Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141626.roa
File: AS141626.roa (raw, json)
Hash identifier: w/LgBeOKKefzAkh2P0LueDPS9k4botsaJDJyja2bKL0=
Subject key identifier: 54:4F:D2:9D:6F:B3:66:57:8D:90:5D:39:DA:CE:00:7A:AC:93:4D:B7
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 60629F29CD66AF279F70CAD6AA7C160690994545
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141626.roa
Signing time: Sat 02 May 2026 21:36:32 +0000
ROA not before: Sat 02 May 2026 21:31:32 +0000
ROA not after: Sat 01 May 2027 21:36:32 +0000
asID: 141626
IP address blocks: 103.161.128.0/24 maxlen: 24
103.169.226.0/24 maxlen: 24
116.212.96.0/22 maxlen: 24
116.212.102.0/23 maxlen: 24
2407:9440::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 04 May 2026 01:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:62:9f:29:cd:66:af:27:9f:70:ca:d6:aa:7c:16:06:90:99:45:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 2 21:31:32 2026 GMT
Not After : May 1 21:36:32 2027 GMT
Subject: CN=544FD29D6FB366578D905D39DACE007AAC934DB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f8:68:c5:28:8c:e8:04:88:06:3c:18:55:82:
1c:5a:28:f3:af:cb:fb:84:34:88:4b:e7:72:cc:64:
f0:c9:79:cf:7b:d6:e0:c4:11:84:d4:c0:e0:3d:2a:
e9:50:85:c1:2e:87:c5:a3:62:3d:06:10:2f:16:96:
8e:25:0e:7c:8b:ca:27:85:1c:08:68:ca:eb:4b:6e:
8f:2d:04:91:b4:32:5a:1b:9b:c4:b0:34:ac:d9:37:
1e:e9:23:40:3c:66:8e:a3:08:e8:ec:99:de:e0:64:
9b:e9:13:4b:c9:ad:79:ec:e8:cf:f0:a5:d6:76:7f:
6e:f1:37:c5:c9:fe:b8:fb:79:1d:f8:53:c6:f9:8c:
fb:ea:c2:4f:9e:1b:0d:bb:41:aa:33:d1:85:27:6c:
fd:13:7e:59:ea:d6:d1:dd:3f:96:41:53:4f:d4:cb:
77:4e:5d:29:d7:51:dd:e3:18:19:81:dc:6b:1a:2b:
70:95:e1:5a:74:81:fd:10:f6:62:0f:f2:cd:52:cc:
1f:80:7c:86:4d:00:2f:ee:44:49:31:e5:da:6d:cb:
ca:b2:36:10:ae:3a:fc:61:44:04:e0:c9:4e:d5:84:
58:c6:21:cd:24:94:a4:a8:ec:8f:2c:f7:53:10:53:
6f:41:58:52:4d:23:1d:5e:50:0d:c3:fe:ac:89:ac:
a7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4F:D2:9D:6F:B3:66:57:8D:90:5D:39:DA:CE:00:7A:AC:93:4D:B7
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141626.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.161.128.0/24
103.169.226.0/24
116.212.96.0/22
116.212.102.0/23
IPv6:
2407:9440::/32
Signature Algorithm: sha256WithRSAEncryption
97:e9:fe:a9:84:4d:6e:cb:22:3a:fa:02:05:57:62:4d:e1:b6:
fc:4e:61:39:73:94:bf:72:d9:9c:e9:2d:14:d8:93:ce:6b:1a:
75:d9:c8:2a:cd:c9:e5:47:2e:14:c4:db:da:55:e5:57:2e:3b:
8d:2b:27:d0:ef:94:60:32:7b:37:87:53:11:b0:7c:3d:78:c4:
2e:b6:b1:98:3e:3d:2c:5f:ca:db:5e:c9:02:33:19:34:8d:bf:
12:b7:63:33:71:c2:69:c8:4f:ef:c3:3c:b3:13:fc:5d:bd:98:
ba:e5:21:f2:de:e9:5c:cd:0e:cc:15:5c:ba:95:61:c7:40:2e:
e0:69:d4:62:e7:79:5d:48:c2:c5:57:37:a3:4b:2a:c9:44:ea:
fc:0d:38:88:bf:2c:23:46:d2:39:57:b6:0c:78:5d:68:5c:29:
b7:78:56:81:00:2c:9e:fc:74:fb:ce:5a:b2:f1:f0:d0:42:ec:
3b:a8:18:c3:62:69:ab:13:14:42:f4:3e:e5:76:6d:4e:29:be:
fe:81:3b:9e:2e:95:11:55:47:67:17:6d:f7:d6:f3:00:18:59:
be:08:8b:a9:fe:e8:61:f2:f0:51:8d:00:bb:68:ba:ea:b8:6b:
87:5a:de:26:63:c3:23:e2:e9:db:ef:d6:b2:fe:6a:6a:34:61:
2b:fc:13:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 00:42:35 2026 by rpki-client