$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147154.roa File: AS147154.roa (raw, json) Hash identifier: /gNpTT2OapGjG6LSjPnW0b+PkMOsygv4p+8zEGZc/18= Subject key identifier: 4F:F8:47:47:F5:74:01:4D:EE:D7:D9:ED:A3:0D:15:2D:D7:8A:94:71 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1BCF10D90312EE54FF44B4D9C776BD45E0DED09F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147154.roa Signing time: Wed 25 Mar 2026 04:00:00 +0000 ROA not before: Wed 25 Mar 2026 03:55:00 +0000 ROA not after: Wed 24 Mar 2027 04:00:00 +0000 asID: 147154 IP address blocks: 103.191.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:cf:10:d9:03:12:ee:54:ff:44:b4:d9:c7:76:bd:45:e0:de:d0:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 25 03:55:00 2026 GMT Not After : Mar 24 04:00:00 2027 GMT Subject: CN=4FF84747F574014DEED7D9EDA30D152DD78A9471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3d:33:a5:50:95:40:50:1d:c3:32:e0:90:36: b0:b5:85:cd:5f:12:55:96:07:95:f9:60:34:87:7b: 79:05:0a:82:df:e7:d2:7d:ff:9b:20:29:2a:f1:17: 4b:0c:cc:88:d5:52:b9:a4:8d:f9:3a:30:bd:25:b4: f7:28:ac:e3:c7:60:20:d0:c2:16:bb:a3:c7:0d:30: 71:3f:be:ba:bf:1a:c0:62:7d:a7:25:39:57:57:7d: dc:e7:a9:84:ea:71:ec:2e:f1:06:3d:72:3f:00:63: 63:30:03:11:fe:e7:f8:2e:a1:7b:40:38:49:fd:3c: de:b3:30:e7:c7:b9:6a:6b:94:d7:ae:da:d7:ef:40: 48:76:64:13:64:d0:4f:d4:93:7d:04:5a:2c:c7:22: d8:62:f6:3d:ee:9d:21:7d:37:b1:d6:f1:73:71:6b: 55:0a:a6:0e:fd:10:14:57:fc:02:46:7e:45:82:43: 4d:6e:1a:59:ed:a7:f9:b7:aa:05:86:b0:59:2f:06: 21:48:66:b7:04:e1:68:ad:1c:3d:43:e6:ba:51:a1: aa:bd:e4:87:83:91:ff:9e:c3:8c:1b:37:88:3f:2f: f1:4d:2f:a8:30:53:96:a2:3a:aa:2e:87:ba:aa:be: c2:a4:86:34:7c:05:bb:00:69:cd:e1:25:7c:5d:21: 2e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F8:47:47:F5:74:01:4D:EE:D7:D9:ED:A3:0D:15:2D:D7:8A:94:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147154.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.109.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:b4:e3:06:f4:bb:c6:f9:67:d5:8a:d9:b6:11:a9:bc:2a:c5: 70:1c:fb:4b:1e:ed:fc:98:76:dc:80:81:79:c2:5d:e4:73:3d: 6b:08:e1:e5:b4:97:00:14:39:cd:37:d3:38:be:a9:55:aa:49: 79:a2:25:f2:e9:4a:3c:fa:ec:bb:35:45:6d:93:cb:6c:a6:16: 6a:7b:f0:e1:5f:8b:b1:53:b4:52:96:76:b2:b1:ca:eb:dc:25: e7:d6:53:4a:75:c5:cd:d0:7f:21:68:f0:fa:4f:e4:89:28:07: a2:e5:56:7e:b5:83:78:bc:a8:8a:67:ca:52:5e:ca:49:4b:58: 5b:0a:0d:5c:f5:b3:39:16:68:1a:4f:b9:3d:5f:59:6d:81:7e: ad:22:55:cc:91:57:ec:99:6e:fd:60:b3:cc:29:1b:d7:a9:b6: 0a:3a:e5:aa:c4:eb:07:60:d0:65:68:0f:f1:ea:63:68:b3:db: ca:00:7b:60:22:5f:6d:4e:68:00:05:ba:95:be:79:04:2b:b5: 87:66:0a:1d:bf:5e:18:17:81:34:b3:f7:5c:4f:bf:28:33:94: 07:83:bb:54:36:22:02:46:b8:c0:9c:c5:5c:1f:dc:0f:f6:29: ba:8c:14:65:09:c5:2b:f6:c6:3d:ae:57:66:2e:7e:d2:ef:0b: ea:84:97:7f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUG88Q2QMS7lT/RLTZx3a9ReDe0J8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMyNTAzNTUwMFoX DTI3MDMyNDA0MDAwMFowMzExMC8GA1UEAxMoNEZGODQ3NDdGNTc0MDE0REVFRDdE OUVEQTMwRDE1MkRENzhBOTQ3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANM9M6VQlUBQHcMy4JA2sLWFzV8SVZYHlflgNId7eQUKgt/n0n3/myApKvEX SwzMiNVSuaSN+TowvSW09yis48dgINDCFrujxw0wcT++ur8awGJ9pyU5V1d93Oep hOpx7C7xBj1yPwBjYzADEf7n+C6he0A4Sf083rMw58e5amuU167a1+9ASHZkE2TQ T9STfQRaLMci2GL2Pe6dIX03sdbxc3FrVQqmDv0QFFf8AkZ+RYJDTW4aWe2n+beq BYawWS8GIUhmtwThaK0cPUPmulGhqr3kh4OR/57DjBs3iD8v8U0vqDBTlqI6qi6H uqq+wqSGNHwFuwBpzeElfF0hLqcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRP+EdH 9XQBTe7X2e2jDRUt14qUcTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzE1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe/bTANBgkqhkiG9w0BAQsFAAOCAQEADLTjBvS7xvln1YrZthGp vCrFcBz7Sx7t/Jh23ICBecJd5HM9awjh5bSXABQ5zTfTOL6pVapJeaIl8ulKPPrs uzVFbZPLbKYWanvw4V+LsVO0UpZ2srHK69wl59ZTSnXFzdB/IWjw+k/kiSgHouVW frWDeLyoimfKUl7KSUtYWwoNXPWzORZoGk+5PV9ZbYF+rSJVzJFX7Jlu/WCzzCkb 16m2CjrlqsTrB2DQZWgP8epjaLPbygB7YCJfbU5oAAW6lb55BCu1h2YKHb9eGBeB NLP3XE+/KDOUB4O7VDYiAka4wJzFXB/cD/YpuowUZQnFK/bGPa5XZi5+0u8L6oSX fw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:02:17 2026 by rpki-client