$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140003.roa File: AS140003.roa (raw, json) Hash identifier: 1uzhHz3MjbiDOR1Xtsj7pwDqmoz+tnfEtuF2lxgjlsc= Subject key identifier: 54:07:B3:17:42:3F:06:98:9C:03:AF:D9:DC:53:F6:FE:35:7F:97:34 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 27A83A5D2DE880500B86EA5F8B132AF0A5E05097 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140003.roa Signing time: Sat 02 May 2026 21:29:49 +0000 ROA not before: Sat 02 May 2026 21:24:49 +0000 ROA not after: Sat 01 May 2027 21:29:49 +0000 asID: 140003 IP address blocks: 203.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:a8:3a:5d:2d:e8:80:50:0b:86:ea:5f:8b:13:2a:f0:a5:e0:50:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:24:49 2026 GMT Not After : May 1 21:29:49 2027 GMT Subject: CN=5407B317423F06989C03AFD9DC53F6FE357F9734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:26:e1:ff:d5:81:08:f9:28:98:18:63:6e:d1: 0d:e8:bc:2b:7f:89:14:8b:fc:9c:ee:c9:fb:2e:cc: c5:6b:14:7c:43:87:f4:9d:a0:72:ba:30:63:d7:f0: a2:b9:74:8d:34:6f:b0:b8:c5:f1:f5:c0:0c:ea:49: 32:1a:e1:de:4e:4e:9d:8d:de:ec:46:6d:c4:04:f9: d1:19:f1:d1:d3:b9:60:be:55:d3:ba:a3:81:03:41: fb:6a:21:83:fe:52:f9:9a:ba:32:15:ab:9b:7e:09: d9:1b:c4:2b:eb:17:1f:50:7d:60:04:87:bf:d1:f7: 45:93:93:2f:9d:d2:24:8d:f6:2b:70:2b:10:a1:8c: c4:b7:8d:aa:28:11:46:c1:15:f8:df:d2:c5:c7:24: 61:85:ad:5d:19:5a:9e:5a:df:5f:f5:17:30:f7:95: 24:c0:c8:fd:a4:a5:d1:31:20:3d:9c:6d:0a:64:32: f8:52:06:e6:48:fe:88:7b:ed:41:ed:5e:77:db:82: 15:64:8d:00:9d:80:73:2b:58:07:89:ab:23:bb:94: 22:74:56:bb:40:ae:60:2d:c2:37:01:1f:3e:32:9e: 63:ca:75:04:3f:b7:29:a6:b0:68:31:c7:ac:54:64: a0:24:74:b5:a8:29:da:3c:aa:45:95:a7:c9:da:05: 15:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:07:B3:17:42:3F:06:98:9C:03:AF:D9:DC:53:F6:FE:35:7F:97:34 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140003.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption 13:4c:7a:e7:a7:c8:30:73:90:da:25:71:e1:3e:7f:61:5b:48: d0:7d:89:2b:97:d9:29:bc:26:ee:c2:c3:c0:ec:54:1a:89:81: 34:5a:fe:33:99:72:f1:2d:d6:91:a1:b0:8c:8f:b6:3b:5e:a9: 47:a7:c7:59:88:46:c5:95:1d:45:22:9a:ba:31:14:06:1d:81: a0:66:40:7b:d0:56:6d:d3:31:33:40:c4:c1:14:ed:24:28:89: eb:8e:04:7c:cc:be:35:28:d0:88:d6:93:21:32:86:af:ee:1c: fb:5b:65:9c:2e:36:86:52:75:a4:0d:6c:0f:92:6e:25:4b:cf: 5e:c4:ec:47:f3:78:86:0d:81:d8:33:44:77:58:56:a5:5b:e1: 90:13:47:b8:0b:97:b4:b4:1a:00:a7:42:cc:f1:6e:6a:c4:63: 85:93:7c:67:f8:63:45:7d:dd:85:c2:e9:79:1b:7c:aa:90:82: 68:4d:0d:3e:fb:14:45:42:38:21:94:03:b1:e9:1f:e6:b2:00: df:28:a5:f0:dd:fd:93:f9:56:c8:de:5a:50:e3:e4:62:60:a7: 89:3d:e0:16:d5:21:e3:ff:ef:58:8a:8f:79:64:44:5f:94:3e: 38:86:f0:b8:e9:69:e5:72:39:36:73:25:a3:c4:b1:c9:85:49: 19:fe:ee:75 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUJ6g6XS3ogFALhupfixMq8KXgUJcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjQ0OVoX DTI3MDUwMTIxMjk0OVowMzExMC8GA1UEAxMoNTQwN0IzMTc0MjNGMDY5ODlDMDNB RkQ5REM1M0Y2RkUzNTdGOTczNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgm4f/VgQj5KJgYY27RDei8K3+JFIv8nO7J+y7MxWsUfEOH9J2gcrowY9fw orl0jTRvsLjF8fXADOpJMhrh3k5OnY3e7EZtxAT50Rnx0dO5YL5V07qjgQNB+2oh g/5S+Zq6MhWrm34J2RvEK+sXH1B9YASHv9H3RZOTL53SJI32K3ArEKGMxLeNqigR RsEV+N/SxcckYYWtXRlanlrfX/UXMPeVJMDI/aSl0TEgPZxtCmQy+FIG5kj+iHvt Qe1ed9uCFWSNAJ2AcytYB4mrI7uUInRWu0CuYC3CNwEfPjKeY8p1BD+3KaawaDHH rFRkoCR0tagp2jyqRZWnydoFFY0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRUB7MX Qj8GmJwDr9ncU/b+NX+XNDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwMDAzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAy3cNMA0GCSqGSIb3DQEBCwUAA4IBAQATTHrnp8gwc5DaJXHhPn9hW0jQ fYkrl9kpvCbuwsPA7FQaiYE0Wv4zmXLxLdaRobCMj7Y7XqlHp8dZiEbFlR1FIpq6 MRQGHYGgZkB70FZt0zEzQMTBFO0kKInrjgR8zL41KNCI1pMhMoav7hz7W2WcLjaG UnWkDWwPkm4lS89exOxH83iGDYHYM0R3WFalW+GQE0e4C5e0tBoAp0LM8W5qxGOF k3xn+GNFfd2Fwul5G3yqkIJoTQ0++xRFQjghlAOx6R/msgDfKKXw3f2T+VbI3lpQ 4+RiYKeJPeAW1SHj/+9Yio95ZERflD44hvC46Wnlcjk2cyWjxLHJhUkZ/u51 -----END CERTIFICATE-----Generated at Sun May 3 01:44:43 2026 by rpki-client