$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS141642.roa File: AS141642.roa (raw, json) Hash identifier: PHSB6+OCKvR/Ubwiyc6PNVRFtxHhXLUh+XKeS4JPumU= Subject key identifier: 94:35:BB:E3:44:0A:FF:20:12:5E:D1:19:E8:FE:5B:DA:25:99:29:4B Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 35ACD09BB6815607090BFFE6F0A42FD4095B465F Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS141642.roa Signing time: Sat 02 May 2026 09:22:46 +0000 ROA not before: Sat 02 May 2026 09:17:46 +0000 ROA not after: Sat 01 May 2027 09:22:46 +0000 asID: 141642 IP address blocks: 157.15.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ac:d0:9b:b6:81:56:07:09:0b:ff:e6:f0:a4:2f:d4:09:5b:46:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:17:46 2026 GMT Not After : May 1 09:22:46 2027 GMT Subject: CN=9435BBE3440AFF20125ED119E8FE5BDA2599294B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dc:18:a0:ac:42:6c:b3:70:80:02:5b:83:dd: 5c:bf:2a:ea:52:0c:60:3c:0c:ce:fd:b8:d3:5b:35: 20:ce:ac:96:c7:ee:a0:92:8e:88:f1:d7:ed:14:fc: 4e:5b:da:1f:86:9a:11:c1:e7:7f:4d:61:82:43:b8: 2d:04:8f:36:6f:1e:45:b1:41:ba:ff:02:39:81:a0: 3d:4b:e8:80:bd:2a:6c:68:31:18:b8:c3:43:68:d9: 05:02:69:14:26:f5:0d:ce:bb:6f:de:d0:0f:6f:26: a3:9e:d2:e8:9d:7f:3c:0f:37:18:94:48:68:1e:2c: f3:dd:10:14:1e:ad:2b:b5:90:96:cb:7a:c2:5c:f5: 15:9d:8e:80:91:3d:12:c7:2d:9d:8c:11:20:06:17: 7f:d7:2d:78:8a:96:55:49:23:a9:c8:a9:a1:49:97: ca:bd:a2:7f:27:cb:61:da:ca:ab:f3:26:df:f7:81: 45:1b:10:fe:2c:22:81:4d:88:f1:8a:d8:14:34:02: 46:95:47:99:a0:75:74:ae:77:ca:7f:4f:61:55:9f: 8f:9a:79:c0:bc:86:1b:85:f4:0d:59:c5:4e:33:a2: 33:19:db:06:72:ee:81:1b:e9:26:6f:a2:a3:a8:4f: 0d:cb:c1:d9:e7:1e:6e:82:13:6d:65:72:53:16:9b: 47:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:35:BB:E3:44:0A:FF:20:12:5E:D1:19:E8:FE:5B:DA:25:99:29:4B X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS141642.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.139.0/24 Signature Algorithm: sha256WithRSAEncryption 16:05:9a:91:55:09:0b:6a:09:ab:fb:3a:66:3e:68:2c:e9:28: 9c:af:e1:d7:20:92:5d:bf:95:f6:93:0d:07:cb:ad:a2:2b:39: 83:2c:be:4b:1f:74:40:c6:1a:05:eb:1c:80:37:4e:aa:da:7e: c1:27:e7:db:a6:79:16:07:4e:9f:a8:fb:60:58:67:30:12:d8: c9:db:dd:c9:f8:17:4b:61:8f:79:4c:43:3a:21:18:9e:2b:2b: 4e:d6:d2:f0:2f:b2:09:85:e3:39:38:f7:e8:ab:ed:c8:08:5d: 6f:11:a0:4a:4c:bf:8b:d5:77:59:86:c1:61:21:8a:02:c7:ab: 3e:7b:cf:8a:ca:76:b1:c3:80:2b:b7:07:74:66:e4:e2:96:5f: 44:fd:f7:ad:ca:72:c4:e9:96:18:0f:54:88:47:dc:b4:a0:2e: d7:ad:b1:ab:96:69:37:5f:c8:4e:15:c8:6d:59:0f:af:1b:eb: 67:83:a4:fb:26:17:34:34:20:62:27:38:ed:d7:88:25:5d:f0: 1e:ff:3f:6a:b8:79:ae:79:47:7c:3f:c6:e3:3b:b5:59:fa:43: 66:33:29:4e:13:3e:75:5f:d7:be:6a:9c:f4:71:22:e3:64:76: cb:16:1c:84:14:62:c2:e9:7e:b4:15:9f:f9:c6:52:24:2d:85: c2:2b:0a:31 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUNazQm7aBVgcJC//m8KQv1AlbRl8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTc0NloX DTI3MDUwMTA5MjI0NlowMzExMC8GA1UEAxMoOTQzNUJCRTM0NDBBRkYyMDEyNUVE MTE5RThGRTVCREEyNTk5Mjk0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfcGKCsQmyzcIACW4PdXL8q6lIMYDwMzv2401s1IM6slsfuoJKOiPHX7RT8 TlvaH4aaEcHnf01hgkO4LQSPNm8eRbFBuv8COYGgPUvogL0qbGgxGLjDQ2jZBQJp FCb1Dc67b97QD28mo57S6J1/PA83GJRIaB4s890QFB6tK7WQlst6wlz1FZ2OgJE9 EsctnYwRIAYXf9cteIqWVUkjqcipoUmXyr2ifyfLYdrKq/Mm3/eBRRsQ/iwigU2I 8YrYFDQCRpVHmaB1dK53yn9PYVWfj5p5wLyGG4X0DVnFTjOiMxnbBnLugRvpJm+i o6hPDcvB2eceboITbWVyUxabRzMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSUNbvj RAr/IBJe0Rno/lvaJZkpSzAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQxNjQyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAnQ+LMA0GCSqGSIb3DQEBCwUAA4IBAQAWBZqRVQkLagmr+zpmPmgs6Sic r+HXIJJdv5X2kw0Hy62iKzmDLL5LH3RAxhoF6xyAN06q2n7BJ+fbpnkWB06fqPtg WGcwEtjJ293J+BdLYY95TEM6IRieKytO1tLwL7IJheM5OPfoq+3ICF1vEaBKTL+L 1XdZhsFhIYoCx6s+e8+Kynaxw4Artwd0ZuTill9E/fetynLE6ZYYD1SIR9y0oC7X rbGrlmk3X8hOFchtWQ+vG+tng6T7Jhc0NCBiJzjt14glXfAe/z9quHmueUd8P8bj O7VZ+kNmMylOEz51X9e+apz0cSLjZHbLFhyEFGLC6X60FZ/5xlIkLYXCKwox -----END CERTIFICATE-----Generated at Sat May 2 21:06:05 2026 by rpki-client