$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141628.roa File: AS141628.roa (raw, json) Hash identifier: oVciMFN+o2coLIcc2s3JsLc9iZ+wSR9IHfKg7CNO8Go= Subject key identifier: D5:67:4F:0A:50:7A:6B:B0:BD:88:15:57:74:46:98:7D:2D:26:CE:4C Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 55A57915584D499ACD6BC983B0205CDFF670D77F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141628.roa Signing time: Sat 02 May 2026 21:32:32 +0000 ROA not before: Sat 02 May 2026 21:27:32 +0000 ROA not after: Sat 01 May 2027 21:32:32 +0000 asID: 141628 IP address blocks: 2401:9a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a5:79:15:58:4d:49:9a:cd:6b:c9:83:b0:20:5c:df:f6:70:d7:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:27:32 2026 GMT Not After : May 1 21:32:32 2027 GMT Subject: CN=D5674F0A507A6BB0BD8815577446987D2D26CE4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:45:7e:55:14:21:b3:b0:fa:18:6f:fa:f5:95: 8b:1b:96:71:10:bf:9b:32:d3:14:a6:0f:9d:5e:6c: 42:f7:ba:4f:11:87:0e:ff:08:c4:b5:3c:01:fa:c0: 35:5b:19:c0:07:63:9b:37:3c:fa:61:a3:f6:6c:99: 72:44:20:89:a0:27:91:0f:93:f5:cd:01:f5:60:d8: 5a:1a:6b:f4:6d:b6:70:8e:a0:de:be:76:3c:bc:1f: d3:1f:44:1d:26:f0:c5:40:1d:45:c2:13:c5:3c:87: da:d0:e0:e9:3a:cc:c5:c1:94:4d:3d:41:f6:c5:c6: 61:ce:cd:e5:68:61:d1:e3:5b:d9:44:b4:1a:d3:83: ac:a8:e4:24:0e:22:7f:98:38:0c:94:84:7d:42:b9: c2:52:b2:a7:10:6a:0b:fd:38:2f:cf:84:b6:ba:bd: a1:39:8a:3c:32:cf:f6:99:e7:03:da:d4:a0:5b:1e: d8:72:6b:22:9f:8f:51:14:bd:cc:d3:30:a0:9f:7a: 78:e9:ab:fa:9a:fd:9c:54:50:49:0c:bc:be:05:08: 83:66:58:fa:f4:15:84:f1:02:ea:9b:2e:fe:c6:ec: 33:5e:cc:62:04:28:c2:a2:24:0d:57:37:50:c8:1e: 79:d0:b6:22:3b:f0:f8:1e:1d:d1:7a:1e:79:64:de: 35:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:67:4F:0A:50:7A:6B:B0:BD:88:15:57:74:46:98:7D:2D:26:CE:4C X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141628.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:9a0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:82:de:3f:99:de:55:f0:41:35:f4:78:e4:9f:4e:e0:2c:dc: a0:2d:4e:23:22:b2:33:99:ac:eb:ee:a5:21:77:39:bf:dd:ba: 18:a7:d4:24:31:b2:a8:6d:84:61:d8:88:8d:5a:c1:71:e6:41: 3f:4d:87:f8:8c:7a:40:a7:79:b9:51:25:57:72:92:61:69:d4: fe:d9:25:86:ad:53:68:8f:39:45:89:80:e8:38:77:9e:16:6a: fe:c5:e2:72:0e:5c:1c:a8:4b:d6:d6:56:68:8c:88:e1:96:e8: 3d:fc:5f:b5:11:6c:c3:c8:f5:6f:71:35:62:43:59:f6:ee:14: c1:d1:0c:32:3d:d4:c3:bd:a9:c9:82:d9:8b:c2:7c:f5:8b:4b: ec:f6:91:ff:9e:c2:64:3e:e0:71:fc:cb:db:1c:34:0c:c6:18: 6e:4f:a1:76:6e:5b:ab:97:3c:f4:02:38:c7:e7:a4:f6:74:48: 9d:37:46:4f:55:47:da:3a:4b:0a:30:04:c5:81:cb:df:f5:08: 34:16:8a:27:e9:1c:13:25:5f:d4:4d:96:ef:a2:0f:12:14:36: d7:be:b4:24:e0:89:48:a5:a3:a1:ab:01:4e:31:4a:bd:04:ca: 11:45:ef:b9:3e:33:be:f6:bb:4e:dd:99:ca:48:23:74:b6:0c: 42:7d:f1:c9 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUVaV5FVhNSZrNa8mDsCBc3/Zw138wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjczMloX DTI3MDUwMTIxMzIzMlowMzExMC8GA1UEAxMoRDU2NzRGMEE1MDdBNkJCMEJEODgx NTU3NzQ0Njk4N0QyRDI2Q0U0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpFflUUIbOw+hhv+vWVixuWcRC/mzLTFKYPnV5sQve6TxGHDv8IxLU8AfrA NVsZwAdjmzc8+mGj9myZckQgiaAnkQ+T9c0B9WDYWhpr9G22cI6g3r52PLwf0x9E HSbwxUAdRcITxTyH2tDg6TrMxcGUTT1B9sXGYc7N5Whh0eNb2US0GtODrKjkJA4i f5g4DJSEfUK5wlKypxBqC/04L8+Etrq9oTmKPDLP9pnnA9rUoFse2HJrIp+PURS9 zNMwoJ96eOmr+pr9nFRQSQy8vgUIg2ZY+vQVhPEC6psu/sbsM17MYgQowqIkDVc3 UMgeedC2Ijvw+B4d0XoeeWTeNb8CAwEAAaOCAc0wggHJMB0GA1UdDgQWBBTVZ08K UHprsL2IFVd0Rph9LSbOTDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxNjI4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAEJoDANBgkqhkiG9w0BAQsFAAOCAQEAP4LeP5neVfBBNfR45J9O4Czc oC1OIyKyM5ms6+6lIXc5v926GKfUJDGyqG2EYdiIjVrBceZBP02H+Ix6QKd5uVEl V3KSYWnU/tklhq1TaI85RYmA6Dh3nhZq/sXicg5cHKhL1tZWaIyI4ZboPfxftRFs w8j1b3E1YkNZ9u4UwdEMMj3Uw72pyYLZi8J89YtL7PaR/57CZD7gcfzL2xw0DMYY bk+hdm5bq5c89AI4x+ek9nRInTdGT1VH2jpLCjAExYHL3/UINBaKJ+kcEyVf1E2W 76IPEhQ21760JOCJSKWjoasBTjFKvQTKEUXvuT4zvva7Tt2ZykgjdLYMQn3xyQ== -----END CERTIFICATE-----Generated at Sun May 3 00:42:34 2026 by rpki-client