$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa File: AS141966.roa (raw, json) Hash identifier: b1V5HsCq/TPhBpM9x2k04dAbr6ZgMa60e2C9B+5YH+Y= Subject key identifier: 50:18:97:DF:09:E1:62:D1:5C:04:07:2F:B8:25:A7:BD:53:AE:35:D3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 165965F89D1F87C085BF9158E7F3D3C2268D4E85 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa Signing time: Mon 01 Sep 2025 05:00:00 +0000 ROA not before: Mon 01 Sep 2025 04:55:00 +0000 ROA not after: Mon 31 Aug 2026 05:00:00 +0000 asID: 141966 IP address blocks: 2001:df6:a380::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 09:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:59:65:f8:9d:1f:87:c0:85:bf:91:58:e7:f3:d3:c2:26:8d:4e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 1 04:55:00 2025 GMT Not After : Aug 31 05:00:00 2026 GMT Subject: CN=501897DF09E162D15C04072FB825A7BD53AE35D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:44:ea:f5:6d:7e:41:ff:86:15:c7:76:fb:1a: 43:4a:6b:bf:3a:71:2c:9b:96:b9:03:4f:b5:96:46: c4:7a:11:4d:71:c4:6e:6e:70:26:7b:9f:5e:de:5e: 2a:4d:2b:e9:70:ed:35:d5:14:cb:6e:fa:a1:84:2e: e8:56:59:9d:ff:65:d5:95:dc:53:0b:e3:16:ae:2c: f1:7f:76:9f:d7:51:0d:bf:dc:81:3b:69:06:a9:1d: 68:5b:78:de:d7:c6:f4:ff:03:27:f6:d7:bc:12:08: 5d:50:46:c2:3f:46:f1:3b:47:fd:71:0d:53:ea:7f: c6:aa:3c:dd:da:b5:4c:e2:c3:14:60:74:23:5f:75: 1a:71:f2:87:dc:41:7b:43:b5:79:54:3e:8a:48:f5: 3d:b7:14:4e:4c:9e:c9:ab:36:7b:62:da:ef:e5:48: 26:38:59:5a:10:42:4b:dd:6f:77:8c:c3:b7:9a:d0: b2:c1:73:f1:4c:d6:00:09:fc:29:dc:91:ef:77:40: ab:69:2d:ce:90:18:79:01:b4:c9:77:eb:93:ac:4a: 4d:cd:b4:91:d3:ca:c5:1c:f2:69:25:e4:e6:9f:56: 22:bc:40:d7:0b:64:bd:b0:b2:2b:71:28:da:50:7c: d6:38:08:43:0a:b6:5a:e5:ca:d8:d5:d6:f9:07:69: 84:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:18:97:DF:09:E1:62:D1:5C:04:07:2F:B8:25:A7:BD:53:AE:35:D3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:a380::/48 Signature Algorithm: sha256WithRSAEncryption 65:1b:ad:71:57:ea:81:92:85:7d:8b:a4:bd:eb:4b:4e:8e:ca: 16:7a:6f:b7:9a:3d:b7:5d:d7:db:99:2d:4b:94:d6:ad:bf:7a: 7b:5d:f2:32:a8:d5:b2:09:f0:5b:e8:8a:ff:67:6b:00:68:68: ce:42:db:fa:ce:65:36:7b:e3:6c:8b:dd:c0:b6:4b:6b:be:eb: 6a:db:4b:ff:33:af:49:af:39:56:a3:2d:e2:47:16:4c:ee:1d: c3:eb:02:fb:f3:30:15:70:ca:3b:80:18:c4:4d:cb:77:e2:d8: 23:be:9a:f4:dd:9b:3c:f0:ef:be:e9:c8:c1:df:eb:9a:3f:41: 21:f6:42:58:31:36:8a:90:df:ed:34:3f:3c:14:5b:f6:82:2c: 0b:e8:69:2e:59:d0:57:d3:6b:c1:23:1f:2e:6c:b6:7b:56:57: ff:07:60:0b:f3:1d:03:bc:61:64:43:ef:2a:d1:9d:5a:10:fa: 3e:3a:13:83:75:2c:41:5d:31:36:02:ec:c7:cc:3f:50:66:c8: f5:e6:7e:54:34:5f:46:a0:10:b3:6b:0c:20:b3:02:77:e7:b0: 87:35:06:7a:75:bb:29:33:17:96:c4:f8:ef:89:3a:ec:a9:a0: 31:49:7a:6a:8b:1b:0b:f3:19:56:17:a9:5f:34:08:53:4e:18: e1:a5:a9:ca -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUFlll+J0fh8CFv5FY5/PTwiaNToUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMTA0NTUwMFoX DTI2MDgzMTA1MDAwMFowMzExMC8GA1UEAxMoNTAxODk3REYwOUUxNjJEMTVDMDQw NzJGQjgyNUE3QkQ1M0FFMzVEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANtE6vVtfkH/hhXHdvsaQ0prvzpxLJuWuQNPtZZGxHoRTXHEbm5wJnufXt5e Kk0r6XDtNdUUy276oYQu6FZZnf9l1ZXcUwvjFq4s8X92n9dRDb/cgTtpBqkdaFt4 3tfG9P8DJ/bXvBIIXVBGwj9G8TtH/XENU+p/xqo83dq1TOLDFGB0I191GnHyh9xB e0O1eVQ+ikj1PbcUTkyeyas2e2La7+VIJjhZWhBCS91vd4zDt5rQssFz8UzWAAn8 KdyR73dAq2ktzpAYeQG0yXfrk6xKTc20kdPKxRzyaSXk5p9WIrxA1wtkvbCyK3Eo 2lB81jgIQwq2WuXK2NXW+QdphGMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRQGJff CeFi0VwEBy+4Jae9U6410zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfajgDANBgkqhkiG9w0BAQsFAAOCAQEAZRutcVfqgZKFfYuk vetLTo7KFnpvt5o9t13X25ktS5TWrb96e13yMqjVsgnwW+iK/2drAGhozkLb+s5l NnvjbIvdwLZLa77rattL/zOvSa85VqMt4kcWTO4dw+sC+/MwFXDKO4AYxE3Ld+LY I76a9N2bPPDvvunIwd/rmj9BIfZCWDE2ipDf7TQ/PBRb9oIsC+hpLlnQV9NrwSMf Lmy2e1ZX/wdgC/MdA7xhZEPvKtGdWhD6PjoTg3UsQV0xNgLsx8w/UGbI9eZ+VDRf RqAQs2sMILMCd+ewhzUGenW7KTMXlsT474k67KmgMUl6aosbC/MZVhepXzQIU04Y 4aWpyg== -----END CERTIFICATE-----Generated at Fri Sep 5 08:11:44 2025 by rpki-client