$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140002.roa File: AS140002.roa (raw, json) Hash identifier: QhSyRENUZDPZk3pP+JPdyeFDozKtVruAbjNSAvyDMgY= Subject key identifier: 14:0B:50:E2:A7:6D:A9:D8:5F:69:48:4E:6F:BF:9F:9C:CC:72:95:A1 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 58A8263DB75C06CA711E4C647EAD1A047AF72192 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140002.roa Signing time: Sat 02 May 2026 21:29:47 +0000 ROA not before: Sat 02 May 2026 21:24:47 +0000 ROA not after: Sat 01 May 2027 21:29:47 +0000 asID: 140002 IP address blocks: 103.148.78.0/24 maxlen: 24 203.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a8:26:3d:b7:5c:06:ca:71:1e:4c:64:7e:ad:1a:04:7a:f7:21:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:24:47 2026 GMT Not After : May 1 21:29:47 2027 GMT Subject: CN=140B50E2A76DA9D85F69484E6FBF9F9CCC7295A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bd:cf:a1:2c:32:ab:b2:b7:d1:70:83:1a:4d: aa:63:1d:1d:f3:c2:b8:4c:fa:6f:fb:43:db:23:57: 68:a5:f3:6e:6f:17:ed:77:fd:a4:38:9e:07:5f:56: 6a:d5:15:b8:f8:5b:58:d6:68:d9:f7:bb:e5:f9:a1: 2f:86:e7:ce:66:5e:12:5c:ef:32:fe:5a:2a:a2:f3: 99:94:51:93:d1:64:3f:f1:8f:fb:cc:9a:b9:50:18: e0:46:cd:7c:d0:f5:4c:25:e7:92:91:8d:bd:26:13: 76:bc:42:27:e7:08:42:6f:63:74:71:63:56:12:53: 80:4e:0c:ed:8c:d2:11:ab:b5:11:71:19:9b:b0:0f: 51:ac:1f:d7:af:5a:aa:cd:01:11:3c:71:fe:03:f6: 4b:65:1a:3a:5e:8a:65:40:f5:42:39:dd:56:ff:ae: 88:55:c7:ac:01:3c:8f:2f:8b:58:34:6f:b4:11:9c: 09:bb:37:64:59:32:52:99:0e:cc:e8:b7:8f:27:a2: e7:b4:83:34:71:2c:18:c9:10:4a:d6:ca:31:f5:6a: 4c:49:5b:d8:5b:d4:b9:d9:6d:a5:e2:f5:12:67:51: 4f:c6:70:07:5a:1d:73:b2:3d:2f:53:08:f8:9d:c3: dc:cd:bb:17:99:81:ae:fb:68:fa:d7:ca:ec:15:35: 24:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0B:50:E2:A7:6D:A9:D8:5F:69:48:4E:6F:BF:9F:9C:CC:72:95:A1 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140002.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.78.0/24 203.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption 32:37:d8:a5:dc:62:53:8c:80:c1:69:fe:fb:9d:fd:38:5f:f2: 93:05:c4:cf:ec:91:6d:68:e5:ee:7e:b7:55:1b:02:46:5d:e7: 7b:84:95:7a:4a:11:51:89:a3:3e:e2:d3:9b:82:f9:83:5c:61: 92:b9:18:4f:a7:ee:ae:6a:39:2a:e5:e9:04:28:1b:74:5e:a1: 9f:29:14:a3:2f:c6:b7:09:e6:b2:fe:0c:f8:ae:99:a2:9d:0e: d6:3e:54:a5:e9:50:f1:66:a3:af:2d:c5:cb:b9:2e:5e:9c:58: a6:b2:7e:00:7d:eb:d9:57:4f:e7:85:00:59:6e:a1:6d:1e:5a: df:b5:3f:c3:5d:fb:17:54:d0:28:0c:d7:ad:d9:8e:0c:19:e3: f3:53:a4:b8:60:e6:41:ef:4b:0c:8f:28:7d:fd:1c:22:a5:1b: 37:6f:67:18:be:c4:9e:91:39:e9:82:0c:79:39:62:7a:5d:8e: 7c:34:8d:ee:0b:9d:f8:e1:ee:33:2e:9d:ff:60:3d:0e:e4:f7: 5d:1f:60:61:f2:2f:ba:60:c9:df:c3:b0:17:e7:ef:6f:7d:77: 4e:12:3a:fe:88:be:8c:53:67:5a:45:0f:2c:a5:50:5c:f2:09: 07:99:85:c4:c5:6c:d2:6d:14:73:81:c3:c5:32:d5:4e:2a:15: 88:04:63:4d -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUWKgmPbdcBspxHkxkfq0aBHr3IZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjQ0N1oX DTI3MDUwMTIxMjk0N1owMzExMC8GA1UEAxMoMTQwQjUwRTJBNzZEQTlEODVGNjk0 ODRFNkZCRjlGOUNDQzcyOTVBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMK9z6EsMquyt9FwgxpNqmMdHfPCuEz6b/tD2yNXaKXzbm8X7Xf9pDieB19W atUVuPhbWNZo2fe75fmhL4bnzmZeElzvMv5aKqLzmZRRk9FkP/GP+8yauVAY4EbN fND1TCXnkpGNvSYTdrxCJ+cIQm9jdHFjVhJTgE4M7YzSEau1EXEZm7APUawf169a qs0BETxx/gP2S2UaOl6KZUD1QjndVv+uiFXHrAE8jy+LWDRvtBGcCbs3ZFkyUpkO zOi3jyei57SDNHEsGMkQStbKMfVqTElb2FvUudltpeL1EmdRT8ZwB1odc7I9L1MI +J3D3M27F5mBrvto+tfK7BU1JP0CAwEAAaOCAdIwggHOMB0GA1UdDgQWBBQUC1Di p22p2F9pSE5vv5+czHKVoTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwMDAyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAZ5ROAwQAy3cNMA0GCSqGSIb3DQEBCwUAA4IBAQAyN9il3GJTjIDBaf77 nf04X/KTBcTP7JFtaOXufrdVGwJGXed7hJV6ShFRiaM+4tObgvmDXGGSuRhPp+6u ajkq5ekEKBt0XqGfKRSjL8a3Ceay/gz4rpminQ7WPlSl6VDxZqOvLcXLuS5enFim sn4AfevZV0/nhQBZbqFtHlrftT/DXfsXVNAoDNet2Y4MGePzU6S4YOZB70sMjyh9 /RwipRs3b2cYvsSekTnpggx5OWJ6XY58NI3uC5344e4zLp3/YD0O5PddH2Bh8i+6 YMnfw7AX5+9vfXdOEjr+iL6MU2daRQ8spVBc8gkHmYXExWzSbRRzgcPFMtVOKhWI BGNN -----END CERTIFICATE-----Generated at Sun May 3 00:40:41 2026 by rpki-client