$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141596.roa File: AS141596.roa (raw, json) Hash identifier: GS9d2QuYGJtUlpUujCjiL9oPmIh5S35o/HmbT0fuA3A= Subject key identifier: D6:38:DC:E5:61:88:BF:8E:F6:27:FC:CE:44:66:45:FE:66:B5:45:5A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7683600B288CFBEDC7F606EA058AA1F03CA73612 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141596.roa Signing time: Tue 11 Nov 2025 06:00:10 +0000 ROA not before: Tue 11 Nov 2025 05:55:10 +0000 ROA not after: Tue 10 Nov 2026 06:00:10 +0000 asID: 141596 IP address blocks: 2406:f940::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 16:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:83:60:0b:28:8c:fb:ed:c7:f6:06:ea:05:8a:a1:f0:3c:a7:36:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:10 2025 GMT Not After : Nov 10 06:00:10 2026 GMT Subject: CN=D638DCE56188BF8EF627FCCE446645FE66B5455A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cc:1a:1c:98:27:b0:f8:39:59:0d:1d:16:e4: f5:83:62:07:92:fe:4b:0d:38:59:0d:3a:f4:57:d8: c5:22:11:2b:ce:08:9a:76:3b:61:4b:e2:92:e4:52: d9:e9:5d:a8:cb:94:5e:5c:8b:a9:5b:ec:bd:19:ba: 30:ea:80:18:5c:09:4e:85:b7:db:49:8c:96:f5:42: 1a:2b:f1:21:1e:28:d6:eb:21:f2:ad:8f:78:fe:3c: 4b:68:09:80:b4:16:aa:4e:9f:d2:56:bb:c3:70:e8: e6:b5:83:ac:ee:22:b1:e0:00:05:fa:a3:72:50:93: 55:01:d5:f8:37:ef:63:1b:4f:41:49:0b:e7:0c:a7: 40:61:23:df:6e:91:b5:3d:97:82:46:74:4e:87:61: 6a:f4:a3:a5:23:c3:ba:47:01:c9:0e:03:62:1b:46: 27:c1:7d:ee:45:14:7e:2b:e9:b7:e1:a8:7c:2c:16: 51:f8:6f:b2:fc:dd:f3:6e:41:77:48:fd:b1:33:35: 1f:58:3e:70:7b:e9:48:84:4d:49:04:25:c1:39:85: b0:59:fe:e2:26:f6:b5:12:de:fa:65:3b:99:ea:ab: e0:0b:53:d9:16:b3:80:f7:ea:86:52:43:2c:e3:b2: d2:3c:50:8b:a9:e9:3b:8f:f0:b7:25:b0:99:0a:ea: 5c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:38:DC:E5:61:88:BF:8E:F6:27:FC:CE:44:66:45:FE:66:B5:45:5A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141596.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:f940::/32 Signature Algorithm: sha256WithRSAEncryption 1e:12:9e:75:39:06:e8:27:e5:b5:65:b8:4b:78:bb:70:79:62: 58:27:84:cc:85:ac:20:9c:f1:6a:51:e9:14:3d:91:c7:1a:72: 39:41:07:39:5b:ce:c6:08:21:08:1d:4f:4e:2c:17:fa:24:81: 63:84:e1:41:59:26:a6:e9:17:94:f6:8d:fd:b5:d9:65:3c:7b: 03:d8:eb:55:4b:7d:ef:a1:c8:89:4b:7d:d0:2b:5a:42:2f:0d: 50:77:3d:60:39:0c:2d:10:ff:6f:60:f0:48:5d:e3:e7:7c:c0: 75:f0:99:40:fb:cf:f7:29:39:e1:72:ac:87:02:aa:19:62:a0: 5c:94:7e:d9:3c:4a:39:e1:32:b6:62:22:09:7f:18:48:e2:10: 42:6f:d3:cf:53:09:6e:e2:6c:e8:0a:17:4d:08:5f:07:79:93: 33:af:ed:dc:db:a9:14:6f:dc:7d:e3:63:bd:3a:1b:1a:06:9f: 9e:f8:1a:00:3e:84:59:70:56:92:2b:95:50:fa:fd:da:ef:34: 50:3a:44:e5:17:67:5a:7b:f0:a5:f3:67:f0:0e:cb:ef:45:15: 9f:89:25:02:e4:47:c2:39:42:3f:2c:b1:a9:2b:e1:be:8c:e0: 69:82:57:24:a0:b4:96:de:40:fc:74:90:b1:2d:85:c8:bd:45: af:c6:06:46 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUdoNgCyiM++3H9gbqBYqh8DynNhIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMFoX DTI2MTExMDA2MDAxMFowMzExMC8GA1UEAxMoRDYzOERDRTU2MTg4QkY4RUY2MjdG Q0NFNDQ2NjQ1RkU2NkI1NDU1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvMGhyYJ7D4OVkNHRbk9YNiB5L+Sw04WQ069FfYxSIRK84ImnY7YUvikuRS 2eldqMuUXlyLqVvsvRm6MOqAGFwJToW320mMlvVCGivxIR4o1ush8q2PeP48S2gJ gLQWqk6f0la7w3Do5rWDrO4iseAABfqjclCTVQHV+DfvYxtPQUkL5wynQGEj326R tT2XgkZ0TodhavSjpSPDukcByQ4DYhtGJ8F97kUUfivpt+GofCwWUfhvsvzd825B d0j9sTM1H1g+cHvpSIRNSQQlwTmFsFn+4ib2tRLe+mU7meqr4AtT2RazgPfqhlJD LOOy0jxQi6npO4/wtyWwmQrqXDECAwEAAaOCAdEwggHNMB0GA1UdDgQWBBTWONzl YYi/jvYn/M5EZkX+ZrVFWjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQG+UAwDQYJKoZIhvcNAQELBQADggEBAB4SnnU5Bugn5bVluEt4 u3B5YlgnhMyFrCCc8WpR6RQ9kccacjlBBzlbzsYIIQgdT04sF/okgWOE4UFZJqbp F5T2jf212WU8ewPY61VLfe+hyIlLfdArWkIvDVB3PWA5DC0Q/29g8Ehd4+d8wHXw mUD7z/cpOeFyrIcCqhlioFyUftk8SjnhMrZiIgl/GEjiEEJv089TCW7ibOgKF00I Xwd5kzOv7dzbqRRv3H3jY706GxoGn574GgA+hFlwVpIrlVD6/drvNFA6ROUXZ1p7 8KXzZ/AOy+9FFZ+JJQLkR8I5Qj8ssakr4b6M4GmCVySgtJbeQPx0kLEthci9Ra/G BkY= -----END CERTIFICATE-----Generated at Sat Nov 15 08:42:44 2025 by rpki-client