$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141668.roa File: AS141668.roa (raw, json) Hash identifier: Q/7lbTPa1jtsZxOZNJviqTWEiX7x4QhUkJ2Vm8C2rng= Subject key identifier: A8:69:4F:72:C7:16:07:77:FE:1C:DB:9F:BF:A5:1C:AF:F7:65:08:0D Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 389F1E16A1159E5946183B75D26C965B553BA08D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141668.roa Signing time: Sat 02 May 2026 09:19:59 +0000 ROA not before: Sat 02 May 2026 09:14:59 +0000 ROA not after: Sat 01 May 2027 09:19:59 +0000 asID: 141668 IP address blocks: 103.162.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9f:1e:16:a1:15:9e:59:46:18:3b:75:d2:6c:96:5b:55:3b:a0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:14:59 2026 GMT Not After : May 1 09:19:59 2027 GMT Subject: CN=A8694F72C7160777FE1CDB9FBFA51CAFF765080D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:48:26:e8:62:bf:ea:58:00:21:ec:4d:19: 0c:da:a0:ef:78:ac:4f:33:9d:d1:37:ce:d8:77:96: 87:87:3d:1f:fb:2a:77:eb:5e:8a:e8:6b:77:f4:d3: 1c:2d:c9:bf:e6:ae:29:3f:a3:fd:d2:0e:15:4c:37: 3d:b2:62:f5:7d:a5:5d:2a:b4:ca:28:24:1c:e6:4c: 80:81:04:4f:ae:13:f3:73:dc:a7:15:41:62:e7:7d: d5:f8:c2:54:a7:cc:62:61:e2:f2:aa:d8:2a:39:b3: 76:57:f1:a6:b7:a0:83:bd:e7:0b:5a:2c:1a:89:5a: ea:f4:b3:1d:29:1c:2a:d6:0e:8c:88:cb:8c:72:71: 4f:d6:5a:9c:95:4a:2b:cc:55:77:b1:45:04:63:f6: 32:63:53:9d:13:54:9b:69:50:3e:49:af:cb:70:af: a6:9a:f2:9b:d7:b6:ae:fd:26:53:05:13:a8:ce:5d: 65:d3:3e:1c:29:d3:6f:90:d1:ef:8a:37:b0:9d:9f: d2:12:1e:7e:df:40:aa:b1:14:05:f5:d3:4a:a8:31: 56:be:1e:7c:1c:0b:57:43:86:12:79:48:6a:87:4e: ef:21:0f:9e:b3:68:77:5d:1f:43:71:6a:35:93:40: 5b:16:51:64:c0:9f:aa:9d:18:57:5b:3d:15:c4:db: 28:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:69:4F:72:C7:16:07:77:FE:1C:DB:9F:BF:A5:1C:AF:F7:65:08:0D X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141668.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.141.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:65:8c:78:98:6c:46:45:97:de:4d:cc:4f:81:ed:0a:67:85: 69:ac:61:18:70:37:8c:31:ee:ca:ca:c7:24:47:02:42:09:cb: e4:b4:6f:db:36:67:8e:5a:71:cd:16:00:74:a1:12:ea:ce:24: 28:61:ac:e9:ef:c3:e7:7e:95:11:c3:40:4f:48:6a:61:fc:b5: d9:cd:6f:f4:7c:a3:6a:74:bd:e3:53:e2:27:9d:21:d9:54:53: 2a:34:63:fd:7a:4f:d1:5e:cb:2b:35:b5:4b:93:84:af:59:68: 46:1f:cf:9e:e7:9e:ec:ac:48:a8:ea:d5:f3:f0:e2:a4:5a:ac: 0f:15:84:49:33:d3:52:bf:d5:42:bd:36:ad:99:ce:eb:9d:e3: 33:84:61:b4:7e:58:55:5b:36:df:c7:3c:a6:5f:bf:b5:01:b5: 15:60:8d:0d:ca:1e:b1:f3:5d:ea:dc:16:70:aa:33:30:a9:30: 4d:8e:52:fb:e7:5e:ba:45:68:5e:a6:16:23:11:a0:3d:97:61: bb:22:79:8b:96:24:ea:55:7e:ec:81:73:2c:40:26:e6:ba:52: 7d:cf:3d:6b:ed:b9:75:e0:55:23:d6:97:f6:88:f3:8c:9f:0b: 54:ef:13:90:0d:1a:a2:ee:da:2e:90:1b:49:37:9f:94:9f:af: 5a:22:85:43 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUOJ8eFqEVnllGGDt10myWW1U7oI0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTQ1OVoX DTI3MDUwMTA5MTk1OVowMzExMC8GA1UEAxMoQTg2OTRGNzJDNzE2MDc3N0ZFMUNE QjlGQkZBNTFDQUZGNzY1MDgwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6/SCboYr/qWAAh7E0ZDNqg73isTzOd0TfO2HeWh4c9H/sqd+teiuhrd/TT HC3Jv+auKT+j/dIOFUw3PbJi9X2lXSq0yigkHOZMgIEET64T83PcpxVBYud91fjC VKfMYmHi8qrYKjmzdlfxpregg73nC1osGola6vSzHSkcKtYOjIjLjHJxT9ZanJVK K8xVd7FFBGP2MmNTnRNUm2lQPkmvy3Cvpprym9e2rv0mUwUTqM5dZdM+HCnTb5DR 74o3sJ2f0hIeft9AqrEUBfXTSqgxVr4efBwLV0OGEnlIaodO7yEPnrNod10fQ3Fq NZNAWxZRZMCfqp0YV1s9FcTbKA0CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSoaU9y xxYHd/4c25+/pRyv92UIDTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxNjY4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6KNMA0GCSqGSIb3DQEBCwUAA4IBAQB6ZYx4mGxGRZfeTcxPge0KZ4Vp rGEYcDeMMe7KysckRwJCCcvktG/bNmeOWnHNFgB0oRLqziQoYazp78PnfpURw0BP SGph/LXZzW/0fKNqdL3jU+InnSHZVFMqNGP9ek/RXssrNbVLk4SvWWhGH8+e557s rEio6tXz8OKkWqwPFYRJM9NSv9VCvTatmc7rneMzhGG0flhVWzbfxzymX7+1AbUV YI0Nyh6x813q3BZwqjMwqTBNjlL75166RWhephYjEaA9l2G7InmLliTqVX7sgXMs QCbmulJ9zz1r7bl14FUj1pf2iPOMnwtU7xOQDRqi7toukBtJN5+Un69aIoVD -----END CERTIFICATE-----Generated at Sun May 3 00:42:20 2026 by rpki-client