$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140385.roa File: AS140385.roa (raw, json) Hash identifier: io0F40C7MzwwsOT12ZXv+WoONTBtF4HGR4+pIwyhdn0= Subject key identifier: C1:7A:F1:9B:41:E3:E0:2F:CF:E5:83:C3:11:58:F7:91:ED:AF:3C:C8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 454DD74053A2A59DCE8FC9A6B19BC9DA7CEF686D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140385.roa Signing time: Sat 02 May 2026 21:08:39 +0000 ROA not before: Sat 02 May 2026 21:03:39 +0000 ROA not after: Sat 01 May 2027 21:08:39 +0000 asID: 140385 IP address blocks: 103.149.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:4d:d7:40:53:a2:a5:9d:ce:8f:c9:a6:b1:9b:c9:da:7c:ef:68:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:03:39 2026 GMT Not After : May 1 21:08:39 2027 GMT Subject: CN=C17AF19B41E3E02FCFE583C31158F791EDAF3CC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9a:7d:ef:d2:04:e7:fc:fe:41:95:71:09:47: 16:b3:9b:2d:22:8d:bc:b3:86:3d:e5:39:e1:a6:4f: ab:10:24:1f:d4:96:1f:ef:e7:b7:6f:32:32:94:67: 98:43:d0:e8:80:5f:cc:2c:2e:b4:53:cc:84:cf:fb: 35:e5:91:1c:62:76:df:a5:db:60:2d:40:e4:96:7b: 06:32:74:d0:eb:c3:08:04:63:f0:d4:a5:e6:46:71: 57:fe:cd:1f:96:55:7f:ed:aa:2d:42:e8:ac:82:5e: 88:59:d2:fb:b2:78:4e:e9:74:0c:89:54:50:0c:c0: 6b:96:f2:6d:46:05:ed:28:12:84:70:cd:34:bd:64: 43:fc:8e:39:8a:6c:06:bc:58:eb:c9:b8:3c:d1:67: 8d:a5:dc:52:5e:d4:da:c3:7b:77:04:02:2a:de:e1: e9:da:15:ab:dc:96:b7:5b:0b:de:bd:13:af:80:73: cf:13:16:df:1b:05:a9:00:29:9a:ac:88:9d:01:10: ad:3b:f2:74:a8:11:00:f8:72:77:8e:1b:cc:9c:35: c4:1a:36:d6:43:90:b7:a3:4e:2b:e2:9d:32:bf:e0: ee:08:3f:65:33:83:89:24:2e:57:14:c6:0f:a3:8f: 39:e6:1c:d8:cc:33:82:9e:78:f2:8f:02:89:76:40: ab:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7A:F1:9B:41:E3:E0:2F:CF:E5:83:C3:11:58:F7:91:ED:AF:3C:C8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140385.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.114.0/23 Signature Algorithm: sha256WithRSAEncryption a8:f0:de:80:72:a7:24:4b:4a:42:8f:b4:c8:94:f3:71:36:03: 36:d4:31:81:e3:80:3c:4c:ea:4d:c6:6c:bf:fe:73:2f:a8:fd: dd:3e:97:a8:59:8a:cf:a1:52:27:d7:35:88:79:2f:bc:ce:c6: 08:53:9f:d6:a8:eb:e6:89:77:81:09:66:4f:fe:44:3c:8a:0d: 67:cc:49:f3:63:91:08:b7:df:89:84:a3:bd:78:20:26:6d:df: ea:98:81:bf:c4:56:a0:ec:d3:6d:a3:7c:09:17:03:4d:8f:bf: fe:b8:ac:59:7a:b5:5a:0c:74:a8:23:93:6d:b2:b9:f2:24:f0: e6:3c:89:21:af:dd:e3:5e:0c:b9:70:54:f8:73:c2:53:a3:30: 9d:c3:53:2a:09:81:fc:4d:24:d6:0e:ae:0f:9d:22:e4:99:77: 69:8f:8e:5b:55:97:77:c6:98:8f:c1:05:c3:c9:78:0b:2f:12: 7a:9c:46:0c:ef:2f:c9:62:a8:5d:1e:ff:e1:bc:cb:c4:dc:f8: 25:cd:81:00:bf:2f:9d:73:0b:af:2b:87:1a:6b:5a:70:6d:e2: 51:9e:90:08:79:b2:c3:7b:52:db:ce:ef:4a:bb:46:63:72:a8: b8:52:d2:7f:8b:8e:74:ce:fa:b5:c4:77:e7:5f:55:e0:5a:c8: 93:5c:99:96 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURU3XQFOipZ3Oj8mmsZvJ2nzvaG0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDMzOVoX DTI3MDUwMTIxMDgzOVowMzExMC8GA1UEAxMoQzE3QUYxOUI0MUUzRTAyRkNGRTU4 M0MzMTE1OEY3OTFFREFGM0NDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaafe/SBOf8/kGVcQlHFrObLSKNvLOGPeU54aZPqxAkH9SWH+/nt28yMpRn mEPQ6IBfzCwutFPMhM/7NeWRHGJ236XbYC1A5JZ7BjJ00OvDCARj8NSl5kZxV/7N H5ZVf+2qLULorIJeiFnS+7J4Tul0DIlUUAzAa5bybUYF7SgShHDNNL1kQ/yOOYps BrxY68m4PNFnjaXcUl7U2sN7dwQCKt7h6doVq9yWt1sL3r0Tr4BzzxMW3xsFqQAp mqyInQEQrTvydKgRAPhyd44bzJw1xBo21kOQt6NOK+KdMr/g7gg/ZTODiSQuVxTG D6OPOeYc2Mwzgp548o8CiXZAq4ECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTBevGb QePgL8/lg8MRWPeR7a88yDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwMzg1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ5VyMA0GCSqGSIb3DQEBCwUAA4IBAQCo8N6AcqckS0pCj7TIlPNxNgM2 1DGB44A8TOpNxmy//nMvqP3dPpeoWYrPoVIn1zWIeS+8zsYIU5/WqOvmiXeBCWZP /kQ8ig1nzEnzY5EIt9+JhKO9eCAmbd/qmIG/xFag7NNto3wJFwNNj7/+uKxZerVa DHSoI5NtsrnyJPDmPIkhr93jXgy5cFT4c8JTozCdw1MqCYH8TSTWDq4PnSLkmXdp j45bVZd3xpiPwQXDyXgLLxJ6nEYM7y/JYqhdHv/hvMvE3PglzYEAvy+dcwuvK4ca a1pwbeJRnpAIebLDe1Lbzu9Ku0Zjcqi4UtJ/i450zvq1xHfnX1XgWsiTXJmW -----END CERTIFICATE-----Generated at Sun May 3 00:40:24 2026 by rpki-client