$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS149360.roa File: AS149360.roa (raw, json) Hash identifier: OhpARml+rx7rQ7wzDYvdzRLEJsap8QYhEZvGiC7VVIo= Subject key identifier: F3:07:E2:F9:4B:B7:21:63:E8:89:04:19:1E:A5:3A:6D:96:28:C1:D3 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 155CD1F9EE898FF6A7066EB29DB57781B6012B34 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS149360.roa Signing time: Mon 04 May 2026 09:10:39 +0000 ROA not before: Mon 04 May 2026 09:05:39 +0000 ROA not after: Mon 03 May 2027 09:10:39 +0000 asID: 149360 IP address blocks: 157.10.19.0/24 maxlen: 24 160.19.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:5c:d1:f9:ee:89:8f:f6:a7:06:6e:b2:9d:b5:77:81:b6:01:2b:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 4 09:05:39 2026 GMT Not After : May 3 09:10:39 2027 GMT Subject: CN=F307E2F94BB72163E88904191EA53A6D9628C1D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:01:17:13:c5:ed:3a:71:1a:bc:79:b6:71:ae: 17:8a:22:fd:62:bc:c9:ff:b7:52:9f:78:fd:90:a0: 59:58:d2:71:1b:98:24:5c:71:f2:4f:cc:4f:1a:6b: 7c:3a:a0:6f:fb:8f:8a:00:75:bc:4c:5a:ac:fd:93: cb:21:2f:90:3b:02:72:f7:22:f8:fb:62:df:80:5b: e9:63:97:48:f1:ec:52:b2:fd:89:d8:eb:33:95:f4: a8:39:fc:25:7c:de:25:b5:fa:bc:8d:09:3f:cc:7f: d8:34:73:33:d8:f6:02:1c:62:9a:e8:70:e5:f6:70: 11:fb:bf:a5:43:21:13:45:b5:88:f2:c2:e5:64:f9: a0:fe:2e:21:7f:e8:10:e3:9b:5e:c3:af:0b:85:3a: 98:47:8a:64:1e:4b:98:7e:b7:e4:50:35:f5:3d:64: 5d:0c:09:72:f4:db:60:69:a7:c3:c5:93:1a:88:89: f3:fd:b0:f5:13:7e:f8:48:14:24:ab:f8:17:ed:a6: 1e:56:7f:71:59:62:07:a8:33:e5:ac:71:f7:d9:38: 3f:38:92:8a:93:ae:3e:c6:6f:22:d8:f1:4d:73:a4: c2:23:2e:c1:90:73:8e:9b:24:01:78:8e:9f:d3:42: 68:9b:11:6d:de:fc:fb:a0:68:29:bb:db:81:d7:31: 71:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:07:E2:F9:4B:B7:21:63:E8:89:04:19:1E:A5:3A:6D:96:28:C1:D3 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS149360.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.19.0/24 160.19.18.0/23 Signature Algorithm: sha256WithRSAEncryption b1:5b:15:d9:b9:fd:dd:f1:16:98:08:b7:d2:41:4c:70:3f:ef: 44:a6:bd:0d:be:10:a4:dd:17:e2:fc:3f:7a:8e:aa:35:36:ae: 9e:4d:f5:84:36:8d:dc:40:c7:6c:a0:4f:24:6f:b4:13:28:2c: f4:18:71:9c:a8:38:49:6c:71:4f:d3:98:4d:36:08:0d:fd:cd: b1:77:af:f4:1f:39:a5:1a:b8:75:3e:46:6c:03:4a:fb:72:29: ac:f4:3e:02:b3:ba:33:56:3d:e7:52:f8:57:15:f1:b4:a1:cf: 77:bf:c2:5c:f6:68:41:a5:29:93:51:53:84:f5:95:4f:bc:08: cc:83:98:00:5a:10:b4:a0:81:70:d3:87:2c:e5:4c:48:c4:2f: 7a:1a:3b:f6:19:71:b5:04:a8:15:59:4b:a6:46:d0:e1:e8:e5: e6:3a:7f:4d:4c:ba:96:1f:d9:7e:aa:92:22:41:3d:7d:ea:d3: 7c:14:6a:2b:c3:65:93:e5:a9:ac:e9:7b:2d:f1:ee:a6:be:0a: 5e:fb:26:11:ab:e5:05:35:8d:a0:3e:e2:74:68:58:87:00:50: d2:f0:c2:67:df:ea:d4:14:a3:2b:7d:68:9d:94:4b:fd:f0:ab: 65:10:5b:4c:ed:b0:fd:a5:76:02:b0:3a:00:d7:df:98:32:31: 8f:13:67:79 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUFVzR+e6Jj/anBm6ynbV3gbYBKzQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwNDA5MDUzOVoX DTI3MDUwMzA5MTAzOVowMzExMC8GA1UEAxMoRjMwN0UyRjk0QkI3MjE2M0U4ODkw NDE5MUVBNTNBNkQ5NjI4QzFEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJIBFxPF7TpxGrx5tnGuF4oi/WK8yf+3Up94/ZCgWVjScRuYJFxx8k/MTxpr fDqgb/uPigB1vExarP2TyyEvkDsCcvci+Pti34Bb6WOXSPHsUrL9idjrM5X0qDn8 JXzeJbX6vI0JP8x/2DRzM9j2Ahximuhw5fZwEfu/pUMhE0W1iPLC5WT5oP4uIX/o EOObXsOvC4U6mEeKZB5LmH635FA19T1kXQwJcvTbYGmnw8WTGoiJ8/2w9RN++EgU JKv4F+2mHlZ/cVliB6gz5axx99k4PziSipOuPsZvItjxTXOkwiMuwZBzjpskAXiO n9NCaJsRbd78+6BoKbvbgdcxcZMCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBTzB+L5 S7chY+iJBBkepTptlijB0zAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQ5MzYwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAnQoTAwQBoBMSMA0GCSqGSIb3DQEBCwUAA4IBAQCxWxXZuf3d8RaYCLfS QUxwP+9Epr0NvhCk3Rfi/D96jqo1Nq6eTfWENo3cQMdsoE8kb7QTKCz0GHGcqDhJ bHFP05hNNggN/c2xd6/0HzmlGrh1PkZsA0r7cims9D4Cs7ozVj3nUvhXFfG0oc93 v8Jc9mhBpSmTUVOE9ZVPvAjMg5gAWhC0oIFw04cs5UxIxC96Gjv2GXG1BKgVWUum RtDh6OXmOn9NTLqWH9l+qpIiQT196tN8FGorw2WT5ams6Xst8e6mvgpe+yYRq+UF NY2gPuJ0aFiHAFDS8MJn3+rUFKMrfWidlEv98KtlEFtM7bD9pXYCsDoA19+YMjGP E2d5 -----END CERTIFICATE-----Generated at Tue May 12 22:41:58 2026 by rpki-client