$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149965.roa File: AS149965.roa (raw, json) Hash identifier: CVeU6iZnkk+uxJkbnw9JgoI2RPHntCkYqbHPCD3Ecmk= Subject key identifier: AB:97:3D:21:A2:99:C9:1F:52:7F:5F:E9:DF:66:36:C0:65:AA:6C:C1 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 058A46FA648EF0A8895B859CA49ADDD513004E42 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149965.roa Signing time: Sat 02 May 2026 21:05:21 +0000 ROA not before: Sat 02 May 2026 21:00:21 +0000 ROA not after: Sat 01 May 2027 21:05:21 +0000 asID: 149965 IP address blocks: 103.139.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:8a:46:fa:64:8e:f0:a8:89:5b:85:9c:a4:9a:dd:d5:13:00:4e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:00:21 2026 GMT Not After : May 1 21:05:21 2027 GMT Subject: CN=AB973D21A299C91F527F5FE9DF6636C065AA6CC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:27:d6:cf:76:54:b9:a3:ed:04:d8:64:99:4f: f2:90:f8:52:2f:66:cd:c7:7c:36:69:44:ca:c5:cb: 7d:43:b3:17:3a:d1:e1:3e:b0:2b:79:b3:b2:ff:ea: 5b:e1:a6:ef:10:bc:aa:4f:3b:43:4f:c8:f6:1c:8f: b1:c5:d4:20:55:a4:11:da:45:00:02:58:20:e4:7f: 99:c0:40:89:2e:7e:b1:6f:b7:11:bc:e2:82:e7:01: 30:80:59:b0:9a:3d:63:6e:08:4a:b0:58:8e:4a:96: cf:e5:e9:13:4f:4f:42:b5:e5:ff:79:eb:7b:60:b1: fa:7f:d2:e0:5d:c4:bb:a5:f1:27:62:3e:47:82:9a: 4f:cd:5c:97:ad:08:15:00:24:96:02:4d:d9:d3:1c: 25:4f:8b:e0:f7:ee:7d:67:14:f0:7f:cd:ad:10:0b: c9:87:b7:83:c6:ab:76:bd:ee:b2:7b:f3:a0:99:c8: d3:f5:43:32:77:94:9b:f9:4e:84:9e:c5:63:43:f1: 3b:cb:7f:fa:02:35:24:42:e6:1e:13:7c:42:12:73: 08:7a:2e:ae:00:ae:fa:c0:00:90:2b:c4:00:fc:e7: dd:e0:71:15:bb:75:f4:8c:21:5a:81:ec:db:18:2d: 9c:41:a0:bd:fa:c5:75:5d:e7:06:71:de:71:a6:8e: 59:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:97:3D:21:A2:99:C9:1F:52:7F:5F:E9:DF:66:36:C0:65:AA:6C:C1 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149965.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.138.0/23 Signature Algorithm: sha256WithRSAEncryption 83:84:50:a8:6c:df:e7:91:cb:b7:6e:ac:e7:d5:18:d4:f1:3b: 3d:89:9a:69:f1:2d:80:38:a6:ec:75:b4:69:61:78:b8:3c:99: b8:21:54:5b:6f:58:3d:9f:57:73:eb:29:70:78:36:8f:b6:be: fd:2f:06:74:72:89:75:2b:11:15:83:41:96:10:ee:80:73:b2: 16:4f:44:2a:62:94:72:13:9d:f3:6e:12:f5:43:f2:59:4a:b1: 92:0b:7f:6a:6a:96:04:d8:19:4e:bc:61:af:54:d4:64:d1:e8: f4:06:91:84:d8:01:87:04:f2:46:ed:2b:71:19:f9:53:dd:d5: 7e:30:f0:89:0a:e7:a1:e9:ee:05:85:7a:65:46:f1:92:08:5d: 83:00:8c:0d:45:5b:59:b3:a8:58:75:5b:27:59:86:1e:16:4d: be:a9:2c:a8:23:1d:fa:8b:6f:f2:93:b4:e8:08:f5:6c:6e:20: eb:15:1d:f8:c5:12:0b:b9:2d:e6:35:95:c9:ef:a5:b0:a1:f2: ea:b4:cc:d9:ff:60:ff:b3:6e:03:13:8f:6e:17:34:ae:76:fe: 8d:9c:27:a6:87:7b:57:62:ac:ff:3b:00:fd:d1:ff:74:1e:bd: 97:ec:67:51:aa:b3:b5:c6:9e:f8:2b:37:96:cd:30:bf:82:21: 3b:7b:f7:7a -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUBYpG+mSO8KiJW4WcpJrd1RMATkIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDAyMVoX DTI3MDUwMTIxMDUyMVowMzExMC8GA1UEAxMoQUI5NzNEMjFBMjk5QzkxRjUyN0Y1 RkU5REY2NjM2QzA2NUFBNkNDMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK4n1s92VLmj7QTYZJlP8pD4Ui9mzcd8NmlEysXLfUOzFzrR4T6wK3mzsv/q W+Gm7xC8qk87Q0/I9hyPscXUIFWkEdpFAAJYIOR/mcBAiS5+sW+3EbzigucBMIBZ sJo9Y24ISrBYjkqWz+XpE09PQrXl/3nre2Cx+n/S4F3Eu6XxJ2I+R4KaT81cl60I FQAklgJN2dMcJU+L4PfufWcU8H/NrRALyYe3g8ardr3usnvzoJnI0/VDMneUm/lO hJ7FY0PxO8t/+gI1JELmHhN8QhJzCHourgCu+sAAkCvEAPzn3eBxFbt19IwhWoHs 2xgtnEGgvfrFdV3nBnHecaaOWR8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSrlz0h opnJH1J/X+nfZjbAZapswTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5OTY1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ4uKMA0GCSqGSIb3DQEBCwUAA4IBAQCDhFCobN/nkcu3bqzn1RjU8Ts9 iZpp8S2AOKbsdbRpYXi4PJm4IVRbb1g9n1dz6ylweDaPtr79LwZ0col1KxEVg0GW EO6Ac7IWT0QqYpRyE53zbhL1Q/JZSrGSC39qapYE2BlOvGGvVNRk0ej0BpGE2AGH BPJG7StxGflT3dV+MPCJCueh6e4FhXplRvGSCF2DAIwNRVtZs6hYdVsnWYYeFk2+ qSyoIx36i2/yk7ToCPVsbiDrFR34xRILuS3mNZXJ76WwofLqtMzZ/2D/s24DE49u FzSudv6NnCemh3tXYqz/OwD90f90Hr2X7GdRqrO1xp74KzeWzTC/giE7e/d6 -----END CERTIFICATE-----Generated at Sun May 3 00:40:39 2026 by rpki-client