$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149402.roa File: AS149402.roa (raw, json) Hash identifier: Yj/QtQKAKcHTPBUFYzsnbFMevvVz52Cpean9c2sqsaU= Subject key identifier: 88:EE:38:60:A5:22:DD:46:FB:40:AF:34:E3:EF:77:42:DB:C0:63:12 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 07A87DCFF6209B7E6E18F54ACD17BA9A44D4B911 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149402.roa Signing time: Sat 02 May 2026 09:21:02 +0000 ROA not before: Sat 02 May 2026 09:16:02 +0000 ROA not after: Sat 01 May 2027 09:21:02 +0000 asID: 149402 IP address blocks: 103.182.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a8:7d:cf:f6:20:9b:7e:6e:18:f5:4a:cd:17:ba:9a:44:d4:b9:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:02 2026 GMT Not After : May 1 09:21:02 2027 GMT Subject: CN=88EE3860A522DD46FB40AF34E3EF7742DBC06312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:37:ae:69:be:43:4e:8b:73:bc:16:a7:90:ca: 08:21:a1:88:20:a8:0e:11:0f:dc:be:f0:22:fc:51: 1c:ec:50:74:09:e3:40:f7:ff:f3:0b:87:c3:02:07: 7e:9a:e0:e8:a3:f2:73:eb:03:15:0d:12:64:f0:c2: b5:2f:f4:ad:f3:b5:da:bb:7e:b7:d6:e5:d4:46:d7: fd:f2:5b:d3:41:f1:71:2d:cc:63:a6:dd:f9:7d:00: 71:59:a0:60:44:57:1e:9a:9b:3a:61:74:f3:18:36: 38:d4:49:e4:22:39:cb:5c:94:8d:6a:62:95:84:b5: a4:b9:1b:2f:7c:ee:0b:7a:b2:c9:a1:f8:3f:a3:e5: e7:e1:b9:65:7d:ca:35:bd:ad:1e:77:89:13:a9:a9: 3f:8a:c2:f3:4d:27:a2:a4:41:29:45:8b:65:2d:c4: a3:66:98:94:f1:13:3b:46:96:a4:12:0d:81:e1:de: 21:3b:50:6e:24:cd:7a:5a:88:5f:a2:65:71:77:46: 59:13:7a:19:2b:5c:79:36:a2:7c:68:83:42:96:91: f8:7a:4e:8d:3f:18:95:84:6c:8e:35:c9:c1:8a:24: 59:e6:0a:18:e5:a8:6d:66:51:33:60:3a:82:40:05: a4:00:38:2d:f1:d6:06:8c:20:f2:0c:45:27:50:9c: 66:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EE:38:60:A5:22:DD:46:FB:40:AF:34:E3:EF:77:42:DB:C0:63:12 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149402.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.48.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:d9:32:c6:87:36:77:df:4d:d2:76:20:cd:99:31:e9:b3:05: 3d:69:5d:6c:c0:e1:cc:fb:72:4c:09:0f:41:87:c0:2a:d6:f0: 00:17:4b:6c:23:60:64:55:2d:69:65:78:a9:9d:a5:62:6a:93: f2:f3:5b:4c:cf:37:ec:dc:a0:44:93:e9:0d:a3:69:06:05:19: 04:97:4f:b9:8c:b5:7d:de:d1:cd:1b:c2:32:f0:1f:d3:38:ff: d6:b8:a8:10:88:4f:d7:bf:8c:47:cd:4b:5a:4a:ec:de:39:3f: 3e:4b:cc:ec:a1:29:f9:74:00:7b:4b:9d:ef:8f:26:ea:61:07: 33:90:47:e9:45:62:8d:1c:a7:7f:d5:d3:69:0c:4a:9d:7e:72: b4:ad:1f:fa:c1:14:56:6e:14:aa:20:1d:30:83:77:db:62:84: 30:7a:b9:72:96:19:a9:c4:b6:50:0c:d6:02:61:f8:50:be:76: 02:c6:8a:23:47:9e:b1:8f:ea:ef:86:a3:27:d1:ab:72:23:5f: 83:4d:35:9c:7c:04:19:b3:18:33:9b:f5:bd:d0:64:eb:9b:86: a0:4a:76:0c:8c:5f:f7:5f:50:5a:5c:1d:ba:38:1a:09:41:fe: 81:36:a1:69:ee:5f:c5:06:aa:be:09:e0:3a:23:33:22:58:58: f5:2a:e7:8b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUB6h9z/Ygm35uGPVKzRe6mkTUuREwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTYwMloX DTI3MDUwMTA5MjEwMlowMzExMC8GA1UEAxMoODhFRTM4NjBBNTIyREQ0NkZCNDBB RjM0RTNFRjc3NDJEQkMwNjMxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKw3rmm+Q06Lc7wWp5DKCCGhiCCoDhEP3L7wIvxRHOxQdAnjQPf/8wuHwwIH fprg6KPyc+sDFQ0SZPDCtS/0rfO12rt+t9bl1EbX/fJb00HxcS3MY6bd+X0AcVmg YERXHpqbOmF08xg2ONRJ5CI5y1yUjWpilYS1pLkbL3zuC3qyyaH4P6Pl5+G5ZX3K Nb2tHneJE6mpP4rC800noqRBKUWLZS3Eo2aYlPETO0aWpBINgeHeITtQbiTNelqI X6JlcXdGWRN6GStceTaifGiDQpaR+HpOjT8YlYRsjjXJwYokWeYKGOWobWZRM2A6 gkAFpAA4LfHWBowg8gxFJ1CcZj0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSI7jhg pSLdRvtArzTj73dC28BjEjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5NDAyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ7YwMA0GCSqGSIb3DQEBCwUAA4IBAQBM2TLGhzZ3303SdiDNmTHpswU9 aV1swOHM+3JMCQ9Bh8Aq1vAAF0tsI2BkVS1pZXipnaViapPy81tMzzfs3KBEk+kN o2kGBRkEl0+5jLV93tHNG8Iy8B/TOP/WuKgQiE/Xv4xHzUtaSuzeOT8+S8zsoSn5 dAB7S53vjybqYQczkEfpRWKNHKd/1dNpDEqdfnK0rR/6wRRWbhSqIB0wg3fbYoQw erlylhmpxLZQDNYCYfhQvnYCxoojR56xj+rvhqMn0atyI1+DTTWcfAQZsxgzm/W9 0GTrm4agSnYMjF/3X1BaXB26OBoJQf6BNqFp7l/FBqq+CeA6IzMiWFj1KueL -----END CERTIFICATE-----Generated at Sun May 3 00:40:38 2026 by rpki-client