$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147135.roa File: AS147135.roa (raw, json) Hash identifier: wnKuG1SuHV5L7amf9/+OdinUw6bC1C1DA7hm9P69BTQ= Subject key identifier: A2:E9:7D:73:CD:AC:1C:5B:77:5C:BA:6E:84:1B:BC:6D:03:C6:23:E0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1FD038277AAB425E7FED0118A5D4CD7089C6DDA5 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147135.roa Signing time: Sat 02 May 2026 09:20:34 +0000 ROA not before: Sat 02 May 2026 09:15:34 +0000 ROA not after: Sat 01 May 2027 09:20:34 +0000 asID: 147135 IP address blocks: 103.176.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d0:38:27:7a:ab:42:5e:7f:ed:01:18:a5:d4:cd:70:89:c6:dd:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:34 2026 GMT Not After : May 1 09:20:34 2027 GMT Subject: CN=A2E97D73CDAC1C5B775CBA6E841BBC6D03C623E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:23:45:37:48:87:ea:c1:cc:fe:00:00:1c: b1:d8:0b:1f:95:9c:c6:09:4b:2c:63:0b:47:49:52: f4:5b:75:50:65:bc:df:1b:48:85:06:91:8f:d2:93: 63:e1:d7:b1:c5:51:63:8c:c0:ab:1c:51:e3:57:2c: 0a:8d:d8:da:a8:f6:4e:69:b6:35:e3:b8:c1:79:f5: 3f:cc:ea:2e:8e:cb:5f:0c:de:f5:67:c2:81:38:f4: 00:30:84:11:8b:b6:2e:fd:06:e4:de:34:5d:50:5e: b7:8f:c0:81:c9:b7:e2:bf:cc:29:3f:08:a5:30:4c: 77:7e:e5:09:fa:4f:31:d4:5e:d8:c1:72:c8:dc:0a: 83:ee:45:85:89:c2:90:25:6a:78:b0:b1:50:9a:92: a1:be:21:8a:89:e1:35:f4:44:62:12:d9:2f:99:d9: b5:25:db:6d:1e:cf:1e:e8:26:e5:ac:a1:f2:94:4a: b3:8f:72:c9:1f:fb:29:ca:f2:7e:93:32:c3:67:36: af:85:9d:c9:7d:fd:e0:7c:5d:c1:ca:be:06:c5:df: 4e:67:71:ff:67:15:0b:61:73:70:c6:e2:e2:2d:16: bf:5c:26:cf:91:6c:39:54:13:51:39:05:f7:46:fd: 68:d3:cc:30:6a:00:36:5c:56:b2:25:d8:80:a6:5b: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E9:7D:73:CD:AC:1C:5B:77:5C:BA:6E:84:1B:BC:6D:03:C6:23:E0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.177.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:0c:64:cb:7e:5f:93:53:78:df:4e:4d:91:5f:63:90:b0:27: 62:2a:60:8c:df:cf:90:e9:bd:eb:2f:75:f7:05:cd:f4:4f:27: ee:48:7a:c9:44:20:88:95:32:93:bd:de:62:77:3c:c4:d6:67: 6d:10:cd:c8:7c:59:21:82:3a:9f:d2:e2:c6:12:10:62:d9:77: 4c:a5:34:58:94:62:3f:9e:87:9f:3d:ec:e3:1e:f5:19:91:2a: 7b:af:52:61:3f:8d:98:4b:3a:74:6b:7b:2b:a7:4e:31:7e:ed: 91:4f:4e:c2:b7:9d:8d:b8:55:8d:d6:cc:a0:56:d0:d4:7f:ba: 28:b7:47:79:d0:31:25:12:3a:9d:55:34:98:bc:bc:88:31:84: bf:e1:e2:7c:4a:03:3c:aa:bd:7a:4b:4c:df:ba:c8:33:88:4f: 40:0c:38:1f:68:0d:19:6f:74:8a:1f:a8:11:e9:d3:ed:e9:11: b8:0a:22:0d:5e:7c:04:79:55:5d:01:5d:42:ab:4b:50:cb:71: a0:05:83:1f:c9:19:da:ee:02:f6:64:7f:11:d2:cb:6e:3c:ff: 79:d4:d6:dd:f2:67:fd:3a:0e:a1:48:bb:4b:29:b8:b5:c4:85: 8d:d8:1d:74:f9:8b:32:5d:94:e8:25:1c:50:90:49:f6:27:82: 0c:77:e9:73 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUH9A4J3qrQl5/7QEYpdTNcInG3aUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUzNFoX DTI3MDUwMTA5MjAzNFowMzExMC8GA1UEAxMoQTJFOTdENzNDREFDMUM1Qjc3NUNC QTZFODQxQkJDNkQwM0M2MjNFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKf2I0U3SIfqwcz+AAAcsdgLH5WcxglLLGMLR0lS9Ft1UGW83xtIhQaRj9KT Y+HXscVRY4zAqxxR41csCo3Y2qj2Tmm2NeO4wXn1P8zqLo7LXwze9WfCgTj0ADCE EYu2Lv0G5N40XVBet4/Agcm34r/MKT8IpTBMd37lCfpPMdRe2MFyyNwKg+5FhYnC kCVqeLCxUJqSob4hionhNfREYhLZL5nZtSXbbR7PHugm5ayh8pRKs49yyR/7Kcry fpMyw2c2r4WdyX394Hxdwcq+BsXfTmdx/2cVC2FzcMbi4i0Wv1wmz5FsOVQTUTkF 90b9aNPMMGoANlxWsiXYgKZb0yECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSi6X1z zawcW3dcum6EG7xtA8Yj4DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MTM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ7CxMA0GCSqGSIb3DQEBCwUAA4IBAQBuDGTLfl+TU3jfTk2RX2OQsCdi KmCM38+Q6b3rL3X3Bc30TyfuSHrJRCCIlTKTvd5idzzE1mdtEM3IfFkhgjqf0uLG EhBi2XdMpTRYlGI/noefPezjHvUZkSp7r1JhP42YSzp0a3srp04xfu2RT07Ct52N uFWN1sygVtDUf7oot0d50DElEjqdVTSYvLyIMYS/4eJ8SgM8qr16S0zfusgziE9A DDgfaA0Zb3SKH6gR6dPt6RG4CiINXnwEeVVdAV1Cq0tQy3GgBYMfyRna7gL2ZH8R 0stuPP951Nbd8mf9Og6hSLtLKbi1xIWN2B10+YsyXZToJRxQkEn2J4IMd+lz -----END CERTIFICATE-----Generated at Sun May 3 00:40:19 2026 by rpki-client