$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141600.roa File: AS141600.roa (raw, json) Hash identifier: QGDcpMh7tAyx84oPsngTyOE1FiYaC7J60GiNsXikgP4= Subject key identifier: 3D:96:86:AE:F4:1D:E0:F3:8C:F4:56:E0:44:B2:AC:67:77:99:20:3C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7546305EB8B158073F63E561F738960D79D16008 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141600.roa Signing time: Sat 02 May 2026 09:26:03 +0000 ROA not before: Sat 02 May 2026 09:21:03 +0000 ROA not after: Sat 01 May 2027 09:26:03 +0000 asID: 141600 IP address blocks: 2001:df3:af40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:46:30:5e:b8:b1:58:07:3f:63:e5:61:f7:38:96:0d:79:d1:60:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:21:03 2026 GMT Not After : May 1 09:26:03 2027 GMT Subject: CN=3D9686AEF41DE0F38CF456E044B2AC677799203C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:64:9d:4c:59:c8:7c:85:50:63:f9:9f:b0:f6: b9:c5:31:25:31:19:13:23:a8:87:56:00:ad:a9:2a: 6f:01:5e:10:0b:32:2d:2c:7d:ae:ff:8c:f4:91:73: 2f:cd:a9:b9:c1:bf:8d:bd:8b:f8:ea:f4:66:a8:51: 97:02:9f:88:da:f6:f4:78:7b:a9:ae:33:a9:b8:4c: 02:22:f8:5c:14:52:07:c4:81:c1:fb:60:0d:00:41: d6:5e:35:94:02:02:0f:df:5e:1b:2f:61:42:5b:9d: bb:4e:11:90:2f:24:81:8d:59:ab:a8:34:e2:5a:a0: 9e:9e:02:6d:f1:61:57:78:1e:d1:9f:20:6e:05:f4: 95:dc:93:80:e3:b0:ca:fb:c3:8e:7d:ad:69:ba:8e: 0a:30:b4:c5:a8:8e:90:26:4e:4f:a8:bc:13:87:da: 89:71:bf:70:3f:bf:27:db:e0:e5:9d:d1:16:3f:67: b7:03:c4:3a:66:57:35:d0:89:89:52:84:49:af:2d: bd:28:d4:9e:8d:a9:d3:d3:40:97:00:e1:b4:b1:53: 55:18:99:62:62:88:0a:1a:45:58:1a:f0:99:89:3b: ad:48:a7:c9:a9:a4:3c:5d:37:64:48:69:cc:c1:38: 03:6a:64:e9:2f:4e:f7:1e:88:e0:b9:eb:b7:f5:75: 84:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:96:86:AE:F4:1D:E0:F3:8C:F4:56:E0:44:B2:AC:67:77:99:20:3C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141600.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:af40::/48 Signature Algorithm: sha256WithRSAEncryption 6c:01:5f:f0:91:39:fc:de:3c:62:1c:e6:25:d6:f7:dd:3e:c5: db:76:48:5f:00:38:60:82:52:f7:91:9d:51:c9:e7:ca:27:f6: 54:fc:60:a8:c5:73:8a:96:19:e6:87:13:93:7d:8e:a9:a5:f4: ec:b3:92:6e:53:d6:ff:5a:f8:29:21:b4:c2:3d:c8:97:6b:03: 74:15:eb:e4:24:1e:b9:7b:94:99:d7:5e:11:8c:84:8b:6f:a2: 17:f7:6b:54:20:ce:25:e9:75:62:5b:9d:b7:85:82:82:13:f9: 2e:61:bf:a0:b9:bb:eb:c8:35:de:78:af:59:21:8d:31:af:4e: 1f:f9:7a:c7:2e:d7:77:5b:47:27:c4:e7:1f:07:b9:29:bf:80: c8:ab:ef:93:6d:15:f5:3a:2b:a1:64:97:30:a5:03:1b:84:0b: 7a:c1:7c:47:32:05:23:df:51:0d:5c:24:11:05:55:58:5c:e0: c2:5a:f3:53:b2:bf:cb:72:98:d7:75:41:d8:dd:a7:79:03:82: 65:a4:ef:23:0b:53:9a:76:e1:70:09:68:fd:d9:8b:be:c1:c9: 5f:52:33:0a:c8:c0:2d:c3:38:53:b4:dc:0d:19:19:60:da:f5: f7:35:63:39:fc:94:02:1a:fb:06:37:77:92:16:8c:cb:e8:43: 84:6b:b8:0d -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUdUYwXrixWAc/Y+Vh9ziWDXnRYAgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjEwM1oX DTI3MDUwMTA5MjYwM1owMzExMC8GA1UEAxMoM0Q5Njg2QUVGNDFERTBGMzhDRjQ1 NkUwNDRCMkFDNjc3Nzk5MjAzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJhknUxZyHyFUGP5n7D2ucUxJTEZEyOoh1YArakqbwFeEAsyLSx9rv+M9JFz L82pucG/jb2L+Or0ZqhRlwKfiNr29Hh7qa4zqbhMAiL4XBRSB8SBwftgDQBB1l41 lAICD99eGy9hQludu04RkC8kgY1Zq6g04lqgnp4CbfFhV3ge0Z8gbgX0ldyTgOOw yvvDjn2tabqOCjC0xaiOkCZOT6i8E4faiXG/cD+/J9vg5Z3RFj9ntwPEOmZXNdCJ iVKESa8tvSjUno2p09NAlwDhtLFTVRiZYmKIChpFWBrwmYk7rUinyamkPF03ZEhp zME4A2pk6S9O9x6I4Lnrt/V1hI0CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQ9loau 9B3g84z0VuBEsqxnd5kgPDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxNjAwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN869AMA0GCSqGSIb3DQEBCwUAA4IBAQBsAV/wkTn83jxiHOYl1vfd PsXbdkhfADhgglL3kZ1RyefKJ/ZU/GCoxXOKlhnmhxOTfY6ppfTss5JuU9b/Wvgp IbTCPciXawN0FevkJB65e5SZ114RjISLb6IX92tUIM4l6XViW523hYKCE/kuYb+g ubvryDXeeK9ZIY0xr04f+XrHLtd3W0cnxOcfB7kpv4DIq++TbRX1OiuhZJcwpQMb hAt6wXxHMgUj31ENXCQRBVVYXODCWvNTsr/LcpjXdUHY3ad5A4JlpO8jC1OaduFw CWj92Yu+wclfUjMKyMAtwzhTtNwNGRlg2vX3NWM5/JQCGvsGN3eSFozL6EOEa7gN -----END CERTIFICATE-----Generated at Sun May 3 00:42:12 2026 by rpki-client