Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149360.roa
File: AS149360.roa (raw, json)
Hash identifier: icG7kitIxegmbB6cX2t/4iRyk9et/QanxZoH8g0kVCk=
Subject key identifier: 6E:37:23:F4:EE:62:A6:F5:EA:DA:CB:F7:13:70:22:A8:2E:8F:CE:6B
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 5772CB3D29F41037B10DF877EBC9C502347A15C2
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149360.roa
Signing time: Mon 04 May 2026 09:10:51 +0000
ROA not before: Mon 04 May 2026 09:05:51 +0000
ROA not after: Mon 03 May 2027 09:10:51 +0000
asID: 149360
IP address blocks: 103.180.122.0/24 maxlen: 24
103.180.123.0/24 maxlen: 24
113.192.30.0/24 maxlen: 24
113.192.31.0/24 maxlen: 24
210.87.92.0/23 maxlen: 24
210.87.92.0/24 maxlen: 24
210.87.93.0/24 maxlen: 24
210.87.100.0/24 maxlen: 24
210.87.101.0/24 maxlen: 24
2001:df2:f2c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 09:32:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:72:cb:3d:29:f4:10:37:b1:0d:f8:77:eb:c9:c5:02:34:7a:15:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 4 09:05:51 2026 GMT
Not After : May 3 09:10:51 2027 GMT
Subject: CN=6E3723F4EE62A6F5EADACBF7137022A82E8FCE6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ca:f4:a5:4e:a0:49:a6:56:03:d3:ed:4f:78:
08:11:a4:97:bc:f9:a1:7e:02:fb:e7:7c:d9:c2:5f:
84:be:97:d8:66:c2:45:63:aa:6b:30:87:7c:80:72:
3b:e0:92:57:05:8f:3b:78:f6:57:bf:30:2b:d9:7e:
5d:69:a8:cb:01:94:00:dd:88:70:66:25:0f:e1:f7:
02:c9:9c:aa:01:e2:ec:92:0c:4a:49:22:29:60:a2:
e6:76:6e:bb:98:b1:6b:d3:7b:06:51:24:7a:35:66:
6b:4e:73:51:cc:7a:22:4f:b9:b5:8a:4f:1d:23:33:
c2:8c:53:70:a7:91:bb:d5:da:5d:88:44:95:1c:c8:
19:9c:b8:67:6d:b7:76:f8:cc:0a:e8:bf:cc:23:eb:
e0:83:ff:24:42:b5:00:90:84:49:fa:3d:db:8c:a6:
f8:88:15:95:46:f3:99:10:ec:1c:d5:f4:bd:6e:9b:
61:cd:aa:b0:9a:21:96:b4:2c:e4:5a:52:ef:7d:d3:
11:e8:75:af:14:ac:ac:59:a3:15:d5:be:f6:fc:2e:
bd:92:f1:1a:96:a1:10:0f:33:ee:99:ae:bf:0a:11:
23:88:68:a3:3d:ce:8a:8c:0b:ba:e0:7a:9f:bd:bb:
1f:fa:51:c7:fb:53:31:6a:f3:7d:cb:40:d8:76:3e:
4c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:37:23:F4:EE:62:A6:F5:EA:DA:CB:F7:13:70:22:A8:2E:8F:CE:6B
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149360.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.180.122.0/23
113.192.30.0/23
210.87.92.0/23
210.87.100.0/23
IPv6:
2001:df2:f2c0::/48
Signature Algorithm: sha256WithRSAEncryption
7e:5d:6c:55:74:c2:1b:72:16:14:9f:2b:6e:20:0b:7d:72:29:
5b:c1:6b:99:0f:14:d6:78:89:45:4b:dc:fc:8a:76:c2:3e:96:
56:99:1b:a0:9f:0e:3a:20:33:a3:fb:e9:a2:77:d9:8d:74:0c:
ac:82:65:bf:d8:27:60:28:ee:31:4c:1f:5e:c4:9b:55:65:35:
a9:0e:f4:c6:3d:ea:a1:ad:a4:98:a8:0d:34:29:ff:61:ac:51:
b5:09:de:c0:9e:5d:f4:5b:16:03:b0:c5:69:00:9a:a9:79:ab:
58:b0:bb:41:e9:28:d9:dd:82:0d:ab:60:dc:25:ac:a0:94:c9:
7a:b8:e2:ed:d3:8c:69:31:f5:68:c7:4f:cf:e7:f7:4a:31:83:
3d:fd:39:b7:13:9d:d5:4f:a1:c2:12:de:8a:ec:4c:41:e9:f1:
c6:45:93:27:ea:a4:59:e8:61:0c:42:35:58:a6:14:ad:97:bc:
a6:33:13:fc:df:43:c4:b0:37:76:e6:ea:38:c7:77:ad:83:bc:
0a:56:0b:60:d3:31:b6:3f:c7:9d:c0:1a:ed:b2:f2:fb:85:9b:
07:1f:96:23:53:d8:50:a4:b4:68:aa:69:2e:b6:ba:7c:80:f4:
60:e2:38:ee:1b:1e:e2:bc:98:a9:aa:ff:b2:3a:c8:3e:61:ed:
8e:39:d3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:56:06 2026 by rpki-client