$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140480.roa File: AS140480.roa (raw, json) Hash identifier: GQpYSuqOOvv7hLh8Yoz7wnxsg7MvfGqfjoKomdGzGoQ= Subject key identifier: 39:99:5B:24:4B:B4:33:D9:FC:24:C3:40:FF:A3:A0:45:E4:88:80:80 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 542938092F9107F185F5BAB24E5CDE381A35C0EB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140480.roa Signing time: Sat 02 May 2026 09:21:25 +0000 ROA not before: Sat 02 May 2026 09:16:25 +0000 ROA not after: Sat 01 May 2027 09:21:25 +0000 asID: 140480 IP address blocks: 103.198.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:29:38:09:2f:91:07:f1:85:f5:ba:b2:4e:5c:de:38:1a:35:c0:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:16:25 2026 GMT Not After : May 1 09:21:25 2027 GMT Subject: CN=39995B244BB433D9FC24C340FFA3A045E4888080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c0:2e:1d:27:a4:6e:32:92:f9:52:7a:53:8b: 08:57:45:81:c5:01:33:d2:12:cc:51:f3:d8:8b:15: ae:30:c5:30:cc:52:09:c2:0f:cb:b5:22:cc:63:00: 61:bd:44:96:d7:7d:31:33:72:26:37:9f:02:bd:51: 84:c8:c6:e0:09:ec:21:58:d3:29:59:f2:14:6f:2c: c4:a9:4b:a7:e5:99:1f:02:7b:bb:d3:30:c0:b8:87: 9b:87:1c:4c:90:63:9c:25:7d:67:b2:b9:23:32:2f: fb:ba:75:21:c8:d4:0a:ea:45:34:88:20:61:9e:27: 16:8f:47:6b:1c:ae:87:02:e6:18:65:a8:25:2a:3c: 90:93:1c:7a:78:68:f0:84:f9:6c:5f:3d:4c:a3:95: a0:89:bf:54:6b:6a:f4:8a:e1:69:07:f8:88:36:75: ec:03:79:51:37:e2:d5:26:6d:d3:95:d2:d7:89:d4: 3f:57:17:ce:9f:6a:75:31:c8:e9:7f:44:78:09:34: a6:8b:66:a3:00:0f:7c:46:9a:73:d6:ae:9c:f7:68: c7:e4:5c:e2:21:3a:2f:a3:f1:ad:be:3b:9c:34:7e: f5:1c:0f:e8:5c:ac:b3:e4:b6:e3:4c:6d:4d:b7:be: 25:b8:09:20:a6:61:76:88:25:3b:b1:6e:5d:92:83: fe:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:99:5B:24:4B:B4:33:D9:FC:24:C3:40:FF:A3:A0:45:E4:88:80:80 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.198.129.0/24 Signature Algorithm: sha256WithRSAEncryption 75:94:19:57:fa:fb:bf:3e:ac:74:af:6e:e0:3a:85:ee:1c:47: ea:a5:5d:6b:b7:53:5f:5a:d3:f5:35:ca:39:e7:fc:16:a2:da: 51:b4:eb:34:81:b3:f8:f9:b2:73:8e:cc:09:f3:a7:ae:53:31: 06:a9:e3:ff:6c:90:03:89:8e:ec:6c:30:a0:28:38:8b:d1:28: 81:9b:6a:24:c1:6a:4c:9e:c8:21:ca:70:ea:9c:da:f2:48:65: ed:fe:be:f1:72:ab:ab:b2:e7:01:eb:d2:49:24:48:cf:4b:6e: 5c:f6:16:1d:82:94:82:d6:f1:66:35:e2:86:a5:9d:37:78:e5: 8e:ea:74:44:53:b9:14:20:e2:4e:a9:6a:21:d5:2f:77:33:e1: bc:16:79:cb:32:78:fe:9f:aa:49:03:a5:81:88:08:ca:f2:b2: 0e:b8:bc:ed:f2:fd:1f:c7:2a:8a:89:d5:ac:bb:59:d1:ff:c4: 3d:48:b6:3b:49:9e:a2:19:ed:ac:cb:18:91:ec:6e:c9:06:6a: 95:d5:85:76:67:de:ed:99:99:40:2d:a9:38:e7:1f:6f:60:03: 0e:92:eb:32:55:6c:24:79:34:cc:a6:6c:6b:c8:61:3d:13:d4: 78:91:7a:1a:f9:9d:e9:b4:f9:97:28:13:7f:d2:f7:98:e0:16: 6a:ff:c8:87 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUVCk4CS+RB/GF9bqyTlzeOBo1wOswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTYyNVoX DTI3MDUwMTA5MjEyNVowMzExMC8GA1UEAxMoMzk5OTVCMjQ0QkI0MzNEOUZDMjRD MzQwRkZBM0EwNDVFNDg4ODA4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLALh0npG4ykvlSelOLCFdFgcUBM9ISzFHz2IsVrjDFMMxSCcIPy7UizGMA Yb1Eltd9MTNyJjefAr1RhMjG4AnsIVjTKVnyFG8sxKlLp+WZHwJ7u9MwwLiHm4cc TJBjnCV9Z7K5IzIv+7p1IcjUCupFNIggYZ4nFo9HaxyuhwLmGGWoJSo8kJMcenho 8IT5bF89TKOVoIm/VGtq9IrhaQf4iDZ17AN5UTfi1SZt05XS14nUP1cXzp9qdTHI 6X9EeAk0potmowAPfEaac9aunPdox+Rc4iE6L6Pxrb47nDR+9RwP6Fyss+S240xt Tbe+JbgJIKZhdoglO7FuXZKD/kECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQ5mVsk S7Qz2fwkw0D/o6BF5IiAgDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwNDgwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ8aBMA0GCSqGSIb3DQEBCwUAA4IBAQB1lBlX+vu/Pqx0r27gOoXuHEfq pV1rt1NfWtP1Nco55/wWotpRtOs0gbP4+bJzjswJ86euUzEGqeP/bJADiY7sbDCg KDiL0SiBm2okwWpMnsghynDqnNrySGXt/r7xcqursucB69JJJEjPS25c9hYdgpSC 1vFmNeKGpZ03eOWO6nREU7kUIOJOqWoh1S93M+G8FnnLMnj+n6pJA6WBiAjK8rIO uLzt8v0fxyqKidWsu1nR/8Q9SLY7SZ6iGe2syxiR7G7JBmqV1YV2Z97tmZlALak4 5x9vYAMOkusyVWwkeTTMpmxryGE9E9R4kXoa+Z3ptPmXKBN/0veY4BZq/8iH -----END CERTIFICATE-----Generated at Sun May 3 00:41:12 2026 by rpki-client