$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149900.roa File: AS149900.roa (raw, json) Hash identifier: NR+RZ0LdMm7jQ9r4QVvlLdlm5MLMB0mmVmNZQeSYbMo= Subject key identifier: AB:0F:18:6F:C2:83:46:51:0E:54:55:95:D0:BE:A6:D0:83:A5:50:CA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6DE6A3139EC85F058D0E068810319C8E04618B61 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149900.roa Signing time: Sun 03 May 2026 08:15:02 +0000 ROA not before: Sun 03 May 2026 08:10:02 +0000 ROA not after: Sun 02 May 2027 08:15:02 +0000 asID: 149900 IP address blocks: 103.190.64.0/24 maxlen: 24 2001:df2:e3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e6:a3:13:9e:c8:5f:05:8d:0e:06:88:10:31:9c:8e:04:61:8b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 08:10:02 2026 GMT Not After : May 2 08:15:02 2027 GMT Subject: CN=AB0F186FC28346510E545595D0BEA6D083A550CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:15:c9:e7:5f:b1:ec:ea:37:99:e6:4f:a3:36: c4:f7:07:b9:bb:f6:9d:46:80:8c:5f:6b:ae:b7:f0: 91:91:d8:df:83:c7:e9:ab:24:98:e0:95:2d:ca:7f: b6:63:4c:da:2f:dc:2b:7d:fc:91:b4:3d:87:cb:7b: a6:59:17:b1:83:3f:d8:f4:a3:54:f4:90:0c:d9:9f: af:17:90:b7:70:9a:14:64:c5:52:3f:10:63:30:79: ee:25:d3:26:e5:04:fe:15:da:bf:f2:2f:fc:f4:bb: 54:01:4f:52:d5:78:f2:ed:78:9e:02:e1:5b:ee:58: f0:31:1a:e3:9d:1d:1e:f3:7c:5e:ca:e7:8a:a7:d6: 51:67:7a:f7:82:fb:85:b0:82:57:ea:c0:1b:90:d4: 0b:9c:74:de:0c:6b:bd:75:7b:bc:c9:64:8b:9d:a2: 4f:1f:6a:80:97:fd:23:6d:0b:29:fa:78:3f:b5:78: 6b:b1:d5:43:56:60:d4:65:e0:29:50:19:bf:37:83: 5b:26:f0:a8:89:2e:c7:d9:de:f8:d1:d8:50:8c:27: e7:da:86:64:ff:5c:0a:15:ca:e5:0c:14:18:20:50: 97:02:b5:0d:83:a8:91:c9:d6:9f:1c:99:c4:ce:e5: 44:62:28:0f:2f:65:9c:03:cb:ca:6e:a9:a5:44:2c: db:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:0F:18:6F:C2:83:46:51:0E:54:55:95:D0:BE:A6:D0:83:A5:50:CA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149900.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.64.0/24 IPv6: 2001:df2:e3c0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:82:b0:60:2d:5c:16:3d:45:a1:75:5a:3a:d6:a6:98:01:39: 65:d6:5a:d7:14:49:a2:70:1d:e5:29:2a:4c:3f:9e:1f:98:62: ec:cc:aa:b5:23:9e:51:6d:a7:de:8d:71:dd:26:ff:40:54:fe: 2f:20:d8:04:99:64:ba:54:e7:bf:bc:90:57:2f:98:34:f8:0b: 4a:60:01:c8:b5:47:72:d0:f0:54:3d:a1:a9:92:06:bc:f5:60: cb:68:6c:a3:76:6c:ae:f7:b2:ec:2c:56:8a:2e:87:99:05:d5: 02:85:7e:74:2e:30:19:13:f9:46:34:ac:d5:7b:71:4c:a6:63: 92:5d:eb:b7:8d:e8:4f:07:26:b9:b1:31:0f:b1:8b:46:2d:7c: af:e4:33:22:1c:87:7d:00:e2:b2:8a:1b:56:74:24:0b:87:ce: 1c:24:df:9e:bd:cb:2b:93:4b:48:ee:89:00:93:2f:ea:4d:fe: 15:05:47:f6:73:04:3e:f3:97:f1:94:ce:ca:2d:aa:fa:3f:93: 86:e2:8c:d7:e3:21:dc:de:20:79:15:5a:4f:74:8d:00:8f:da: a6:09:81:89:e1:86:54:41:04:5a:8f:1b:08:ad:fd:a8:0f:e9: ff:33:02:95:af:c2:f7:f5:cf:43:39:32:97:43:17:1b:d5:d4: 39:e6:23:eb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbeajE57IXwWNDgaIEDGcjgRhi2EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA4MTAwMloX DTI3MDUwMjA4MTUwMlowMzExMC8GA1UEAxMoQUIwRjE4NkZDMjgzNDY1MTBFNTQ1 NTk1RDBCRUE2RDA4M0E1NTBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEVyedfsezqN5nmT6M2xPcHubv2nUaAjF9rrrfwkZHY34PH6askmOCVLcp/ tmNM2i/cK338kbQ9h8t7plkXsYM/2PSjVPSQDNmfrxeQt3CaFGTFUj8QYzB57iXT JuUE/hXav/Iv/PS7VAFPUtV48u14ngLhW+5Y8DEa450dHvN8XsrniqfWUWd694L7 hbCCV+rAG5DUC5x03gxrvXV7vMlki52iTx9qgJf9I20LKfp4P7V4a7HVQ1Zg1GXg KVAZvzeDWybwqIkux9ne+NHYUIwn59qGZP9cChXK5QwUGCBQlwK1DYOokcnWnxyZ xM7lRGIoDy9lnAPLym6ppUQs22sCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSrDxhv woNGUQ5UVZXQvqbQg6VQyjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5OTAwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIA ATAGAwQAZ75AMA8EAgACMAkDBwAgAQ3y48AwDQYJKoZIhvcNAQELBQADggEBAC+C sGAtXBY9RaF1WjrWppgBOWXWWtcUSaJwHeUpKkw/nh+YYuzMqrUjnlFtp96Ncd0m /0BU/i8g2ASZZLpU57+8kFcvmDT4C0pgAci1R3LQ8FQ9oamSBrz1YMtobKN2bK73 suwsVoouh5kF1QKFfnQuMBkT+UY0rNV7cUymY5Jd67eN6E8HJrmxMQ+xi0YtfK/k MyIch30A4rKKG1Z0JAuHzhwk3569yyuTS0juiQCTL+pN/hUFR/ZzBD7zl/GUzsot qvo/k4bijNfjIdzeIHkVWk90jQCP2qYJgYnhhlRBBFqPGwit/agP6f8zApWvwvf1 z0M5MpdDFxvV1DnmI+s= -----END CERTIFICATE-----Generated at Tue May 12 23:52:08 2026 by rpki-client