$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa File: AS141671.roa (raw, json) Hash identifier: 5cCCP51DgQ+yjxUDIasy5XA1McKNar9ZJGHjmJnTjXE= Subject key identifier: E1:36:9F:8A:F1:2A:BB:52:EA:E7:B2:6B:02:9F:AE:C6:FC:6D:7B:44 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 380C20AAFD4B48247706FFB4F67354B0657014EC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa Signing time: Wed 02 Jul 2025 12:00:00 +0000 ROA not before: Wed 02 Jul 2025 11:55:00 +0000 ROA not after: Wed 01 Jul 2026 12:00:00 +0000 asID: 141671 IP address blocks: 103.224.100.0/22 maxlen: 24 103.227.144.0/22 maxlen: 24 2400:ad60::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:0c:20:aa:fd:4b:48:24:77:06:ff:b4:f6:73:54:b0:65:70:14:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 11:55:00 2025 GMT Not After : Jul 1 12:00:00 2026 GMT Subject: CN=E1369F8AF12ABB52EAE7B26B029FAEC6FC6D7B44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:be:c7:6e:b2:d4:48:0d:5c:d4:15:0a:39:f5: de:f8:b8:92:29:59:be:7e:39:95:9a:46:43:2c:be: 84:e6:29:4a:8b:b3:03:62:3f:6c:1d:1d:54:c4:81: 1b:ea:6a:4e:f4:6e:9b:4a:41:ea:2f:9f:56:1d:96: 27:e5:27:78:a1:19:43:08:5d:4f:72:83:07:ab:80: 20:f6:73:48:07:a5:ef:65:ab:07:90:72:60:1f:90: d7:e9:e1:46:75:8d:4a:15:7e:62:1e:8a:a7:48:d0: 2a:0f:9b:f5:ee:f7:d2:e0:68:13:3f:b6:8c:b1:c2: d0:b2:ad:d2:48:f8:1d:c2:a8:d4:ae:34:af:dc:c5: f7:71:77:63:5d:3f:14:98:f1:a5:9f:cd:e1:05:ed: f3:17:14:a5:08:f4:12:53:a4:11:b7:b4:ba:61:0f: 27:e1:57:61:40:d3:92:03:e6:50:6b:82:ab:ab:00: 52:23:3c:2d:4d:82:78:d9:6b:7a:96:50:d4:9e:e9: e2:a3:a4:c4:8d:34:bc:e2:6b:13:9c:4a:90:1f:e2: a4:32:6c:23:ee:c6:81:3a:e4:a4:e8:f0:0e:0e:25: 43:e1:0a:ee:ff:20:45:a4:80:50:79:9e:13:f5:b7: be:fd:ca:f4:eb:44:a2:33:d2:f1:42:66:8c:82:36: 37:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:36:9F:8A:F1:2A:BB:52:EA:E7:B2:6B:02:9F:AE:C6:FC:6D:7B:44 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.100.0/22 103.227.144.0/22 IPv6: 2400:ad60::/32 Signature Algorithm: sha256WithRSAEncryption 47:04:3d:43:b6:16:ee:3e:5e:25:9b:d2:8f:29:bf:4b:6d:46: 13:ea:ba:f5:90:f9:44:40:00:b1:b4:12:4a:7d:03:ac:c9:85: 37:b2:ad:1a:0b:db:5d:34:e9:d6:31:6a:14:1e:bd:38:53:3b: f2:49:86:21:0f:9f:77:68:80:a9:03:33:27:44:80:f5:5f:0e: 6c:c1:f6:73:29:fe:1a:d1:4a:aa:04:b0:f9:fc:47:cd:30:1c: 9a:f3:fd:ec:28:04:fc:3d:9e:a2:02:7a:7b:f7:61:ad:32:5e: 37:2a:57:8b:91:a0:90:cf:5f:cb:77:1b:4f:87:ec:01:2b:01: ed:58:e9:a8:98:f9:98:07:20:30:64:15:15:3b:ad:47:6a:b5: 6a:df:66:4c:f6:0a:24:36:8e:58:f4:48:af:2d:2e:24:47:da: d0:31:7f:e0:4f:fd:e6:c1:c0:a3:06:35:5a:61:17:69:e4:dd: 04:43:bd:9f:81:f0:d9:97:ad:09:5b:1b:fb:74:69:e7:df:9f: dd:24:83:bd:24:d4:2e:c2:cc:dc:50:42:80:93:7d:c3:20:78: dc:a7:ce:c2:12:48:5e:0c:bc:ae:49:7b:5b:80:cf:9e:3a:a6: 03:38:c5:c7:78:c9:09:74:09:f6:74:de:65:e3:3f:e7:05:02: 47:ab:5a:98 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUOAwgqv1LSCR3Bv+09nNUsGVwFOwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcwMjExNTUwMFoX DTI2MDcwMTEyMDAwMFowMzExMC8GA1UEAxMoRTEzNjlGOEFGMTJBQkI1MkVBRTdC MjZCMDI5RkFFQzZGQzZEN0I0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANW+x26y1EgNXNQVCjn13vi4kilZvn45lZpGQyy+hOYpSouzA2I/bB0dVMSB G+pqTvRum0pB6i+fVh2WJ+UneKEZQwhdT3KDB6uAIPZzSAel72WrB5ByYB+Q1+nh RnWNShV+Yh6Kp0jQKg+b9e730uBoEz+2jLHC0LKt0kj4HcKo1K40r9zF93F3Y10/ FJjxpZ/N4QXt8xcUpQj0ElOkEbe0umEPJ+FXYUDTkgPmUGuCq6sAUiM8LU2CeNlr epZQ1J7p4qOkxI00vOJrE5xKkB/ipDJsI+7GgTrkpOjwDg4lQ+EK7v8gRaSAUHme E/W3vv3K9OtEojPS8UJmjII2N2MCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBThNp+K 8Sq7UurnsmsCn67G/G17RDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmfgZAMEAmfjkDANBAIAAjAHAwUAJACtYDANBgkqhkiG9w0BAQsF AAOCAQEARwQ9Q7YW7j5eJZvSjym/S21GE+q69ZD5REAAsbQSSn0DrMmFN7KtGgvb XTTp1jFqFB69OFM78kmGIQ+fd2iAqQMzJ0SA9V8ObMH2cyn+GtFKqgSw+fxHzTAc mvP97CgE/D2eogJ6e/dhrTJeNypXi5GgkM9fy3cbT4fsASsB7VjpqJj5mAcgMGQV FTutR2q1at9mTPYKJDaOWPRIry0uJEfa0DF/4E/95sHAowY1WmEXaeTdBEO9n4Hw 2ZetCVsb+3Rp59+f3SSDvSTULsLM3FBCgJN9wyB43KfOwhJIXgy8rkl7W4DPnjqm AzjFx3jJCXQJ9nTeZeM/5wUCR6tamA== -----END CERTIFICATE-----Generated at Sun Jul 20 17:00:51 2025 by rpki-client