$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141060.roa File: AS141060.roa (raw, json) Hash identifier: 9Bzt/oRuxNzS6qiYyaMxGpnmp93QMUTwuQLmogOyVYk= Subject key identifier: 67:E7:DB:EE:07:5B:8C:CA:82:AA:13:9B:26:19:14:1E:75:C4:76:2E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A196A05D69E3BC93C65D85E5CA8CCCC1C45E093 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141060.roa Signing time: Tue 11 Nov 2025 06:00:17 +0000 ROA not before: Tue 11 Nov 2025 05:55:17 +0000 ROA not after: Tue 10 Nov 2026 06:00:17 +0000 asID: 141060 IP address blocks: 103.155.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 16:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:19:6a:05:d6:9e:3b:c9:3c:65:d8:5e:5c:a8:cc:cc:1c:45:e0:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:17 2025 GMT Not After : Nov 10 06:00:17 2026 GMT Subject: CN=67E7DBEE075B8CCA82AA139B2619141E75C4762E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f3:ea:a2:cf:fd:a9:d7:fe:cc:ba:85:81:c6: 95:d6:84:67:95:c3:14:9f:0f:09:a8:ac:eb:5e:73: c1:e4:22:6f:50:d5:68:c1:b9:79:5a:58:90:b3:88: ea:63:26:6e:99:2a:db:11:97:a2:3c:b8:f6:10:87: 13:57:a5:5d:13:5d:cd:e7:7e:cf:08:fd:70:b1:d9: 1c:24:19:cf:a4:da:80:39:12:3f:87:5c:df:aa:e2: 95:6d:0e:ab:87:df:ae:ab:36:48:b8:98:8c:d6:6c: f7:ad:72:9b:aa:bc:0b:6e:4c:85:83:d6:7c:bb:13: 0b:dc:4c:0e:51:49:2b:7c:d4:4b:0f:e4:1c:35:5b: ac:bb:4e:45:30:b1:a4:6b:b8:02:3e:c0:aa:86:26: b7:2b:23:48:a4:0e:41:7f:1e:7e:1e:05:b4:61:63: 80:49:0c:cf:48:07:19:d0:f1:de:49:75:e2:50:52: 88:46:d8:06:50:c6:0d:ee:26:b7:75:65:b5:65:9f: 6d:bc:44:5e:28:00:0c:1d:14:d2:ba:d7:71:95:28: 0a:2a:eb:91:90:13:20:19:81:58:29:1b:4f:dd:95: 2f:e5:40:e0:89:dd:9c:87:cf:f6:22:ce:82:3d:ae: 3b:04:65:b6:8b:2a:22:88:3f:b2:b5:4c:d0:79:82: a9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E7:DB:EE:07:5B:8C:CA:82:AA:13:9B:26:19:14:1E:75:C4:76:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141060.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.152.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:c8:da:ce:a4:5c:da:fc:45:7b:49:a4:a3:93:66:e6:ba:f5: 21:92:ed:8c:37:68:eb:cc:37:e1:28:05:4d:76:de:dc:78:4a: b2:e0:82:26:28:ef:ba:eb:38:6e:3a:5e:bf:bb:e9:a5:0c:8b: 6b:bb:6e:f1:3f:28:2d:2f:b4:47:c4:7f:a7:54:8b:ac:34:98: 30:b8:05:9c:2c:89:7b:3d:a5:7c:0e:f5:bb:86:b9:c9:4b:f2: 56:10:f6:9b:13:d6:63:26:7f:2d:10:90:d8:08:5a:16:80:60: dd:d0:53:56:2b:ef:50:f2:84:6a:cb:08:cf:53:d2:46:75:89: 47:1f:70:c9:36:00:90:d7:c2:db:9f:3e:e7:e3:c6:60:37:8c: 9d:fd:1c:a1:ec:3b:a1:e8:0c:9a:66:38:da:be:1d:41:08:ed: 69:f9:0f:e0:b4:bd:1c:d5:0d:62:e1:bf:e3:5e:e5:86:b8:79: fd:96:45:82:ee:2a:2b:c5:39:8b:20:ec:7c:88:0d:ef:8f:ed: 53:68:95:16:56:a5:e4:f5:e6:b8:bc:a7:f2:ad:c9:90:ef:bc: fc:f1:f0:92:4f:c9:ec:d7:62:be:59:45:9a:47:2d:8c:b1:79: 37:86:85:7e:af:9b:1d:98:a5:9f:00:f6:5d:79:5a:1e:f1:0e: 78:90:72:f2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUShlqBdaeO8k8ZdheXKjMzBxF4JMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxN1oX DTI2MTExMDA2MDAxN1owMzExMC8GA1UEAxMoNjdFN0RCRUUwNzVCOENDQTgyQUEx MzlCMjYxOTE0MUU3NUM0NzYyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAODz6qLP/anX/sy6hYHGldaEZ5XDFJ8PCais615zweQib1DVaMG5eVpYkLOI 6mMmbpkq2xGXojy49hCHE1elXRNdzed+zwj9cLHZHCQZz6TagDkSP4dc36rilW0O q4ffrqs2SLiYjNZs961ym6q8C25MhYPWfLsTC9xMDlFJK3zUSw/kHDVbrLtORTCx pGu4Aj7AqoYmtysjSKQOQX8efh4FtGFjgEkMz0gHGdDx3kl14lBSiEbYBlDGDe4m t3VltWWfbbxEXigADB0U0rrXcZUoCirrkZATIBmBWCkbT92VL+VA4IndnIfP9iLO gj2uOwRltosqIog/srVM0HmCqT0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRn59vu B1uMyoKqE5smGRQedcR2LjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA2MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWebmDANBgkqhkiG9w0BAQsFAAOCAQEALMjazqRc2vxFe0mko5Nm 5rr1IZLtjDdo68w34SgFTXbe3HhKsuCCJijvuus4bjpev7vppQyLa7tu8T8oLS+0 R8R/p1SLrDSYMLgFnCyJez2lfA71u4a5yUvyVhD2mxPWYyZ/LRCQ2AhaFoBg3dBT VivvUPKEassIz1PSRnWJRx9wyTYAkNfC258+5+PGYDeMnf0coew7oegMmmY42r4d QQjtafkP4LS9HNUNYuG/417lhrh5/ZZFgu4qK8U5iyDsfIgN74/tU2iVFlal5PXm uLyn8q3JkO+8/PHwkk/J7NdivllFmkctjLF5N4aFfq+bHZilnwD2XXlaHvEOeJBy 8g== -----END CERTIFICATE-----Generated at Sat Nov 15 11:36:30 2025 by rpki-client