$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149744.roa File: AS149744.roa (raw, json) Hash identifier: SJrxe29XzTmgpgxFTxSudWsHPzraPdXuvs+v1xhFVu0= Subject key identifier: 27:DF:BF:5A:81:28:68:A0:BF:AF:6F:4A:77:B6:FE:FA:A3:4A:30:6C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 46200BE7D5005554A7B6DF93A2B2F6121AFD22DC Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149744.roa Signing time: Sat 02 May 2026 18:32:48 +0000 ROA not before: Sat 02 May 2026 18:27:48 +0000 ROA not after: Sat 01 May 2027 18:32:48 +0000 asID: 149744 IP address blocks: 103.187.162.0/23 maxlen: 24 2001:df0:d140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:20:0b:e7:d5:00:55:54:a7:b6:df:93:a2:b2:f6:12:1a:fd:22:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 18:27:48 2026 GMT Not After : May 1 18:32:48 2027 GMT Subject: CN=27DFBF5A812868A0BFAF6F4A77B6FEFAA34A306C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a0:40:24:d6:7c:e2:f7:30:10:92:0e:75:ee: 32:52:d9:8c:c3:c4:e3:2d:f7:6e:4c:d8:08:7f:6a: bb:49:89:37:57:e1:c8:10:78:b5:7a:d0:e4:64:90: 19:b9:7d:b8:9d:82:05:9b:95:dd:6d:b1:85:fc:6f: 45:9f:38:08:72:ea:8a:5d:1c:7a:99:0c:e1:7b:04: 48:32:1c:cd:08:ba:da:f8:48:a8:b0:ff:09:9c:23: 83:42:54:1d:93:c5:39:11:5d:23:9f:f6:27:86:35: ca:96:f2:d2:39:8b:f0:98:c2:7c:b3:f5:bc:bb:e8: d9:51:b6:0c:97:e9:22:6e:7e:ae:ef:20:d1:12:3d: 06:c8:e8:51:7f:3b:1c:5d:49:49:16:86:a8:c6:01: cc:40:b6:11:fe:f6:28:63:32:2b:fc:7c:5c:d2:b3: c8:a3:21:61:81:f5:60:e1:7d:aa:42:df:e3:75:15: c5:c2:63:8d:8f:22:2a:f5:9f:c6:53:22:10:0d:07: 79:b3:f0:64:95:4a:5e:c4:b5:15:cb:f0:25:0c:fb: fa:81:4a:89:14:6f:af:22:7e:f3:aa:69:05:44:20: 33:e4:c5:63:cb:1c:d5:f6:25:5b:ae:85:74:50:4d: 16:ca:c2:cd:fb:60:62:5e:27:85:e1:86:2b:f4:aa: 5d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:DF:BF:5A:81:28:68:A0:BF:AF:6F:4A:77:B6:FE:FA:A3:4A:30:6C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149744.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.162.0/23 IPv6: 2001:df0:d140::/48 Signature Algorithm: sha256WithRSAEncryption 2e:23:ab:ad:fa:02:6a:91:45:d3:1b:3f:27:cc:7f:e7:c6:df: 00:22:e3:cb:80:47:5e:93:c1:5c:91:ea:24:7b:7f:26:56:21: 3e:df:a7:28:0f:84:31:32:13:fa:26:94:cb:7e:db:c9:11:00: 19:b6:0c:bb:0a:eb:e6:9d:91:cc:55:d8:82:7e:6e:0d:c5:40: 9c:91:98:5b:67:1b:fb:68:d6:d0:ec:26:c6:32:76:61:0b:51: a5:cd:1a:fa:8d:37:bc:3f:56:7a:cb:01:ac:b3:b3:cb:05:5f: 3c:d9:26:83:21:3f:e9:73:d2:2a:f1:08:fd:31:68:b9:3c:27: 80:53:28:8e:92:8e:43:96:42:18:9f:58:cf:68:2c:38:7a:5e: a8:c8:69:ea:17:07:f7:88:39:27:e1:ff:00:4a:4f:b1:1e:2f: 76:08:14:d1:6b:52:ae:bc:55:e0:9f:9f:67:56:fb:40:4f:0d: 3d:1a:0d:3f:d8:0f:1d:d8:01:3f:14:ab:f3:b1:e3:0d:7b:53: ee:5e:04:d8:81:a1:87:63:ca:9c:18:66:85:26:8f:38:16:a7: 54:57:a2:a1:6b:46:ea:33:57:5e:c3:2a:e0:b7:3a:a3:74:75: 0b:eb:c5:a6:a3:5d:2e:0b:9b:b5:a2:42:d9:6c:6e:99:e7:83: 88:6c:45:a0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURiAL59UAVVSntt+TorL2Ehr9ItwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE4Mjc0OFoX DTI3MDUwMTE4MzI0OFowMzExMC8GA1UEAxMoMjdERkJGNUE4MTI4NjhBMEJGQUY2 RjRBNzdCNkZFRkFBMzRBMzA2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWgQCTWfOL3MBCSDnXuMlLZjMPE4y33bkzYCH9qu0mJN1fhyBB4tXrQ5GSQ Gbl9uJ2CBZuV3W2xhfxvRZ84CHLqil0cepkM4XsESDIczQi62vhIqLD/CZwjg0JU HZPFORFdI5/2J4Y1ypby0jmL8JjCfLP1vLvo2VG2DJfpIm5+ru8g0RI9BsjoUX87 HF1JSRaGqMYBzEC2Ef72KGMyK/x8XNKzyKMhYYH1YOF9qkLf43UVxcJjjY8iKvWf xlMiEA0HebPwZJVKXsS1FcvwJQz7+oFKiRRvryJ+86ppBUQgM+TFY8sc1fYlW66F dFBNFsrCzftgYl4nheGGK/SqXVkCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBQn379a gShooL+vb0p3tv76o0owbDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5NzQ0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQBZ7uiMA8EAgACMAkDBwAgAQ3w0UAwDQYJKoZIhvcNAQELBQADggEBAC4j q636AmqRRdMbPyfMf+fG3wAi48uAR16TwVyR6iR7fyZWIT7fpygPhDEyE/omlMt+ 28kRABm2DLsK6+adkcxV2IJ+bg3FQJyRmFtnG/to1tDsJsYydmELUaXNGvqNN7w/ VnrLAayzs8sFXzzZJoMhP+lz0irxCP0xaLk8J4BTKI6SjkOWQhifWM9oLDh6XqjI aeoXB/eIOSfh/wBKT7EeL3YIFNFrUq68VeCfn2dW+0BPDT0aDT/YDx3YAT8Uq/Ox 4w17U+5eBNiBoYdjypwYZoUmjzgWp1RXoqFrRuozV17DKuC3OqN0dQvrxaajXS4L m7WiQtlsbpnng4hsRaA= -----END CERTIFICATE-----Generated at Sun May 3 00:40:27 2026 by rpki-client