$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141135.roa File: AS141135.roa (raw, json) Hash identifier: yHcIdvxBU+mc7G36nsar+LI4Syjx2e8ea/g/f8aZ36w= Subject key identifier: 1B:9C:37:C3:B2:D8:7E:F9:17:90:1C:B4:38:C1:72:F4:8F:B6:A4:5F Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 425EECBAF937E1440B0A31A64801452173C923A2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141135.roa Signing time: Sat 02 May 2026 08:35:20 +0000 ROA not before: Sat 02 May 2026 08:30:20 +0000 ROA not after: Sat 01 May 2027 08:35:20 +0000 asID: 141135 IP address blocks: 103.158.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:5e:ec:ba:f9:37:e1:44:0b:0a:31:a6:48:01:45:21:73:c9:23:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:20 2026 GMT Not After : May 1 08:35:20 2027 GMT Subject: CN=1B9C37C3B2D87EF917901CB438C172F48FB6A45F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4b:c1:27:8a:d4:8f:92:db:6f:a0:be:ce:2f: 33:2a:88:1c:93:18:d8:1a:fe:ae:6b:ae:0e:3f:50: f9:43:89:63:4d:0b:31:e1:8a:75:f1:b7:a9:d3:a2: 55:07:62:08:9e:ce:08:fd:42:3c:e0:d6:0a:f6:c0: 51:8b:c5:e8:33:07:8c:2b:79:80:f8:77:da:ef:19: 55:ce:14:a1:16:62:ff:4b:53:43:7c:b9:0d:14:56: fa:bc:fa:5a:8b:07:d7:e8:fa:5e:0d:57:fa:00:af: 47:9d:26:7c:27:b9:73:1e:9e:1d:59:e7:c1:76:61: 42:23:f6:29:ac:7f:bd:97:da:0b:7a:04:1b:3d:f1: 99:77:37:db:da:f3:74:14:44:f5:93:62:32:df:ed: 86:22:dd:77:ef:e4:1a:8f:7e:ef:4d:e4:d9:d5:89: 29:99:62:87:79:d6:1a:3e:0a:bb:91:51:6a:1b:c8: d9:1b:78:ba:e7:43:3b:f5:ab:85:e5:e4:a3:fc:84: e2:b5:80:c1:23:66:07:b4:47:1f:41:62:95:2b:a6: 23:dc:ad:24:27:c8:56:77:d1:db:5b:c5:50:23:23: 4b:7b:39:c5:71:f7:ec:78:be:01:ff:2f:bc:0a:a5: a2:01:de:d2:00:dc:7e:10:fb:b0:65:5d:7a:33:ea: f9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9C:37:C3:B2:D8:7E:F9:17:90:1C:B4:38:C1:72:F4:8F:B6:A4:5F X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.197.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:b5:0c:3a:7b:f7:e7:35:d6:23:5b:a6:c1:f3:ef:0c:0a:71: f3:1d:cc:61:6d:c0:0e:86:c0:e0:30:0c:e5:83:66:40:28:92: 89:5e:c3:85:7a:c1:48:a7:4c:2d:e2:78:6d:aa:84:ee:1e:13: c2:9d:b3:c0:15:92:af:58:8f:c9:e6:3b:3d:83:ed:69:d1:a7: ce:55:23:02:a2:74:6e:d2:da:16:61:28:37:b0:0f:7a:94:bf: b4:1b:8f:b7:26:d9:39:98:e4:92:b3:d1:5c:0d:48:a5:d2:6c: 4a:36:52:ba:3b:45:50:a7:2a:51:30:8c:90:34:e3:24:be:d3: 3f:72:a5:c1:25:47:0d:90:f8:37:a2:22:25:e5:d1:65:5b:5c: c1:a9:b3:a6:8d:6f:33:d9:5d:97:b0:64:5b:34:31:c5:47:17: 3b:84:ce:7b:84:8f:6a:2c:06:21:31:20:76:cf:ad:45:37:1c: 0e:b8:5f:81:ad:cb:b0:5c:cb:b4:c0:61:f1:46:31:a5:13:46: bc:92:4b:fc:a0:e1:c3:74:9c:0a:d0:4d:13:bb:94:1f:f3:f8: 40:29:a8:70:86:bc:0a:1d:40:70:21:34:11:14:41:2e:95:04: d1:61:54:8c:96:e2:33:81:d3:53:e8:aa:d9:2b:8d:07:35:05: 30:4f:f6:9c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUQl7suvk34UQLCjGmSAFFIXPJI6IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAyMFoX DTI3MDUwMTA4MzUyMFowMzExMC8GA1UEAxMoMUI5QzM3QzNCMkQ4N0VGOTE3OTAx Q0I0MzhDMTcyRjQ4RkI2QTQ1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhLwSeK1I+S22+gvs4vMyqIHJMY2Br+rmuuDj9Q+UOJY00LMeGKdfG3qdOi VQdiCJ7OCP1CPODWCvbAUYvF6DMHjCt5gPh32u8ZVc4UoRZi/0tTQ3y5DRRW+rz6 WosH1+j6Xg1X+gCvR50mfCe5cx6eHVnnwXZhQiP2Kax/vZfaC3oEGz3xmXc329rz dBRE9ZNiMt/thiLdd+/kGo9+703k2dWJKZlih3nWGj4Ku5FRahvI2Rt4uudDO/Wr heXko/yE4rWAwSNmB7RHH0FilSumI9ytJCfIVnfR21vFUCMjS3s5xXH37Hi+Af8v vAqlogHe0gDcfhD7sGVdejPq+TkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQbnDfD sth++ReQHLQ4wXL0j7akXzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMTM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ57FMA0GCSqGSIb3DQEBCwUAA4IBAQAqtQw6e/fnNdYjW6bB8+8MCnHz HcxhbcAOhsDgMAzlg2ZAKJKJXsOFesFIp0wt4nhtqoTuHhPCnbPAFZKvWI/J5js9 g+1p0afOVSMConRu0toWYSg3sA96lL+0G4+3Jtk5mOSSs9FcDUil0mxKNlK6O0VQ pypRMIyQNOMkvtM/cqXBJUcNkPg3oiIl5dFlW1zBqbOmjW8z2V2XsGRbNDHFRxc7 hM57hI9qLAYhMSB2z61FNxwOuF+BrcuwXMu0wGHxRjGlE0a8kkv8oOHDdJwK0E0T u5Qf8/hAKahwhrwKHUBwITQRFEEulQTRYVSMluIzgdNT6KrZK40HNQUwT/ac -----END CERTIFICATE-----Generated at Sun May 3 00:42:09 2026 by rpki-client