Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149359.roa
File: AS149359.roa (raw, json)
Hash identifier: ACwqVNq2HPlhKNqO82Bfl114/1jt3u0VCceTU82kcZE=
Subject key identifier: 28:9A:99:77:1E:30:B0:29:A7:5A:17:9B:4F:A4:EB:63:29:95:FA:14
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 7D7DA3C72D9B4CA74FE7927ADBCC61B2EC3CD74B
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149359.roa
Signing time: Sat 02 May 2026 21:32:25 +0000
ROA not before: Sat 02 May 2026 21:27:25 +0000
ROA not after: Sat 01 May 2027 21:32:25 +0000
asID: 149359
IP address blocks: 49.0.26.0/23 maxlen: 24
103.19.78.0/23 maxlen: 24
103.176.107.0/24 maxlen: 24
103.180.118.0/23 maxlen: 24
103.215.71.0/24 maxlen: 24
2401:5ee0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 04 May 2026 01:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:7d:a3:c7:2d:9b:4c:a7:4f:e7:92:7a:db:cc:61:b2:ec:3c:d7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 2 21:27:25 2026 GMT
Not After : May 1 21:32:25 2027 GMT
Subject: CN=289A99771E30B029A75A179B4FA4EB632995FA14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6f:26:38:98:21:18:c7:5d:e6:1c:16:a7:b5:
18:89:bb:08:23:ab:a8:72:09:6e:89:84:ea:ee:58:
9f:89:77:54:4f:4f:71:91:46:8d:38:3a:5a:7b:b5:
37:64:f5:f9:d8:25:7e:6f:6a:2c:d8:92:6e:a3:e0:
66:5b:18:be:be:20:92:84:4d:ca:7b:de:a0:93:dd:
36:c3:35:5d:7c:1f:ad:31:86:84:64:06:1f:71:bc:
e6:f9:8d:cf:be:48:72:a8:0f:81:57:1d:8a:52:21:
cc:01:36:17:dd:42:e2:cb:9d:f7:6e:69:5b:c4:4a:
22:9b:95:0c:a8:02:d0:51:ff:ce:33:05:f0:18:fd:
02:7a:10:64:60:9a:c3:99:e9:33:56:ea:b8:f7:94:
b8:20:cb:7a:0b:58:57:2e:b7:b6:7b:66:4c:11:28:
62:44:ae:37:d7:5d:4b:c1:76:e8:8c:98:56:dc:28:
3b:e8:f5:80:60:73:90:ba:ff:80:3e:7d:36:87:7b:
62:f0:5c:cb:30:7f:04:2b:eb:9b:e6:67:bd:23:2e:
36:80:19:2e:81:d2:94:0c:97:f6:40:8a:8f:01:45:
26:ea:52:65:96:18:bd:e0:42:71:13:68:de:ae:d4:
75:1c:50:0a:32:61:4b:a6:c6:cb:de:96:18:e2:79:
5f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:9A:99:77:1E:30:B0:29:A7:5A:17:9B:4F:A4:EB:63:29:95:FA:14
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149359.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
49.0.26.0/23
103.19.78.0/23
103.176.107.0/24
103.180.118.0/23
103.215.71.0/24
IPv6:
2401:5ee0::/32
Signature Algorithm: sha256WithRSAEncryption
6c:99:c9:c1:ff:36:46:de:f5:a7:a0:9e:86:b1:8d:aa:6f:52:
dd:11:82:1f:72:0c:28:60:0f:32:93:ec:c6:68:96:4a:e3:cf:
26:7f:9f:ef:9b:6a:e4:7e:92:e6:93:9c:ad:79:33:3a:e2:ad:
35:51:24:11:bf:ca:0a:9b:e1:0d:6a:0e:f6:39:96:2b:a2:53:
a8:25:b7:20:9a:4c:58:2c:29:b3:3d:64:2f:fc:83:a3:85:45:
15:b4:af:ad:d1:29:35:d5:89:f2:33:79:70:92:fd:c9:43:12:
e3:85:ac:c0:45:1f:22:31:fd:95:c5:42:cb:3b:18:38:e4:19:
61:f8:91:ce:91:f2:66:3c:4f:1e:41:70:53:ce:a2:f3:dc:38:
ab:18:6e:7a:62:d4:f9:10:2d:f5:65:05:72:ba:27:bf:35:87:
26:0e:5e:d0:0a:c0:68:d4:52:bb:6b:de:17:bc:22:be:6c:9d:
f1:fb:6e:29:73:c8:bf:f3:15:79:20:c6:ac:de:95:fc:a2:b9:
37:e7:8d:ca:dc:bc:ba:31:02:68:65:5d:e5:3c:eb:41:c6:ae:
05:56:6b:80:59:bd:30:3d:af:25:0d:f6:b0:e8:0c:38:3d:ec:
fd:53:0a:9a:50:02:7b:fb:c0:05:a5:ad:96:4b:99:b3:0b:71:
d2:fa:32:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 00:40:31 2026 by rpki-client