$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149942.roa File: AS149942.roa (raw, json) Hash identifier: ZX1sTH7yGmSNBi2rRwlKRr5JxQTriRmhUQd2r4JkzNI= Subject key identifier: F6:2A:DA:7F:08:00:33:A4:78:83:C4:14:42:2B:C2:5A:7A:A9:C4:F4 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3EE9539A46918CD88E74337CF87BD10C5932FFF1 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149942.roa Signing time: Sat 02 May 2026 09:21:11 +0000 ROA not before: Sat 02 May 2026 09:16:11 +0000 ROA not after: Sat 01 May 2027 09:21:11 +0000 asID: 149942 IP address blocks: 103.191.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e9:53:9a:46:91:8c:d8:8e:74:33:7c:f8:7b:d1:0c:59:32:ff:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:11 2026 GMT Not After : May 1 09:21:11 2027 GMT Subject: CN=F62ADA7F080033A47883C414422BC25A7AA9C4F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:27:29:f0:5f:6e:ea:33:4c:5f:fa:c9:38:52: ae:d7:c2:bf:98:cf:7a:d4:b9:cc:3e:1b:32:7b:3e: 14:67:ee:7f:c7:20:cd:12:9f:96:2f:a5:4a:26:9f: 9e:b8:9a:54:57:0d:49:cd:dc:2d:4a:f7:48:38:54: 67:b8:b7:26:37:c1:16:e9:6f:9e:04:28:01:5c:7c: 89:3a:b3:2c:be:3d:99:29:ed:87:7d:c5:69:a1:2e: 55:b5:47:2d:ca:a8:97:1c:21:0d:b0:26:a7:c0:bb: 95:bb:99:4f:ea:bb:74:93:ea:5e:7f:bf:4a:39:4e: 8a:b3:f3:ec:54:fc:b3:4d:73:d2:29:5c:17:13:52: 15:86:4b:be:d2:8e:d6:20:bc:24:31:d2:46:4f:90: 08:c2:d4:22:3f:ef:cb:d6:16:af:da:7f:be:66:b1: 53:ec:22:a5:99:35:99:21:c8:2c:78:38:07:b4:14: 0d:e0:e5:2d:c1:34:65:e0:25:7e:5c:20:f9:c4:31: 25:26:5b:77:63:31:ac:9f:ce:eb:a8:f2:84:5a:77: a2:ad:4a:a6:e9:9f:2f:ce:bf:06:36:31:a0:78:96: f7:7c:37:18:f5:87:f2:5a:b3:79:0a:81:79:36:a1: 16:7a:f1:56:30:d6:bd:c0:d4:e0:6e:e2:6c:f7:e0: d2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2A:DA:7F:08:00:33:A4:78:83:C4:14:42:2B:C2:5A:7A:A9:C4:F4 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.124.0/23 Signature Algorithm: sha256WithRSAEncryption 90:ce:15:24:76:80:fd:f7:c4:a6:5f:90:cb:a1:b5:d3:23:d0: ea:83:73:ee:34:c8:43:6a:f2:01:ac:ce:b8:fb:27:fb:fc:cc: dc:e4:f2:9d:83:f0:00:b3:56:49:6c:47:08:21:72:8a:45:cd: 70:c9:41:06:1b:85:24:5a:f8:88:38:11:49:0b:31:21:3d:37: bd:3f:40:a9:f0:ee:07:28:63:73:43:af:f8:b2:57:a2:5b:8b: 7d:29:e2:9c:3c:59:89:86:f9:0b:a5:d9:0c:95:69:a2:9b:57: 33:39:5d:82:8c:18:34:43:a8:d9:30:3d:27:b4:b5:2b:e6:fb: 27:fe:83:2a:4b:be:5b:8d:26:85:23:21:12:2a:52:02:41:b9: f0:a8:bb:80:7b:83:a9:3b:98:87:29:a3:d3:a6:2b:03:e2:4b: 22:65:2a:50:28:e3:8a:d1:6f:8e:01:7b:02:41:c8:16:f2:85: cd:f6:2f:7c:ed:62:5d:02:60:b2:82:1f:e5:bc:ec:7e:3f:2f: 69:b7:4c:ef:0d:32:9a:70:7a:a9:e8:af:2f:d9:bf:6f:c5:94: 25:7b:8f:57:f0:fd:3a:50:d4:9e:83:68:69:61:a9:19:15:53: 9e:b7:81:d1:83:fd:07:2d:92:50:b2:6b:bc:60:c5:39:56:09: ea:56:80:cc -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUPulTmkaRjNiOdDN8+HvRDFky//EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTYxMVoX DTI3MDUwMTA5MjExMVowMzExMC8GA1UEAxMoRjYyQURBN0YwODAwMzNBNDc4ODND NDE0NDIyQkMyNUE3QUE5QzRGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJwnKfBfbuozTF/6yThSrtfCv5jPetS5zD4bMns+FGfuf8cgzRKfli+lSiaf nriaVFcNSc3cLUr3SDhUZ7i3JjfBFulvngQoAVx8iTqzLL49mSnth33FaaEuVbVH LcqolxwhDbAmp8C7lbuZT+q7dJPqXn+/SjlOirPz7FT8s01z0ilcFxNSFYZLvtKO 1iC8JDHSRk+QCMLUIj/vy9YWr9p/vmaxU+wipZk1mSHILHg4B7QUDeDlLcE0ZeAl flwg+cQxJSZbd2MxrJ/O66jyhFp3oq1KpumfL86/BjYxoHiW93w3GPWH8lqzeQqB eTahFnrxVjDWvcDU4G7ibPfg0icCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT2Ktp/ CAAzpHiDxBRCK8JaeqnE9DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5OTQyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ798MA0GCSqGSIb3DQEBCwUAA4IBAQCQzhUkdoD998SmX5DLobXTI9Dq g3PuNMhDavIBrM64+yf7/Mzc5PKdg/AAs1ZJbEcIIXKKRc1wyUEGG4UkWviIOBFJ CzEhPTe9P0Cp8O4HKGNzQ6/4sleiW4t9KeKcPFmJhvkLpdkMlWmim1czOV2CjBg0 Q6jZMD0ntLUr5vsn/oMqS75bjSaFIyESKlICQbnwqLuAe4OpO5iHKaPTpisD4ksi ZSpQKOOK0W+OAXsCQcgW8oXN9i987WJdAmCygh/lvOx+Py9pt0zvDTKacHqp6K8v 2b9vxZQle49X8P06UNSeg2hpYakZFVOet4HRg/0HLZJQsmu8YMU5VgnqVoDM -----END CERTIFICATE-----Generated at Sun May 3 00:42:08 2026 by rpki-client