$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS49409.roa File: AS49409.roa (raw, json) Hash identifier: /aUQ9xe0qhL0gbVudGXYN5kzuOiyaQGVmETOoSs6UxA= Subject key identifier: 6B:27:96:95:F9:6B:11:F3:A3:63:E2:E0:4B:27:C3:DB:06:09:C6:EE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3CA3665556EC7A3E3B84C6DB95450A627FE4CC50 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS49409.roa Signing time: Sun 03 May 2026 05:39:39 +0000 ROA not before: Sun 03 May 2026 05:34:39 +0000 ROA not after: Sun 02 May 2027 05:39:39 +0000 asID: 49409 IP address blocks: 103.183.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a3:66:55:56:ec:7a:3e:3b:84:c6:db:95:45:0a:62:7f:e4:cc:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 05:34:39 2026 GMT Not After : May 2 05:39:39 2027 GMT Subject: CN=6B279695F96B11F3A363E2E04B27C3DB0609C6EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:aa:b1:43:1a:83:48:1a:7b:38:eb:91:d4:8d: cb:1f:a8:e5:d9:34:d1:85:88:bf:c3:d9:f5:95:dc: 38:c5:4b:e6:40:fc:d4:73:7e:a7:4b:e4:62:f7:9d: 89:99:5e:c6:50:38:0d:1c:78:78:64:3d:81:57:30: 56:af:07:57:09:29:c3:2d:b6:7b:63:cb:2b:0a:3d: 65:6d:c1:8b:f1:26:f1:fa:dd:16:ed:e4:f8:e1:45: 8c:33:62:e7:b3:34:0a:a5:bc:0f:bb:29:1a:aa:0c: 3a:bd:5d:3f:90:ca:a2:21:f4:f4:c4:2d:95:bd:fa: a4:90:bb:7d:d8:9a:13:64:09:e7:ed:6e:62:3e:e3: b3:8c:d6:74:e3:b1:7a:25:57:bb:45:51:45:51:21: 35:f4:bc:40:ad:69:72:c1:5e:8d:75:ae:4d:ed:3b: c5:0a:9c:98:a5:77:06:21:11:00:8d:d4:26:6c:86: 3a:47:e6:a0:f7:ac:07:bf:96:b0:40:3e:61:ba:16: 9f:43:d1:f3:28:dd:51:a5:ac:89:3b:f7:1e:87:2e: 7e:a8:f0:6f:0e:1b:fd:76:7d:4a:1f:9a:29:1e:69: 2b:2f:f3:6d:d3:d6:b0:9d:81:e8:05:2e:e4:8e:f6: 07:df:7e:3b:16:bf:e9:2c:ad:16:83:76:f9:23:81: 4b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:27:96:95:F9:6B:11:F3:A3:63:E2:E0:4B:27:C3:DB:06:09:C6:EE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS49409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.58.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:63:4d:6a:61:ec:9b:2a:6f:ab:9b:cd:6b:50:52:a3:42:21: 17:6b:c8:7a:21:9b:1a:fd:b6:f6:57:90:b1:ae:39:96:40:a6: c9:5b:cc:bd:04:09:1f:8d:74:de:3f:84:56:1e:d6:6c:ed:32: fd:60:31:9d:09:d4:b8:79:31:b9:8e:fa:e3:2e:4e:a3:08:bd: 0d:1a:3a:8a:98:67:c6:b6:47:4f:1c:0b:a5:db:17:5d:f0:ed: 6e:77:a3:ea:b3:25:f7:b5:1d:c6:9e:70:25:d8:83:fd:b9:c9: cb:09:43:de:38:f6:04:6a:28:50:de:ba:6e:0d:b4:f2:65:c2: ef:be:e4:f2:b0:14:e3:79:ff:66:4f:d5:f8:64:3a:29:92:0c: 25:4e:84:7d:30:4e:9d:13:dc:03:19:64:f8:a8:6d:8d:6a:46: 47:2f:11:42:92:ce:ac:19:dc:31:e4:2e:bf:3f:ea:13:d6:78: 6b:5a:62:5a:c4:00:87:8d:6b:45:90:b0:eb:c7:26:27:7b:a8: 07:ef:3d:27:8b:ad:68:c9:fe:f3:d8:bb:36:9a:a4:2c:5c:02: 7e:41:dd:7c:f3:1c:6a:2e:9b:6e:b5:ae:95:40:57:fc:7b:5d: 03:7d:d1:47:d3:0b:88:dc:be:3f:69:d3:b3:86:87:7c:18:72: 64:11:ff:53 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUPKNmVVbsej47hMbblUUKYn/kzFAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA1MzQzOVoX DTI3MDUwMjA1MzkzOVowMzExMC8GA1UEAxMoNkIyNzk2OTVGOTZCMTFGM0EzNjNF MkUwNEIyN0MzREIwNjA5QzZFRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+qsUMag0gaezjrkdSNyx+o5dk00YWIv8PZ9ZXcOMVL5kD81HN+p0vkYved iZlexlA4DRx4eGQ9gVcwVq8HVwkpwy22e2PLKwo9ZW3Bi/Em8frdFu3k+OFFjDNi 57M0CqW8D7spGqoMOr1dP5DKoiH09MQtlb36pJC7fdiaE2QJ5+1uYj7js4zWdOOx eiVXu0VRRVEhNfS8QK1pcsFejXWuTe07xQqcmKV3BiERAI3UJmyGOkfmoPesB7+W sEA+YboWn0PR8yjdUaWsiTv3Hocufqjwbw4b/XZ9Sh+aKR5pKy/zbdPWsJ2B6AUu 5I72B99+Oxa/6SytFoN2+SOBS7ECAwEAAaOCAcswggHHMB0GA1UdDgQWBBRrJ5aV +WsR86Nj4uBLJ8PbBgnG7jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNDk0MDkucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFntzowDQYJKoZIhvcNAQELBQADggEBAFpjTWph7Jsqb6ubzWtQUqNCIRdr yHohmxr9tvZXkLGuOZZApslbzL0ECR+NdN4/hFYe1mztMv1gMZ0J1Lh5MbmO+uMu TqMIvQ0aOoqYZ8a2R08cC6XbF13w7W53o+qzJfe1HcaecCXYg/25ycsJQ9449gRq KFDeum4NtPJlwu++5PKwFON5/2ZP1fhkOimSDCVOhH0wTp0T3AMZZPiobY1qRkcv EUKSzqwZ3DHkLr8/6hPWeGtaYlrEAIeNa0WQsOvHJid7qAfvPSeLrWjJ/vPYuzaa pCxcAn5B3XzzHGoum261rpVAV/x7XQN90UfTC4jcvj9p07OGh3wYcmQR/1M= -----END CERTIFICATE-----Generated at Tue May 12 22:43:30 2026 by rpki-client