$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149752.roa File: AS149752.roa (raw, json) Hash identifier: 8732Fg8HSlz3/f/JaTo8WUatBiC9fJkK0qRfg4iXNko= Subject key identifier: 02:56:DF:4B:12:B7:E8:A2:79:A9:CE:77:37:C0:70:A8:5C:AF:8F:AA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 720AB0880E59C11970F40F532CD3B5A21E69686D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149752.roa Signing time: Sat 02 May 2026 14:19:56 +0000 ROA not before: Sat 02 May 2026 14:14:56 +0000 ROA not after: Sat 01 May 2027 14:19:56 +0000 asID: 149752 IP address blocks: 103.189.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:0a:b0:88:0e:59:c1:19:70:f4:0f:53:2c:d3:b5:a2:1e:69:68:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 14:14:56 2026 GMT Not After : May 1 14:19:56 2027 GMT Subject: CN=0256DF4B12B7E8A279A9CE7737C070A85CAF8FAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:de:c1:a5:90:fc:9b:68:7d:2d:cc:86:80:52: a8:bb:12:d2:9e:3a:58:f5:83:9d:b5:bc:4e:97:c5: f1:77:6d:6d:85:80:53:7b:ba:7b:4c:d8:63:61:19: 08:22:04:a4:bb:fa:35:cc:a1:b1:08:57:85:65:dd: a7:7b:24:8b:1c:24:0f:1f:a0:0f:7c:d8:24:dc:c1: 52:87:16:3f:34:34:d4:cf:16:f7:79:f5:cc:e6:42: e6:ca:8a:30:06:d7:3a:0d:3e:fd:7a:95:e5:b0:f2: e5:c8:55:ab:fb:23:6d:bd:10:63:34:07:9e:d8:9a: 91:10:3a:71:3c:07:27:ea:55:37:af:b1:e2:91:4c: 0f:b8:3d:b2:16:7f:84:ac:cd:17:b6:f7:af:73:5f: d0:d5:1c:0b:24:a2:40:ec:23:b3:c5:b0:22:de:0f: c0:b6:9c:36:56:dd:67:43:19:62:ea:8e:34:4e:07: 3a:fa:1d:59:eb:da:d8:aa:ec:1a:0a:37:2b:02:dd: 9d:e8:53:1b:1f:bc:6e:bc:06:0d:65:53:0e:85:62: 0a:0f:de:fc:db:1e:53:2b:00:62:fc:ec:11:41:f8: a0:7b:36:69:37:5a:4e:23:f7:50:fd:1c:29:c2:2f: cc:a4:f5:5b:91:29:15:83:8d:8d:ff:24:2f:1e:15: 67:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:56:DF:4B:12:B7:E8:A2:79:A9:CE:77:37:C0:70:A8:5C:AF:8F:AA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149752.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.138.0/23 Signature Algorithm: sha256WithRSAEncryption 05:56:f3:77:28:96:1d:b7:99:0c:7f:91:6f:ab:32:be:c7:39: 42:4e:ea:7b:f0:ce:7e:84:ec:13:eb:ac:0d:e8:c6:18:41:ad: c9:b4:db:34:6d:12:ec:8b:80:34:7f:91:18:bb:f2:60:a7:e8: 24:99:f0:52:a0:fb:62:d8:4c:8d:86:53:c0:cf:fd:c6:2c:ba: 82:a2:ea:c7:2a:7e:4e:36:1b:b8:02:0f:bc:f2:b1:57:6b:4a: 56:72:2e:4f:e7:48:53:23:b2:94:65:65:0c:57:4b:8e:d1:7a: 2d:2e:98:dd:eb:f8:3d:c5:53:96:5e:2b:f9:74:00:7e:5c:4f: db:d2:d7:de:50:14:4e:d9:2d:49:03:a0:e2:52:2f:06:bf:d3: af:0f:66:98:84:b5:0c:be:fb:bd:9d:02:24:03:f1:c5:5f:71: b3:05:81:84:8c:f4:0b:f1:8f:a8:65:22:6d:a1:f1:b9:65:be: d9:a4:17:ac:ff:15:36:26:f5:83:3d:1e:86:00:53:00:aa:08: c1:35:b7:9b:66:4f:e5:4f:46:17:76:8d:aa:2a:1d:76:9f:ef: ba:7e:c4:d6:e3:ea:ca:ff:99:92:17:34:e4:07:0a:9e:45:bd: 44:79:ef:b2:db:25:a1:37:46:b5:e3:d0:6a:5c:61:6e:6e:46: 35:f3:66:3f -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcgqwiA5ZwRlw9A9TLNO1oh5paG0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjE0MTQ1NloX DTI3MDUwMTE0MTk1NlowMzExMC8GA1UEAxMoMDI1NkRGNEIxMkI3RThBMjc5QTlD RTc3MzdDMDcwQTg1Q0FGOEZBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIzewaWQ/JtofS3MhoBSqLsS0p46WPWDnbW8TpfF8XdtbYWAU3u6e0zYY2EZ CCIEpLv6NcyhsQhXhWXdp3skixwkDx+gD3zYJNzBUocWPzQ01M8W93n1zOZC5sqK MAbXOg0+/XqV5bDy5chVq/sjbb0QYzQHntiakRA6cTwHJ+pVN6+x4pFMD7g9shZ/ hKzNF7b3r3Nf0NUcCySiQOwjs8WwIt4PwLacNlbdZ0MZYuqONE4HOvodWeva2Krs Ggo3KwLdnehTGx+8brwGDWVTDoViCg/e/NseUysAYvzsEUH4oHs2aTdaTiP3UP0c KcIvzKT1W5EpFYONjf8kLx4VZ90CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQCVt9L Erfoonmpznc3wHCoXK+PqjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5NzUyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ72KMA0GCSqGSIb3DQEBCwUAA4IBAQAFVvN3KJYdt5kMf5FvqzK+xzlC Tup78M5+hOwT66wN6MYYQa3JtNs0bRLsi4A0f5EYu/Jgp+gkmfBSoPti2EyNhlPA z/3GLLqCourHKn5ONhu4Ag+88rFXa0pWci5P50hTI7KUZWUMV0uO0XotLpjd6/g9 xVOWXiv5dAB+XE/b0tfeUBRO2S1JA6DiUi8Gv9OvD2aYhLUMvvu9nQIkA/HFX3Gz BYGEjPQL8Y+oZSJtofG5Zb7ZpBes/xU2JvWDPR6GAFMAqgjBNbebZk/lT0YXdo2q Kh12n++6fsTW4+rK/5mSFzTkBwqeRb1Eee+y2yWhN0a149BqXGFubkY182Y/ -----END CERTIFICATE-----Generated at Sun May 3 00:39:48 2026 by rpki-client