$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149315.roa File: AS149315.roa (raw, json) Hash identifier: YIv15jikzOJxPlxJnq6Otwx0DcFoV1/YDtK3W3/wA2o= Subject key identifier: 7E:E3:D4:0B:45:1F:71:32:F7:C3:BA:7D:51:6E:82:A5:5D:10:0D:D6 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 2C2E2E48D8FB3DBF5CF4EAB77A5A08F9A2D5D97C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149315.roa Signing time: Sat 02 May 2026 08:35:45 +0000 ROA not before: Sat 02 May 2026 08:30:45 +0000 ROA not after: Sat 01 May 2027 08:35:45 +0000 asID: 149315 IP address blocks: 2407:7c0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:2e:2e:48:d8:fb:3d:bf:5c:f4:ea:b7:7a:5a:08:f9:a2:d5:d9:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:45 2026 GMT Not After : May 1 08:35:45 2027 GMT Subject: CN=7EE3D40B451F7132F7C3BA7D516E82A55D100DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:22:5f:ba:08:83:39:c3:f4:48:a1:ed:bc:ae: ce:8b:7e:c8:58:97:d3:98:cf:a5:2b:0a:78:b9:76: b4:2c:d1:20:c8:f9:97:51:28:ce:34:60:7f:83:06: 5b:f0:a0:b1:20:a2:10:10:aa:ac:80:59:27:c1:fd: f1:fe:70:8c:3a:be:de:14:04:a7:82:90:92:21:fb: 77:82:cf:4f:c7:ab:14:33:01:a0:d1:e0:80:c6:f7: 21:dc:b1:02:a1:16:90:ae:c2:bf:b5:aa:c1:7f:cd: 57:5f:1f:86:63:f7:15:ff:d1:8a:0e:50:60:69:7d: 8e:da:86:31:da:b7:96:07:7c:ff:ac:a3:4f:82:64: 0e:be:fd:0e:d5:e0:fd:5d:90:b8:55:dd:75:13:fa: 1c:d0:37:83:bb:f7:d3:45:01:fb:9d:ed:38:41:14: 23:ad:e4:66:ce:42:6b:59:09:87:98:d7:2f:b4:a6: 58:01:47:0a:74:e7:f3:95:4c:43:d8:60:59:df:c1: 96:e8:56:12:26:ac:a7:62:8b:56:26:23:6e:67:55: 6b:99:cf:d3:d6:ed:c2:bd:06:d0:8f:42:97:6b:19: 1d:3d:d7:0c:05:9c:db:66:9e:f7:1b:83:94:31:26: 56:88:5a:bc:5f:9e:11:db:c9:aa:5e:30:7b:63:e0: a5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E3:D4:0B:45:1F:71:32:F7:C3:BA:7D:51:6E:82:A5:5D:10:0D:D6 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149315.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:7c0:200::/40 Signature Algorithm: sha256WithRSAEncryption 9f:ab:4a:6d:8c:25:1e:1c:2b:db:a1:f0:0a:54:e6:4b:2b:a7: 03:29:f5:da:6d:5a:f8:49:f8:eb:1c:5d:00:96:9f:ae:b4:9e: 02:9a:67:af:97:a4:ba:14:b4:f4:ee:67:74:55:b6:cd:a0:0b: af:17:ae:2f:20:f9:c5:32:5e:af:ba:09:c9:69:1b:c9:dc:bb: ff:81:4d:9e:73:16:df:43:a6:58:9d:42:fd:23:46:85:5d:5e: 52:39:fe:de:93:f9:b8:e3:e7:f4:f6:69:d6:71:44:f1:79:87: 08:1e:d6:16:be:8a:9c:8c:0a:a0:4f:72:60:5a:f9:3a:00:e0: 26:34:e9:f6:e8:90:1a:87:30:2d:05:76:41:12:a7:2e:00:90: 14:5c:d8:82:f0:bf:ef:15:30:bc:de:43:1c:52:66:38:d1:5f: a3:0b:a8:01:89:0a:b0:f2:ae:b9:1f:41:0e:13:18:f8:74:4e: 96:2c:60:8e:dd:ee:ca:3e:4c:2d:41:1b:c9:71:49:6b:42:ce: f9:ce:0c:3b:ab:b4:64:ad:e3:fd:07:4f:a3:ac:ec:0d:0f:6d: ce:eb:b4:ed:a8:80:54:0d:6a:59:50:35:6f:2f:59:42:38:ab: 07:cb:92:4b:03:bd:bc:5a:b9:8b:60:9e:ae:94:41:d8:07:0a: da:e8:46:f9 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIULC4uSNj7Pb9c9Oq3eloI+aLV2XwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA0NVoX DTI3MDUwMTA4MzU0NVowMzExMC8GA1UEAxMoN0VFM0Q0MEI0NTFGNzEzMkY3QzNC QTdENTE2RTgyQTU1RDEwMERENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoiX7oIgznD9Eih7byuzot+yFiX05jPpSsKeLl2tCzRIMj5l1EozjRgf4MG W/CgsSCiEBCqrIBZJ8H98f5wjDq+3hQEp4KQkiH7d4LPT8erFDMBoNHggMb3Idyx AqEWkK7Cv7WqwX/NV18fhmP3Ff/Rig5QYGl9jtqGMdq3lgd8/6yjT4JkDr79DtXg /V2QuFXddRP6HNA3g7v300UB+53tOEEUI63kZs5Ca1kJh5jXL7SmWAFHCnTn85VM Q9hgWd/BluhWEiasp2KLViYjbmdVa5nP09btwr0G0I9Cl2sZHT3XDAWc22ae9xuD lDEmVohavF+eEdvJql4we2PgpYUCAwEAAaOCAc4wggHKMB0GA1UdDgQWBBR+49QL RR9xMvfDun1RboKlXRAN1jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5MzE1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIA AjAIAwYAJAcHwAIwDQYJKoZIhvcNAQELBQADggEBAJ+rSm2MJR4cK9uh8ApU5ksr pwMp9dptWvhJ+OscXQCWn660ngKaZ6+XpLoUtPTuZ3RVts2gC68Xri8g+cUyXq+6 CclpG8ncu/+BTZ5zFt9DplidQv0jRoVdXlI5/t6T+bjj5/T2adZxRPF5hwge1ha+ ipyMCqBPcmBa+ToA4CY06fbokBqHMC0FdkESpy4AkBRc2ILwv+8VMLzeQxxSZjjR X6MLqAGJCrDyrrkfQQ4TGPh0TpYsYI7d7so+TC1BG8lxSWtCzvnODDurtGSt4/0H T6Os7A0Pbc7rtO2ogFQNallQNW8vWUI4qwfLkksDvbxauYtgnq6UQdgHCtroRvk= -----END CERTIFICATE-----Generated at Sun May 3 00:42:22 2026 by rpki-client