$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141590.roa File: AS141590.roa (raw, json) Hash identifier: RcizVnTAS0atpFt8wMF+0wbeQ5JUc8o0zACw1xsMyfI= Subject key identifier: 12:05:4F:0B:BC:AF:A3:00:22:80:24:EE:73:14:CD:F7:30:45:99:CA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7134F46364070D2017A31A638A9FB64D730D8C99 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141590.roa Signing time: Sat 02 May 2026 21:15:11 +0000 ROA not before: Sat 02 May 2026 21:10:11 +0000 ROA not after: Sat 01 May 2027 21:15:11 +0000 asID: 141590 IP address blocks: 103.158.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:34:f4:63:64:07:0d:20:17:a3:1a:63:8a:9f:b6:4d:73:0d:8c:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:10:11 2026 GMT Not After : May 1 21:15:11 2027 GMT Subject: CN=12054F0BBCAFA300228024EE7314CDF7304599CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:90:3e:9f:4b:9a:35:6b:7c:6a:e8:b6:d5:95: a1:0f:be:1a:82:f0:26:cc:51:1d:b5:95:cd:cb:09: 60:e6:cd:fe:64:26:73:af:82:21:c5:66:15:5b:4c: 89:e0:4b:6a:e5:04:70:09:45:42:ea:a8:3e:6d:77: 09:13:0a:3c:a9:f5:31:27:2d:8c:c4:ab:4d:95:f4: 73:a2:29:08:46:94:f7:3d:3a:89:08:6f:22:9d:0d: 79:2f:fa:28:dd:31:2c:38:a7:e4:08:ea:f9:fa:6e: 8d:ff:bf:e5:70:6f:f6:70:70:cc:a9:18:9f:cf:2d: eb:73:0c:2d:bf:ef:a1:b2:f9:b5:2b:dd:2f:39:38: 42:17:85:49:11:87:f0:1b:2d:4c:9e:d7:d3:59:67: 32:08:a6:bf:ab:bf:d5:ca:d6:f5:22:d8:4e:b6:67: 8a:f6:3a:3e:11:64:47:cc:6d:ed:aa:65:8e:f6:47: de:3f:93:be:67:f3:3f:59:6f:04:90:46:12:98:5d: 82:6b:80:fc:67:f6:61:0a:4e:b1:6c:3b:ae:da:c3: a4:db:55:58:df:58:fc:a5:4d:c4:f6:f7:00:f6:ef: ba:01:4a:07:4f:91:23:27:ac:d2:27:cc:16:3d:96: 50:70:bf:4c:83:e3:4c:cd:67:20:21:39:92:a4:23: 17:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:05:4F:0B:BC:AF:A3:00:22:80:24:EE:73:14:CD:F7:30:45:99:CA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.22.0/23 Signature Algorithm: sha256WithRSAEncryption 07:2b:d6:d7:15:7d:0c:35:57:61:0a:98:4e:c7:c6:7c:a1:98: 3a:30:cc:c4:4f:70:c8:10:64:2d:08:a0:1b:5a:3a:eb:ef:81: cd:87:1b:2e:93:54:e2:53:e8:d6:15:f4:f5:10:99:b0:4b:6a: 22:04:ce:4e:b9:eb:c6:0e:4f:2d:62:b2:18:2d:1c:ae:bf:41: 67:ea:f9:60:4c:1c:1a:22:b3:1d:56:20:64:d1:4f:b3:a4:ca: 22:94:ff:01:83:6d:7c:6b:b5:6d:32:2f:19:42:07:f9:91:3c: e7:e8:83:44:d9:6a:7f:df:19:78:1b:2b:5b:09:b2:53:6f:e6: 60:b5:f9:0a:cc:e4:a3:d7:dd:48:12:93:6f:53:bb:e1:8f:b1: 8d:39:2b:a6:a6:cb:ae:1d:2a:82:32:23:99:86:50:e7:f0:df: d4:81:a6:6d:5f:38:c8:32:21:f8:17:e7:8a:ff:21:8e:89:7b: c4:0e:a3:43:15:fa:8a:03:39:f3:58:96:3b:85:77:39:ae:a7: 00:3d:5a:44:d8:a8:60:9c:d0:7e:5d:4b:24:32:26:1e:c6:46: 2d:cd:7e:a3:56:37:ac:07:19:ab:90:62:1e:ec:bf:38:cb:ab: bd:a9:9f:d3:5f:fc:3e:d8:93:09:6d:ea:32:ff:6b:c3:14:55: fa:2e:67:26 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUcTT0Y2QHDSAXoxpjip+2TXMNjJkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTAxMVoX DTI3MDUwMTIxMTUxMVowMzExMC8GA1UEAxMoMTIwNTRGMEJCQ0FGQTMwMDIyODAy NEVFNzMxNENERjczMDQ1OTlDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALaQPp9LmjVrfGrottWVoQ++GoLwJsxRHbWVzcsJYObN/mQmc6+CIcVmFVtM ieBLauUEcAlFQuqoPm13CRMKPKn1MSctjMSrTZX0c6IpCEaU9z06iQhvIp0NeS/6 KN0xLDin5Ajq+fpujf+/5XBv9nBwzKkYn88t63MMLb/vobL5tSvdLzk4QheFSRGH 8BstTJ7X01lnMgimv6u/1crW9SLYTrZnivY6PhFkR8xt7apljvZH3j+TvmfzP1lv BJBGEphdgmuA/Gf2YQpOsWw7rtrDpNtVWN9Y/KVNxPb3APbvugFKB0+RIyes0ifM Fj2WUHC/TIPjTM1nICE5kqQjF5sCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQSBU8L vK+jACKAJO5zFM33MEWZyjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxNTkwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ54WMA0GCSqGSIb3DQEBCwUAA4IBAQAHK9bXFX0MNVdhCphOx8Z8oZg6 MMzET3DIEGQtCKAbWjrr74HNhxsuk1TiU+jWFfT1EJmwS2oiBM5OuevGDk8tYrIY LRyuv0Fn6vlgTBwaIrMdViBk0U+zpMoilP8Bg218a7VtMi8ZQgf5kTzn6INE2Wp/ 3xl4GytbCbJTb+ZgtfkKzOSj191IEpNvU7vhj7GNOSumpsuuHSqCMiOZhlDn8N/U gaZtXzjIMiH4F+eK/yGOiXvEDqNDFfqKAznzWJY7hXc5rqcAPVpE2KhgnNB+XUsk MiYexkYtzX6jVjesBxmrkGIe7L84y6u9qZ/TX/w+2JMJbeoy/2vDFFX6Lmcm -----END CERTIFICATE-----Generated at Sun May 3 01:44:42 2026 by rpki-client