$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS149946.roa File: AS149946.roa (raw, json) Hash identifier: knuYXoQYP1HDf2Dm/zkMC/ZtOrryJoZewScor+3rXXc= Subject key identifier: 64:18:88:BE:8D:83:68:05:6E:BD:B2:BE:EA:6B:0F:86:40:16:76:D6 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5329DD5E9C0387BE2B4F626422CB426F7CDFC1B8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149946.roa Signing time: Mon 04 May 2026 05:51:20 +0000 ROA not before: Mon 04 May 2026 05:46:20 +0000 ROA not after: Mon 03 May 2027 05:51:20 +0000 asID: 149946 IP address blocks: 103.57.8.0/22 maxlen: 24 117.102.160.0/23 maxlen: 24 175.184.248.0/22 maxlen: 24 2001:df2:a440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:29:dd:5e:9c:03:87:be:2b:4f:62:64:22:cb:42:6f:7c:df:c1:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 4 05:46:20 2026 GMT Not After : May 3 05:51:20 2027 GMT Subject: CN=641888BE8D8368056EBDB2BEEA6B0F86401676D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f1:3f:41:63:1a:5b:04:c2:28:b2:fb:3e:54: dd:33:ef:b0:26:a4:b8:6d:5f:85:d6:64:ea:27:b8: 10:ba:19:2d:ba:97:10:82:46:0b:61:2e:78:a7:90: 5e:78:1f:da:04:32:42:aa:e6:06:d3:60:45:40:f8: 7c:29:8e:43:a1:ca:d9:6d:07:00:a9:41:30:83:07: e2:3e:c2:f6:4b:3e:eb:8b:30:fa:b5:9b:e2:33:32: ee:b9:dd:c5:05:cb:28:e3:ad:a3:0c:09:45:32:4f: 1f:fc:a0:47:93:b0:d1:09:e9:93:51:3e:ee:b8:f0: 7d:ed:47:51:e8:fd:48:29:a6:ee:8c:91:a2:84:6a: 01:1b:a6:d1:22:17:26:07:e3:a3:ab:89:e3:8e:55: 27:bc:ca:c3:4b:e0:83:26:92:94:9e:88:9e:40:41: 04:55:c0:36:00:8f:18:54:5f:22:a0:31:0d:a2:88: e9:e1:7d:09:7b:b0:d3:6c:b9:88:e8:18:8a:61:c3: c0:95:71:2a:81:ab:ac:df:82:4e:f6:76:c4:2b:56: 4f:30:9e:58:ff:c6:e0:e2:95:24:fd:91:07:22:9b: 65:26:31:72:79:59:b4:58:8d:05:2e:c5:0a:a3:75: dc:4c:26:44:14:7e:c9:c4:e4:12:c7:1a:8d:b3:16: cb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:18:88:BE:8D:83:68:05:6E:BD:B2:BE:EA:6B:0F:86:40:16:76:D6 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS149946.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.8.0/22 117.102.160.0/23 175.184.248.0/22 IPv6: 2001:df2:a440::/48 Signature Algorithm: sha256WithRSAEncryption 16:ca:f2:6f:3b:89:65:28:bf:0b:91:4d:39:da:92:76:cc:41: 4c:b8:3a:ea:ad:33:78:2f:0d:9a:82:d9:05:bb:9d:05:3a:63: dd:d4:d2:1f:8f:01:2f:6c:c4:1a:e1:66:17:a1:ec:16:b9:6e: d3:eb:19:0a:b0:79:37:7a:a3:63:4d:ca:22:47:51:3d:db:94: d8:14:fa:44:26:40:61:38:72:0f:d9:45:27:ea:8d:3c:62:6a: 7f:02:ff:7f:04:57:8f:6d:5c:cc:ce:15:a0:fd:56:b7:fa:6e: d0:09:4f:e8:67:12:14:cc:3d:f3:5c:9e:66:eb:92:14:2d:09: ac:a4:6a:71:fb:bb:11:09:3c:7b:f7:b3:e9:5b:96:b5:05:c0: 56:fb:7a:2e:5d:2b:f3:8d:b2:0b:84:ba:2c:f9:0e:d9:c8:de: a1:5d:09:e3:17:d5:be:78:3e:d4:17:07:aa:82:11:e3:87:54: 2e:ab:da:1d:63:30:63:f5:30:54:f7:d5:1c:10:ca:5c:f1:25: 8e:a9:d9:90:33:a9:5d:44:10:15:d4:aa:29:b7:5e:8a:c5:59: 15:5c:eb:50:91:84:9b:96:13:45:98:3f:bd:62:9c:0d:6d:98: a4:eb:15:db:cb:de:3e:09:ab:e8:aa:fa:da:64:69:a0:e7:58: a1:a0:08:1f -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUUyndXpwDh74rT2JkIstCb3zfwbgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwNDA1NDYyMFoX DTI3MDUwMzA1NTEyMFowMzExMC8GA1UEAxMoNjQxODg4QkU4RDgzNjgwNTZFQkRC MkJFRUE2QjBGODY0MDE2NzZENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPxP0FjGlsEwiiy+z5U3TPvsCakuG1fhdZk6ie4ELoZLbqXEIJGC2EueKeQ Xngf2gQyQqrmBtNgRUD4fCmOQ6HK2W0HAKlBMIMH4j7C9ks+64sw+rWb4jMy7rnd xQXLKOOtowwJRTJPH/ygR5Ow0Qnpk1E+7rjwfe1HUej9SCmm7oyRooRqARum0SIX Jgfjo6uJ445VJ7zKw0vggyaSlJ6InkBBBFXANgCPGFRfIqAxDaKI6eF9CXuw02y5 iOgYimHDwJVxKoGrrN+CTvZ2xCtWTzCeWP/G4OKVJP2RByKbZSYxcnlZtFiNBS7F CqN13EwmRBR+ycTkEscajbMWy00CAwEAAaOCAekwggHlMB0GA1UdDgQWBBRkGIi+ jYNoBW69sr7qaw+GQBZ21jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ5OTQ2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIA ATASAwQCZzkIAwQBdWagAwQCr7j4MA8EAgACMAkDBwAgAQ3ypEAwDQYJKoZIhvcN AQELBQADggEBABbK8m87iWUovwuRTTnaknbMQUy4OuqtM3gvDZqC2QW7nQU6Y93U 0h+PAS9sxBrhZheh7Ba5btPrGQqweTd6o2NNyiJHUT3blNgU+kQmQGE4cg/ZRSfq jTxian8C/38EV49tXMzOFaD9Vrf6btAJT+hnEhTMPfNcnmbrkhQtCaykanH7uxEJ PHv3s+lblrUFwFb7ei5dK/ONsguEuiz5DtnI3qFdCeMX1b54PtQXB6qCEeOHVC6r 2h1jMGP1MFT31RwQylzxJY6p2ZAzqV1EEBXUqim3XorFWRVc61CRhJuWE0WYP71i nA1tmKTrFdvL3j4Jq+iq+tpkaaDnWKGgCB8= -----END CERTIFICATE-----Generated at Tue May 12 22:42:16 2026 by rpki-client