$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141140.roa File: AS141140.roa (raw, json) Hash identifier: qYx/w3dQfLpvR+whKPWEfQeRMr7+nUi1DRarfgmLFaM= Subject key identifier: 92:11:78:C6:AB:5E:EE:47:FF:B3:26:98:97:70:8C:89:9F:68:40:C5 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 56D7D364912EBE2222A4F9CFB3362BF98BD89DA0 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141140.roa Signing time: Sat 02 May 2026 09:22:14 +0000 ROA not before: Sat 02 May 2026 09:17:14 +0000 ROA not after: Sat 01 May 2027 09:22:14 +0000 asID: 141140 IP address blocks: 103.93.93.0/24 maxlen: 24 103.159.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:d7:d3:64:91:2e:be:22:22:a4:f9:cf:b3:36:2b:f9:8b:d8:9d:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:17:14 2026 GMT Not After : May 1 09:22:14 2027 GMT Subject: CN=921178C6AB5EEE47FFB3269897708C899F6840C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:76:df:aa:b5:a1:95:29:6b:04:04:aa:56:a9: cd:e9:7e:61:c0:40:9d:e9:be:d3:d5:da:10:90:8b: 7e:e2:7c:91:78:31:91:16:9e:75:bb:ef:a3:e1:f5: 41:96:67:5b:0e:ea:fb:7f:f7:6a:50:3b:f9:60:e0: 59:13:d6:f9:f1:27:9d:e8:8a:37:ce:93:e0:66:e9: 9d:9b:f1:42:20:4b:f2:b2:9c:da:91:8e:dd:ff:85: 75:d0:76:69:49:22:fd:6c:bb:4b:5a:2d:2f:ea:e8: 95:86:71:8a:0a:f8:5e:fe:c7:53:8c:bd:be:d4:a7: 09:73:b8:7e:44:d0:59:2f:24:e5:76:eb:af:56:03: 31:db:8f:3b:cc:7c:6d:65:e5:20:85:fc:c3:da:03: d8:2c:35:ed:39:a2:4a:a4:34:56:7d:29:90:02:5d: 74:4b:41:78:3f:aa:a7:54:04:fe:f8:b6:ff:0b:69: dd:20:36:5c:e5:13:7c:76:9a:34:a0:5f:a3:d8:c2: f4:d8:31:72:fb:21:05:73:13:3d:f2:bf:c0:e8:bb: ea:b0:a0:84:27:8e:3d:b7:a6:37:07:0f:24:70:fa: ab:df:98:4c:6f:a1:fb:e8:c2:6b:dd:70:40:7f:79: 02:bf:89:5e:3f:78:87:0c:a0:52:82:04:75:5d:11: da:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:11:78:C6:AB:5E:EE:47:FF:B3:26:98:97:70:8C:89:9F:68:40:C5 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141140.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.93.93.0/24 103.159.96.0/24 Signature Algorithm: sha256WithRSAEncryption 59:54:7a:a0:63:c5:9a:f8:24:05:93:c9:2d:aa:ba:73:33:09: 74:32:b9:31:4b:15:ff:64:82:ab:c4:cc:ac:4f:71:ab:a6:c2: 22:3d:7c:92:ae:4a:53:38:a2:76:cb:9f:6d:6d:01:41:bd:2f: 1e:e7:52:1b:34:0e:44:19:e3:ab:7d:e1:a5:34:e1:83:33:91: 5f:d3:38:0b:89:1b:97:21:9a:b8:70:09:88:5e:f8:5f:1f:c0: 02:bc:22:f9:c9:fb:af:09:e9:1c:9d:2c:33:78:da:d8:1d:e3: 56:2a:3d:b1:3b:b0:99:47:08:02:d6:76:ec:ed:3d:c4:f8:ae: cf:4a:6e:83:32:df:7e:cb:7f:fd:58:e7:81:76:1f:ac:a9:ef: 47:f1:37:77:b1:5b:67:85:30:15:c2:fc:81:b8:a2:4e:75:97: 2b:d9:26:d8:ad:a2:d5:86:e2:2c:60:85:db:12:ed:22:cb:3e: f9:74:5f:e0:98:b0:71:fe:86:f3:aa:39:cf:aa:ba:bf:74:db: 70:58:54:fd:96:04:5c:c8:83:98:b3:c6:1a:10:3a:e0:18:bc: 6e:cc:ff:90:85:24:33:fc:bc:f8:34:07:a8:fe:29:a5:15:de: bb:64:12:12:12:bb:e1:bd:87:0e:ec:36:97:b8:8b:d6:ad:a5: 8f:4f:c5:b6 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUVtfTZJEuviIipPnPszYr+YvYnaAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTcxNFoX DTI3MDUwMTA5MjIxNFowMzExMC8GA1UEAxMoOTIxMTc4QzZBQjVFRUU0N0ZGQjMy Njk4OTc3MDhDODk5RjY4NDBDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJV236q1oZUpawQEqlapzel+YcBAnem+09XaEJCLfuJ8kXgxkRaedbvvo+H1 QZZnWw7q+3/3alA7+WDgWRPW+fEnneiKN86T4GbpnZvxQiBL8rKc2pGO3f+FddB2 aUki/Wy7S1otL+rolYZxigr4Xv7HU4y9vtSnCXO4fkTQWS8k5Xbrr1YDMduPO8x8 bWXlIIX8w9oD2Cw17TmiSqQ0Vn0pkAJddEtBeD+qp1QE/vi2/wtp3SA2XOUTfHaa NKBfo9jC9NgxcvshBXMTPfK/wOi76rCghCeOPbemNwcPJHD6q9+YTG+h++jCa91w QH95Ar+JXj94hwygUoIEdV0R2rkCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBSSEXjG q17uR/+zJpiXcIyJn2hAxTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMTQwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAZ11dAwQAZ59gMA0GCSqGSIb3DQEBCwUAA4IBAQBZVHqgY8Wa+CQFk8kt qrpzMwl0MrkxSxX/ZIKrxMysT3GrpsIiPXySrkpTOKJ2y59tbQFBvS8e51IbNA5E GeOrfeGlNOGDM5Ff0zgLiRuXIZq4cAmIXvhfH8ACvCL5yfuvCekcnSwzeNrYHeNW Kj2xO7CZRwgC1nbs7T3E+K7PSm6DMt9+y3/9WOeBdh+sqe9H8Td3sVtnhTAVwvyB uKJOdZcr2SbYraLVhuIsYIXbEu0iyz75dF/gmLBx/obzqjnPqrq/dNtwWFT9lgRc yIOYs8YaEDrgGLxuzP+QhSQz/Lz4NAeo/imlFd67ZBISErvhvYcO7DaXuIvWraWP T8W2 -----END CERTIFICATE-----Generated at Sun May 3 00:42:34 2026 by rpki-client