$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141666.roa File: AS141666.roa (raw, json) Hash identifier: 5BB38tOsu/8XnPsgwazdN0FelI52vyS1GC91gM03wh0= Subject key identifier: 54:1F:49:08:9E:2B:F6:37:EC:B6:AA:BA:A0:8B:18:C5:FB:F7:FE:D1 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1D0E6834BC5E95E96ABCF758CCB5B80C778FBC21 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141666.roa Signing time: Sat 02 May 2026 08:35:56 +0000 ROA not before: Sat 02 May 2026 08:30:56 +0000 ROA not after: Sat 01 May 2027 08:35:56 +0000 asID: 141666 IP address blocks: 103.162.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:0e:68:34:bc:5e:95:e9:6a:bc:f7:58:cc:b5:b8:0c:77:8f:bc:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:56 2026 GMT Not After : May 1 08:35:56 2027 GMT Subject: CN=541F49089E2BF637ECB6AABAA08B18C5FBF7FED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:56:3f:1c:fa:a1:13:1b:5c:08:22:4f:34:7e: 4f:12:4c:da:52:2c:02:9a:93:a6:ce:d3:50:7c:d5: 71:21:39:33:0e:bd:74:76:2c:14:bd:38:80:5e:ce: d7:9d:bb:ef:23:52:ca:1e:35:7c:26:4e:84:84:dd: 1f:d0:b3:cc:a9:d2:e6:22:03:2b:af:83:82:b6:4d: 6a:1c:04:a6:09:7c:c9:0e:57:75:3d:4e:7c:41:cf: ca:91:f8:d8:7b:f7:b4:52:95:43:a9:17:9e:06:81: 60:93:c9:bf:e1:bb:05:1d:81:d5:80:d9:bc:14:08: 81:e4:3c:30:4a:05:26:44:66:2c:4d:32:dc:1d:06: 5d:b9:ed:a2:c0:a9:72:06:2e:63:a3:73:ea:75:c6: 6c:23:6e:34:0c:a8:67:d9:18:0f:8c:98:7a:a8:39: 6a:2b:f1:70:5d:f0:48:1f:8a:3f:67:3b:93:72:59: bb:97:02:6d:a3:60:10:ae:41:aa:96:e9:a2:83:6e: 69:d5:d4:f6:0c:f6:90:56:28:57:37:eb:7d:22:d3: 57:13:5a:85:44:f5:5f:37:d2:d4:5f:23:bb:3e:9a: e6:5d:dc:aa:73:8a:9d:0b:7c:3f:eb:7e:5e:23:e2: 52:20:47:69:d9:ab:78:ce:d1:1b:fd:d7:9b:d7:28: e9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:1F:49:08:9E:2B:F6:37:EC:B6:AA:BA:A0:8B:18:C5:FB:F7:FE:D1 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.253.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:e0:9c:08:2b:f3:67:5e:c0:f8:62:19:a1:ef:9b:89:bf:22: dd:96:84:a0:4e:77:48:50:7a:60:de:9b:03:df:ae:ec:bf:9d: 29:0b:59:9e:e8:d3:49:c8:51:03:c3:24:81:fd:7c:9f:d3:47: 83:bc:78:e5:b9:70:a1:b8:07:f9:58:e9:4f:8e:1e:50:62:d4: ae:65:b4:9d:86:e7:9a:da:f6:d0:15:1f:18:32:10:e9:22:bf: c0:a8:80:fa:d3:e1:b9:1a:d1:a5:9c:c6:98:f4:fa:f1:b5:2c: ed:e1:30:c2:fc:7a:81:72:e9:5a:dd:85:63:9d:d1:a4:0d:89: f7:d3:16:ba:0a:2d:af:99:66:4c:49:dd:fd:2f:84:7e:3d:ae: 53:fe:94:a9:78:98:74:72:e0:8f:04:56:d5:07:eb:67:1b:5a: 7e:af:3a:fa:d4:51:a9:f9:52:66:0b:57:b4:50:1e:5c:12:de: 29:b1:f7:1b:7b:a6:93:7f:00:87:bc:51:da:05:1b:69:8d:8d: f5:5d:37:1b:55:a8:8f:ae:03:18:04:45:ae:8c:2b:38:5f:47: bd:3b:69:c1:54:5a:18:ed:4a:db:45:01:dc:7d:72:f2:9e:14: bb:96:de:bc:23:33:ba:a0:a2:c1:d8:7f:a5:f9:e9:d6:36:f1: d5:6a:48:9b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUHQ5oNLxelelqvPdYzLW4DHePvCEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzA1NloX DTI3MDUwMTA4MzU1NlowMzExMC8GA1UEAxMoNTQxRjQ5MDg5RTJCRjYzN0VDQjZB QUJBQTA4QjE4QzVGQkY3RkVEMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJWPxz6oRMbXAgiTzR+TxJM2lIsApqTps7TUHzVcSE5Mw69dHYsFL04gF7O 15277yNSyh41fCZOhITdH9CzzKnS5iIDK6+DgrZNahwEpgl8yQ5XdT1OfEHPypH4 2Hv3tFKVQ6kXngaBYJPJv+G7BR2B1YDZvBQIgeQ8MEoFJkRmLE0y3B0GXbntosCp cgYuY6Nz6nXGbCNuNAyoZ9kYD4yYeqg5aivxcF3wSB+KP2c7k3JZu5cCbaNgEK5B qpbpooNuadXU9gz2kFYoVzfrfSLTVxNahUT1XzfS1F8juz6a5l3cqnOKnQt8P+t+ XiPiUiBHadmreM7RG/3Xm9co6XsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRUH0kI niv2N+y2qrqgixjF+/f+0TAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxNjY2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6L9MA0GCSqGSIb3DQEBCwUAA4IBAQBf4JwIK/NnXsD4Yhmh75uJvyLd loSgTndIUHpg3psD367sv50pC1me6NNJyFEDwySB/Xyf00eDvHjluXChuAf5WOlP jh5QYtSuZbSdhuea2vbQFR8YMhDpIr/AqID60+G5GtGlnMaY9PrxtSzt4TDC/HqB cula3YVjndGkDYn30xa6Ci2vmWZMSd39L4R+Pa5T/pSpeJh0cuCPBFbVB+tnG1p+ rzr61FGp+VJmC1e0UB5cEt4psfcbe6aTfwCHvFHaBRtpjY31XTcbVaiPrgMYBEWu jCs4X0e9O2nBVFoY7UrbRQHcfXLynhS7lt68IzO6oKLB2H+l+enWNvHVakib -----END CERTIFICATE-----Generated at Sun May 3 00:42:35 2026 by rpki-client