$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa File: AS141591.roa (raw, json) Hash identifier: kV8kyzHNuEGrbmEpet4PNx6wlSI0/M4G9eCUGukbtS8= Subject key identifier: 7F:78:A9:43:C3:3E:29:C8:3B:4A:5C:75:BA:CF:AD:4A:F2:C1:5B:C3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47D36BDCCD35DD51AB0360333A8A8DC1FD831754 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa Signing time: Tue 26 Aug 2025 12:17:53 +0000 ROA not before: Tue 26 Aug 2025 12:12:53 +0000 ROA not after: Tue 25 Aug 2026 12:17:53 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 24 2406:8640:bda::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d3:6b:dc:cd:35:dd:51:ab:03:60:33:3a:8a:8d:c1:fd:83:17:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 26 12:12:53 2025 GMT Not After : Aug 25 12:17:53 2026 GMT Subject: CN=7F78A943C33E29C83B4A5C75BACFAD4AF2C15BC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0a:de:38:71:ea:e4:ad:b2:26:96:91:7c:f5: 7a:19:b6:86:ab:70:19:a5:51:e9:53:85:6a:51:53: 87:d2:91:e4:5a:2e:92:cd:49:cf:56:af:ab:cc:b7: 94:1c:d1:b7:72:16:54:ac:7a:81:e9:4b:dd:5e:ca: b2:b8:53:b4:4c:b1:c3:2d:71:3a:6c:7c:fe:68:df: 84:7a:6e:dd:81:c1:14:eb:80:c6:41:4f:ed:34:b2: ff:70:6e:72:86:95:44:81:0e:46:df:e6:39:50:76: 64:f5:88:fd:36:eb:29:c5:b7:6b:88:5c:8f:7c:5d: e7:c4:fa:0e:59:28:a2:19:db:cb:25:98:a5:3b:a4: 39:69:da:3a:cb:c7:a4:c8:b5:fa:14:b8:33:fe:13: 3a:5f:dd:a3:6b:1c:71:5a:30:03:fc:90:6c:c4:01: 98:ff:63:72:9a:32:fc:a3:74:96:e0:6c:d2:8c:e0: 76:89:8b:b7:cc:2b:f2:87:21:59:8c:81:d0:90:fe: 49:eb:55:45:68:6f:1e:3f:a3:7b:a6:cb:c5:0d:ac: 9c:f7:e3:a6:73:4c:bb:ff:7f:d1:01:4a:d3:b7:77: d6:7e:e0:3e:ec:be:d4:23:48:93:e3:5a:1d:2c:34: b1:83:92:24:3b:7b:b0:8c:e7:29:04:9e:74:ef:54: a9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:78:A9:43:C3:3E:29:C8:3B:4A:5C:75:BA:CF:AD:4A:F2:C1:5B:C3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 IPv6: 2406:8640:bda::/48 Signature Algorithm: sha256WithRSAEncryption 14:f3:15:0a:43:21:6f:91:a6:00:85:2c:e2:aa:ed:73:4c:08: fd:95:33:7d:b1:f2:c5:6c:bd:e6:43:16:72:39:26:8a:0d:64: 0a:ec:b8:8c:04:7c:c6:8f:0e:28:80:4e:d0:e8:17:fc:8b:03: ab:cf:72:d4:c0:9e:71:7f:6f:d6:ac:23:2a:01:75:91:70:d3: c4:72:c4:5d:e8:25:2a:15:5f:dd:5e:89:6f:fd:42:96:43:e4: c0:d0:80:13:be:11:a3:90:95:d3:af:cc:c9:a6:9f:05:fb:ba: 27:62:8e:c5:0c:49:71:e1:cb:55:d9:ba:c5:44:7d:91:e6:9a: 62:ec:10:a4:2e:22:55:da:be:33:be:a5:aa:ab:13:6f:6d:bb: 4d:1c:0f:b5:77:46:1d:5d:0a:6d:15:2c:f2:57:49:bf:0a:19: b2:d4:a4:22:88:bc:75:b8:40:f5:a1:d2:f2:5e:fd:4f:cf:02: c7:63:3f:57:67:5e:10:13:3d:f2:d5:2c:64:21:7e:da:1c:63: e6:6f:df:10:91:a1:e0:ab:65:c5:e5:1c:d2:51:30:3d:56:1f: b4:5d:e6:e8:60:10:91:2c:04:61:be:b9:44:dd:d5:ed:92:9d: 81:21:cd:a8:df:72:40:59:82:c1:d4:20:e1:93:ac:7f:f1:35: 6f:29:ad:92 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUR9Nr3M013VGrA2AzOoqNwf2DF1QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyNjEyMTI1M1oX DTI2MDgyNTEyMTc1M1owMzExMC8GA1UEAxMoN0Y3OEE5NDNDMzNFMjlDODNCNEE1 Qzc1QkFDRkFENEFGMkMxNUJDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIK3jhx6uStsiaWkXz1ehm2hqtwGaVR6VOFalFTh9KR5Fouks1Jz1avq8y3 lBzRt3IWVKx6gelL3V7KsrhTtEyxwy1xOmx8/mjfhHpu3YHBFOuAxkFP7TSy/3Bu coaVRIEORt/mOVB2ZPWI/TbrKcW3a4hcj3xd58T6DlkoohnbyyWYpTukOWnaOsvH pMi1+hS4M/4TOl/do2sccVowA/yQbMQBmP9jcpoy/KN0luBs0ozgdomLt8wr8och WYyB0JD+SetVRWhvHj+je6bLxQ2snPfjpnNMu/9/0QFK07d31n7gPuy+1CNIk+Na HSw0sYOSJDt7sIznKQSedO9UqVMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBR/eKlD wz4pyDtKXHW6z61K8sFbwzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWefPjAPBAIAAjAJAwcAJAaGQAvaMA0GCSqGSIb3DQEBCwUAA4IB AQAU8xUKQyFvkaYAhSziqu1zTAj9lTN9sfLFbL3mQxZyOSaKDWQK7LiMBHzGjw4o gE7Q6Bf8iwOrz3LUwJ5xf2/WrCMqAXWRcNPEcsRd6CUqFV/dXolv/UKWQ+TA0IAT vhGjkJXTr8zJpp8F+7onYo7FDElx4ctV2brFRH2R5ppi7BCkLiJV2r4zvqWqqxNv bbtNHA+1d0YdXQptFSzyV0m/Chmy1KQiiLx1uED1odLyXv1PzwLHYz9XZ14QEz3y 1SxkIX7aHGPmb98QkaHgq2XF5RzSUTA9Vh+0XeboYBCRLARhvrlE3dXtkp2BIc2o 33JAWYLB1CDhk6x/8TVvKa2S -----END CERTIFICATE-----Generated at Fri Sep 5 10:23:56 2025 by rpki-client