$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149882.roa File: AS149882.roa (raw, json) Hash identifier: mHb0aD8gZzJW2V5O1yf0Pm/43Rw5J2HS6/OFeCFnxWI= Subject key identifier: FE:96:50:77:97:18:8E:5C:49:96:A7:7F:F6:09:17:02:2A:09:6A:D8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 37AD1F56B151597CC5FFCD123A281E0507487404 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149882.roa Signing time: Sat 02 May 2026 21:32:01 +0000 ROA not before: Sat 02 May 2026 21:27:01 +0000 ROA not after: Sat 01 May 2027 21:32:01 +0000 asID: 149882 IP address blocks: 2401:1ba0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:ad:1f:56:b1:51:59:7c:c5:ff:cd:12:3a:28:1e:05:07:48:74:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:27:01 2026 GMT Not After : May 1 21:32:01 2027 GMT Subject: CN=FE96507797188E5C4996A77FF60917022A096AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:af:00:20:4b:f4:94:a5:08:e1:ae:02:ed:73: 3d:7f:0e:c6:8a:c8:64:07:6e:5d:51:12:c0:54:76: 35:9e:17:92:ff:82:e2:b8:96:1d:57:2b:80:55:8c: 9a:d0:62:f5:01:19:d4:e7:c4:3b:36:e6:37:3f:f2: db:ef:66:60:42:f1:88:a1:f3:9e:fa:87:95:cb:f0: 3d:e6:9f:f2:46:04:a3:21:90:1e:39:84:ac:46:49: 06:63:f5:f8:47:0b:4e:c9:1f:ea:6e:b0:94:00:27: d2:57:90:4f:4c:bf:70:ce:9b:fb:32:62:9c:7d:d5: 30:0a:0c:78:41:20:58:f7:41:70:be:48:e4:82:25: 91:8c:93:31:12:59:f6:a6:3f:76:a2:5a:15:e7:b2: 6b:d6:ff:8a:38:f8:f5:ff:7f:04:36:93:60:bb:e3: 8d:2e:4b:fc:de:10:62:7b:6a:6d:bb:5e:e2:e3:94: 44:77:bb:ca:cf:79:52:2c:33:d9:f9:3d:66:20:18: e7:20:54:20:7f:38:be:93:dd:f8:a6:99:22:61:13: 6c:da:a9:d7:94:80:8a:e8:76:96:fd:98:08:99:a5: 0c:ac:d2:cd:24:5d:5a:0d:bf:7b:c0:46:7c:cf:81: a5:cf:86:b6:6b:8b:d0:25:c2:7b:6b:c9:c4:52:f7: 04:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:96:50:77:97:18:8E:5C:49:96:A7:7F:F6:09:17:02:2A:09:6A:D8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149882.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1ba0::/32 Signature Algorithm: sha256WithRSAEncryption 65:e4:54:64:74:f1:23:c6:7d:a2:be:31:a8:25:f6:19:eb:cd: 34:3e:42:57:6e:42:a2:78:eb:93:93:89:00:b4:b2:5e:c1:bd: bd:48:64:f8:cf:6c:10:ef:8a:58:6d:b4:c5:db:4c:48:55:8c: 3d:1d:8a:99:4e:93:51:07:6f:50:f2:91:95:df:e4:dd:10:21: eb:e6:c0:6a:26:2a:ef:fb:e7:25:54:7e:49:2f:db:b8:4a:50: 81:d8:0c:c7:fb:0c:b8:c1:a8:88:83:95:d1:e3:50:07:ab:b7: 5c:b0:4f:c8:d2:31:e6:9b:10:7a:fd:60:c3:f1:00:55:ca:b5: c4:f8:1e:e1:b5:da:98:93:69:72:f9:53:09:f4:90:79:58:54: ec:7e:61:c3:4e:d6:54:b9:b0:34:71:da:29:34:99:f4:76:e9: ba:c6:7d:49:8e:00:1e:3c:57:82:31:74:dd:ea:29:ce:68:8e: a4:aa:ac:59:fb:07:4c:12:b1:cc:d6:49:1b:be:49:85:79:56: 3e:02:bc:8e:44:99:71:9b:ee:e4:ed:b1:e2:be:50:2d:35:d2: 52:08:8a:41:6d:5d:43:2a:1b:cb:54:a6:3a:c3:17:db:d2:9d: 4a:a5:84:3c:ec:39:6b:19:32:8f:92:8e:0e:8a:51:d5:ca:52: ef:5d:bc:28 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUN60fVrFRWXzF/80SOigeBQdIdAQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjcwMVoX DTI3MDUwMTIxMzIwMVowMzExMC8GA1UEAxMoRkU5NjUwNzc5NzE4OEU1QzQ5OTZB NzdGRjYwOTE3MDIyQTA5NkFEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCvACBL9JSlCOGuAu1zPX8OxorIZAduXVESwFR2NZ4Xkv+C4riWHVcrgFWM mtBi9QEZ1OfEOzbmNz/y2+9mYELxiKHznvqHlcvwPeaf8kYEoyGQHjmErEZJBmP1 +EcLTskf6m6wlAAn0leQT0y/cM6b+zJinH3VMAoMeEEgWPdBcL5I5IIlkYyTMRJZ 9qY/dqJaFeeya9b/ijj49f9/BDaTYLvjjS5L/N4QYntqbbte4uOURHe7ys95Uiwz 2fk9ZiAY5yBUIH84vpPd+KaZImETbNqp15SAiuh2lv2YCJmlDKzSzSRdWg2/e8BG fM+Bpc+GtmuL0CXCe2vJxFL3BGECAwEAAaOCAc0wggHJMB0GA1UdDgQWBBT+llB3 lxiOXEmWp3/2CRcCKglq2DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5ODgyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAEboDANBgkqhkiG9w0BAQsFAAOCAQEAZeRUZHTxI8Z9or4xqCX2GevN ND5CV25Conjrk5OJALSyXsG9vUhk+M9sEO+KWG20xdtMSFWMPR2KmU6TUQdvUPKR ld/k3RAh6+bAaiYq7/vnJVR+SS/buEpQgdgMx/sMuMGoiIOV0eNQB6u3XLBPyNIx 5psQev1gw/EAVcq1xPge4bXamJNpcvlTCfSQeVhU7H5hw07WVLmwNHHaKTSZ9Hbp usZ9SY4AHjxXgjF03eopzmiOpKqsWfsHTBKxzNZJG75JhXlWPgK8jkSZcZvu5O2x 4r5QLTXSUgiKQW1dQyoby1SmOsMX29KdSqWEPOw5axkyj5KODopR1cpS7128KA== -----END CERTIFICATE-----Generated at Sun May 3 00:40:43 2026 by rpki-client