$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa File: AS141921.roa (raw, json) Hash identifier: vrGtArHhFypvXdQQjW0dKHATMxGOElZszF6IMD5mzps= Subject key identifier: A6:FF:0B:CD:30:03:3C:F0:9D:ED:26:92:12:73:5A:B4:96:19:85:FC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E83A8A5F4F0ACCC742FA20778388D03E664FE9D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa Signing time: Thu 04 Sep 2025 03:00:00 +0000 ROA not before: Thu 04 Sep 2025 02:55:00 +0000 ROA not after: Thu 03 Sep 2026 03:00:00 +0000 asID: 141921 IP address blocks: 103.178.194.0/24 maxlen: 24 2001:df3:ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:83:a8:a5:f4:f0:ac:cc:74:2f:a2:07:78:38:8d:03:e6:64:fe:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 4 02:55:00 2025 GMT Not After : Sep 3 03:00:00 2026 GMT Subject: CN=A6FF0BCD30033CF09DED269212735AB4961985FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4e:0c:f8:95:d4:b5:c5:22:ba:3a:22:19:fe: 1b:36:c0:6d:2d:04:eb:db:fa:b5:51:32:c3:45:72: f0:95:5a:d9:0d:9b:2d:6f:e9:c1:4b:9e:9c:30:cb: 24:e3:70:7d:fa:bc:68:80:43:7b:34:85:0e:72:7c: e5:8f:e2:93:b6:44:e2:7f:61:09:52:7a:ca:32:16: fe:a3:8a:98:7f:d1:a2:5d:34:6b:dd:a8:4a:a3:77: d0:aa:72:e7:87:32:4f:23:d8:89:41:66:a4:95:8b: 9d:7c:56:67:5d:01:24:cb:2a:6d:ab:41:35:94:c9: 62:5c:db:16:58:c0:f0:eb:88:a6:2e:88:d6:e9:24: 18:69:af:d8:fa:4e:19:1f:33:d8:28:b8:0f:79:d4: f8:99:ad:3c:19:e9:88:85:73:a1:71:26:b6:92:85: 9e:9b:0e:4b:65:f0:e7:76:f3:38:fd:4c:1f:57:c5: e8:aa:8a:b7:ad:e0:5c:7d:7c:ff:d8:80:7d:45:c8: 00:6e:09:ae:0d:3c:57:0c:83:e0:89:41:8d:46:85: 86:29:ae:5a:e2:01:e1:14:1d:32:1d:72:0a:c8:2b: 3d:dd:77:be:d2:8b:62:75:6f:f9:5c:21:da:5e:5d: 5f:98:6c:23:4e:b7:7a:26:02:db:2b:c1:83:45:c7: ec:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:FF:0B:CD:30:03:3C:F0:9D:ED:26:92:12:73:5A:B4:96:19:85:FC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141921.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.194.0/24 IPv6: 2001:df3:ac0::/48 Signature Algorithm: sha256WithRSAEncryption 43:bd:ee:2e:b6:a4:b3:a0:61:6c:a7:2c:4d:54:5a:c1:9a:3e: c6:f2:e6:d4:8f:08:db:9a:8a:ce:56:44:51:ba:7a:8c:e2:45: b5:55:9f:e2:d7:16:81:95:97:da:f7:6b:02:ac:cf:fa:fb:48: 34:4a:2d:b3:c3:e3:07:45:60:44:66:a9:cf:24:cb:a4:41:43: a1:6e:b0:90:48:a7:cc:68:a3:82:af:7f:ae:c9:8e:9a:aa:3f: ea:ce:0d:f1:04:30:0f:60:29:07:d2:9b:5d:b4:dd:d5:ae:9f: b0:23:1e:4b:fb:43:d5:e2:0d:cd:3c:7e:a0:67:9f:d5:93:2a: 5e:8d:d2:38:1c:49:d4:bf:bd:82:8a:03:81:94:cf:9d:35:1c: 3d:2f:b2:cc:2b:05:b6:92:61:aa:70:2f:b8:9f:40:9e:bc:b8: 3f:27:07:3c:a5:f8:42:11:46:f3:96:79:0d:9c:5e:83:fa:eb: 93:9e:5a:c5:ff:4d:f4:8a:08:37:4b:49:5d:fb:64:54:8d:dd: 98:2e:aa:92:f3:38:48:13:56:d5:c4:33:44:fa:10:01:54:05: ad:86:98:94:0f:b0:a3:2f:58:cc:e2:13:ba:a1:cd:e5:3d:25: 85:cd:84:f7:36:3b:40:c9:83:f0:57:ec:18:41:16:48:4d:42: 2e:db:fd:ba -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUboOopfTwrMx0L6IHeDiNA+Zk/p0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwNDAyNTUwMFoX DTI2MDkwMzAzMDAwMFowMzExMC8GA1UEAxMoQTZGRjBCQ0QzMDAzM0NGMDlERUQy NjkyMTI3MzVBQjQ5NjE5ODVGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZODPiV1LXFIro6Ihn+GzbAbS0E69v6tVEyw0Vy8JVa2Q2bLW/pwUuenDDL JONwffq8aIBDezSFDnJ85Y/ik7ZE4n9hCVJ6yjIW/qOKmH/Rol00a92oSqN30Kpy 54cyTyPYiUFmpJWLnXxWZ10BJMsqbatBNZTJYlzbFljA8OuIpi6I1ukkGGmv2PpO GR8z2Ci4D3nU+JmtPBnpiIVzoXEmtpKFnpsOS2Xw53bzOP1MH1fF6KqKt63gXH18 /9iAfUXIAG4Jrg08VwyD4IlBjUaFhimuWuIB4RQdMh1yCsgrPd13vtKLYnVv+Vwh 2l5dX5hsI063eiYC2yvBg0XH7MkCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSm/wvN MAM88J3tJpISc1q0lhmF/DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeywjAPBAIAAjAJAwcAIAEN8wrAMA0GCSqGSIb3DQEBCwUAA4IB AQBDve4utqSzoGFspyxNVFrBmj7G8ubUjwjbmorOVkRRunqM4kW1VZ/i1xaBlZfa 92sCrM/6+0g0Si2zw+MHRWBEZqnPJMukQUOhbrCQSKfMaKOCr3+uyY6aqj/qzg3x BDAPYCkH0ptdtN3Vrp+wIx5L+0PV4g3NPH6gZ5/VkypejdI4HEnUv72CigOBlM+d NRw9L7LMKwW2kmGqcC+4n0CevLg/Jwc8pfhCEUbzlnkNnF6D+uuTnlrF/030igg3 S0ld+2RUjd2YLqqS8zhIE1bVxDNE+hABVAWthpiUD7CjL1jM4hO6oc3lPSWFzYT3 NjtAyYPwV+wYQRZITUIu2/26 -----END CERTIFICATE-----Generated at Fri Sep 5 08:17:34 2025 by rpki-client