Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149359.roa
File: AS149359.roa (raw, json)
Hash identifier: 9NjMwtMucONDbEcw7rY7rzQKoMmVe05E5BZARv1HAzg=
Subject key identifier: 7B:25:53:7D:22:32:34:14:96:B6:FA:F7:30:D8:67:D7:51:04:E2:F3
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 11106C10BD363C8CADE0C57F8F865C1F82497B7B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149359.roa
Signing time: Mon 09 Mar 2026 02:09:30 +0000
ROA not before: Mon 09 Mar 2026 02:04:30 +0000
ROA not after: Mon 08 Mar 2027 02:09:30 +0000
asID: 149359
IP address blocks: 49.0.26.0/23 maxlen: 24
103.19.78.0/23 maxlen: 24
103.176.107.0/24 maxlen: 24
103.180.118.0/23 maxlen: 24
103.215.71.0/24 maxlen: 24
2401:5ee0::/32 maxlen: 48
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 29 Mar 2026 06:12:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:10:6c:10:bd:36:3c:8c:ad:e0:c5:7f:8f:86:5c:1f:82:49:7b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 9 02:04:30 2026 GMT
Not After : Mar 8 02:09:30 2027 GMT
Subject: CN=7B25537D2232341496B6FAF730D867D75104E2F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:c3:e4:b2:51:c1:11:dd:90:cd:81:e5:e3:
02:42:a4:73:23:4d:52:89:f5:d2:d9:33:f9:91:ce:
2b:41:01:8d:11:50:a1:aa:82:6a:fa:e8:ff:e1:8b:
fa:4c:f8:46:40:54:f9:e0:bb:42:67:71:55:8f:a8:
08:a4:4c:3e:f2:4e:8d:e2:70:d0:8e:82:0e:4c:d4:
d0:d2:a8:d7:42:71:e8:4a:d7:fa:61:40:61:04:83:
cf:b7:ca:17:9a:f7:4d:db:4c:7a:ab:24:3d:ca:6b:
95:91:2a:9c:6c:23:5e:fc:05:1d:59:d3:4c:db:bb:
b4:50:e2:be:a1:22:ed:20:02:28:d6:fd:e8:a0:92:
d4:cb:3a:79:f2:94:2b:50:51:25:cb:a4:74:5c:9a:
f6:06:d2:38:f8:35:79:32:eb:16:d8:19:f2:33:bf:
c5:25:93:09:e5:0f:39:b4:56:49:9e:1b:32:1b:b3:
10:dc:10:25:35:ad:6e:92:06:9f:f2:25:99:36:d6:
0f:8a:13:ba:a6:32:96:58:e5:72:c1:1d:a8:f1:7e:
de:ac:78:dc:f1:86:6e:44:2e:5d:ca:b7:52:a8:4f:
85:ae:99:b1:d8:98:ea:b0:a6:81:ff:d6:bd:ac:1a:
b1:f8:3a:7e:01:cd:63:b9:73:fa:65:7d:5d:14:cc:
6e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:25:53:7D:22:32:34:14:96:B6:FA:F7:30:D8:67:D7:51:04:E2:F3
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149359.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
49.0.26.0/23
103.19.78.0/23
103.176.107.0/24
103.180.118.0/23
103.215.71.0/24
IPv6:
2401:5ee0::/32
Signature Algorithm: sha256WithRSAEncryption
06:a0:a2:ff:79:6d:da:b0:73:8d:37:36:ea:a7:d3:81:56:6f:
ba:3b:50:f4:5b:5b:4a:58:0b:93:b6:18:f9:44:9a:70:cc:d2:
2d:8e:4e:8b:d1:48:ef:38:0b:36:7d:0e:03:f5:91:95:01:e2:
03:b4:82:96:7e:fc:2d:77:92:a4:41:1f:ec:24:95:28:d5:ab:
ab:62:8c:93:8a:6a:7c:05:9a:ec:66:e8:1c:87:04:a5:7f:8b:
db:6f:d0:b5:ce:4e:c3:72:79:2b:f3:7f:4a:97:3f:b5:48:95:
0e:18:2f:7c:ec:69:a6:68:03:1a:8e:25:d0:e7:e6:f4:43:4e:
a0:2e:e3:2b:13:d3:00:c0:6e:08:20:9e:73:2a:03:49:42:47:
12:52:a5:40:d4:42:a6:16:7e:c0:82:ff:ba:25:bb:88:0f:18:
42:6d:bf:b0:7d:ad:14:df:8b:77:d5:8d:98:cd:fe:98:8b:d5:
d6:5e:35:1b:fe:84:dd:ee:de:f6:03:d6:29:aa:d3:1e:8f:1e:
08:54:bb:53:cc:83:29:ad:9c:18:ea:17:10:ac:b4:05:7f:63:
27:4b:a9:38:fb:1c:d4:0a:65:a7:8d:fe:0c:5e:9c:5f:f9:a5:
9f:96:e8:f2:3f:77:f2:85:ee:8a:26:3f:b4:4f:ff:c0:b3:f5:
bc:c6:b9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:02:02 2026 by rpki-client