$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149670.roa File: AS149670.roa (raw, json) Hash identifier: ve6wuOTvxiSUyewIvvhxxhRzYJKxZg5hC6yDB60n1L8= Subject key identifier: 18:2D:5A:8B:0F:A4:5C:C1:0E:DB:A5:0B:94:E8:5F:B3:43:C8:83:07 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 71A635615AA734B263458AD627B9409A9E27D2DB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149670.roa Signing time: Thu 02 Oct 2025 07:00:00 +0000 ROA not before: Thu 02 Oct 2025 06:55:00 +0000 ROA not after: Thu 01 Oct 2026 07:00:00 +0000 asID: 149670 IP address blocks: 103.184.66.0/23 maxlen: 24 2001:df2:25c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a6:35:61:5a:a7:34:b2:63:45:8a:d6:27:b9:40:9a:9e:27:d2:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 2 06:55:00 2025 GMT Not After : Oct 1 07:00:00 2026 GMT Subject: CN=182D5A8B0FA45CC10EDBA50B94E85FB343C88307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:74:e5:7c:03:5b:b7:05:b5:75:b1:89:f7:40: 96:2e:1a:43:6d:05:f1:bf:bb:22:e5:8b:e2:e7:9e: 5a:92:94:04:d8:9a:18:04:53:00:38:87:00:3f:4c: 26:53:c7:0f:79:a5:52:65:1a:bc:04:63:7d:53:b8: b3:72:ae:df:65:0e:3c:09:39:86:c8:1f:03:27:23: 16:9b:54:c8:88:08:86:65:89:c1:09:f7:30:17:58: 89:d8:42:5c:1c:9c:ed:91:f0:e7:35:d0:7a:72:4e: 71:75:5b:9f:1c:d8:e1:f9:25:25:58:2c:1b:27:2d: b5:50:9e:45:f9:fa:ac:11:8e:2c:27:b7:b5:6a:15: dd:bb:9e:b7:2d:d6:7d:76:27:ba:5c:6b:0c:56:a5: dd:b3:01:7a:c8:db:fe:5b:1d:19:7e:b1:67:c3:6f: 71:ee:f5:ef:7d:cb:cb:b1:50:dd:c1:44:f8:4d:6a: 4a:09:22:02:81:67:e0:cc:38:42:9d:71:ed:57:88: 67:d1:13:5e:c5:40:12:08:0b:f1:6e:1a:f5:07:c2: 79:79:0d:d4:97:17:d9:ef:a2:39:2a:a6:07:34:7e: 8e:f1:cd:44:be:e6:b7:00:55:b2:fc:1a:b4:b5:dc: f2:ec:fe:7b:78:ec:aa:8b:66:6a:39:a3:2e:05:e8: 30:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2D:5A:8B:0F:A4:5C:C1:0E:DB:A5:0B:94:E8:5F:B3:43:C8:83:07 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149670.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.66.0/23 IPv6: 2001:df2:25c0::/48 Signature Algorithm: sha256WithRSAEncryption 02:c3:43:a8:1d:6f:8f:d9:19:5e:70:d6:74:64:ed:af:76:c1: 33:82:6d:de:93:1e:50:b5:71:2d:8a:a5:02:ef:dd:b0:74:85: 91:3e:81:a0:e2:79:09:a8:9c:02:81:c2:19:48:ca:8a:97:d7: c2:a6:54:5e:eb:1f:cb:83:5c:c9:07:e9:08:cd:90:d6:9a:6d: 10:e1:b8:f4:5c:00:76:c1:f4:fb:24:66:45:c8:39:40:2b:8b: c1:54:d8:60:8a:21:92:22:f5:95:fd:68:c2:0d:bf:8a:52:6f: 93:fd:10:bf:64:3d:50:cb:2e:69:ce:b8:e5:2d:a8:40:03:5b: e7:d7:0f:a3:2b:67:b3:6c:4c:4f:96:05:62:24:62:95:cc:88: 58:e2:42:09:75:17:b0:8a:4e:69:52:4f:bb:74:55:f1:1e:0b: 32:df:8f:df:28:0c:5a:4a:de:4d:c0:27:4b:5f:7d:d6:61:b5: 4e:fb:22:d8:a8:9b:e3:38:03:55:c4:fe:b1:d8:16:dc:19:90: 15:83:e2:f4:d6:1b:2d:d7:6f:11:c6:36:17:d4:ad:92:1e:64: 82:f5:f9:f8:ce:9d:3e:97:8a:c9:35:ba:c8:44:91:6f:05:6a: 35:a2:88:37:50:06:a5:0c:36:b0:94:a5:d9:14:1b:4b:33:aa: 51:18:4f:5d -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUcaY1YVqnNLJjRYrWJ7lAmp4n0tswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwMjA2NTUwMFoX DTI2MTAwMTA3MDAwMFowMzExMC8GA1UEAxMoMTgyRDVBOEIwRkE0NUNDMTBFREJB NTBCOTRFODVGQjM0M0M4ODMwNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL905XwDW7cFtXWxifdAli4aQ20F8b+7IuWL4ueeWpKUBNiaGARTADiHAD9M JlPHD3mlUmUavARjfVO4s3Ku32UOPAk5hsgfAycjFptUyIgIhmWJwQn3MBdYidhC XByc7ZHw5zXQenJOcXVbnxzY4fklJVgsGycttVCeRfn6rBGOLCe3tWoV3buety3W fXYnulxrDFal3bMBesjb/lsdGX6xZ8Nvce71733Ly7FQ3cFE+E1qSgkiAoFn4Mw4 Qp1x7VeIZ9ETXsVAEggL8W4a9QfCeXkN1JcX2e+iOSqmBzR+jvHNRL7mtwBVsvwa tLXc8uz+e3jsqotmajmjLgXoMP8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQYLVqL D6RcwQ7bpQuU6F+zQ8iDBzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWe4QjAPBAIAAjAJAwcAIAEN8iXAMA0GCSqGSIb3DQEBCwUAA4IB AQACw0OoHW+P2RlecNZ0ZO2vdsEzgm3ekx5QtXEtiqUC792wdIWRPoGg4nkJqJwC gcIZSMqKl9fCplRe6x/Lg1zJB+kIzZDWmm0Q4bj0XAB2wfT7JGZFyDlAK4vBVNhg iiGSIvWV/WjCDb+KUm+T/RC/ZD1Qyy5pzrjlLahAA1vn1w+jK2ezbExPlgViJGKV zIhY4kIJdRewik5pUk+7dFXxHgsy34/fKAxaSt5NwCdLX33WYbVO+yLYqJvjOANV xP6x2BbcGZAVg+L01hst128RxjYX1K2SHmSC9fn4zp0+l4rJNbrIRJFvBWo1oog3 UAalDDawlKXZFBtLM6pRGE9d -----END CERTIFICATE-----Generated at Mon Oct 20 03:03:04 2025 by rpki-client