$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa File: AS149893.roa (raw, json) Hash identifier: ATSx2ud7qTy2OU5toKqlLJoJSEROKUg5aCY0XFrSvHA= Subject key identifier: 04:B1:AE:17:E2:B4:52:72:36:B8:C6:95:7E:6C:3D:4A:66:A5:C1:E0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 19E533EA03B56F166654E1B948893D68F2FEEE25 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa Signing time: Fri 12 Sep 2025 09:00:00 +0000 ROA not before: Fri 12 Sep 2025 08:55:00 +0000 ROA not after: Fri 11 Sep 2026 09:00:00 +0000 asID: 149893 IP address blocks: 103.190.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:e5:33:ea:03:b5:6f:16:66:54:e1:b9:48:89:3d:68:f2:fe:ee:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 12 08:55:00 2025 GMT Not After : Sep 11 09:00:00 2026 GMT Subject: CN=04B1AE17E2B4527236B8C6957E6C3D4A66A5C1E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:95:66:40:9e:0b:be:b6:87:aa:1d:12:01:c5: 91:2a:46:b2:93:2b:a3:4e:64:91:f8:07:da:41:67: a5:a5:d2:81:64:28:99:22:f4:8e:41:af:c9:e1:36: 73:e9:be:39:48:c6:fe:35:4e:74:e8:88:bd:60:75: ce:c7:25:84:51:bd:dd:be:51:03:73:ed:fc:56:58: 0e:24:8d:d9:33:ea:7f:63:e8:4b:ba:03:68:65:99: e8:28:fa:82:8e:5e:39:9b:23:e3:5a:ff:c5:f4:b1: 0f:bc:77:72:b1:13:5e:25:54:eb:69:d4:c3:f2:fa: e9:9d:6e:f3:c7:64:df:ec:cb:74:d8:fa:d8:5e:23: e8:c2:8a:cf:74:9b:43:69:36:78:e1:c0:04:1a:f6: 92:8e:02:99:24:08:5c:2b:83:d9:da:62:2f:73:40: ab:57:2e:38:fc:78:f5:15:5e:81:93:59:2c:ab:20: 3f:c7:2c:09:90:ec:51:3d:17:71:01:69:8e:df:df: 3f:5e:fc:60:d1:c9:3a:58:7f:37:e4:96:f8:f2:c0: 50:1d:2b:2d:99:5a:bf:f7:2a:67:14:32:c2:fe:f6: a4:57:00:b4:ad:6e:dd:50:c5:b1:4a:6b:48:f6:47: 98:89:99:53:a7:5e:44:bc:4b:bc:41:44:a3:83:98: a9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B1:AE:17:E2:B4:52:72:36:B8:C6:95:7E:6C:3D:4A:66:A5:C1:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149893.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.48.0/23 Signature Algorithm: sha256WithRSAEncryption 66:4d:d5:94:c8:6f:34:94:6c:50:18:60:bd:c8:8c:10:03:1e: 0c:6b:30:53:f6:13:fa:22:07:2d:82:20:20:bf:b1:42:e5:91: 3c:7c:a7:67:29:62:1b:3f:76:55:4d:48:15:ee:9c:a3:71:c4: 7f:94:74:72:39:91:ec:09:14:44:7f:6c:a4:f6:69:e3:f6:01: 64:30:ce:7b:2a:fe:b9:fc:86:26:e0:f9:bc:6e:e9:cb:2a:3a: 4d:d8:a7:2f:96:01:68:28:53:88:b0:2e:0e:f4:0e:9d:a0:91: 32:2c:c2:aa:2e:fd:46:ec:35:3a:16:a3:10:99:4f:ba:52:25: 8c:6d:d1:67:a9:31:29:1e:2f:59:68:9f:1c:0c:d3:78:bf:c5: 5d:d5:6b:ac:a8:23:58:f1:25:a8:fd:35:58:10:8f:7a:b5:39: 30:31:9f:d5:0b:b4:ff:af:dd:69:46:67:2f:5b:58:f6:81:9c: 06:9d:ac:d4:c8:3a:95:cd:2d:17:a4:2a:d8:be:c4:de:bc:97: c1:a2:0e:18:f8:1f:66:32:0f:6a:44:bb:28:d6:f7:d5:b8:df: 2b:21:27:03:9c:b6:80:31:a1:75:6c:83:1c:a0:63:e1:4f:a9: e1:32:68:af:07:71:f1:2e:7a:29:d3:bb:d6:b8:99:e9:c9:41: 0e:da:c7:b1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGeUz6gO1bxZmVOG5SIk9aPL+7iUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxMjA4NTUwMFoX DTI2MDkxMTA5MDAwMFowMzExMC8GA1UEAxMoMDRCMUFFMTdFMkI0NTI3MjM2QjhD Njk1N0U2QzNENEE2NkE1QzFFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGVZkCeC762h6odEgHFkSpGspMro05kkfgH2kFnpaXSgWQomSL0jkGvyeE2 c+m+OUjG/jVOdOiIvWB1zsclhFG93b5RA3Pt/FZYDiSN2TPqf2PoS7oDaGWZ6Cj6 go5eOZsj41r/xfSxD7x3crETXiVU62nUw/L66Z1u88dk3+zLdNj62F4j6MKKz3Sb Q2k2eOHABBr2ko4CmSQIXCuD2dpiL3NAq1cuOPx49RVegZNZLKsgP8csCZDsUT0X cQFpjt/fP178YNHJOlh/N+SW+PLAUB0rLZlav/cqZxQywv72pFcAtK1u3VDFsUpr SPZHmImZU6deRLxLvEFEo4OYqZECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEsa4X 4rRScja4xpV+bD1KZqXB4DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTg5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+MDANBgkqhkiG9w0BAQsFAAOCAQEAZk3VlMhvNJRsUBhgvciM EAMeDGswU/YT+iIHLYIgIL+xQuWRPHynZyliGz92VU1IFe6co3HEf5R0cjmR7AkU RH9spPZp4/YBZDDOeyr+ufyGJuD5vG7pyyo6TdinL5YBaChTiLAuDvQOnaCRMizC qi79Ruw1OhajEJlPulIljG3RZ6kxKR4vWWifHAzTeL/FXdVrrKgjWPElqP01WBCP erU5MDGf1Qu0/6/daUZnL1tY9oGcBp2s1Mg6lc0tF6Qq2L7E3ryXwaIOGPgfZjIP akS7KNb31bjfKyEnA5y2gDGhdWyDHKBj4U+p4TJorwdx8S56KdO71riZ6clBDtrH sQ== -----END CERTIFICATE-----Generated at Mon Oct 20 05:56:48 2025 by rpki-client