$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa File: AS141889.roa (raw, json) Hash identifier: RqhknqkDnPHG7YYGHtKnrNNZHhUEdc6DE49jcsq4MF8= Subject key identifier: 3E:43:BF:82:69:5A:4B:52:65:C8:86:02:CC:CC:73:34:58:DB:31:34 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4938A6C968885951F19B55B91B09ACCA85FDBB25 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa Signing time: Mon 25 Aug 2025 09:00:00 +0000 ROA not before: Mon 25 Aug 2025 08:55:00 +0000 ROA not after: Mon 24 Aug 2026 09:00:00 +0000 asID: 141889 IP address blocks: 103.163.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:38:a6:c9:68:88:59:51:f1:9b:55:b9:1b:09:ac:ca:85:fd:bb:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 25 08:55:00 2025 GMT Not After : Aug 24 09:00:00 2026 GMT Subject: CN=3E43BF82695A4B5265C88602CCCC733458DB3134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:77:45:d8:da:a4:76:bf:7b:75:b2:2d:0c:1e: 0f:a7:b8:45:c7:d1:5d:53:82:7f:82:f0:fc:2e:a8: 81:22:cd:dc:1c:7e:75:ff:32:71:6c:c9:6d:6d:6e: db:66:af:28:85:98:00:e7:92:fe:05:12:80:cb:6a: 21:f1:3e:cd:a3:aa:2a:53:17:dd:14:b6:56:8f:bc: 0d:b9:31:b8:22:9c:80:0a:58:57:fe:e6:4b:f9:91: 69:ab:13:17:49:84:10:0d:1b:0b:d9:e6:2e:12:aa: fa:63:18:94:86:ad:ff:2d:4e:1a:33:87:4b:59:2e: 7d:1b:a0:bb:b0:a4:5a:59:6a:ad:d5:7b:89:32:13: 3f:f6:58:ba:d0:a0:25:86:f9:34:6b:3d:bb:21:7c: 9b:41:d4:23:55:7d:b8:b9:02:2e:34:e0:84:b8:a3: df:26:17:70:12:ac:70:0c:98:ab:c5:07:d8:36:a5: 6a:58:a2:5e:09:3f:23:b2:e3:60:3c:a9:3e:57:1e: 82:2c:55:12:0e:03:d3:23:e4:01:18:c7:83:bb:0a: 9f:bd:d8:08:fc:c6:97:f5:3d:7f:17:e6:23:51:a1: 93:20:21:86:89:e2:a4:f0:07:af:f9:fb:2a:06:6b: 8a:97:ca:6a:01:69:fe:29:29:f1:77:bd:4c:ae:a2: 68:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:43:BF:82:69:5A:4B:52:65:C8:86:02:CC:CC:73:34:58:DB:31:34 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.13.0/24 Signature Algorithm: sha256WithRSAEncryption 60:19:ea:f9:c5:ec:ed:33:2b:c3:a1:a9:4b:a2:22:00:92:d1: 81:8f:c2:52:04:88:e8:07:00:65:0a:ef:75:0f:91:0c:1d:88: 27:d2:8d:da:6e:a7:77:5b:c9:c5:e6:00:4e:7b:43:80:bc:ba: 20:8d:44:07:2e:c5:d2:16:e8:6f:ec:a1:20:4f:ea:8d:d6:d3: 19:9f:5b:a8:8a:c9:cf:7b:9c:b1:a3:2e:79:2e:1f:b7:c1:6a: 5f:f1:61:65:92:ee:57:73:4a:12:28:49:87:b3:1a:bc:b0:fb: f8:52:4c:15:5f:8a:42:64:58:d5:9e:7f:f7:78:0c:7c:98:12: a4:8a:12:06:cd:72:e6:f9:4b:93:6a:23:e7:b4:63:9d:23:e2: 54:a4:6d:1c:28:b8:66:f9:c0:79:c9:9c:ce:75:92:28:05:e5: ee:4e:2d:25:7f:38:50:23:13:ba:37:d4:32:4d:d7:8c:01:fc: 9b:25:d8:6c:d5:95:57:0d:67:63:41:5d:99:29:8f:b2:60:04: e9:07:d4:fa:17:66:77:ff:fd:43:4c:24:66:57:e2:a2:ce:e8: 43:98:49:47:a4:d1:f6:b4:0e:63:60:e0:b9:93:db:81:b8:83: 6d:33:e0:6f:d0:58:7c:ac:c5:67:57:03:40:e6:8b:54:6b:96: 57:39:00:26 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSTimyWiIWVHxm1W5GwmsyoX9uyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyNTA4NTUwMFoX DTI2MDgyNDA5MDAwMFowMzExMC8GA1UEAxMoM0U0M0JGODI2OTVBNEI1MjY1Qzg4 NjAyQ0NDQzczMzQ1OERCMzEzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKt3RdjapHa/e3WyLQweD6e4RcfRXVOCf4Lw/C6ogSLN3Bx+df8ycWzJbW1u 22avKIWYAOeS/gUSgMtqIfE+zaOqKlMX3RS2Vo+8DbkxuCKcgApYV/7mS/mRaasT F0mEEA0bC9nmLhKq+mMYlIat/y1OGjOHS1kufRugu7CkWllqrdV7iTITP/ZYutCg JYb5NGs9uyF8m0HUI1V9uLkCLjTghLij3yYXcBKscAyYq8UH2DalaliiXgk/I7Lj YDypPlcegixVEg4D0yPkARjHg7sKn73YCPzGl/U9fxfmI1GhkyAhhonipPAHr/n7 KgZripfKagFp/ikp8Xe9TK6iaP8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ+Q7+C aVpLUmXIhgLMzHM0WNsxNDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGejDTANBgkqhkiG9w0BAQsFAAOCAQEAYBnq+cXs7TMrw6GpS6Ii AJLRgY/CUgSI6AcAZQrvdQ+RDB2IJ9KN2m6nd1vJxeYATntDgLy6II1EBy7F0hbo b+yhIE/qjdbTGZ9bqIrJz3ucsaMueS4ft8FqX/FhZZLuV3NKEihJh7MavLD7+FJM FV+KQmRY1Z5/93gMfJgSpIoSBs1y5vlLk2oj57RjnSPiVKRtHCi4ZvnAecmcznWS KAXl7k4tJX84UCMTujfUMk3XjAH8myXYbNWVVw1nY0FdmSmPsmAE6QfU+hdmd//9 Q0wkZlfios7oQ5hJR6TR9rQOY2DguZPbgbiDbTPgb9BYfKzFZ1cDQOaLVGuWVzkA Jg== -----END CERTIFICATE-----Generated at Fri Sep 5 10:10:46 2025 by rpki-client