$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141076.roa File: AS141076.roa (raw, json) Hash identifier: 4ujfd20jdYpSXS0aKeKR5Iplrqf4m5X5ZEhjf4s08Iw= Subject key identifier: 9C:7B:4A:16:07:A1:CB:77:41:26:78:11:07:AE:C5:E9:A4:87:D9:6B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4E08AD71CC29188CFC80B1BBF7A6058461F2A7E4 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141076.roa Signing time: Sat 02 May 2026 21:13:46 +0000 ROA not before: Sat 02 May 2026 21:08:46 +0000 ROA not after: Sat 01 May 2027 21:13:46 +0000 asID: 141076 IP address blocks: 103.155.221.0/24 maxlen: 24 103.165.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:08:ad:71:cc:29:18:8c:fc:80:b1:bb:f7:a6:05:84:61:f2:a7:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:08:46 2026 GMT Not After : May 1 21:13:46 2027 GMT Subject: CN=9C7B4A1607A1CB774126781107AEC5E9A487D96B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ac:10:b8:9e:46:66:37:77:13:c9:27:fc:bf: 36:28:69:bd:5d:a0:bd:74:b8:cb:00:58:24:b8:c6: 77:ce:a0:03:8b:fb:78:96:a3:06:7a:41:a2:69:ce: 59:86:e6:91:4c:c0:fb:1a:6f:36:7c:e0:1f:50:9e: 6e:04:d4:8e:3a:bb:b3:8e:2c:50:7c:dc:76:d8:ac: 1b:78:3a:a3:37:62:96:15:48:a3:ad:84:e7:4d:6b: 05:c3:3f:a4:38:cb:9f:39:79:e2:53:bf:07:d0:28: b6:26:2a:77:d0:a3:64:70:ef:d6:08:4f:fd:7a:54: 0b:45:33:94:e7:cc:00:24:6b:36:68:4c:4c:31:04: ce:1c:fb:b1:c3:59:96:d6:6b:dc:45:e3:ae:bf:fd: a6:0c:82:46:7a:8b:03:55:2e:83:58:56:50:e8:3d: 24:6c:63:de:5f:2a:c6:a8:83:9d:89:53:b4:20:8a: 4d:73:35:ab:3a:be:72:ab:14:1f:d7:30:8f:6b:27: 04:88:03:d7:6e:80:5b:1e:3b:37:f5:26:95:94:8f: 9a:dc:cf:85:05:d1:46:0d:e2:cf:24:34:d2:f6:8d: a5:53:59:ff:1d:6d:11:32:16:6b:7a:7a:da:63:c4: 0d:eb:94:a0:8b:11:89:41:79:d9:0f:71:ee:a0:fa: 82:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:7B:4A:16:07:A1:CB:77:41:26:78:11:07:AE:C5:E9:A4:87:D9:6B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141076.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.221.0/24 103.165.86.0/24 Signature Algorithm: sha256WithRSAEncryption 03:eb:3c:3b:13:7a:ef:97:f7:a1:fb:55:c7:18:f2:05:ed:fe: 32:52:89:eb:08:e1:c8:98:8d:59:41:43:bc:e4:e2:73:11:cd: 6c:e0:3f:15:ba:d2:50:97:3f:88:4d:75:b4:b4:d9:6b:da:ac: 52:7d:9b:37:1d:de:d1:7f:06:7f:b6:a2:cd:bd:7f:f6:51:e2: be:bd:9c:78:b4:d5:9d:93:1b:f4:21:b9:70:49:29:5b:f0:ff: 90:1f:35:a1:c8:9d:b7:4b:1c:b2:d3:cd:c9:01:2e:79:38:f4: f8:be:8f:85:9e:48:6a:81:dd:0c:41:55:13:3e:76:57:f5:74: d6:c5:d1:fb:86:ac:ad:91:45:4b:e8:73:6c:46:4f:ac:00:25: d4:dc:3b:bc:bc:ac:84:8f:5c:f0:60:3c:e6:66:67:8f:0a:c6: f4:e9:d3:f0:a7:e4:09:7e:21:e8:89:f2:cd:8b:75:0b:d0:a0: f6:f5:92:63:dc:d5:12:75:8c:2e:b1:48:8a:79:30:ed:b6:9f: 1c:6f:9f:be:03:88:90:e6:0f:c5:5f:4a:5c:1d:9c:5a:16:4a: e6:97:f9:f7:83:bd:0f:bf:25:38:a7:5d:94:ad:66:ff:d3:af: cf:4c:1c:84:1f:57:30:9a:79:97:b3:e4:95:28:c0:ae:98:cd: 91:28:05:db -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUTgitccwpGIz8gLG796YFhGHyp+QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDg0NloX DTI3MDUwMTIxMTM0NlowMzExMC8GA1UEAxMoOUM3QjRBMTYwN0ExQ0I3NzQxMjY3 ODExMDdBRUM1RTlBNDg3RDk2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2sELieRmY3dxPJJ/y/NihpvV2gvXS4ywBYJLjGd86gA4v7eJajBnpBomnO WYbmkUzA+xpvNnzgH1CebgTUjjq7s44sUHzcdtisG3g6ozdilhVIo62E501rBcM/ pDjLnzl54lO/B9AotiYqd9CjZHDv1ghP/XpUC0UzlOfMACRrNmhMTDEEzhz7scNZ ltZr3EXjrr/9pgyCRnqLA1Uug1hWUOg9JGxj3l8qxqiDnYlTtCCKTXM1qzq+cqsU H9cwj2snBIgD126AWx47N/UmlZSPmtzPhQXRRg3izyQ00vaNpVNZ/x1tETIWa3p6 2mPEDeuUoIsRiUF52Q9x7qD6gl0CAwEAAaOCAdIwggHOMB0GA1UdDgQWBBSce0oW B6HLd0EmeBEHrsXppIfZazAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMDc2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAZ5vdAwQAZ6VWMA0GCSqGSIb3DQEBCwUAA4IBAQAD6zw7E3rvl/eh+1XH GPIF7f4yUonrCOHImI1ZQUO85OJzEc1s4D8VutJQlz+ITXW0tNlr2qxSfZs3Hd7R fwZ/tqLNvX/2UeK+vZx4tNWdkxv0IblwSSlb8P+QHzWhyJ23Sxyy083JAS55OPT4 vo+Fnkhqgd0MQVUTPnZX9XTWxdH7hqytkUVL6HNsRk+sACXU3Du8vKyEj1zwYDzm ZmePCsb06dPwp+QJfiHoifLNi3UL0KD29ZJj3NUSdYwusUiKeTDttp8cb5++A4iQ 5g/FX0pcHZxaFkrml/n3g70PvyU4p12UrWb/06/PTByEH1cwmnmXs+SVKMCumM2R KAXb -----END CERTIFICATE-----Generated at Sun May 3 00:42:16 2026 by rpki-client