$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140030.roa File: AS140030.roa (raw, json) Hash identifier: Ak+Kcv0WCbPUM4ezSHQdx69NH1rSz22m6RjQDMrfUgc= Subject key identifier: FB:8D:C6:EA:3A:B4:DD:97:50:A2:34:51:EA:69:9E:30:89:CC:12:6A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 2D6E0010A02C63A43A89000138ACBD27EB680E44 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140030.roa Signing time: Sat 02 May 2026 08:35:55 +0000 ROA not before: Sat 02 May 2026 08:30:55 +0000 ROA not after: Sat 01 May 2027 08:35:55 +0000 asID: 140030 IP address blocks: 103.149.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:6e:00:10:a0:2c:63:a4:3a:89:00:01:38:ac:bd:27:eb:68:0e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:55 2026 GMT Not After : May 1 08:35:55 2027 GMT Subject: CN=FB8DC6EA3AB4DD9750A23451EA699E3089CC126A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:30:69:a5:3d:66:04:53:8c:68:e4:c1:f0:06: d2:f1:fb:6e:19:8c:d5:11:31:da:eb:55:ac:52:03: c8:f5:ee:98:29:39:21:d4:a3:4e:c3:d9:da:55:78: 3f:96:77:3f:f7:c1:27:69:80:5c:4e:94:02:ba:cc: 06:7e:3f:55:39:78:de:db:55:a7:eb:e5:c6:57:88: e0:26:b2:d2:7c:a5:52:72:54:90:10:05:f1:28:70: 02:91:0c:2d:0f:b8:db:36:74:32:ce:0a:3c:f3:fb: c8:e7:23:3c:aa:e7:2f:d6:04:b9:24:bb:cc:02:7b: 25:f0:0d:86:15:2c:37:48:df:32:dd:75:52:aa:db: 39:df:8a:8b:30:41:55:7c:da:df:e5:f9:a8:4d:50: 18:e4:90:7e:0b:ba:17:45:68:c6:4a:68:0d:ef:f1: c4:61:96:5f:cb:f0:08:d4:bb:21:20:03:85:aa:ec: ad:b7:b3:20:94:d0:a6:b5:a7:d7:7a:06:1b:09:29: 4a:73:2c:e5:88:88:9d:76:b9:78:63:eb:2c:d5:ed: d1:ce:d3:02:a9:bf:70:51:ff:c9:f5:27:39:7c:1c: 3b:6f:7e:31:a8:63:b3:4e:60:25:7d:37:c1:8a:16: 11:74:7b:13:8f:07:40:e9:98:e1:9b:ca:aa:9b:35: ee:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8D:C6:EA:3A:B4:DD:97:50:A2:34:51:EA:69:9E:30:89:CC:12:6A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.203.0/24 Signature Algorithm: sha256WithRSAEncryption 42:0d:1f:ea:48:d3:2b:4c:e6:d9:90:b8:0b:f6:23:59:b9:c7: 4e:28:2c:84:21:b1:f8:80:e3:35:ee:7a:e3:5e:59:b0:d9:9e: 60:87:10:dd:18:1a:15:e6:73:48:d6:a0:4b:ef:d4:88:3e:0e: 8c:2c:fe:63:13:c8:e5:4c:33:a8:27:33:ce:f7:e3:1b:e1:b0: 0f:30:b0:24:a1:b9:a3:2b:e1:87:da:87:79:11:7b:0d:73:31: 2c:f4:17:a1:dc:ed:ba:6c:36:2c:2a:f2:54:f7:5e:7f:b9:06: 4e:35:7c:ff:79:ad:6c:3e:3b:75:d6:4a:fa:13:30:ac:0c:b0: ef:04:25:20:8a:d2:43:a2:cf:a2:63:8c:d0:3c:fa:4a:ff:34: ee:af:fb:30:97:ad:4c:8d:e7:da:07:88:09:ef:f5:b6:bc:81: 36:91:49:20:18:2f:26:61:9f:3b:17:fc:31:81:df:86:46:97: 9e:65:b1:16:8a:1e:78:ef:1b:fe:0b:bf:51:04:06:9b:90:b9: a7:92:c7:96:c9:b9:a1:59:b2:88:05:0f:91:0d:12:db:b0:a3: 51:ca:2e:0f:c3:dc:21:16:6a:d9:ac:ce:1f:eb:55:f9:c1:fa: 84:c1:b2:47:9a:71:ef:96:69:1b:01:2e:8f:de:7c:64:2c:93: cf:35:c8:89 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIULW4AEKAsY6Q6iQABOKy9J+toDkQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA1NVoX DTI3MDUwMTA4MzU1NVowMzExMC8GA1UEAxMoRkI4REM2RUEzQUI0REQ5NzUwQTIz NDUxRUE2OTlFMzA4OUNDMTI2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQwaaU9ZgRTjGjkwfAG0vH7bhmM1REx2utVrFIDyPXumCk5IdSjTsPZ2lV4 P5Z3P/fBJ2mAXE6UArrMBn4/VTl43ttVp+vlxleI4Cay0nylUnJUkBAF8ShwApEM LQ+42zZ0Ms4KPPP7yOcjPKrnL9YEuSS7zAJ7JfANhhUsN0jfMt11UqrbOd+KizBB VXza3+X5qE1QGOSQfgu6F0VoxkpoDe/xxGGWX8vwCNS7ISADharsrbezIJTQprWn 13oGGwkpSnMs5YiInXa5eGPrLNXt0c7TAqm/cFH/yfUnOXwcO29+Mahjs05gJX03 wYoWEXR7E48HQOmY4ZvKqps17qcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT7jcbq OrTdl1CiNFHqaZ4wicwSajAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwMDMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ5XLMA0GCSqGSIb3DQEBCwUAA4IBAQBCDR/qSNMrTObZkLgL9iNZucdO KCyEIbH4gOM17nrjXlmw2Z5ghxDdGBoV5nNI1qBL79SIPg6MLP5jE8jlTDOoJzPO 9+Mb4bAPMLAkobmjK+GH2od5EXsNczEs9Beh3O26bDYsKvJU915/uQZONXz/ea1s Pjt11kr6EzCsDLDvBCUgitJDos+iY4zQPPpK/zTur/swl61MjefaB4gJ7/W2vIE2 kUkgGC8mYZ87F/wxgd+GRpeeZbEWih547xv+C79RBAabkLmnkseWybmhWbKIBQ+R DRLbsKNRyi4Pw9whFmrZrM4f61X5wfqEwbJHmnHvlmkbAS6P3nxkLJPPNciJ -----END CERTIFICATE-----Generated at Sun May 3 00:42:22 2026 by rpki-client