$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149947.roa File: AS149947.roa (raw, json) Hash identifier: Cv12UR91Vi2VpN+I1AHZAazUJYhbYNI/vO2/l/9iVDA= Subject key identifier: 13:52:77:C2:50:A8:DB:B4:20:77:33:C2:E4:65:44:12:3D:D5:AA:AC Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 2BF8DACC3074E6C3CFFFF0F2DD286821635F6705 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149947.roa Signing time: Sat 02 May 2026 21:22:18 +0000 ROA not before: Sat 02 May 2026 21:17:18 +0000 ROA not after: Sat 01 May 2027 21:22:18 +0000 asID: 149947 IP address blocks: 103.88.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f8:da:cc:30:74:e6:c3:cf:ff:f0:f2:dd:28:68:21:63:5f:67:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:17:18 2026 GMT Not After : May 1 21:22:18 2027 GMT Subject: CN=135277C250A8DBB4207733C2E46544123DD5AAAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c1:e7:be:17:09:bb:e3:dd:b6:72:1f:72:e0: a2:e0:43:91:7e:a1:68:e1:ab:89:80:7c:f4:17:39: 4b:79:a9:2e:4d:71:33:89:5d:5a:d0:9e:ca:d7:a1: 15:97:a5:c8:a0:e6:60:b0:28:3c:d0:1e:df:b9:f5: c2:bc:a0:3b:8f:7a:0d:2d:12:45:d7:1e:b5:cb:ae: e6:64:97:2c:f7:a2:01:69:d4:0b:e4:45:91:c5:55: a1:6f:b6:a9:8d:26:ca:8f:c1:96:84:fb:05:dd:65: 46:b2:b3:34:d1:85:f3:be:70:f2:27:43:5d:de:2d: 9d:37:79:fb:5a:1f:1a:a6:28:ea:40:18:ef:ed:66: 83:b2:fc:2c:3b:50:b0:75:f2:64:f7:8f:03:2b:63: 36:17:f3:f0:a4:49:12:cd:6d:7d:e6:95:67:b8:18: 14:52:02:57:37:3f:ba:ed:01:d8:a8:97:ef:42:31: 81:a2:53:61:92:13:0c:8c:c2:16:d4:c6:3c:2d:60: 76:3e:a6:d6:59:83:06:a0:eb:fc:21:40:61:8d:96: 46:fd:d9:9a:ac:75:10:1a:db:6a:00:b1:44:98:ee: 17:9b:ce:2e:e7:e6:02:81:2d:39:f7:8d:14:10:b7: 8a:57:15:81:12:87:35:c5:79:d7:bf:6f:33:bc:26: e0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:52:77:C2:50:A8:DB:B4:20:77:33:C2:E4:65:44:12:3D:D5:AA:AC X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149947.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.153.0/24 Signature Algorithm: sha256WithRSAEncryption 74:77:67:4c:c3:33:f0:56:79:d3:4a:88:b8:c9:4f:c5:3c:78: 82:25:85:6b:29:c9:4b:c0:98:14:f0:3e:1d:1f:6f:3e:f7:09: 6e:e3:88:87:39:bf:cb:5d:44:61:3e:f1:d5:20:ba:b4:a6:43: 69:a0:34:fc:8b:60:e9:4b:f1:69:6d:4d:0e:a2:d8:67:4a:8c: b4:e7:02:33:27:d1:d9:d6:1d:ca:d3:56:5c:0a:16:dd:84:d2: 4a:c2:20:52:85:fe:72:e2:19:37:c9:7c:64:d5:79:6c:fb:83: f3:b0:4a:42:4d:05:d7:43:14:35:c5:62:f8:30:be:1e:06:8a: ee:6c:cb:9a:03:6c:c7:24:03:e1:27:d5:80:8a:47:b7:a0:a6: be:dd:84:6a:15:6b:1c:12:8b:d1:8a:05:77:82:79:6c:d6:fb: 91:36:0f:cf:47:4d:61:1e:fe:df:43:0e:7b:c9:23:c1:6a:9c: fb:57:15:c2:b8:ca:ee:e1:93:98:db:08:7a:6e:e0:1f:7a:06: 74:50:fb:db:a5:31:88:bf:a0:39:81:16:d8:09:4d:e3:ad:f0: 1e:d7:a2:cf:e7:d5:9d:3e:e9:c4:92:bb:d8:e4:fa:f0:97:72: cb:30:c4:75:2b:a6:bd:d1:5f:a3:b6:51:ec:1d:ad:a4:89:06: c4:4a:f6:31 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUK/jazDB05sPP//Dy3ShoIWNfZwUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTcxOFoX DTI3MDUwMTIxMjIxOFowMzExMC8GA1UEAxMoMTM1Mjc3QzI1MEE4REJCNDIwNzcz M0MyRTQ2NTQ0MTIzREQ1QUFBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO3B574XCbvj3bZyH3LgouBDkX6haOGriYB89Bc5S3mpLk1xM4ldWtCeyteh FZelyKDmYLAoPNAe37n1wrygO496DS0SRdcetcuu5mSXLPeiAWnUC+RFkcVVoW+2 qY0myo/BloT7Bd1lRrKzNNGF875w8idDXd4tnTd5+1ofGqYo6kAY7+1mg7L8LDtQ sHXyZPePAytjNhfz8KRJEs1tfeaVZ7gYFFICVzc/uu0B2KiX70IxgaJTYZITDIzC FtTGPC1gdj6m1lmDBqDr/CFAYY2WRv3Zmqx1EBrbagCxRJjuF5vOLufmAoEtOfeN FBC3ilcVgRKHNcV5179vM7wm4LcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQTUnfC UKjbtCB3M8LkZUQSPdWqrDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5OTQ3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ1iZMA0GCSqGSIb3DQEBCwUAA4IBAQB0d2dMwzPwVnnTSoi4yU/FPHiC JYVrKclLwJgU8D4dH28+9wlu44iHOb/LXURhPvHVILq0pkNpoDT8i2DpS/FpbU0O othnSoy05wIzJ9HZ1h3K01ZcChbdhNJKwiBShf5y4hk3yXxk1Xls+4PzsEpCTQXX QxQ1xWL4ML4eBorubMuaA2zHJAPhJ9WAike3oKa+3YRqFWscEovRigV3gnls1vuR Ng/PR01hHv7fQw57ySPBapz7VxXCuMru4ZOY2wh6buAfegZ0UPvbpTGIv6A5gRbY CU3jrfAe16LP59WdPunEkrvY5Prwl3LLMMR1K6a90V+jtlHsHa2kiQbESvYx -----END CERTIFICATE-----Generated at Sun May 3 01:44:21 2026 by rpki-client