$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141642.roa File: AS141642.roa (raw, json) Hash identifier: ysaLdn6KEnkJErmmINSctpuRYXRq1TzU3Tr0r0mxJoM= Subject key identifier: F1:4B:EB:6D:96:6B:F4:64:52:9C:72:7D:98:F5:10:6C:E0:E4:A0:DE Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6B71C79D57A4EAF90C55FC3A97A99993D6E5C4F2 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141642.roa Signing time: Thu 04 Sep 2025 02:06:02 +0000 ROA not before: Thu 04 Sep 2025 02:01:02 +0000 ROA not after: Thu 03 Sep 2026 02:06:02 +0000 asID: 141642 IP address blocks: 157.15.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 14:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:71:c7:9d:57:a4:ea:f9:0c:55:fc:3a:97:a9:99:93:d6:e5:c4:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 4 02:01:02 2025 GMT Not After : Sep 3 02:06:02 2026 GMT Subject: CN=F14BEB6D966BF464529C727D98F5106CE0E4A0DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:91:e4:00:b9:cb:1d:0d:3b:00:25:84:38: 7c:24:3b:7b:83:d8:31:ae:06:6f:6d:32:36:89:58: 2f:ea:c9:93:67:7f:44:11:e6:a5:43:85:ab:8d:e4: 67:6e:dd:f9:f3:ab:21:30:8b:93:08:4a:eb:71:5b: 1f:27:7f:05:07:82:0b:70:7f:f4:63:88:6e:94:04: b7:b1:8a:36:95:e8:42:21:cb:3e:47:df:21:2b:21: 1c:1f:32:28:f0:39:ed:0d:bb:6c:03:c1:71:10:b0: 4d:d7:d0:73:2f:7b:b4:01:bb:6c:e2:68:bd:ed:d5: 3a:fa:13:62:fc:3f:57:08:0a:95:e7:4c:5d:c6:2c: 5b:db:58:ba:85:93:61:f2:4f:c5:5f:c7:e1:24:e4: ff:2b:e1:71:01:34:a7:8f:b3:8e:14:25:ba:ae:53: 87:5d:e2:fd:73:7e:8c:de:70:fb:13:88:54:05:ec: 31:1d:99:f8:64:d1:a1:94:67:2b:a7:ff:08:34:33: 33:f2:62:7c:81:9c:bd:c7:bd:48:7f:bd:66:66:11: 44:fa:fa:65:81:39:8b:e4:15:f8:40:70:b4:96:58: b1:07:d8:86:65:36:f0:2a:02:cb:9c:52:95:bb:a2: 88:a7:d3:d4:22:be:5e:d0:57:8e:3b:62:7b:df:fb: 8a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4B:EB:6D:96:6B:F4:64:52:9C:72:7D:98:F5:10:6C:E0:E4:A0:DE X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141642.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.139.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:8e:e1:38:a7:12:6c:a3:46:ec:ba:e8:70:f4:24:33:6e:65: 57:b0:d5:4b:e4:1d:58:84:7a:7c:ce:b3:bc:d4:bc:32:bc:5c: c1:8e:e9:be:f9:8f:32:00:b9:d3:c4:4c:e6:9f:6c:1e:ef:56: 9a:af:0d:7e:0d:03:b7:2b:80:5e:31:74:48:19:dd:cd:b6:99: f4:f7:b4:7f:3c:41:eb:f0:8c:99:14:13:73:b2:e3:ca:b8:78: 39:39:67:57:6e:53:b9:fd:33:7d:0a:54:96:3c:18:a4:3c:c7: 73:cd:1f:12:be:8c:87:e0:71:06:06:cf:c8:b9:81:5e:a5:a5: 5d:9d:1b:23:df:25:70:c5:25:3f:d1:5a:4b:a8:b3:ba:73:72: c6:88:79:23:b8:7a:3e:16:d1:eb:b2:d3:70:4b:26:70:67:f4: a5:d0:07:f1:cc:e2:25:50:46:5c:ab:cc:d1:28:98:4a:a1:ba: 82:5e:9e:3e:7f:b9:77:6f:11:59:ae:c8:e4:d1:90:4e:d1:77: 7a:15:a8:15:29:f7:7a:7d:96:2f:d2:c1:6f:ce:d9:37:83:81: 2e:95:62:01:88:dd:b2:65:1d:6d:e1:47:04:46:b0:2a:1c:53: ea:21:cf:86:f4:96:34:20:45:a3:fc:7f:4f:af:6b:fe:b1:56: 74:6d:a1:98 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUa3HHnVek6vkMVfw6l6mZk9blxPIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDkwNDAyMDEwMloX DTI2MDkwMzAyMDYwMlowMzExMC8GA1UEAxMoRjE0QkVCNkQ5NjZCRjQ2NDUyOUM3 MjdEOThGNTEwNkNFMEU0QTBERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpKkeQAucsdDTsAJYQ4fCQ7e4PYMa4Gb20yNolYL+rJk2d/RBHmpUOFq43k Z27d+fOrITCLkwhK63FbHyd/BQeCC3B/9GOIbpQEt7GKNpXoQiHLPkffISshHB8y KPA57Q27bAPBcRCwTdfQcy97tAG7bOJove3VOvoTYvw/VwgKledMXcYsW9tYuoWT YfJPxV/H4STk/yvhcQE0p4+zjhQluq5Th13i/XN+jN5w+xOIVAXsMR2Z+GTRoZRn K6f/CDQzM/JifIGcvce9SH+9ZmYRRPr6ZYE5i+QV+EBwtJZYsQfYhmU28CoCy5xS lbuiiKfT1CK+XtBXjjtie9/7itUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTxS+tt lmv0ZFKccn2Y9RBs4OSg3jAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MTY0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0PizANBgkqhkiG9w0BAQsFAAOCAQEATY7hOKcSbKNG7LrocPQk M25lV7DVS+QdWIR6fM6zvNS8MrxcwY7pvvmPMgC508RM5p9sHu9Wmq8Nfg0DtyuA XjF0SBndzbaZ9Pe0fzxB6/CMmRQTc7Ljyrh4OTlnV25Tuf0zfQpUljwYpDzHc80f Er6Mh+BxBgbPyLmBXqWlXZ0bI98lcMUlP9FaS6izunNyxoh5I7h6PhbR67LTcEsm cGf0pdAH8cziJVBGXKvM0SiYSqG6gl6ePn+5d28RWa7I5NGQTtF3ehWoFSn3en2W L9LBb87ZN4OBLpViAYjdsmUdbeFHBEawKhxT6iHPhvSWNCBFo/x/T69r/rFWdG2h mA== -----END CERTIFICATE-----Generated at Sun Sep 7 10:04:42 2025 by rpki-client