$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149393.roa File: AS149393.roa (raw, json) Hash identifier: FqKJoLh2D94PtiMzlEME08V7BRiug/VbLJ0Z9tbFjL8= Subject key identifier: 31:F7:D0:E9:3D:AD:3C:59:0B:D4:4F:BF:B9:8A:FB:BF:20:F0:4F:73 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 18027DAE24CF0014BA61D9206D85522461B8A43D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149393.roa Signing time: Sat 02 May 2026 08:34:47 +0000 ROA not before: Sat 02 May 2026 08:29:47 +0000 ROA not after: Sat 01 May 2027 08:34:47 +0000 asID: 149393 IP address blocks: 210.87.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:02:7d:ae:24:cf:00:14:ba:61:d9:20:6d:85:52:24:61:b8:a4:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:29:47 2026 GMT Not After : May 1 08:34:47 2027 GMT Subject: CN=31F7D0E93DAD3C590BD44FBFB98AFBBF20F04F73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bf:2f:97:5b:fa:67:8e:eb:86:f9:a8:ee:41: 7c:dc:5d:8c:5f:f1:dc:53:46:e7:38:e2:de:46:ad: 46:75:94:23:37:a8:dd:ed:08:b2:e0:de:92:8f:7f: 82:e1:ee:b9:51:72:de:ae:67:d2:bc:2b:1d:88:0d: ed:1d:aa:83:32:2e:9c:d5:4d:c1:7f:07:b3:1c:f1: fe:93:1f:e6:2c:bf:2f:d7:f5:5c:2d:ba:7e:fc:29: b1:0c:ba:53:b9:0c:83:40:3f:97:05:95:1d:fe:8b: f5:77:90:84:9c:73:a5:5a:f8:b5:fc:eb:b8:22:99: 60:25:20:2d:cd:61:88:18:13:ef:a8:4d:83:74:97: b5:d8:72:16:ac:56:97:39:8a:39:16:27:ac:92:70: 0e:f5:d5:30:87:7f:c8:ad:56:7f:18:25:03:3f:f0: ff:aa:53:61:84:cc:3e:4b:5f:3b:31:05:12:48:51: 68:5a:d2:9b:ef:e8:26:e6:27:f6:17:2d:e4:12:90: 93:0e:0e:b7:c5:1c:8f:2c:0d:8b:8e:fa:c3:ab:5e: 6f:82:2a:d7:ef:ef:b3:ff:79:32:c7:3c:6f:54:08: e9:8d:c2:d5:34:e6:c5:a9:1c:14:0b:83:86:ad:36: 1c:29:e8:84:e8:da:f6:4c:bc:f2:e4:61:11:71:d9: a1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F7:D0:E9:3D:AD:3C:59:0B:D4:4F:BF:B9:8A:FB:BF:20:F0:4F:73 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149393.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.96.0/23 Signature Algorithm: sha256WithRSAEncryption 45:32:14:6f:36:15:09:14:23:58:5a:52:c1:38:a3:4b:65:0d: c6:10:64:d6:e9:57:35:80:4d:74:73:d7:68:38:ae:38:2b:29: 0b:40:61:ff:0c:44:f1:35:c8:7a:6b:46:cb:af:d3:e7:82:04: c8:a4:00:e0:ef:85:e6:50:ca:e4:69:a4:24:77:d5:40:0f:77: 68:3f:32:5c:e9:f5:20:f4:a1:6e:58:3f:0e:53:c2:eb:6d:a1: 1b:22:76:72:cd:59:84:8e:7b:d7:08:5d:48:bd:38:1c:c1:01: ee:6e:76:92:a7:43:75:92:23:38:d6:78:26:1a:6d:5a:0f:71: 78:ff:7d:26:1a:43:0e:91:52:94:89:ba:12:90:96:6b:46:bf: 03:73:e0:3b:75:42:4a:e3:7c:b9:e5:2b:22:9c:87:2a:04:f7: 4f:f3:44:38:1a:95:11:8c:b5:e9:0f:21:b8:65:4b:94:13:9c: 6f:93:f0:ae:73:83:ed:7f:fc:3c:f6:7e:fa:0f:a4:90:61:ff: 45:f5:50:fd:f9:b3:3e:67:bb:e0:df:81:9b:64:eb:ec:4e:41: 06:b8:52:06:a8:7a:fa:8b:3f:a9:ca:cc:b5:00:5a:8a:0c:c3: 52:97:db:1a:12:02:cd:c7:9d:0c:a5:ad:03:4c:04:d6:b5:19: 0f:54:62:e9 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUGAJ9riTPABS6YdkgbYVSJGG4pD0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4Mjk0N1oX DTI3MDUwMTA4MzQ0N1owMzExMC8GA1UEAxMoMzFGN0QwRTkzREFEM0M1OTBCRDQ0 RkJGQjk4QUZCQkYyMEYwNEY3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOe/L5db+meO64b5qO5BfNxdjF/x3FNG5zji3katRnWUIzeo3e0IsuDeko9/ guHuuVFy3q5n0rwrHYgN7R2qgzIunNVNwX8Hsxzx/pMf5iy/L9f1XC26fvwpsQy6 U7kMg0A/lwWVHf6L9XeQhJxzpVr4tfzruCKZYCUgLc1hiBgT76hNg3SXtdhyFqxW lzmKORYnrJJwDvXVMId/yK1WfxglAz/w/6pTYYTMPktfOzEFEkhRaFrSm+/oJuYn 9hct5BKQkw4Ot8UcjywNi476w6teb4Iq1+/vs/95Msc8b1QI6Y3C1TTmxakcFAuD hq02HCnohOja9ky88uRhEXHZoVsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQx99Dp Pa08WQvUT7+5ivu/IPBPczAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5MzkzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQB0ldgMA0GCSqGSIb3DQEBCwUAA4IBAQBFMhRvNhUJFCNYWlLBOKNLZQ3G EGTW6Vc1gE10c9doOK44KykLQGH/DETxNch6a0bLr9PnggTIpADg74XmUMrkaaQk d9VAD3doPzJc6fUg9KFuWD8OU8LrbaEbInZyzVmEjnvXCF1IvTgcwQHubnaSp0N1 kiM41ngmGm1aD3F4/30mGkMOkVKUiboSkJZrRr8Dc+A7dUJK43y55SsinIcqBPdP 80Q4GpURjLXpDyG4ZUuUE5xvk/Cuc4Ptf/w89n76D6SQYf9F9VD9+bM+Z7vg34Gb ZOvsTkEGuFIGqHr6iz+pysy1AFqKDMNSl9saEgLNx50Mpa0DTATWtRkPVGLp -----END CERTIFICATE-----Generated at Sun May 3 00:42:11 2026 by rpki-client