$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149934.roa File: AS149934.roa (raw, json) Hash identifier: uK6CvkVcRADrJ0wyE2EZVFzS4qDDKFZL2eGwTZT0fzU= Subject key identifier: 3F:4F:DB:EE:F2:5B:06:5A:DA:E8:23:5C:5A:A4:15:16:74:FA:1E:36 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6095990199CCA9C3FB975DD2FF2651B2B8E90B5E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149934.roa Signing time: Sat 02 May 2026 21:32:13 +0000 ROA not before: Sat 02 May 2026 21:27:13 +0000 ROA not after: Sat 01 May 2027 21:32:13 +0000 asID: 149934 IP address blocks: 2401:4a60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:95:99:01:99:cc:a9:c3:fb:97:5d:d2:ff:26:51:b2:b8:e9:0b:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:27:13 2026 GMT Not After : May 1 21:32:13 2027 GMT Subject: CN=3F4FDBEEF25B065ADAE8235C5AA4151674FA1E36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:29:10:ca:67:4a:e0:26:70:2a:ed:f3:34:94: b8:26:09:18:a0:d3:c3:e1:fc:88:22:f2:79:78:4e: 52:9e:8b:47:84:02:40:b4:cf:a7:6c:c5:29:04:bf: 48:d3:69:cf:01:58:4b:96:c6:33:51:c5:56:aa:b9: 6f:27:a7:f8:b3:57:4e:7e:6e:df:cd:7e:13:2f:ee: df:eb:73:ec:c9:c4:ca:d8:5a:14:a4:09:8b:da:35: c2:d2:76:ed:5d:55:36:55:de:7c:1d:00:e5:9a:4e: c9:6a:bd:cd:5d:c5:00:c0:22:9f:2b:a3:f8:f7:5b: 77:9c:7b:0c:eb:d8:6d:01:f9:28:ff:bd:7f:54:1c: fd:80:ad:41:59:3a:d9:01:8a:ce:85:5c:a3:d3:58: 40:24:da:32:ac:42:ce:95:6c:da:31:db:b0:3f:72: 96:9e:6a:5c:53:91:82:75:a4:15:e6:5f:11:45:b0: 8c:65:83:f6:ad:ad:f3:39:cf:e3:77:dd:89:f3:ce: 77:15:98:e1:ad:c1:e0:b3:77:f1:0a:84:04:85:5a: 90:91:04:a9:2d:f0:35:ca:93:b1:c9:6e:20:73:57: a9:a2:84:9e:9e:ce:17:92:e7:46:9a:99:13:98:30: 12:ad:2b:92:ab:b9:9f:ec:fa:81:47:e7:8b:82:2b: 76:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4F:DB:EE:F2:5B:06:5A:DA:E8:23:5C:5A:A4:15:16:74:FA:1E:36 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:4a60::/32 Signature Algorithm: sha256WithRSAEncryption 7e:f0:65:ef:84:1b:51:f0:00:7a:11:07:3e:96:06:fb:4c:7d: ea:eb:45:19:a6:05:94:8b:8a:e3:fc:44:8a:d4:db:2f:ec:df: 8d:5b:c3:15:d6:c6:2b:7e:df:5b:61:4e:1a:5e:f3:6f:c0:3e: 53:86:b7:a7:74:97:1a:72:b1:14:63:b8:c9:5d:e9:01:b7:6c: b8:04:0a:ad:71:23:88:ff:b9:2d:10:b0:08:33:68:a4:3a:29: eb:74:30:ed:66:2e:97:84:a5:2e:17:45:1e:20:ce:31:45:d3: 95:aa:5a:0e:16:14:91:0c:ff:73:61:b0:14:73:b1:5b:71:94: d4:94:15:be:8e:8c:71:44:dd:cc:43:10:82:6a:40:c5:5f:0a: 09:c3:21:d9:ed:64:7f:40:2a:76:70:63:bf:1a:a0:e9:17:27: 06:68:51:6c:91:d0:57:f6:ec:cd:d0:3e:de:bd:15:6b:01:ba: e1:89:4c:43:d2:74:73:41:fe:29:4e:16:2c:ce:f0:ef:90:0d: d6:b5:3a:b7:b2:b6:df:7a:5a:8a:db:2f:6b:25:68:98:58:1f: 92:31:df:ce:ff:c1:87:aa:4b:14:d9:f1:4b:c6:f1:dc:1f:61: cc:f1:86:65:58:ae:0e:a8:20:60:29:03:fb:f3:26:62:0a:2f: d6:c0:11:9b -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUYJWZAZnMqcP7l13S/yZRsrjpC14wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjcxM1oX DTI3MDUwMTIxMzIxM1owMzExMC8GA1UEAxMoM0Y0RkRCRUVGMjVCMDY1QURBRTgy MzVDNUFBNDE1MTY3NEZBMUUzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ4pEMpnSuAmcCrt8zSUuCYJGKDTw+H8iCLyeXhOUp6LR4QCQLTPp2zFKQS/ SNNpzwFYS5bGM1HFVqq5byen+LNXTn5u381+Ey/u3+tz7MnEythaFKQJi9o1wtJ2 7V1VNlXefB0A5ZpOyWq9zV3FAMAinyuj+Pdbd5x7DOvYbQH5KP+9f1Qc/YCtQVk6 2QGKzoVco9NYQCTaMqxCzpVs2jHbsD9ylp5qXFORgnWkFeZfEUWwjGWD9q2t8znP 43fdifPOdxWY4a3B4LN38QqEBIVakJEEqS3wNcqTscluIHNXqaKEnp7OF5LnRpqZ E5gwEq0rkqu5n+z6gUfni4Irdi8CAwEAAaOCAc0wggHJMB0GA1UdDgQWBBQ/T9vu 8lsGWtroI1xapBUWdPoeNjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5OTM0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAFKYDANBgkqhkiG9w0BAQsFAAOCAQEAfvBl74QbUfAAehEHPpYG+0x9 6utFGaYFlIuK4/xEitTbL+zfjVvDFdbGK37fW2FOGl7zb8A+U4a3p3SXGnKxFGO4 yV3pAbdsuAQKrXEjiP+5LRCwCDNopDop63Qw7WYul4SlLhdFHiDOMUXTlapaDhYU kQz/c2GwFHOxW3GU1JQVvo6McUTdzEMQgmpAxV8KCcMh2e1kf0AqdnBjvxqg6Rcn BmhRbJHQV/bszdA+3r0VawG64YlMQ9J0c0H+KU4WLM7w75AN1rU6t7K233paitsv ayVomFgfkjHfzv/Bh6pLFNnxS8bx3B9hzPGGZViuDqggYCkD+/MmYgov1sARmw== -----END CERTIFICATE-----Generated at Sun May 3 00:39:49 2026 by rpki-client