$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa File: AS149911.roa (raw, json) Hash identifier: wbmVv/ZW++3dacW/J7crhW2jERpkmOuYih5vKMBo3Ts= Subject key identifier: 51:A0:F7:27:04:F3:35:D1:C4:CF:F2:D5:3E:B8:A8:97:E3:05:20:B6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55BA7A85D12F5C56D3765D6C1306DEFE96E44AA9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa Signing time: Tue 28 Oct 2025 04:00:56 +0000 ROA not before: Tue 28 Oct 2025 03:55:56 +0000 ROA not after: Tue 27 Oct 2026 04:00:56 +0000 asID: 149911 IP address blocks: 103.190.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 07:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ba:7a:85:d1:2f:5c:56:d3:76:5d:6c:13:06:de:fe:96:e4:4a:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 03:55:56 2025 GMT Not After : Oct 27 04:00:56 2026 GMT Subject: CN=51A0F72704F335D1C4CFF2D53EB8A897E30520B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:04:01:b2:06:08:76:35:d9:4a:3f:c2:3f:b3: 43:32:0c:9c:51:6c:73:22:2f:c8:08:3d:1f:a1:14: 44:c1:03:c6:bb:92:7e:d1:8c:ee:b7:dd:56:24:d4: 12:4a:04:e5:82:0d:e3:39:bc:8a:11:d1:5d:45:fb: 83:c4:4e:dd:a6:8c:ce:33:1b:8e:d1:2d:74:78:5c: 51:1c:32:6e:0d:30:69:ad:b2:fd:cc:34:b3:81:fd: a1:b2:c9:d0:20:54:b5:a7:78:6f:66:01:1f:e3:47: 8b:ad:2b:52:ed:24:b9:d5:e8:75:79:68:43:ac:f7: 91:73:be:5c:36:ef:90:fd:20:b4:a4:3c:65:be:82: cd:f3:09:4f:ac:68:24:91:89:78:20:20:38:8c:b1: c4:37:b3:31:07:82:28:9f:21:46:67:0a:3f:9c:a9: 70:d8:f5:40:3a:c9:56:87:11:04:67:2a:c5:cf:df: 1f:87:e9:7a:24:85:61:71:65:aa:2b:9f:78:12:ae: 53:91:db:f2:ac:4d:4a:73:1b:a2:ae:bd:85:b7:25: f2:3d:61:d5:47:85:8a:e7:b4:42:97:11:10:7b:aa: e3:d8:49:22:a5:c5:6a:c3:2d:e3:74:54:d3:72:53: 4e:96:fc:19:69:d6:c9:8d:87:67:b8:4a:8f:4c:15: 87:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A0:F7:27:04:F3:35:D1:C4:CF:F2:D5:3E:B8:A8:97:E3:05:20:B6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.78.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:0f:ca:4a:d9:ba:b7:b2:74:c9:28:f6:af:15:0e:65:45:27: 72:24:7d:77:e2:38:9f:06:31:66:dc:db:d7:9b:bb:31:1d:60: 6b:f2:f0:3e:ae:d2:24:d5:ae:0c:6c:c7:56:e2:ef:bd:a1:de: 22:b5:68:8a:31:48:2f:f9:76:1c:7e:c3:25:03:46:34:41:5f: 92:74:02:47:56:ee:5e:e1:7c:d0:7b:23:6c:dc:94:73:79:1d: ea:9e:16:9d:aa:e3:3c:0c:60:39:5f:6e:33:0c:8b:6f:e1:0c: 24:eb:93:32:46:ef:6f:3e:93:30:65:c4:9c:4b:a9:22:29:f6: 8f:ba:e4:03:76:37:1e:e9:4f:28:5a:b7:28:38:b3:e2:23:4a: 99:57:d4:db:57:b9:fd:c2:3f:a5:ce:8a:c2:a2:a0:a2:93:72: 57:8b:67:3c:8b:f0:f9:59:8a:7b:da:5d:6f:36:20:ce:1f:88: 0e:13:d1:1a:50:d8:ec:b0:38:df:bc:f3:7d:cf:41:02:67:0d: c0:15:72:ea:ab:72:f8:08:04:fd:8b:62:45:02:de:7b:2b:17: b0:a0:45:cc:fe:b9:48:64:c9:50:55:46:fe:1a:3f:8d:70:32: cb:7d:a1:29:e7:83:bb:76:03:35:3a:77:e0:a8:7e:16:0e:dd: e6:c1:a4:1e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVbp6hdEvXFbTdl1sEwbe/pbkSqkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyODAzNTU1NloX DTI2MTAyNzA0MDA1NlowMzExMC8GA1UEAxMoNTFBMEY3MjcwNEYzMzVEMUM0Q0ZG MkQ1M0VCOEE4OTdFMzA1MjBCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOYEAbIGCHY12Uo/wj+zQzIMnFFscyIvyAg9H6EURMEDxruSftGM7rfdViTU EkoE5YIN4zm8ihHRXUX7g8RO3aaMzjMbjtEtdHhcURwybg0waa2y/cw0s4H9obLJ 0CBUtad4b2YBH+NHi60rUu0kudXodXloQ6z3kXO+XDbvkP0gtKQ8Zb6CzfMJT6xo JJGJeCAgOIyxxDezMQeCKJ8hRmcKP5ypcNj1QDrJVocRBGcqxc/fH4fpeiSFYXFl qiufeBKuU5Hb8qxNSnMboq69hbcl8j1h1UeFiue0QpcREHuq49hJIqXFasMt43RU 03JTTpb8GWnWyY2HZ7hKj0wVh2UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRRoPcn BPM10cTP8tU+uKiX4wUgtjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+TjANBgkqhkiG9w0BAQsFAAOCAQEACg/KStm6t7J0ySj2rxUO ZUUnciR9d+I4nwYxZtzb15u7MR1ga/LwPq7SJNWuDGzHVuLvvaHeIrVoijFIL/l2 HH7DJQNGNEFfknQCR1buXuF80HsjbNyUc3kd6p4WnarjPAxgOV9uMwyLb+EMJOuT Mkbvbz6TMGXEnEupIin2j7rkA3Y3HulPKFq3KDiz4iNKmVfU21e5/cI/pc6KwqKg opNyV4tnPIvw+VmKe9pdbzYgzh+IDhPRGlDY7LA437zzfc9BAmcNwBVy6qty+AgE /YtiRQLeeysXsKBFzP65SGTJUFVG/ho/jXAyy32hKeeDu3YDNTp34Kh+Fg7d5sGk Hg== -----END CERTIFICATE-----Generated at Tue Nov 4 01:57:19 2025 by rpki-client