$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147109.roa File: AS147109.roa (raw, json) Hash identifier: wDl8uj0K9l/871GMirhtZKK/nmFWZVrRGyO/alzfMXc= Subject key identifier: 5D:C8:A9:98:D4:DC:38:A1:94:67:48:C3:DC:1C:98:C3:94:74:3E:03 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 46725C0666FD7A6CA86A7AFFA11E4D86459B009E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147109.roa Signing time: Sat 02 May 2026 09:20:42 +0000 ROA not before: Sat 02 May 2026 09:15:42 +0000 ROA not after: Sat 01 May 2027 09:20:42 +0000 asID: 147109 IP address blocks: 103.175.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:72:5c:06:66:fd:7a:6c:a8:6a:7a:ff:a1:1e:4d:86:45:9b:00:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:42 2026 GMT Not After : May 1 09:20:42 2027 GMT Subject: CN=5DC8A998D4DC38A1946748C3DC1C98C394743E03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:cc:ee:c2:c0:7a:e1:e3:fa:75:a7:46:1c:60: 62:9d:b1:1f:a3:53:d4:4e:7e:64:e5:f3:98:e3:44: ea:16:ad:87:54:4c:05:02:20:e2:a4:cf:98:52:72: 66:e8:d6:39:5e:5d:1a:09:b6:06:25:18:3a:3a:74: 33:3e:8e:26:c0:8d:ce:d2:6b:e3:2a:a1:92:3b:61: 7c:9f:bc:50:8b:98:11:91:26:52:d0:fe:5b:ee:ba: 74:2b:56:57:b2:b4:9f:57:ed:c0:86:7a:75:26:b9: 0b:de:21:4b:49:04:e3:68:23:4c:fc:13:e7:b0:39: c5:75:30:d1:68:ec:ae:12:7d:8f:af:53:35:39:f9: 8e:07:80:59:bd:8e:90:08:dc:70:6c:df:13:1c:08: 36:f2:74:17:6d:7f:ba:9c:f4:66:d4:f6:60:65:08: 92:41:35:55:cb:6c:08:2b:ed:09:f7:27:ab:3b:eb: 13:6b:d2:1e:eb:07:72:f0:4c:c9:5d:c2:bf:1d:c5: d3:c0:66:53:80:e1:de:9d:27:6b:c5:cf:59:9b:8c: 2f:b5:b7:49:02:b9:14:1b:0d:f8:a9:62:f3:3b:b4: 80:84:b7:db:2c:1b:0e:45:41:36:ef:e2:b6:08:ae: 98:bf:69:1c:a0:20:c9:e3:37:c2:e6:f8:27:a5:a3: 64:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C8:A9:98:D4:DC:38:A1:94:67:48:C3:DC:1C:98:C3:94:74:3E:03 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147109.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.46.0/23 Signature Algorithm: sha256WithRSAEncryption 95:f6:57:14:fe:00:a9:b6:f3:5d:2b:06:05:57:20:ce:8a:d8: 66:ae:a8:99:63:2d:d0:71:8d:f1:ef:87:4d:58:fa:b9:e7:70: e8:b1:03:4d:c6:79:59:a8:15:19:36:2e:c6:84:cf:45:09:4f: 35:e4:9c:92:13:8e:5c:0d:f2:c9:93:4f:a3:66:c4:59:b6:33: e2:7b:02:77:75:e4:e6:62:50:0f:33:60:d1:a5:64:d2:22:90: c8:06:aa:11:5b:31:5f:fb:b9:5a:ec:03:2c:8b:ca:6e:40:d9: 8a:7a:e1:80:a4:8a:24:f4:e1:32:8d:b7:d8:0b:c9:01:0d:fa: 5b:b9:aa:30:dd:6a:eb:83:89:9b:38:29:a4:06:4d:78:df:8b: 74:16:d8:f1:71:c5:e3:d4:36:f9:2d:74:05:1b:c6:f3:c3:36: 69:0a:48:05:91:ec:81:e0:89:91:a8:b6:3d:13:14:59:1b:af: 9f:48:b1:4a:ab:8a:24:65:c7:49:aa:1c:b1:90:47:53:8b:db: e1:db:07:e5:aa:5c:ee:2c:82:39:a6:c0:50:85:44:bf:42:f3: a6:d5:38:ec:39:0d:cb:a6:96:2c:b4:25:12:5b:da:a7:27:a0: c9:08:85:a4:fc:9f:56:3e:37:08:0c:36:a4:b7:72:a8:2a:a8: f2:08:8c:58 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURnJcBmb9emyoanr/oR5NhkWbAJ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTU0MloX DTI3MDUwMTA5MjA0MlowMzExMC8GA1UEAxMoNURDOEE5OThENERDMzhBMTk0Njc0 OEMzREMxQzk4QzM5NDc0M0UwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKDM7sLAeuHj+nWnRhxgYp2xH6NT1E5+ZOXzmONE6hath1RMBQIg4qTPmFJy ZujWOV5dGgm2BiUYOjp0Mz6OJsCNztJr4yqhkjthfJ+8UIuYEZEmUtD+W+66dCtW V7K0n1ftwIZ6dSa5C94hS0kE42gjTPwT57A5xXUw0WjsrhJ9j69TNTn5jgeAWb2O kAjccGzfExwINvJ0F21/upz0ZtT2YGUIkkE1VctsCCvtCfcnqzvrE2vSHusHcvBM yV3Cvx3F08BmU4Dh3p0na8XPWZuML7W3SQK5FBsN+Kli8zu0gIS32ywbDkVBNu/i tgiumL9pHKAgyeM3wub4J6WjZEcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRdyKmY 1Nw4oZRnSMPcHJjDlHQ+AzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MTA5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ68uMA0GCSqGSIb3DQEBCwUAA4IBAQCV9lcU/gCptvNdKwYFVyDOithm rqiZYy3QcY3x74dNWPq553DosQNNxnlZqBUZNi7GhM9FCU815JySE45cDfLJk0+j ZsRZtjPiewJ3deTmYlAPM2DRpWTSIpDIBqoRWzFf+7la7AMsi8puQNmKeuGApIok 9OEyjbfYC8kBDfpbuaow3Wrrg4mbOCmkBk1434t0FtjxccXj1Db5LXQFG8bzwzZp CkgFkeyB4ImRqLY9ExRZG6+fSLFKq4okZcdJqhyxkEdTi9vh2wflqlzuLII5psBQ hUS/QvOm1TjsOQ3LppYstCUSW9qnJ6DJCIWk/J9WPjcIDDakt3KoKqjyCIxY -----END CERTIFICATE-----Generated at Sun May 3 00:40:42 2026 by rpki-client