$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149662.roa File: AS149662.roa (raw, json) Hash identifier: u4X2//KkvH+j6HmMcz8WTsZGAUVQWdT5EtzoHt/g8IA= Subject key identifier: B3:B6:97:6C:13:41:E3:41:4E:F0:3E:86:E8:66:14:0E:CC:1C:41:FA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 73D6E5B94E182F30BD75B98A282C67915BAF8599 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149662.roa Signing time: Mon 11 May 2026 10:08:13 +0000 ROA not before: Mon 11 May 2026 10:03:13 +0000 ROA not after: Mon 10 May 2027 10:08:13 +0000 asID: 149662 IP address blocks: 103.188.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:d6:e5:b9:4e:18:2f:30:bd:75:b9:8a:28:2c:67:91:5b:af:85:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 11 10:03:13 2026 GMT Not After : May 10 10:08:13 2027 GMT Subject: CN=B3B6976C1341E3414EF03E86E866140ECC1C41FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:46:74:30:bd:e0:59:ca:3a:86:ff:14:6e: de:22:46:8b:a4:02:81:83:98:08:4e:32:86:6c:9f: 2f:1d:cb:bf:3f:04:4d:1c:d9:2d:72:e1:d4:6d:ba: 55:4c:15:21:d4:c9:3f:6a:23:9f:40:d1:91:80:88: b3:77:4c:d3:0e:c3:39:8c:fd:18:97:95:7e:1c:50: 88:11:3e:6d:ce:19:33:0d:d8:41:39:77:69:27:77: e5:eb:a5:36:46:de:33:22:4f:b1:cb:cd:ac:f3:1e: b6:17:b3:cd:ca:97:81:13:9b:9a:37:9c:62:cf:b7: 8d:23:06:17:e8:69:89:3b:d9:d2:32:7d:37:73:28: 0e:5a:be:4f:b2:be:4d:61:17:1e:f8:33:6d:1f:e8: c8:9b:8a:5b:0a:1c:5c:dd:83:90:bf:3a:ea:59:bf: 74:fd:6d:16:9b:c6:d5:0c:de:dc:4f:15:c4:8f:37: fd:ad:df:81:d2:a6:f4:14:cb:62:25:d3:fd:f6:b1: 40:a2:c6:a0:71:1b:40:39:a7:ea:ba:f9:ad:4e:6b: 98:53:f1:81:a4:64:3b:8a:9e:45:11:3f:9b:8b:8e: ad:41:36:e5:e5:a5:79:13:25:3a:29:f3:aa:be:d0: 5a:4c:d0:0f:dd:62:d6:a5:cc:33:67:66:ee:92:35: 6e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B6:97:6C:13:41:E3:41:4E:F0:3E:86:E8:66:14:0E:CC:1C:41:FA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149662.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.254.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:78:7a:a4:76:b8:14:9c:a6:fb:c8:53:10:1d:3c:4f:fa:37: da:84:4b:57:44:4c:43:7b:09:6b:21:f7:32:d0:01:50:b4:7d: 17:77:79:f9:0e:d0:0f:72:39:7d:c1:ae:70:9e:d5:39:cc:c2: 3f:cc:de:06:d3:f0:72:3c:fa:0e:92:aa:c4:92:ca:af:5a:fd: 10:83:c2:ec:f4:b7:ee:f3:b9:ff:5b:ed:0e:5a:94:63:0c:b2: 63:05:5a:ac:a9:c5:0c:8c:1b:ff:e4:86:0e:e8:f3:5b:d3:a0: 4e:9f:35:ad:45:05:1c:54:54:25:aa:26:e9:0a:ff:ef:50:35: 9e:a9:dc:fb:72:6f:51:b2:58:4f:80:59:98:d5:9d:65:0a:a7: 15:93:9d:18:af:a7:1b:6d:9a:80:8f:70:24:b1:13:03:c0:b1: bd:b4:47:11:40:6f:b2:74:9e:6d:ae:0b:c3:64:05:79:56:c1: 18:4a:85:a2:06:c1:27:d2:e1:30:59:87:53:24:3f:85:6a:13: d2:6c:cc:92:ba:33:39:89:54:dd:20:0d:e8:29:5b:b3:17:d8: 98:93:2a:e3:8b:4f:ec:a7:91:a0:19:a1:92:5f:9b:76:7f:11: ac:78:31:16:9f:27:39:a6:cb:c3:b0:41:5e:fd:a9:ad:19:8b: f0:a4:13:63 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUc9bluU4YLzC9dbmKKCxnkVuvhZkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUxMTEwMDMxM1oX DTI3MDUxMDEwMDgxM1owMzExMC8GA1UEAxMoQjNCNjk3NkMxMzQxRTM0MTRFRjAz RTg2RTg2NjE0MEVDQzFDNDFGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3XRnQwveBZyjqG/xRu3iJGi6QCgYOYCE4yhmyfLx3Lvz8ETRzZLXLh1G26 VUwVIdTJP2ojn0DRkYCIs3dM0w7DOYz9GJeVfhxQiBE+bc4ZMw3YQTl3aSd35eul NkbeMyJPscvNrPMethezzcqXgRObmjecYs+3jSMGF+hpiTvZ0jJ9N3MoDlq+T7K+ TWEXHvgzbR/oyJuKWwocXN2DkL866lm/dP1tFpvG1Qze3E8VxI83/a3fgdKm9BTL YiXT/faxQKLGoHEbQDmn6rr5rU5rmFPxgaRkO4qeRRE/m4uOrUE25eWleRMlOinz qr7QWkzQD91i1qXMM2dm7pI1bvsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSztpds E0HjQU7wPoboZhQOzBxB+jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5NjYyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ7z+MA0GCSqGSIb3DQEBCwUAA4IBAQCKeHqkdrgUnKb7yFMQHTxP+jfa hEtXRExDewlrIfcy0AFQtH0Xd3n5DtAPcjl9wa5wntU5zMI/zN4G0/ByPPoOkqrE ksqvWv0Qg8Ls9Lfu87n/W+0OWpRjDLJjBVqsqcUMjBv/5IYO6PNb06BOnzWtRQUc VFQlqibpCv/vUDWeqdz7cm9RslhPgFmY1Z1lCqcVk50Yr6cbbZqAj3AksRMDwLG9 tEcRQG+ydJ5trgvDZAV5VsEYSoWiBsEn0uEwWYdTJD+FahPSbMySujM5iVTdIA3o KVuzF9iYkyrji0/sp5GgGaGSX5t2fxGseDEWnyc5psvDsEFe/amtGYvwpBNj -----END CERTIFICATE-----Generated at Tue May 12 22:56:44 2026 by rpki-client