQ9Mo3sxo4On8PpVBP2OmP5LHxFAMOyvh3mWyiIl75qXCpM0JZ7V Uyoc8HspQFigCzVsC3W+xPfYnk0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQxxc+y zwVWlMFSCup+GZkf9b2N6jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MTAzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ67fMA0GCSqGSIb3DQEBCwUAA4IBAQAA1XCpy9hu5C51G9+H+xLHoOj9 yG/kFP86rFGfQMhnac56F5pgJgyuKY7Og0RqCejFxbrMjRAZI7loGPIjKhIv3YAf SQ4u1l0/Sie3rpTtlAkWFNq0jAImRz+nGp2suPc5gqQddkZopZY3cmLPaVo/7vbd qixx8lmqPWiVZZvQD/jxaCLrVmALR12FdW92UVIcZIsCS0NzfD9UolewdshUM36X FXAG07PcfQ6g+Mq13X0mbCTNpwOyS2Wyog84m1YoSVxb9qSlBfWbm5ARA+5ZKm3b RQBlx/3D1bv/DSSF3j3M8bDWpJ1Ey7MflToZb5K5Pn9uqXHUHUXsdoU8WV4o -----END CERTIFICATE-----Generated at Sun May 3 00:39:51 2026 by rpki-client