$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141107.roa File: AS141107.roa (raw, json) Hash identifier: oJ0bufrYf/QXkufL+B87WVtpZCr9f+Jship+y0UmxCk= Subject key identifier: F2:9D:49:7E:8B:0F:CF:23:13:23:E7:EB:2A:64:31:7F:73:B5:CD:15 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 556B207A8229E370B0DD913D7FDBF44F1666994B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141107.roa Signing time: Sat 02 May 2026 21:14:41 +0000 ROA not before: Sat 02 May 2026 21:09:41 +0000 ROA not after: Sat 01 May 2027 21:14:41 +0000 asID: 141107 IP address blocks: 103.157.26.0/23 maxlen: 24 103.169.6.0/23 maxlen: 24 103.187.106.0/24 maxlen: 24 2001:df5:b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:6b:20:7a:82:29:e3:70:b0:dd:91:3d:7f:db:f4:4f:16:66:99:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:09:41 2026 GMT Not After : May 1 21:14:41 2027 GMT Subject: CN=F29D497E8B0FCF231323E7EB2A64317F73B5CD15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:09:2e:43:e1:1f:ce:3e:40:d2:5d:31:19:79: b2:f5:68:b9:a0:c3:00:bc:94:bd:79:d1:0e:49:28: 42:2b:b2:6f:9f:20:da:22:c5:00:a6:be:c5:63:03: c0:83:a0:1c:1d:42:69:f6:63:59:65:d9:5e:39:ba: e1:8c:60:6a:2a:e1:08:94:e6:48:cc:7b:3e:13:b8: 36:b1:be:f8:be:90:06:40:70:fd:1e:53:52:6c:6e: b8:ce:dc:c6:a8:d7:69:1c:0e:38:55:12:0c:bc:db: e2:77:a4:0f:69:b7:bc:f2:e7:83:8f:90:57:bf:d1: 41:96:c0:ab:a3:ec:97:0d:0d:64:a6:13:29:aa:91: 0f:c6:73:8c:4f:ce:d5:d0:d3:13:f3:26:89:51:f9: 32:05:09:ca:9d:de:41:c1:46:d7:2c:d1:34:f3:57: 7d:cb:9f:65:e5:98:2c:04:ea:a0:00:b2:42:32:c1: 20:78:fa:cd:22:e2:b6:c9:ee:2d:30:5d:9f:da:b8: 20:28:fe:b6:87:b1:9e:16:7c:7c:aa:bb:90:a9:7e: f7:96:13:9b:79:15:4f:97:19:c7:85:81:6a:fc:3b: 31:85:40:d5:84:29:25:a0:b7:d6:7a:7f:b7:05:e2: 02:b9:78:6f:b1:ff:c3:d6:0f:27:25:3e:88:a4:3c: 89:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:9D:49:7E:8B:0F:CF:23:13:23:E7:EB:2A:64:31:7F:73:B5:CD:15 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.26.0/23 103.169.6.0/23 103.187.106.0/24 IPv6: 2001:df5:b80::/48 Signature Algorithm: sha256WithRSAEncryption 90:c3:cc:69:93:26:3b:46:de:8f:51:bc:83:ba:61:45:3f:91: fb:a5:20:0e:62:75:14:2f:e4:41:aa:05:4f:69:01:8c:4b:ae: 0b:4b:89:a5:5a:99:ec:d3:3d:92:b2:e5:8f:a1:fe:2c:a3:23: 71:8d:d5:59:f6:f3:0e:65:83:d1:71:07:a8:29:cf:2f:00:4c: b2:f5:8d:b0:48:96:08:75:e0:cd:3d:49:ea:f6:86:84:b6:f1: 09:a7:09:fd:0e:7e:d2:4e:a4:fa:a4:c4:e4:bc:2a:ff:8c:a7: e7:87:2e:d8:37:cc:8d:c8:e1:33:09:84:0e:77:4f:9c:9f:3c: 08:0e:5b:1c:bd:d2:aa:8a:53:d5:66:92:97:6d:ff:15:10:8a: 53:09:42:bb:72:46:e9:47:2c:d2:79:c4:6a:43:84:32:c0:3e: e6:24:53:be:cd:55:c5:bd:0e:fe:70:22:c5:0e:a3:52:48:19: 0b:d8:01:c3:71:82:69:40:d8:91:79:11:0e:4f:8c:1c:ec:4c: 95:78:b1:3e:ee:07:bc:bc:6c:e5:3a:4a:10:04:df:b5:c6:e0: 15:44:f2:16:8a:e1:35:24:41:c3:87:a8:96:26:63:be:f4:dc: 7d:1f:70:78:49:f3:18:51:5d:be:48:e0:1e:40:ce:dd:5b:a4: 90:b0:67:57 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUVWsgeoIp43Cw3ZE9f9v0TxZmmUswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMDk0MVoX DTI3MDUwMTIxMTQ0MVowMzExMC8GA1UEAxMoRjI5RDQ5N0U4QjBGQ0YyMzEzMjNF N0VCMkE2NDMxN0Y3M0I1Q0QxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQJLkPhH84+QNJdMRl5svVouaDDALyUvXnRDkkoQiuyb58g2iLFAKa+xWMD wIOgHB1CafZjWWXZXjm64YxgairhCJTmSMx7PhO4NrG++L6QBkBw/R5TUmxuuM7c xqjXaRwOOFUSDLzb4nekD2m3vPLng4+QV7/RQZbAq6Pslw0NZKYTKaqRD8ZzjE/O 1dDTE/MmiVH5MgUJyp3eQcFG1yzRNPNXfcufZeWYLATqoACyQjLBIHj6zSLitsnu LTBdn9q4ICj+toexnhZ8fKq7kKl+95YTm3kVT5cZx4WBavw7MYVA1YQpJaC31np/ twXiArl4b7H/w9YPJyU+iKQ8iZkCAwEAAaOCAekwggHlMB0GA1UdDgQWBBTynUl+ iw/PIxMj5+sqZDF/c7XNFTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMTA3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIA ATASAwQBZ50aAwQBZ6kGAwQAZ7tqMA8EAgACMAkDBwAgAQ31C4AwDQYJKoZIhvcN AQELBQADggEBAJDDzGmTJjtG3o9RvIO6YUU/kfulIA5idRQv5EGqBU9pAYxLrgtL iaVamezTPZKy5Y+h/iyjI3GN1Vn28w5lg9FxB6gpzy8ATLL1jbBIlgh14M09Ser2 hoS28QmnCf0OftJOpPqkxOS8Kv+Mp+eHLtg3zI3I4TMJhA53T5yfPAgOWxy90qqK U9Vmkpdt/xUQilMJQrtyRulHLNJ5xGpDhDLAPuYkU77NVcW9Dv5wIsUOo1JIGQvY AcNxgmlA2JF5EQ5PjBzsTJV4sT7uB7y8bOU6ShAE37XG4BVE8haK4TUkQcOHqJYm Y7703H0fcHhJ8xhRXb5I4B5Azt1bpJCwZ1c= -----END CERTIFICATE-----Generated at Tue May 5 08:13:58 2026 by rpki-client