$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141137.roa File: AS141137.roa (raw, json) Hash identifier: FOyudnTsXeYeIdJ0ZfHDSSA41EWQKsnCNkb1tjOHlzo= Subject key identifier: D2:C3:0B:17:D8:B2:55:BC:59:EE:6E:26:21:8B:39:05:F4:82:6A:91 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 13689C54909F56EF2D05FDB2E7E6F36F1B3266A3 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141137.roa Signing time: Sat 02 May 2026 21:28:39 +0000 ROA not before: Sat 02 May 2026 21:23:39 +0000 ROA not after: Sat 01 May 2027 21:28:39 +0000 asID: 141137 IP address blocks: 103.167.11.0/24 maxlen: 24 117.102.162.0/23 maxlen: 24 202.56.170.0/23 maxlen: 24 202.56.170.0/24 maxlen: 24 202.56.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:68:9c:54:90:9f:56:ef:2d:05:fd:b2:e7:e6:f3:6f:1b:32:66:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:23:39 2026 GMT Not After : May 1 21:28:39 2027 GMT Subject: CN=D2C30B17D8B255BC59EE6E26218B3905F4826A91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c4:fa:0a:25:15:34:4e:4e:b6:f7:1e:ee:e8: 6e:2c:cb:c9:2d:11:36:e8:10:19:92:4e:1d:90:66: a5:f0:67:9d:2b:56:e8:39:ee:9a:e6:34:29:eb:a7: 1d:86:63:12:d4:dd:e7:59:54:a1:8f:50:05:df:fb: 8f:d7:0e:50:f2:fa:fc:fa:7d:46:cb:1c:34:88:ca: bb:c4:6f:a3:99:1f:99:92:65:80:72:3a:81:36:af: 8f:4a:e8:0f:d8:72:e2:98:81:03:6f:cb:39:27:e1: 65:fd:d4:2c:46:a6:39:01:1c:06:48:5f:83:35:66: 62:80:ee:dd:14:2a:40:82:23:c1:dd:41:27:5c:82: 8a:d1:f3:a9:1c:e4:fd:f0:ce:ce:a1:96:68:16:70: 59:9d:02:87:74:69:b5:d3:ee:c2:2b:27:17:7b:e3: c6:a5:a1:7a:3c:bd:a8:c3:0a:62:fe:39:57:b0:ca: 79:a1:95:67:3c:d3:69:59:95:13:8a:11:0b:a9:77: 89:46:fd:15:89:22:35:d7:57:fa:d4:eb:50:c0:8a: 1d:38:06:88:28:25:ae:20:e7:c3:c8:05:a8:61:3b: f7:8f:fd:18:64:d2:2a:d0:55:68:c7:25:d5:bf:a8: 8f:a4:67:74:54:b7:c5:47:e4:a7:1b:41:50:d2:38: 02:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C3:0B:17:D8:B2:55:BC:59:EE:6E:26:21:8B:39:05:F4:82:6A:91 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.11.0/24 117.102.162.0/23 202.56.170.0/23 Signature Algorithm: sha256WithRSAEncryption 50:fc:a0:3c:da:09:0c:7a:61:a3:ff:bb:a5:d7:a3:77:9f:a0: e6:cc:2f:c1:b0:fa:02:b1:7e:c9:fc:b6:06:20:b9:4c:de:d1: 1c:04:58:43:42:f4:db:b9:91:b6:f7:ab:74:7d:0b:8c:6f:ec: e0:5c:7e:28:65:a5:0c:54:dd:00:52:4d:49:5b:5b:55:42:2a: a5:0f:2e:30:5e:56:4f:bc:2c:2b:ef:21:5e:cd:10:b7:61:3d: 7b:a3:5d:0d:37:a3:77:98:00:90:07:37:2c:a8:60:3a:95:18: 9f:ad:1e:67:3c:ff:7f:60:09:fc:08:32:32:a2:d6:c7:8d:c3: 9f:64:f5:6d:e7:6a:46:e4:ec:82:ac:ab:e4:ab:fe:19:a8:f4: cf:88:72:86:2a:f1:94:6b:84:2a:62:10:75:6a:bb:34:70:7d: 32:ee:0b:7b:a3:e7:50:d9:aa:1e:c9:f5:aa:3f:38:09:94:0b: 58:47:ec:0d:36:d1:13:05:95:b1:13:e6:d4:d7:c1:fe:97:74: 76:7b:5f:aa:6f:0d:f3:4b:cb:54:11:6a:54:9d:eb:f3:ae:4a: 57:25:9f:d6:15:bc:97:a7:07:74:27:c7:e7:f3:1a:14:46:61: 9e:72:8f:ff:f3:72:ad:d1:e7:b9:88:96:ec:a2:ec:3e:22:b9: 6c:2d:e0:44 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUE2icVJCfVu8tBf2y5+bzbxsyZqMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjMzOVoX DTI3MDUwMTIxMjgzOVowMzExMC8GA1UEAxMoRDJDMzBCMTdEOEIyNTVCQzU5RUU2 RTI2MjE4QjM5MDVGNDgyNkE5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnE+golFTROTrb3Hu7obizLyS0RNugQGZJOHZBmpfBnnStW6DnumuY0Keun HYZjEtTd51lUoY9QBd/7j9cOUPL6/Pp9RsscNIjKu8Rvo5kfmZJlgHI6gTavj0ro D9hy4piBA2/LOSfhZf3ULEamOQEcBkhfgzVmYoDu3RQqQIIjwd1BJ1yCitHzqRzk /fDOzqGWaBZwWZ0Ch3RptdPuwisnF3vjxqWhejy9qMMKYv45V7DKeaGVZzzTaVmV E4oRC6l3iUb9FYkiNddX+tTrUMCKHTgGiCglriDnw8gFqGE794/9GGTSKtBVaMcl 1b+oj6RndFS3xUfkpxtBUNI4AqECAwEAAaOCAdgwggHUMB0GA1UdDgQWBBTSwwsX 2LJVvFnubiYhizkF9IJqkTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMTM3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIA ATASAwQAZ6cLAwQBdWaiAwQByjiqMA0GCSqGSIb3DQEBCwUAA4IBAQBQ/KA82gkM emGj/7ul16N3n6DmzC/BsPoCsX7J/LYGILlM3tEcBFhDQvTbuZG296t0fQuMb+zg XH4oZaUMVN0AUk1JW1tVQiqlDy4wXlZPvCwr7yFezRC3YT17o10NN6N3mACQBzcs qGA6lRifrR5nPP9/YAn8CDIyotbHjcOfZPVt52pG5OyCrKvkq/4ZqPTPiHKGKvGU a4QqYhB1ars0cH0y7gt7o+dQ2aoeyfWqPzgJlAtYR+wNNtETBZWxE+bU18H+l3R2 e1+qbw3zS8tUEWpUnevzrkpXJZ/WFbyXpwd0J8fn8xoURmGeco//83Kt0ee5iJbs ouw+IrlsLeBE -----END CERTIFICATE-----Generated at Sun May 3 00:42:20 2026 by rpki-client