$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141071.roa File: AS141071.roa (raw, json) Hash identifier: ajJt6lO5Hwp2dCPn6Dlyc6Kz/GS5UpzXtOMJR9ZDq1g= Subject key identifier: 83:E5:42:3B:98:94:47:A2:3B:B0:0E:6F:F2:EA:15:25:F9:88:34:6B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 432CEEFAED568413F344F7A321D49903CB059F55 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141071.roa Signing time: Sat 02 May 2026 21:35:41 +0000 ROA not before: Sat 02 May 2026 21:30:41 +0000 ROA not after: Sat 01 May 2027 21:35:41 +0000 asID: 141071 IP address blocks: 2406:7640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:2c:ee:fa:ed:56:84:13:f3:44:f7:a3:21:d4:99:03:cb:05:9f:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:30:41 2026 GMT Not After : May 1 21:35:41 2027 GMT Subject: CN=83E5423B989447A23BB00E6FF2EA1525F988346B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:22:51:c2:72:39:d2:fe:e9:2f:7f:68:2d:1f: c4:87:fb:c2:72:2f:de:b6:b8:cf:01:3b:e9:e3:79: 50:3b:22:d4:84:a2:a4:22:a6:89:d9:f2:e1:1b:32: 3a:e6:a0:59:34:3f:c6:ad:a3:d2:ef:27:4b:7f:db: 78:1f:97:40:6a:d3:c2:66:99:c1:89:81:b3:a1:9d: 1f:40:62:42:b8:09:9a:48:ff:68:13:e2:c7:7c:33: f9:d6:ce:b1:b7:af:31:a1:c7:d3:0e:81:2c:9c:aa: 6d:05:4d:df:ed:03:78:7e:bf:f5:1d:60:12:1f:57: ba:03:67:a6:38:d8:64:de:d3:31:c4:a2:80:4e:c8: 43:41:6e:d1:0e:81:c4:f4:bf:89:fd:2d:10:09:ab: 6c:f3:53:32:86:bf:40:00:c8:60:a0:05:61:67:ea: 76:9d:ec:1a:04:f2:f3:e0:cb:0f:73:89:7d:b3:7a: d1:05:4a:83:39:ea:33:7f:68:c7:62:6e:35:f1:38: 5e:d0:3b:50:de:13:9c:b1:0d:d1:11:73:08:15:31: 80:61:e0:44:1e:46:ec:8e:58:31:79:55:b0:f7:84: 57:06:db:58:43:a5:89:dc:f8:31:aa:62:54:85:5a: d5:15:db:97:e9:1e:47:ab:9b:43:86:59:b5:7b:9d: 48:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E5:42:3B:98:94:47:A2:3B:B0:0E:6F:F2:EA:15:25:F9:88:34:6B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141071.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7640::/32 Signature Algorithm: sha256WithRSAEncryption a3:0e:06:b2:62:c1:37:f8:fc:07:d7:12:df:c7:1d:73:d0:83: ad:34:a6:42:22:c6:89:99:fa:df:ac:1a:66:ba:93:f4:c2:67: e0:ac:e5:27:0a:60:51:48:1f:a6:d8:ca:19:e4:3b:b5:aa:4e: c7:0b:8d:97:f3:25:1d:92:f5:ff:24:67:ee:75:9f:33:bb:27: 2f:dd:7a:bd:c0:5d:86:07:37:5e:62:78:88:1b:48:51:6e:d4: 28:7c:52:98:14:e6:40:75:fb:62:98:f7:49:7d:d6:b6:e2:34: d0:f2:6c:74:c4:ca:53:51:04:e4:bc:cb:67:34:7e:fe:d2:7f: e7:34:dd:69:ce:58:2c:5c:fc:ec:d3:7b:ae:d5:0c:34:f6:b3: 66:b4:d3:58:22:8e:19:bb:97:a9:3b:fd:09:13:51:18:fc:3b: fd:26:e8:45:c9:4e:51:b7:e4:b9:47:ce:86:e1:b9:62:7f:1a: 6c:47:38:e6:39:6a:98:b6:74:dd:3a:78:07:38:73:5d:93:ca: 98:b6:f0:86:50:59:8b:b5:49:d8:b6:b7:56:1b:20:37:ca:81: eb:a6:dc:7e:61:5f:75:f6:1e:e1:f8:be:f5:e0:1b:d8:2b:fd: 70:f4:84:06:01:3f:eb:6e:a5:d3:3a:77:0b:0a:4d:a6:1c:d4: a9:61:f2:47 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUQyzu+u1WhBPzRPejIdSZA8sFn1UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMzA0MVoX DTI3MDUwMTIxMzU0MVowMzExMC8GA1UEAxMoODNFNTQyM0I5ODk0NDdBMjNCQjAw RTZGRjJFQTE1MjVGOTg4MzQ2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJEiUcJyOdL+6S9/aC0fxIf7wnIv3ra4zwE76eN5UDsi1ISipCKmidny4Rsy OuagWTQ/xq2j0u8nS3/beB+XQGrTwmaZwYmBs6GdH0BiQrgJmkj/aBPix3wz+dbO sbevMaHH0w6BLJyqbQVN3+0DeH6/9R1gEh9XugNnpjjYZN7TMcSigE7IQ0Fu0Q6B xPS/if0tEAmrbPNTMoa/QADIYKAFYWfqdp3sGgTy8+DLD3OJfbN60QVKgznqM39o x2JuNfE4XtA7UN4TnLEN0RFzCBUxgGHgRB5G7I5YMXlVsPeEVwbbWEOlidz4Mapi VIVa1RXbl+keR6ubQ4ZZtXudSKECAwEAAaOCAc0wggHJMB0GA1UdDgQWBBSD5UI7 mJRHojuwDm/y6hUl+Yg0azAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMDcxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAZ2QDANBgkqhkiG9w0BAQsFAAOCAQEAow4GsmLBN/j8B9cS38cdc9CD rTSmQiLGiZn636waZrqT9MJn4KzlJwpgUUgfptjKGeQ7tapOxwuNl/MlHZL1/yRn 7nWfM7snL916vcBdhgc3XmJ4iBtIUW7UKHxSmBTmQHX7Ypj3SX3WtuI00PJsdMTK U1EE5LzLZzR+/tJ/5zTdac5YLFz87NN7rtUMNPazZrTTWCKOGbuXqTv9CRNRGPw7 /SboRclOUbfkuUfOhuG5Yn8abEc45jlqmLZ03Tp4BzhzXZPKmLbwhlBZi7VJ2La3 VhsgN8qB66bcfmFfdfYe4fi+9eAb2Cv9cPSEBgE/626l0zp3CwpNphzUqWHyRw== -----END CERTIFICATE-----Generated at Sun May 3 00:41:22 2026 by rpki-client