$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141128.roa File: AS141128.roa (raw, json) Hash identifier: B0/tmZDI3XG08ma8J2OAYLRAnk5FFb8TDLaMoldTT/Q= Subject key identifier: EC:F1:4C:A9:9C:BE:A6:3F:40:1A:8A:63:FD:1E:79:D4:72:CB:F9:01 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5C143DF32929F0A34BDBDCC24726261E21CB04BB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141128.roa Signing time: Sat 02 May 2026 21:15:01 +0000 ROA not before: Sat 02 May 2026 21:10:01 +0000 ROA not after: Sat 01 May 2027 21:15:01 +0000 asID: 141128 IP address blocks: 103.158.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:14:3d:f3:29:29:f0:a3:4b:db:dc:c2:47:26:26:1e:21:cb:04:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:10:01 2026 GMT Not After : May 1 21:15:01 2027 GMT Subject: CN=ECF14CA99CBEA63F401A8A63FD1E79D472CBF901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9d:3a:5c:86:4f:71:e9:a4:c2:ad:b1:d4:2f: 94:5b:bb:08:b3:73:f1:27:b2:85:cc:20:5b:13:44: af:95:4b:a5:a3:ef:ca:84:d7:19:34:8f:9c:77:4c: e6:34:ed:d7:99:3b:27:ba:85:e1:31:54:a4:e6:a7: c7:39:de:41:4d:fb:83:53:45:1b:56:71:49:b2:47: 1a:1d:45:91:2c:1a:07:76:ca:87:5f:ee:67:d1:1e: 26:e8:3c:62:36:40:f2:b2:36:39:06:a7:35:6b:ec: 46:13:44:a4:28:aa:d6:cd:58:5f:1a:c0:35:28:b8: 31:f1:e3:b7:8b:36:fa:74:d5:39:d9:10:b5:3d:12: 58:4f:a0:9e:3d:a4:09:90:94:6a:c9:d8:7e:2f:d9: ee:b0:7b:c9:4b:21:4e:61:78:34:48:d2:40:3d:b3: 83:70:72:a9:05:cf:98:4b:60:74:b1:36:60:74:da: aa:18:fa:fc:87:b8:22:78:6f:54:1b:66:9f:ef:76: 50:93:0c:20:db:89:b9:5b:70:82:44:04:3d:ae:24: 92:ca:fb:57:08:d5:39:a1:da:0e:7e:9f:04:ed:09: 0c:74:00:da:fd:81:26:4f:52:24:7a:92:ec:7d:af: 7e:2c:18:4b:47:0a:d2:58:42:c0:39:bd:4b:25:ff: 16:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F1:4C:A9:9C:BE:A6:3F:40:1A:8A:63:FD:1E:79:D4:72:CB:F9:01 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141128.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.130.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:45:54:74:35:50:d4:ff:69:65:f7:ae:6c:5f:9d:52:b0:3f: 01:0b:18:50:ee:4a:ef:4d:4c:2c:a0:4d:68:cd:34:db:76:f5: 1b:5c:26:b8:dd:d0:bb:75:a4:2f:2d:04:99:a7:88:2e:37:85: 63:92:36:61:8e:12:ec:33:32:6e:53:51:87:8b:1b:63:aa:7a: 1b:fd:52:31:bb:ae:f2:54:20:49:fe:34:9a:2a:98:1e:32:9c: d0:57:67:33:ea:4b:4b:cd:e8:0d:44:b6:68:58:f4:e0:94:9d: 77:69:ca:fa:b1:d4:53:5d:57:84:e5:f8:4d:ae:ee:df:50:3f: 53:09:f8:71:92:a6:86:c9:1e:9a:3e:16:f9:9e:87:78:9c:04: 76:38:54:9b:fa:5b:fd:61:dc:59:71:6f:41:ca:2c:11:e1:02: 4e:72:7e:d0:e3:50:d5:90:c8:34:41:2d:31:4e:86:e0:69:62: ca:59:17:da:47:cc:81:ba:67:34:6d:6c:5b:95:fd:fa:5d:0b: a8:81:64:8c:0f:b1:d4:d1:43:49:44:df:17:b2:cb:01:4b:b6: 54:3b:7f:31:86:4c:d3:b7:d3:cd:43:28:a2:e0:93:57:cf:75: f5:38:d7:26:7c:32:71:73:30:83:00:45:be:e4:b6:67:42:15: 38:e6:7d:f2 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUXBQ98ykp8KNL29zCRyYmHiHLBLswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTAwMVoX DTI3MDUwMTIxMTUwMVowMzExMC8GA1UEAxMoRUNGMTRDQTk5Q0JFQTYzRjQwMUE4 QTYzRkQxRTc5RDQ3MkNCRjkwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmdOlyGT3HppMKtsdQvlFu7CLNz8SeyhcwgWxNEr5VLpaPvyoTXGTSPnHdM 5jTt15k7J7qF4TFUpOanxzneQU37g1NFG1ZxSbJHGh1FkSwaB3bKh1/uZ9EeJug8 YjZA8rI2OQanNWvsRhNEpCiq1s1YXxrANSi4MfHjt4s2+nTVOdkQtT0SWE+gnj2k CZCUasnYfi/Z7rB7yUshTmF4NEjSQD2zg3ByqQXPmEtgdLE2YHTaqhj6/Ie4Inhv VBtmn+92UJMMINuJuVtwgkQEPa4kksr7VwjVOaHaDn6fBO0JDHQA2v2BJk9SJHqS 7H2vfiwYS0cK0lhCwDm9SyX/Fr8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTs8Uyp nL6mP0AaimP9HnnUcsv5ATAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMTI4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ56CMA0GCSqGSIb3DQEBCwUAA4IBAQAcRVR0NVDU/2ll965sX51SsD8B CxhQ7krvTUwsoE1ozTTbdvUbXCa43dC7daQvLQSZp4guN4VjkjZhjhLsMzJuU1GH ixtjqnob/VIxu67yVCBJ/jSaKpgeMpzQV2cz6ktLzegNRLZoWPTglJ13acr6sdRT XVeE5fhNru7fUD9TCfhxkqaGyR6aPhb5nod4nAR2OFSb+lv9YdxZcW9ByiwR4QJO cn7Q41DVkMg0QS0xTobgaWLKWRfaR8yBumc0bWxblf36XQuogWSMD7HU0UNJRN8X sssBS7ZUO38xhkzTt9PNQyii4JNXz3X1ONcmfDJxczCDAEW+5LZnQhU45n3y -----END CERTIFICATE-----Generated at Sun May 3 01:44:00 2026 by rpki-client