$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140482.roa File: AS140482.roa (raw, json) Hash identifier: dPygTTcWF7xUiU/JzMJb9spl8sMeeHQD/yj1dCwwhyg= Subject key identifier: C0:FB:E1:80:3D:80:C0:F6:08:B7:B2:A3:E1:C2:E7:C6:1F:ED:1F:B9 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 46FDD5DCE347CD640CB7EE9EE9805D3FC5899C33 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140482.roa Signing time: Sat 02 May 2026 21:16:10 +0000 ROA not before: Sat 02 May 2026 21:11:10 +0000 ROA not after: Sat 01 May 2027 21:16:10 +0000 asID: 140482 IP address blocks: 27.112.77.0/24 maxlen: 24 103.22.136.0/22 maxlen: 24 103.152.140.0/23 maxlen: 24 103.231.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:fd:d5:dc:e3:47:cd:64:0c:b7:ee:9e:e9:80:5d:3f:c5:89:9c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:11:10 2026 GMT Not After : May 1 21:16:10 2027 GMT Subject: CN=C0FBE1803D80C0F608B7B2A3E1C2E7C61FED1FB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a9:28:e8:53:a3:e4:a1:46:24:f0:a1:e6:f7: 6e:56:cc:57:a7:73:58:0c:08:6b:c0:97:da:ef:e0: e9:61:48:f2:25:ce:17:a0:0a:46:a1:5c:3f:59:38: c4:76:2d:e2:03:10:a6:7e:ea:11:ee:ba:df:56:e4: 71:41:0b:c3:99:2c:9c:28:7f:ab:9b:1d:dc:b4:0f: 27:ff:14:18:42:fa:d0:79:87:a4:e7:f7:34:45:31: a2:de:5d:57:be:b3:97:a5:d0:bf:de:a3:04:9b:09: 2f:3a:85:29:ac:30:2a:d5:59:45:95:6d:5e:ec:31: f3:06:17:2c:4d:22:e9:ee:4a:6d:23:7c:c2:82:26: ad:8b:9a:33:b2:ab:aa:96:81:10:18:a0:b0:50:f4: 30:ca:f7:5f:de:c0:03:84:a9:f7:c9:51:c8:d2:33: 7d:90:6b:20:b6:20:ca:da:c1:75:7c:86:1a:b4:44: 47:1f:5f:c0:b2:00:5d:dd:2c:24:5b:32:70:22:6d: 6c:85:c9:9f:c9:6b:59:36:ba:ff:2d:ee:8c:b2:c6: 79:07:c9:a3:91:9b:cb:32:f0:1b:a0:16:5f:b9:00: a4:c0:9f:24:82:a2:9a:c1:c4:b4:32:2b:ac:a3:62: 5d:d4:b9:8c:19:d9:e9:82:97:4f:1f:7a:e3:34:23: 2f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FB:E1:80:3D:80:C0:F6:08:B7:B2:A3:E1:C2:E7:C6:1F:ED:1F:B9 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140482.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.77.0/24 103.22.136.0/22 103.152.140.0/23 103.231.171.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:a9:77:dd:83:e9:db:ba:69:df:51:e3:c3:82:ec:cf:8d:f0: 71:8e:ab:0f:e6:6a:bc:7d:a8:b3:e6:51:c4:20:65:9a:b7:2f: c8:8d:0c:dd:77:f5:15:0d:ee:dd:99:71:eb:99:13:ea:ea:92: 6f:f7:30:29:9c:97:43:3a:69:32:85:bb:a8:a0:8b:22:8d:c9: c6:16:04:a3:52:ec:82:e3:96:bd:a8:58:02:e7:bb:c5:56:18: ad:17:fe:69:66:2a:83:78:9f:23:2c:0b:63:89:36:f8:3e:62: 03:c1:67:fa:30:ed:28:41:88:3c:c0:0a:78:80:c9:3e:8e:6d: a5:54:24:17:fc:e8:c5:64:7a:22:90:8c:7c:0b:5c:d5:d9:7a: fe:98:a5:4a:b6:e8:de:de:37:0e:31:aa:6c:5b:19:d3:bd:83: 36:43:65:b2:8a:68:0c:19:d3:e9:0c:75:f1:3b:cb:f6:8f:26: a3:6c:3a:73:a2:65:ef:b4:65:eb:df:cb:29:e0:40:81:e3:44: 17:d3:87:df:db:dd:04:38:de:aa:06:6d:ff:93:54:8d:80:1d: f3:76:04:27:26:93:75:80:2b:29:08:0f:c2:05:3d:54:b5:b0: ea:4e:16:7f:3a:13:51:eb:3b:cd:c9:5d:56:00:8c:7f:ee:da: 00:fe:4e:58 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIURv3V3ONHzWQMt+6e6YBdP8WJnDMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTExMFoX DTI3MDUwMTIxMTYxMFowMzExMC8GA1UEAxMoQzBGQkUxODAzRDgwQzBGNjA4QjdC MkEzRTFDMkU3QzYxRkVEMUZCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOypKOhTo+ShRiTwoeb3blbMV6dzWAwIa8CX2u/g6WFI8iXOF6AKRqFcP1k4 xHYt4gMQpn7qEe6631bkcUELw5ksnCh/q5sd3LQPJ/8UGEL60HmHpOf3NEUxot5d V76zl6XQv96jBJsJLzqFKawwKtVZRZVtXuwx8wYXLE0i6e5KbSN8woImrYuaM7Kr qpaBEBigsFD0MMr3X97AA4Sp98lRyNIzfZBrILYgytrBdXyGGrRERx9fwLIAXd0s JFsycCJtbIXJn8lrWTa6/y3ujLLGeQfJo5GbyzLwG6AWX7kApMCfJIKimsHEtDIr rKNiXdS5jBnZ6YKXTx964zQjL/kCAwEAAaOCAd4wggHaMB0GA1UdDgQWBBTA++GA PYDA9gi3sqPhwufGH+0fuTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwNDgyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIA ATAYAwQAG3BNAwQCZxaIAwQBZ5iMAwQAZ+erMA0GCSqGSIb3DQEBCwUAA4IBAQAu qXfdg+nbumnfUePDguzPjfBxjqsP5mq8faiz5lHEIGWaty/IjQzdd/UVDe7dmXHr mRPq6pJv9zApnJdDOmkyhbuooIsijcnGFgSjUuyC45a9qFgC57vFVhitF/5pZiqD eJ8jLAtjiTb4PmIDwWf6MO0oQYg8wAp4gMk+jm2lVCQX/OjFZHoikIx8C1zV2Xr+ mKVKtuje3jcOMapsWxnTvYM2Q2WyimgMGdPpDHXxO8v2jyajbDpzomXvtGXr38sp 4ECB40QX04ff290EON6qBm3/k1SNgB3zdgQnJpN1gCspCA/CBT1UtbDqThZ/OhNR 6zvNyV1WAIx/7toA/k5Y -----END CERTIFICATE-----Generated at Sun May 3 01:40:39 2026 by rpki-client