$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149931.roa File: AS149931.roa (raw, json) Hash identifier: 26EEI+51DBFnrOU3E6bsZYVqKC15O9v/ZIKYEUkLMrY= Subject key identifier: BE:50:FF:85:2A:03:2E:D1:93:9E:C6:BD:96:8E:99:F0:DE:84:68:D2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 615F6B92E07CE1B450032778B2604307AC45A186 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149931.roa Signing time: Wed 29 Oct 2025 10:00:00 +0000 ROA not before: Wed 29 Oct 2025 09:55:00 +0000 ROA not after: Wed 28 Oct 2026 10:00:00 +0000 asID: 149931 IP address blocks: 103.4.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:5f:6b:92:e0:7c:e1:b4:50:03:27:78:b2:60:43:07:ac:45:a1:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 29 09:55:00 2025 GMT Not After : Oct 28 10:00:00 2026 GMT Subject: CN=BE50FF852A032ED1939EC6BD968E99F0DE8468D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:94:1c:3c:79:38:b7:f2:34:e5:77:72:ce:a9: 55:96:11:1f:8e:68:7b:67:b3:14:06:df:60:11:ba: 18:48:1a:67:a7:3f:a7:a5:88:8b:8a:ab:a9:a5:0e: e7:4e:40:aa:3f:ab:ac:c9:99:0c:2e:31:ae:de:c5: fa:72:11:cc:68:27:23:02:81:80:10:8f:d2:b1:d0: c1:0a:1a:2d:ae:d2:c1:b4:46:f8:1e:14:ea:35:44: 75:50:08:59:3d:1a:09:26:0f:46:fb:27:af:06:20: 78:16:4e:d5:6b:88:16:e2:9f:03:07:22:b0:af:64: b6:22:72:49:b9:32:0a:c4:98:de:d7:26:3e:4e:34: d4:3a:c8:d0:a5:93:c5:90:40:17:ef:1d:ae:fd:2c: 4c:a4:1d:fd:31:7d:ee:a4:f4:da:88:c8:58:48:5e: 45:e4:0c:c5:e2:c9:ec:eb:c3:94:89:09:78:6d:b4: 7a:6a:c3:ae:74:4b:1b:81:23:cd:ba:12:36:92:3e: 2e:2d:a8:c8:c4:6d:db:25:d4:55:75:7a:41:03:7c: 56:f8:42:aa:4b:92:a9:43:2d:ce:c1:59:67:6c:0a: c9:a3:52:a7:c7:1a:1a:70:05:4a:92:40:1c:1f:68: 8e:6d:48:4d:ca:92:a7:1b:78:40:99:9a:ef:c9:26: 72:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:50:FF:85:2A:03:2E:D1:93:9E:C6:BD:96:8E:99:F0:DE:84:68:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.134.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:8b:e6:d3:63:b9:e6:14:0e:3d:7c:4d:11:aa:52:fa:b9:6a: 74:9d:c5:da:11:5c:63:60:c1:c3:8e:e3:bf:8b:80:08:65:12: 5c:2a:8c:e5:14:72:d0:64:26:74:d3:c8:88:6d:25:80:a8:77: a7:03:ca:00:19:a6:52:a4:ed:4c:b7:18:8a:4d:1a:9b:79:26: 38:be:b9:e7:27:15:6d:bc:22:cf:bb:09:db:aa:cb:8c:ae:3a: af:fb:18:5b:27:49:ba:65:3f:12:42:a6:93:61:bc:95:5b:2f: 3f:07:92:a1:d6:3a:59:25:03:08:4c:a3:18:a0:e0:cf:75:3e: 95:eb:49:06:ff:4e:ab:e5:ba:64:46:54:47:5b:0d:65:6f:91: b6:de:85:3c:1e:5d:8c:07:39:44:bc:b0:96:be:0c:63:1f:29: cd:bf:e2:40:e9:f8:9a:ad:88:24:5c:92:59:31:1d:3c:33:ad: 90:57:88:33:a3:26:03:b5:e7:1b:2d:7a:3d:89:5e:ee:ae:0d: cd:c6:2c:b9:e5:8e:ae:56:f3:ed:c4:f5:b0:51:a1:d0:59:22: 49:19:d0:6d:43:da:2a:4e:c0:2c:39:b9:39:7a:fe:f0:54:63: f6:c0:53:e6:3f:49:38:cd:7c:8d:0e:95:af:49:e5:45:af:08: ff:db:c5:bd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYV9rkuB84bRQAyd4smBDB6xFoYYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyOTA5NTUwMFoX DTI2MTAyODEwMDAwMFowMzExMC8GA1UEAxMoQkU1MEZGODUyQTAzMkVEMTkzOUVD NkJEOTY4RTk5RjBERTg0NjhEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyUHDx5OLfyNOV3cs6pVZYRH45oe2ezFAbfYBG6GEgaZ6c/p6WIi4qrqaUO 505Aqj+rrMmZDC4xrt7F+nIRzGgnIwKBgBCP0rHQwQoaLa7SwbRG+B4U6jVEdVAI WT0aCSYPRvsnrwYgeBZO1WuIFuKfAwcisK9ktiJySbkyCsSY3tcmPk401DrI0KWT xZBAF+8drv0sTKQd/TF97qT02ojIWEheReQMxeLJ7OvDlIkJeG20emrDrnRLG4Ej zboSNpI+Li2oyMRt2yXUVXV6QQN8VvhCqkuSqUMtzsFZZ2wKyaNSp8caGnAFSpJA HB9ojm1ITcqSpxt4QJma78kmcs0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS+UP+F KgMu0ZOexr2Wjpnw3oRo0jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWcEhjANBgkqhkiG9w0BAQsFAAOCAQEAe4vm02O55hQOPXxNEapS +rlqdJ3F2hFcY2DBw47jv4uACGUSXCqM5RRy0GQmdNPIiG0lgKh3pwPKABmmUqTt TLcYik0am3kmOL655ycVbbwiz7sJ26rLjK46r/sYWydJumU/EkKmk2G8lVsvPweS odY6WSUDCEyjGKDgz3U+letJBv9Oq+W6ZEZUR1sNZW+Rtt6FPB5djAc5RLywlr4M Yx8pzb/iQOn4mq2IJFySWTEdPDOtkFeIM6MmA7XnGy16PYle7q4NzcYsueWOrlbz 7cT1sFGh0FkiSRnQbUPaKk7ALDm5OXr+8FRj9sBT5j9JOM18jQ6Vr0nlRa8I/9vF vQ== -----END CERTIFICATE-----Generated at Mon Nov 3 19:31:27 2025 by rpki-client