$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141060.roa File: AS141060.roa (raw, json) Hash identifier: iYOtqVqwaA7YGgoN+S0AJVGj8WMzIR+G5y9idSeyWY8= Subject key identifier: 01:46:D1:8D:71:0B:44:E1:0A:C9:46:A4:A7:A4:15:D4:85:AF:B2:B1 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5F1F0AC6208F2DD7A04E1EA3EAEF6DE718DA6CA7 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141060.roa Signing time: Sat 02 May 2026 21:13:40 +0000 ROA not before: Sat 02 May 2026 21:08:40 +0000 ROA not after: Sat 01 May 2027 21:13:40 +0000 asID: 141060 IP address blocks: 103.155.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1f:0a:c6:20:8f:2d:d7:a0:4e:1e:a3:ea:ef:6d:e7:18:da:6c:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:08:40 2026 GMT Not After : May 1 21:13:40 2027 GMT Subject: CN=0146D18D710B44E10AC946A4A7A415D485AFB2B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e2:93:d3:52:a0:bc:19:29:c8:cb:0a:bf:c8: 73:f5:bc:8a:a4:3c:3e:d6:43:a0:46:82:a8:c2:64: b2:c1:cf:4a:4c:a8:b5:8b:01:bd:ea:97:ea:d8:f3: f0:2a:ea:e8:d4:61:a0:7d:c6:7e:65:0a:8b:5f:a8: 53:d3:50:cf:cc:20:1b:5e:d4:b0:a7:62:10:ea:fc: 8f:79:86:1f:73:9d:f4:d8:99:c1:74:cf:71:6d:93: 54:f2:a3:09:12:65:17:35:4d:86:fc:78:dd:e3:c5: f9:65:e2:2e:79:b2:67:47:7d:4d:df:1e:9f:8b:31: ec:e7:40:a8:0b:b7:d7:92:8f:a4:d5:3e:a7:65:cc: 02:26:60:dc:71:86:0b:78:9c:f3:4a:f9:86:82:d5: e6:ff:15:c7:38:58:6a:92:fc:d0:65:3e:e9:d7:31: a3:8c:f6:c9:87:4c:ce:37:3b:39:99:14:43:81:88: d6:c9:4b:25:e4:e6:80:66:60:ef:88:ba:87:f3:27: e6:11:84:56:5e:e0:1d:dc:25:51:b5:ab:5f:51:49: ea:8c:64:ee:79:0e:f4:f2:06:16:61:cf:e6:c2:cb: fd:03:17:b8:95:b2:3c:52:3f:a1:9b:45:02:16:f7: 6a:66:d9:1d:74:a1:0a:c3:99:03:6a:fb:ea:02:d5: fe:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:46:D1:8D:71:0B:44:E1:0A:C9:46:A4:A7:A4:15:D4:85:AF:B2:B1 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141060.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.152.0/23 Signature Algorithm: sha256WithRSAEncryption 13:27:37:ce:be:71:08:05:7d:1e:22:7f:6f:3e:c3:ae:8b:74: e8:b0:f5:25:57:8a:69:a9:e4:72:24:a6:77:1a:f3:0e:81:b0: 7d:c6:5d:ee:41:47:80:cb:f9:9b:12:20:19:cc:16:4f:f0:3b: e1:35:9b:32:99:28:51:1b:bb:6d:1f:b7:b0:b0:b9:e2:bb:f9: 07:da:62:df:f9:e1:bf:da:cb:80:49:64:f7:24:3e:d2:48:b1: e6:43:26:c1:8a:0b:a9:f0:2e:66:5e:59:56:2c:ea:b8:f5:2a: 0f:49:5b:8b:84:04:dc:ee:2a:47:8e:b6:6e:56:01:10:21:5f: 5c:18:ce:0f:f9:2a:f8:e1:cc:ec:a9:47:44:c0:5e:5b:1c:df: 5d:b8:57:42:b7:25:25:6b:aa:7a:9c:ab:fb:00:9a:cf:db:11: 17:93:42:ee:e1:24:e6:7d:fc:e7:38:e9:bd:73:86:b1:13:8f: b8:6b:c4:16:9e:d0:52:24:ef:d2:2f:26:7e:a2:f5:2f:48:ad: bb:b9:40:c0:25:03:8c:f2:d5:56:cc:24:2c:51:a1:e9:7a:6e: e1:5e:8e:de:36:9a:98:1c:74:b6:4b:23:e5:f5:00:cb:1f:3b: f5:39:03:31:20:e2:33:bf:3b:ee:04:ba:47:2d:b6:af:0f:76: 95:61:75:83 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUXx8KxiCPLdegTh6j6u9t5xjabKcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDg0MFoX DTI3MDUwMTIxMTM0MFowMzExMC8GA1UEAxMoMDE0NkQxOEQ3MTBCNDRFMTBBQzk0 NkE0QTdBNDE1RDQ4NUFGQjJCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJHik9NSoLwZKcjLCr/Ic/W8iqQ8PtZDoEaCqMJkssHPSkyotYsBveqX6tjz 8Crq6NRhoH3GfmUKi1+oU9NQz8wgG17UsKdiEOr8j3mGH3Od9NiZwXTPcW2TVPKj CRJlFzVNhvx43ePF+WXiLnmyZ0d9Td8en4sx7OdAqAu315KPpNU+p2XMAiZg3HGG C3ic80r5hoLV5v8VxzhYapL80GU+6dcxo4z2yYdMzjc7OZkUQ4GI1slLJeTmgGZg 74i6h/Mn5hGEVl7gHdwlUbWrX1FJ6oxk7nkO9PIGFmHP5sLL/QMXuJWyPFI/oZtF Ahb3ambZHXShCsOZA2r76gLV/tkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQBRtGN cQtE4QrJRqSnpBXUha+ysTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMDYwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ5uYMA0GCSqGSIb3DQEBCwUAA4IBAQATJzfOvnEIBX0eIn9vPsOui3To sPUlV4ppqeRyJKZ3GvMOgbB9xl3uQUeAy/mbEiAZzBZP8DvhNZsymShRG7ttH7ew sLniu/kH2mLf+eG/2suASWT3JD7SSLHmQybBigup8C5mXllWLOq49SoPSVuLhATc 7ipHjrZuVgEQIV9cGM4P+Sr44czsqUdEwF5bHN9duFdCtyUla6p6nKv7AJrP2xEX k0Lu4STmffznOOm9c4axE4+4a8QWntBSJO/SLyZ+ovUvSK27uUDAJQOM8tVWzCQs UaHpem7hXo7eNpqYHHS2SyPl9QDLHzv1OQMxIOIzvzvuBLpHLbavD3aVYXWD -----END CERTIFICATE-----Generated at Sun May 3 00:42:24 2026 by rpki-client