$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa File: AS141140.roa (raw, json) Hash identifier: drYlzIbROoKY+i1ZX5fwFUw9XwvYTDm/Uao4ywqmAk4= Subject key identifier: D7:B0:97:49:B7:F1:27:6A:E8:FB:10:56:E6:89:DF:18:78:1C:89:0C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 70B2D7A2884B623D4D913CAE856F78C14B12770E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa Signing time: Thu 04 Sep 2025 08:00:00 +0000 ROA not before: Thu 04 Sep 2025 07:55:00 +0000 ROA not after: Thu 03 Sep 2026 08:00:00 +0000 asID: 141140 IP address blocks: 103.93.93.0/24 maxlen: 24 103.159.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b2:d7:a2:88:4b:62:3d:4d:91:3c:ae:85:6f:78:c1:4b:12:77:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 4 07:55:00 2025 GMT Not After : Sep 3 08:00:00 2026 GMT Subject: CN=D7B09749B7F1276AE8FB1056E689DF18781C890C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:18:0a:72:aa:71:d2:81:d6:39:80:6d:ea:9c: 0d:d2:44:08:5c:69:63:b2:1e:14:63:2b:73:cc:c7: 4c:ea:44:f8:ee:06:50:bb:d3:1c:09:68:10:7c:15: 1d:ab:eb:b7:e7:d8:da:e1:28:82:63:78:81:61:62: 02:84:8a:56:67:e6:70:80:e2:3a:a5:69:8a:0d:81: a1:e1:81:98:9f:0f:d4:0c:f0:db:98:b5:49:28:c5: 4e:3a:01:c0:02:b1:76:23:39:cb:79:ed:7a:0d:bd: a6:7c:36:ee:2f:b5:d0:bc:57:d6:d2:00:66:8b:cd: 96:6b:48:d3:b4:ee:0e:b0:f4:51:c4:ad:cf:3d:3b: ae:a3:5a:44:bb:f1:2c:cb:bc:89:43:92:cf:05:18: d6:72:74:fa:d0:5d:bd:df:d8:3f:88:e8:ec:d2:a3: 25:bc:e8:05:fe:ba:e8:8b:a2:ba:cf:8b:f5:ed:61: fb:9b:f8:d9:2b:2f:c9:b7:87:64:69:c7:3c:26:19: d2:73:68:61:23:e4:da:0e:f5:6a:cf:73:cd:52:b6: ce:47:9b:3f:f1:6e:d4:93:85:fe:78:a4:e4:cb:27: 1c:dc:c4:be:b7:af:86:07:76:50:f1:e5:42:0e:5d: e3:1b:d2:2f:c1:2d:c3:17:78:4f:50:1a:22:0c:90: 11:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B0:97:49:B7:F1:27:6A:E8:FB:10:56:E6:89:DF:18:78:1C:89:0C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141140.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.93.93.0/24 103.159.96.0/24 Signature Algorithm: sha256WithRSAEncryption 24:bd:06:73:2a:e4:c4:19:ec:14:02:6a:73:30:d6:8e:08:6e: 0c:bb:e0:9f:1d:60:a2:be:0f:33:fc:ba:16:78:14:7b:53:18: 3a:7b:db:79:e4:87:f6:91:2b:39:4e:3e:85:59:46:52:59:0f: 62:29:6b:bb:d2:5b:47:d3:b8:f8:8b:b4:ab:3c:3d:7f:5d:d2: b8:bf:53:a1:ea:7d:75:de:f0:82:02:12:33:fd:3d:48:7a:93: 47:87:ab:32:ae:50:56:d0:be:6c:14:56:c1:53:da:f5:17:b7: 0c:1d:f7:3e:36:a0:f6:fb:86:42:98:4f:9a:38:66:8f:5b:fa: d8:01:cf:3a:26:68:c0:f0:96:3c:5e:4c:46:57:e9:e8:53:4c: 53:8f:40:8d:58:0b:a9:38:27:b0:e0:1c:fb:52:63:fa:7d:d4: 84:f1:37:96:53:0c:b8:3c:5b:54:57:4e:ee:33:1e:d0:7c:88: 23:b2:89:8d:d4:46:db:4c:c2:aa:08:b2:a8:97:06:a1:51:de: 48:d6:9b:73:aa:e8:59:7f:10:28:d8:7a:5a:da:f4:59:b8:ad: 9a:57:af:b6:7e:e1:7b:a1:d4:61:4a:a6:9d:49:2c:c5:8f:d8: 26:3c:37:a9:4f:94:f5:97:9b:b0:82:71:54:61:78:e1:70:61: 98:be:ec:60 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUcLLXoohLYj1NkTyuhW94wUsSdw4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwNDA3NTUwMFoX DTI2MDkwMzA4MDAwMFowMzExMC8GA1UEAxMoRDdCMDk3NDlCN0YxMjc2QUU4RkIx MDU2RTY4OURGMTg3ODFDODkwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEYCnKqcdKB1jmAbeqcDdJECFxpY7IeFGMrc8zHTOpE+O4GULvTHAloEHwV Havrt+fY2uEogmN4gWFiAoSKVmfmcIDiOqVpig2BoeGBmJ8P1Azw25i1SSjFTjoB wAKxdiM5y3nteg29pnw27i+10LxX1tIAZovNlmtI07TuDrD0UcStzz07rqNaRLvx LMu8iUOSzwUY1nJ0+tBdvd/YP4jo7NKjJbzoBf666Iuius+L9e1h+5v42SsvybeH ZGnHPCYZ0nNoYSPk2g71as9zzVK2zkebP/Fu1JOF/nik5MsnHNzEvrevhgd2UPHl Qg5d4xvSL8Etwxd4T1AaIgyQER8CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTXsJdJ t/Enauj7EFbmid8YeByJDDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTE0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGddXQMEAGefYDANBgkqhkiG9w0BAQsFAAOCAQEAJL0GcyrkxBns FAJqczDWjghuDLvgnx1gor4PM/y6FngUe1MYOnvbeeSH9pErOU4+hVlGUlkPYilr u9JbR9O4+Iu0qzw9f13SuL9Toep9dd7wggISM/09SHqTR4erMq5QVtC+bBRWwVPa 9Re3DB33Pjag9vuGQphPmjhmj1v62AHPOiZowPCWPF5MRlfp6FNMU49AjVgLqTgn sOAc+1Jj+n3UhPE3llMMuDxbVFdO7jMe0HyII7KJjdRG20zCqgiyqJcGoVHeSNab c6roWX8QKNh6Wtr0Wbitmlevtn7he6HUYUqmnUksxY/YJjw3qU+U9ZebsIJxVGF4 4XBhmL7sYA== -----END CERTIFICATE-----Generated at Fri Sep 5 08:17:25 2025 by rpki-client