$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149366.roa File: AS149366.roa (raw, json) Hash identifier: 5R02s2AvJlQ+7BIYDgtxrzfQcev1xWwWFLX71SzR0q8= Subject key identifier: 80:2F:6C:51:70:11:85:CB:B7:F8:D2:58:62:7A:91:41:23:63:FF:C2 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 47B7A2F96C71C4830EC544F54967DFCA40AB1F38 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149366.roa Signing time: Sat 02 May 2026 09:20:52 +0000 ROA not before: Sat 02 May 2026 09:15:52 +0000 ROA not after: Sat 01 May 2027 09:20:52 +0000 asID: 149366 IP address blocks: 103.180.189.0/24 maxlen: 24 2001:df0:6140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:b7:a2:f9:6c:71:c4:83:0e:c5:44:f5:49:67:df:ca:40:ab:1f:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:52 2026 GMT Not After : May 1 09:20:52 2027 GMT Subject: CN=802F6C51701185CBB7F8D258627A91412363FFC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ba:73:a0:f6:42:74:b7:45:b3:ff:95:53:87: af:e7:30:02:2f:c0:49:f4:da:96:88:9d:56:72:6e: 40:0e:e6:24:68:cc:8a:1f:18:1c:c5:2f:4c:bd:8a: 2d:77:f4:6b:58:a0:8b:08:65:b0:fb:a3:77:a1:94: a6:ad:e0:1a:87:8d:da:2a:dc:85:5e:27:74:3d:0e: d8:f2:b0:a4:71:a8:73:7b:91:23:75:c8:ea:cf:f4: c7:65:f6:c4:92:03:47:5d:5e:bf:db:59:a0:71:75: 60:f4:eb:53:f5:ac:b8:ad:88:4b:02:0b:d1:b4:0c: e7:c4:aa:50:b5:15:ca:76:43:a2:86:c0:b9:10:06: a9:af:7b:99:01:54:67:c7:7c:c6:de:5c:81:dd:a5: ac:23:24:06:f0:ea:03:8b:5f:44:75:22:58:fb:83: d5:e8:c6:df:c0:b6:9b:a2:bd:52:aa:b6:5b:ff:49: b8:0b:d7:16:0b:df:c7:1c:64:8e:cb:94:3f:df:b8: 15:54:82:d1:5c:b5:3b:0c:03:98:57:a2:59:26:64: 47:4c:6f:a5:ab:32:0e:b9:05:ea:4e:3f:a5:a9:b0: 4e:be:86:a4:58:3e:7e:aa:5e:e3:98:d0:ec:20:3d: 51:4a:29:83:e2:5b:5b:e9:b0:a6:32:72:12:9b:58: cb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2F:6C:51:70:11:85:CB:B7:F8:D2:58:62:7A:91:41:23:63:FF:C2 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149366.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.189.0/24 IPv6: 2001:df0:6140::/48 Signature Algorithm: sha256WithRSAEncryption a4:8a:42:65:5f:d4:d1:d9:d9:40:c7:2d:ea:b2:e6:14:1d:0b: af:fd:a5:78:7e:47:bf:e6:1e:c0:f5:8e:13:2e:6b:ce:8e:c4: b6:dd:5d:5c:88:81:60:b7:bf:d1:b0:14:32:bd:a4:1f:28:ed: 97:8a:27:8d:f9:58:80:0e:c6:94:37:1f:e5:4e:08:e6:64:d6: 1d:71:d3:77:4a:54:75:91:51:f8:6a:49:6f:e4:10:98:b5:36: c2:2f:84:a3:8f:27:67:4b:ef:ed:17:c9:79:d6:f8:1b:28:a1: b8:c6:b1:88:36:44:8a:33:bb:8b:98:e6:1a:89:82:ef:cb:24: 70:ad:28:82:c6:8b:b2:a8:72:3b:f6:28:89:78:c1:1e:14:bf: c6:c7:e1:a1:a2:c6:20:a7:69:db:5a:41:fd:03:28:14:a6:49: c0:40:63:3a:93:ab:4c:75:5f:d4:9b:b8:9c:e7:44:0e:0c:c9: 5f:94:52:06:bb:c3:71:96:e6:92:87:1e:d8:fa:02:c0:f6:32: e3:e9:64:e3:25:e0:b7:06:20:63:f4:fa:d8:fe:2b:aa:f9:38: fe:26:51:97:30:c2:d2:31:7a:53:51:e6:53:c6:0d:7b:ff:8f: 2a:9c:d2:ad:11:f5:b9:59:3f:d4:d0:22:52:33:22:12:a3:94: f7:c9:0d:52 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUR7ei+WxxxIMOxUT1SWffykCrHzgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTU1MloX DTI3MDUwMTA5MjA1MlowMzExMC8GA1UEAxMoODAyRjZDNTE3MDExODVDQkI3RjhE MjU4NjI3QTkxNDEyMzYzRkZDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+6c6D2QnS3RbP/lVOHr+cwAi/ASfTaloidVnJuQA7mJGjMih8YHMUvTL2K LXf0a1igiwhlsPujd6GUpq3gGoeN2irchV4ndD0O2PKwpHGoc3uRI3XI6s/0x2X2 xJIDR11ev9tZoHF1YPTrU/WsuK2ISwIL0bQM58SqULUVynZDoobAuRAGqa97mQFU Z8d8xt5cgd2lrCMkBvDqA4tfRHUiWPuD1ejG38C2m6K9Uqq2W/9JuAvXFgvfxxxk jsuUP9+4FVSC0Vy1OwwDmFeiWSZkR0xvpasyDrkF6k4/pamwTr6GpFg+fqpe45jQ 7CA9UUopg+JbW+mwpjJyEptYy2MCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSAL2xR cBGFy7f40lhiepFBI2P/wjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5MzY2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ7S9MA8EAgACMAkDBwAgAQ3wYUAwDQYJKoZIhvcNAQELBQADggEBAKSK QmVf1NHZ2UDHLeqy5hQdC6/9pXh+R7/mHsD1jhMua86OxLbdXVyIgWC3v9GwFDK9 pB8o7ZeKJ435WIAOxpQ3H+VOCOZk1h1x03dKVHWRUfhqSW/kEJi1NsIvhKOPJ2dL 7+0XyXnW+BsoobjGsYg2RIozu4uY5hqJgu/LJHCtKILGi7Kocjv2KIl4wR4Uv8bH 4aGixiCnadtaQf0DKBSmScBAYzqTq0x1X9SbuJznRA4MyV+UUga7w3GW5pKHHtj6 AsD2MuPpZOMl4LcGIGP0+tj+K6r5OP4mUZcwwtIxelNR5lPGDXv/jyqc0q0R9blZ P9TQIlIzIhKjlPfJDVI= -----END CERTIFICATE-----Generated at Sun May 3 00:39:45 2026 by rpki-client