$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149364.roa File: AS149364.roa (raw, json) Hash identifier: aL0ALZADDBAdzW0A05CXsx0/V3opPLmMNPoDncloCNg= Subject key identifier: D5:BE:13:DB:C2:55:A0:E6:64:C0:8F:4C:48:2C:69:8C:F3:F8:22:2E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 673C6E575FF0630CB3A4E7DF4A138600780E7BD7 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149364.roa Signing time: Sat 02 May 2026 21:33:06 +0000 ROA not before: Sat 02 May 2026 21:28:06 +0000 ROA not after: Sat 01 May 2027 21:33:06 +0000 asID: 149364 IP address blocks: 103.176.77.0/24 maxlen: 24 2402:1d60::/32 maxlen: 48 2402:1d60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:3c:6e:57:5f:f0:63:0c:b3:a4:e7:df:4a:13:86:00:78:0e:7b:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:28:06 2026 GMT Not After : May 1 21:33:06 2027 GMT Subject: CN=D5BE13DBC255A0E664C08F4C482C698CF3F8222E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ea:3f:8b:8d:05:24:5e:a7:8c:c4:cc:92:cd: c6:74:46:41:bc:ea:0d:6c:ef:a0:3b:cf:3e:11:68: 2d:b3:a7:03:34:59:f6:c1:60:20:86:da:2b:82:77: 77:b9:fc:6a:c3:ca:c5:8e:6a:f5:ef:f9:20:82:d7: 2e:db:14:1f:e6:9a:de:83:ef:10:ff:9d:5e:ad:c5: a7:e8:07:c4:91:2a:c9:77:75:6c:ed:e0:12:df:9f: 3c:b6:8e:e9:55:67:fd:55:05:46:e6:05:a4:4d:70: 68:8f:45:86:4f:09:57:8c:c4:14:e0:cc:22:2c:6c: 9d:a2:94:6b:d2:80:b9:e7:60:10:4d:06:be:2a:c6: 47:ba:2b:ce:ca:c5:24:7c:c6:cc:7d:0e:48:40:79: 75:d9:9c:4c:c3:36:9b:47:ca:67:6a:25:53:5f:8a: e8:7e:0f:40:f8:f7:6e:9b:0b:26:46:cd:78:ef:ed: 8c:81:98:75:a9:94:ba:4b:cd:e9:94:b7:42:bf:e8: 1a:dc:30:5c:17:ac:ef:d2:51:27:20:00:1a:ac:b2: e0:59:73:39:4a:ce:1e:61:b1:3f:65:52:47:cf:21: 6e:b0:ce:ea:74:27:1f:ab:c0:98:36:77:ad:c3:ff: 19:52:90:a2:da:10:fa:b3:61:1d:ad:f3:b7:72:ee: f9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BE:13:DB:C2:55:A0:E6:64:C0:8F:4C:48:2C:69:8C:F3:F8:22:2E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.77.0/24 IPv6: 2402:1d60::/32 Signature Algorithm: sha256WithRSAEncryption 60:83:c3:2c:3f:e2:b1:f0:58:94:a6:4f:6d:8c:3d:95:7b:76: ab:2b:e4:8b:34:c4:24:1a:80:a1:9a:17:4f:29:08:91:ab:75: 3e:4c:7b:46:6e:21:dc:db:67:e1:fd:a5:14:8c:32:9f:bf:93: 2c:37:c1:48:b9:19:5a:73:14:05:e3:b9:df:a3:38:5e:ee:7f: 49:91:90:ac:81:dd:23:08:4d:ca:2b:e7:2e:b2:89:46:31:86: cc:fd:7e:fd:1e:07:34:e4:b5:a1:65:e5:50:69:b8:c4:a1:ba: a5:18:ad:b8:83:71:e8:0e:4d:09:ae:bc:8a:6e:28:1e:cb:e3: 94:a0:44:43:6a:e8:89:ea:a0:5c:a6:a9:1a:7c:6e:74:84:e2: 74:95:f4:86:c3:0e:2c:75:34:37:66:cb:61:54:e2:e3:6b:19: 57:f6:c6:c7:c5:6e:57:31:f9:3e:bb:9a:69:98:b1:42:0b:4b: cc:dc:2f:ea:d5:9d:fb:15:24:0a:e4:9f:ce:52:b2:18:d7:7b: 72:ab:a4:19:67:6f:ec:2e:08:c3:c0:59:e7:3c:d6:05:d0:2f: fc:a6:4a:c8:6b:50:c0:71:87:d0:09:06:87:e3:03:26:bb:ec: 7c:fe:8c:f7:45:b6:6d:bc:28:0e:47:2d:92:a9:88:99:c6:ce: 99:91:05:04 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUZzxuV1/wYwyzpOffShOGAHgOe9cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjgwNloX DTI3MDUwMTIxMzMwNlowMzExMC8GA1UEAxMoRDVCRTEzREJDMjU1QTBFNjY0QzA4 RjRDNDgyQzY5OENGM0Y4MjIyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfqP4uNBSRep4zEzJLNxnRGQbzqDWzvoDvPPhFoLbOnAzRZ9sFgIIbaK4J3 d7n8asPKxY5q9e/5IILXLtsUH+aa3oPvEP+dXq3Fp+gHxJEqyXd1bO3gEt+fPLaO 6VVn/VUFRuYFpE1waI9Fhk8JV4zEFODMIixsnaKUa9KAuedgEE0GvirGR7orzsrF JHzGzH0OSEB5ddmcTMM2m0fKZ2olU1+K6H4PQPj3bpsLJkbNeO/tjIGYdamUukvN 6ZS3Qr/oGtwwXBes79JRJyAAGqyy4FlzOUrOHmGxP2VSR88hbrDO6nQnH6vAmDZ3 rcP/GVKQotoQ+rNhHa3zt3Lu+Q0CAwEAAaOCAdswggHXMB0GA1UdDgQWBBTVvhPb wlWg5mTAj0xILGmM8/giLjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5MzY0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQAZ7BNMA0EAgACMAcDBQAkAh1gMA0GCSqGSIb3DQEBCwUAA4IBAQBgg8Ms P+Kx8FiUpk9tjD2Ve3arK+SLNMQkGoChmhdPKQiRq3U+THtGbiHc22fh/aUUjDKf v5MsN8FIuRlacxQF47nfozhe7n9JkZCsgd0jCE3KK+cusolGMYbM/X79Hgc05LWh ZeVQabjEobqlGK24g3HoDk0JrryKbigey+OUoERDauiJ6qBcpqkafG50hOJ0lfSG ww4sdTQ3ZsthVOLjaxlX9sbHxW5XMfk+u5ppmLFCC0vM3C/q1Z37FSQK5J/OUrIY 13tyq6QZZ2/sLgjDwFnnPNYF0C/8pkrIa1DAcYfQCQaH4wMmu+x8/oz3RbZtvCgO Ry2SqYiZxs6ZkQUE -----END CERTIFICATE-----Generated at Sun May 3 01:44:21 2026 by rpki-client