$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140424.roa File: AS140424.roa (raw, json) Hash identifier: ebYxkt9nYrxRuV5VANpl78EGX54A4v+S7JjEU6yBEm0= Subject key identifier: 1C:46:C1:3A:BC:4E:8F:C8:D0:97:8F:3C:80:63:67:01:30:95:83:A0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1BA6695E079FF38FC7C614C95A891A88E42D11DA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140424.roa Signing time: Sat 02 May 2026 21:10:10 +0000 ROA not before: Sat 02 May 2026 21:05:10 +0000 ROA not after: Sat 01 May 2027 21:10:10 +0000 asID: 140424 IP address blocks: 103.151.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a6:69:5e:07:9f:f3:8f:c7:c6:14:c9:5a:89:1a:88:e4:2d:11:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:05:10 2026 GMT Not After : May 1 21:10:10 2027 GMT Subject: CN=1C46C13ABC4E8FC8D0978F3C80636701309583A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1d:88:a2:56:58:8f:33:41:6d:9b:73:8b:4e: ce:d5:7d:d6:bd:e2:75:9e:63:01:5b:59:17:75:68: 45:d7:a3:4e:a0:2c:78:79:35:49:41:6b:cd:b9:ba: 22:51:29:71:b7:cc:37:4b:a5:3c:bd:be:9c:57:f7: b1:e6:d1:9d:34:f0:9b:4e:90:27:a2:61:30:db:3e: 3f:01:e2:16:f0:9e:f7:57:95:83:89:97:e4:fa:3b: 32:7b:29:88:d1:96:47:23:ac:a3:48:6f:f2:69:1a: b7:20:76:24:c7:45:e4:14:36:cd:00:dc:11:6a:64: fa:aa:96:4c:11:0a:00:80:24:f4:37:78:2c:89:63: 49:0c:b7:59:d1:ae:11:9f:41:28:51:32:9c:22:a9: 7d:77:42:c2:58:fb:00:7a:51:e4:29:d7:df:9f:26: 9a:a8:ec:5d:84:d0:57:01:aa:71:dd:26:72:87:eb: 00:af:be:8a:db:70:33:d3:fc:14:f2:82:6b:80:e8: 73:14:d1:38:63:da:b0:15:81:0e:ec:09:bb:e7:b3: e4:c9:f2:64:db:d5:6c:f5:aa:04:1e:aa:75:d0:aa: 91:60:e2:bf:4d:5e:df:33:f1:40:d7:e0:a4:bc:3b: 14:41:7a:bc:2d:99:c6:59:0d:4c:06:c1:4b:2b:9b: 2a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:46:C1:3A:BC:4E:8F:C8:D0:97:8F:3C:80:63:67:01:30:95:83:A0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140424.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.191.0/24 Signature Algorithm: sha256WithRSAEncryption a0:d0:b4:f5:3b:af:d6:7e:83:48:6e:93:d6:e9:01:ef:02:a7: 73:63:8c:08:1d:8b:e3:77:f9:96:7a:03:02:fd:4f:f7:6a:1e: 41:ea:74:5b:f1:15:26:b5:df:a3:7e:6c:05:fc:ac:2e:2a:c3: fe:94:e3:19:d7:6c:cc:4d:72:5c:d1:62:f2:91:4c:9e:49:3e: fd:f5:49:a8:be:c7:7d:c5:ec:33:f7:32:d7:49:22:f3:d0:93: 3b:56:f7:e9:09:57:e8:84:8a:d4:8a:e9:a2:10:80:4e:3b:a2: d4:e0:77:e6:6f:24:7e:43:4c:46:c9:84:e5:66:d1:46:a1:3d: e5:7f:5c:00:19:64:4d:11:bf:cd:de:89:70:95:c3:72:ee:08: 5b:f4:c1:10:2e:f5:a7:d0:8c:ff:99:e1:c7:6a:26:d7:f1:d2: 2c:42:f3:1c:96:76:ba:f2:aa:c4:2c:50:b8:7a:16:c7:bb:20: 60:e9:b1:4e:8c:02:70:c9:f7:8a:bc:eb:7d:d7:b4:67:a2:bb: ba:a3:b6:d5:51:4b:65:96:d9:3f:31:7d:07:69:21:8d:12:d4: dd:68:54:a2:81:ab:e3:6f:bd:39:e7:09:a0:32:28:bf:3e:a7: 2c:1c:bb:6b:db:38:c5:e0:a4:44:88:66:60:ad:1a:a9:59:07: 73:e1:ba:52 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUG6ZpXgef84/HxhTJWokaiOQtEdowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDUxMFoX DTI3MDUwMTIxMTAxMFowMzExMC8GA1UEAxMoMUM0NkMxM0FCQzRFOEZDOEQwOTc4 RjNDODA2MzY3MDEzMDk1ODNBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUdiKJWWI8zQW2bc4tOztV91r3idZ5jAVtZF3VoRdejTqAseHk1SUFrzbm6 IlEpcbfMN0ulPL2+nFf3sebRnTTwm06QJ6JhMNs+PwHiFvCe91eVg4mX5Po7Mnsp iNGWRyOso0hv8mkatyB2JMdF5BQ2zQDcEWpk+qqWTBEKAIAk9Dd4LIljSQy3WdGu EZ9BKFEynCKpfXdCwlj7AHpR5CnX358mmqjsXYTQVwGqcd0mcofrAK++ittwM9P8 FPKCa4DocxTROGPasBWBDuwJu+ez5MnyZNvVbPWqBB6qddCqkWDiv01e3zPxQNfg pLw7FEF6vC2ZxlkNTAbBSyubKlMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQcRsE6 vE6PyNCXjzyAY2cBMJWDoDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwNDI0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ5e/MA0GCSqGSIb3DQEBCwUAA4IBAQCg0LT1O6/WfoNIbpPW6QHvAqdz Y4wIHYvjd/mWegMC/U/3ah5B6nRb8RUmtd+jfmwF/KwuKsP+lOMZ12zMTXJc0WLy kUyeST799Umovsd9xewz9zLXSSLz0JM7VvfpCVfohIrUiumiEIBOO6LU4HfmbyR+ Q0xGyYTlZtFGoT3lf1wAGWRNEb/N3olwlcNy7ghb9MEQLvWn0Iz/meHHaibX8dIs QvMclna68qrELFC4ehbHuyBg6bFOjAJwyfeKvOt917Rnoru6o7bVUUtlltk/MX0H aSGNEtTdaFSigavjb7055wmgMii/PqcsHLtr2zjF4KREiGZgrRqpWQdz4bpS -----END CERTIFICATE-----Generated at Sun May 3 00:42:11 2026 by rpki-client