$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149946.roa File: AS149946.roa (raw, json) Hash identifier: tJjLIptM+kFu8XHMuP9oiZlAv81vA+3YjDW4owm0xvo= Subject key identifier: 87:37:CB:5A:6D:DE:56:36:4F:1D:9E:EF:DC:96:F8:A9:26:2A:DE:FA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2B6B87D5C7B1440114A4DF0F368A2C614CCFB2D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149946.roa Signing time: Wed 18 Feb 2026 07:00:00 +0000 ROA not before: Wed 18 Feb 2026 06:55:00 +0000 ROA not after: Wed 17 Feb 2027 07:00:00 +0000 asID: 149946 IP address blocks: 117.102.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6b:87:d5:c7:b1:44:01:14:a4:df:0f:36:8a:2c:61:4c:cf:b2:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 18 06:55:00 2026 GMT Not After : Feb 17 07:00:00 2027 GMT Subject: CN=8737CB5A6DDE56364F1D9EEFDC96F8A9262ADEFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:45:fb:2f:39:30:cc:ed:5d:92:87:7a:a6: 0b:a4:db:63:41:27:5d:d7:cc:2c:56:29:ae:f7:43: 35:59:8d:be:6f:99:53:f0:79:b4:77:74:fc:92:e6: cc:1d:13:51:e1:c2:7d:b7:a5:40:fc:6f:7a:4b:9b: 9a:63:d5:6f:fa:c8:c8:fe:ed:8a:42:55:4c:36:16: 87:e5:c3:3f:6b:c5:ca:61:35:04:26:e8:ef:e6:d0: d1:ed:12:3e:8c:1e:70:0c:65:29:a0:30:3e:8b:f1: 35:17:f7:fb:34:8b:dc:ea:12:99:e5:c7:b4:f5:f1: cf:ba:62:87:2a:58:8b:d5:d7:2c:1c:3f:13:c7:3f: 99:50:b8:8e:7f:7a:04:b3:10:56:59:02:39:1b:7a: 6e:9d:9f:a4:a3:7c:82:a2:28:ca:d4:0f:8f:9d:52: 88:27:ef:2b:8b:50:6e:96:0e:1e:d0:d0:2d:47:0e: 54:71:22:99:f2:20:01:79:48:30:7f:38:0f:69:42: d3:1f:96:79:5c:f0:e8:19:9b:2a:c2:05:2b:b9:82: d7:2a:f5:42:df:f3:51:08:41:00:ca:c1:78:38:ae: 7b:b8:a3:3b:cb:52:ac:2b:cf:36:a7:2b:44:2e:54: 23:23:6c:af:69:0a:75:b3:1e:de:5f:74:ca:a6:47: 80:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:37:CB:5A:6D:DE:56:36:4F:1D:9E:EF:DC:96:F8:A9:26:2A:DE:FA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149946.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.102.160.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:0b:c7:a8:95:5d:a2:fd:32:90:08:55:2c:58:6f:48:8d:76: 0a:03:b5:50:a5:19:54:89:b5:12:c6:25:e0:70:09:40:4d:99: 94:bc:c7:b1:07:89:d1:88:42:98:1c:a0:ab:07:a7:23:26:08: 87:da:df:84:66:44:33:4f:03:b4:e0:d4:d0:c1:c5:4b:69:1a: ca:b1:e6:fd:cf:7f:05:4e:5c:e5:71:49:cb:9c:7b:19:9c:41: 01:30:48:70:fe:b8:bc:fa:1f:83:58:92:7b:c1:28:2c:50:22: 59:f2:07:eb:27:e7:d3:c4:42:85:2b:ff:bb:5b:14:da:c9:db: f0:f2:65:16:91:ca:16:e7:60:f5:93:04:35:f8:95:bf:b5:ba: 35:05:9a:bc:ac:23:2b:a9:57:53:30:8f:94:5b:fa:a1:cc:98: f2:23:88:d5:0c:d0:fb:0e:41:77:52:4d:f8:08:b3:74:67:08: bd:19:5c:4b:77:2f:f9:aa:6b:0e:55:ea:9e:16:93:30:5b:36: fc:81:13:74:bb:5f:b4:b3:6a:f6:88:f2:5f:d1:33:21:44:7e: 0c:fa:82:dd:2a:e5:0f:c9:a1:ba:db:3b:d3:69:5b:f7:02:24: 81:2b:32:3c:e4:4b:73:1d:c3:47:13:f5:22:f5:b6:af:26:34: 03:59:81:9c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUK2uH1cexRAEUpN8PNoosYUzPstYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIxODA2NTUwMFoX DTI3MDIxNzA3MDAwMFowMzExMC8GA1UEAxMoODczN0NCNUE2RERFNTYzNjRGMUQ5 RUVGREM5NkY4QTkyNjJBREVGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANY7RfsvOTDM7V2Sh3qmC6TbY0EnXdfMLFYprvdDNVmNvm+ZU/B5tHd0/JLm zB0TUeHCfbelQPxvekubmmPVb/rIyP7tikJVTDYWh+XDP2vFymE1BCbo7+bQ0e0S PowecAxlKaAwPovxNRf3+zSL3OoSmeXHtPXxz7pihypYi9XXLBw/E8c/mVC4jn96 BLMQVlkCORt6bp2fpKN8gqIoytQPj51SiCfvK4tQbpYOHtDQLUcOVHEimfIgAXlI MH84D2lC0x+WeVzw6BmbKsIFK7mC1yr1Qt/zUQhBAMrBeDiue7ijO8tSrCvPNqcr RC5UIyNsr2kKdbMe3l90yqZHgDUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSHN8ta bd5WNk8dnu/clvipJire+jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAXVmoDANBgkqhkiG9w0BAQsFAAOCAQEAWgvHqJVdov0ykAhVLFhv SI12CgO1UKUZVIm1EsYl4HAJQE2ZlLzHsQeJ0YhCmBygqwenIyYIh9rfhGZEM08D tODU0MHFS2kayrHm/c9/BU5c5XFJy5x7GZxBATBIcP64vPofg1iSe8EoLFAiWfIH 6yfn08RChSv/u1sU2snb8PJlFpHKFudg9ZMENfiVv7W6NQWavKwjK6lXUzCPlFv6 ocyY8iOI1QzQ+w5Bd1JN+AizdGcIvRlcS3cv+aprDlXqnhaTMFs2/IETdLtftLNq 9ojyX9EzIUR+DPqC3SrlD8mhuts702lb9wIkgSsyPORLcx3DRxP1IvW2ryY0A1mB nA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:01:24 2026 by rpki-client