$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149746.roa File: AS149746.roa (raw, json) Hash identifier: Cj0FTWEqGlfMlj4XG1e34vuAemTcRDKN1Sx9/UeG2Qc= Subject key identifier: DC:B2:C0:76:BF:A0:4E:1C:7C:FC:9B:A1:DF:86:74:43:F9:C0:21:47 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A14DCC93136764C34417975A58B6A0A19FF720A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149746.roa Signing time: Tue 31 Mar 2026 04:00:00 +0000 ROA not before: Tue 31 Mar 2026 03:55:00 +0000 ROA not after: Tue 30 Mar 2027 04:00:00 +0000 asID: 149746 IP address blocks: 202.46.152.0/22 maxlen: 24 2400:e660::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:14:dc:c9:31:36:76:4c:34:41:79:75:a5:8b:6a:0a:19:ff:72:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 31 03:55:00 2026 GMT Not After : Mar 30 04:00:00 2027 GMT Subject: CN=DCB2C076BFA04E1C7CFC9BA1DF867443F9C02147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:44:78:2f:9a:9b:66:77:67:2a:5a:6d:56:c2: c5:80:2a:ca:cd:35:ac:51:b9:29:1f:40:8f:f7:5c: 3b:1d:21:3c:3a:1e:15:1f:ed:aa:be:8e:a2:f8:9d: 46:c8:c8:6d:2d:16:00:b9:a3:34:30:60:dc:50:e3: 5e:38:d0:4b:23:4d:3e:f3:f6:c5:8a:fe:13:5e:7f: d7:1b:d0:79:8d:34:7e:03:47:09:82:e9:5f:25:2b: a6:2e:79:49:4e:b9:f4:00:95:07:af:37:e1:45:a6: 85:81:a4:fc:32:3f:92:9a:5a:c6:59:bd:d7:e7:75: 2a:23:fb:da:f4:f3:79:0b:91:61:5b:69:61:84:97: 71:f5:50:a5:52:3e:71:76:57:49:6f:79:9e:1e:56: 8b:96:37:e3:22:7d:8f:d1:df:04:c8:cb:9f:71:d0: e0:97:d4:18:da:46:aa:9a:03:e5:e1:68:fe:6e:12: d7:51:fa:d3:75:b1:17:f6:1f:e7:32:31:b6:ff:f5: 70:80:59:86:c8:25:49:84:75:9b:67:16:fe:f2:a4: 29:65:4b:2c:7b:6b:79:2e:5e:d1:93:8e:30:71:ae: d8:44:03:8c:6a:f2:75:e5:fb:71:07:de:55:e5:ee: 2b:61:69:ef:b2:8f:ed:b2:b1:f3:eb:65:47:cb:0f: 49:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:B2:C0:76:BF:A0:4E:1C:7C:FC:9B:A1:DF:86:74:43:F9:C0:21:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149746.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.46.152.0/22 IPv6: 2400:e660::/32 Signature Algorithm: sha256WithRSAEncryption 11:99:76:a2:af:75:7e:c6:e1:5c:8e:3c:98:84:d0:55:f1:02: b2:eb:07:fe:1e:61:af:ed:94:84:26:b7:b1:37:0f:ee:51:2e: 7c:46:0f:bd:22:78:b4:11:01:27:dd:1f:6f:f1:88:47:db:54: 12:e4:5c:4f:80:1c:6e:d5:09:e2:1e:5b:44:a8:97:7b:f3:21: 6c:77:38:65:5e:a7:aa:a6:b0:09:9b:28:0d:92:24:61:41:22: 2a:8f:21:4a:13:ad:89:11:d4:d0:d4:ed:54:74:3c:04:c3:14: 41:4f:40:f7:03:ef:c7:e2:f2:cf:51:40:dd:32:39:0d:5c:b8: 4f:6e:d3:35:e0:6a:87:db:40:64:71:d6:f3:14:91:29:34:60: 4c:fd:b8:5b:91:95:c2:eb:46:05:88:b4:9f:19:09:ab:22:3f: 55:9d:6e:82:e9:78:30:c1:21:00:9c:d8:1e:05:7c:b7:b7:0c: de:dc:4e:8a:83:27:18:97:e6:ae:a0:e9:91:27:6c:aa:60:4c: 9b:05:da:0e:77:4d:ee:bb:23:d8:4f:9f:db:32:bd:03:59:59: e3:e7:b4:58:5b:8e:61:eb:a6:87:1b:9e:3a:f3:fb:11:b0:ff: 19:b0:3c:c5:9f:52:80:28:5b:3e:40:ba:c3:76:ed:9a:ed:d8: 56:51:0d:82 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUahTcyTE2dkw0QXl1pYtqChn/cgowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMzMTAzNTUwMFoX DTI3MDMzMDA0MDAwMFowMzExMC8GA1UEAxMoRENCMkMwNzZCRkEwNEUxQzdDRkM5 QkExREY4Njc0NDNGOUMwMjE0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdEeC+am2Z3ZypabVbCxYAqys01rFG5KR9Aj/dcOx0hPDoeFR/tqr6Oovid RsjIbS0WALmjNDBg3FDjXjjQSyNNPvP2xYr+E15/1xvQeY00fgNHCYLpXyUrpi55 SU659ACVB6834UWmhYGk/DI/kppaxlm91+d1KiP72vTzeQuRYVtpYYSXcfVQpVI+ cXZXSW95nh5Wi5Y34yJ9j9HfBMjLn3HQ4JfUGNpGqpoD5eFo/m4S11H603WxF/Yf 5zIxtv/1cIBZhsglSYR1m2cW/vKkKWVLLHtreS5e0ZOOMHGu2EQDjGrydeX7cQfe VeXuK2Fp77KP7bKx8+tlR8sPSVMCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBTcssB2 v6BOHHz8m6HfhnRD+cAhRzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAsoumDANBAIAAjAHAwUAJADmYDANBgkqhkiG9w0BAQsFAAOCAQEA EZl2oq91fsbhXI48mITQVfECsusH/h5hr+2UhCa3sTcP7lEufEYPvSJ4tBEBJ90f b/GIR9tUEuRcT4AcbtUJ4h5bRKiXe/MhbHc4ZV6nqqawCZsoDZIkYUEiKo8hShOt iRHU0NTtVHQ8BMMUQU9A9wPvx+Lyz1FA3TI5DVy4T27TNeBqh9tAZHHW8xSRKTRg TP24W5GVwutGBYi0nxkJqyI/VZ1ugul4MMEhAJzYHgV8t7cM3txOioMnGJfmrqDp kSdsqmBMmwXaDndN7rsj2E+f2zK9A1lZ4+e0WFuOYeumhxueOvP7EbD/GbA8xZ9S gChbPkC6w3btmu3YVlENgg== -----END CERTIFICATE-----Generated at Fri Apr 17 08:16:23 2026 by rpki-client