$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141671.roa File: AS141671.roa (raw, json) Hash identifier: E2BevhIEkGw1M4zePnnr16J/ZUbQKv8GEU/I4Sm3Ja4= Subject key identifier: F8:1B:0B:AF:ED:4F:4E:54:1C:BC:1B:36:C5:88:23:97:1C:33:79:BF Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 79886134192D8A64905C50DB50956845997F8E5C Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141671.roa Signing time: Sat 02 May 2026 21:31:27 +0000 ROA not before: Sat 02 May 2026 21:26:27 +0000 ROA not after: Sat 01 May 2027 21:31:27 +0000 asID: 141671 IP address blocks: 103.224.100.0/22 maxlen: 24 103.227.144.0/22 maxlen: 24 2400:ad60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:88:61:34:19:2d:8a:64:90:5c:50:db:50:95:68:45:99:7f:8e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:26:27 2026 GMT Not After : May 1 21:31:27 2027 GMT Subject: CN=F81B0BAFED4F4E541CBC1B36C58823971C3379BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4e:ff:30:aa:23:fa:4a:14:04:70:d9:f7:01: 20:8e:0c:e2:ff:16:cc:13:a0:32:e4:a6:af:5e:1f: eb:f0:e5:17:2b:a8:fb:04:3f:fb:7d:60:35:b3:62: 85:94:40:a3:62:e3:5b:18:a8:35:c9:10:ec:19:0c: 14:92:ba:2d:d3:cd:df:5b:53:b8:2f:63:e8:45:f9: ab:8f:9f:6e:0f:ca:74:f3:06:ed:2a:52:97:a6:60: 3f:30:69:e6:2e:9a:d5:43:20:81:c2:08:6c:2c:5a: de:6d:9d:e6:b7:16:ea:33:99:93:21:1f:7a:01:68: 82:92:b1:03:74:8a:35:8e:91:9f:4d:9b:a5:a0:01: c7:dc:04:c0:7f:6f:78:6b:1b:56:b3:49:9e:52:89: 48:f7:95:49:f0:6c:69:4f:0b:8e:6d:39:5c:0a:42: 46:5d:2a:98:0a:37:cd:1b:a0:a0:a9:1f:33:6e:44: 5c:5f:3e:5a:68:54:86:8c:f9:a1:26:d5:59:ef:07: fc:49:f8:a8:75:19:52:a4:54:37:21:90:93:40:7a: 7a:71:7a:a9:a5:f9:ec:3d:29:35:e7:1e:8a:fc:b0: 78:9d:71:52:17:c2:e4:19:8f:f4:86:d1:6d:27:a3: 60:31:c7:b0:06:84:f7:5c:fe:b4:b2:eb:c8:fe:60: 8d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1B:0B:AF:ED:4F:4E:54:1C:BC:1B:36:C5:88:23:97:1C:33:79:BF X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.100.0/22 103.227.144.0/22 IPv6: 2400:ad60::/32 Signature Algorithm: sha256WithRSAEncryption 9f:3d:96:8e:4b:53:3e:73:d3:54:06:cb:85:71:17:ae:d6:27: 4e:95:34:6c:9b:1a:c6:2d:bc:07:51:51:0a:8e:75:a9:c0:7e: 0a:5a:57:6d:36:6f:7a:8d:6f:3d:9f:c9:d5:ad:75:aa:04:45: 59:b3:5a:ea:b1:0e:f1:fa:4e:f5:75:53:cd:83:81:e5:ce:dd: 6d:cb:48:1a:29:71:a5:10:9c:ad:c2:3c:3d:63:5a:c6:36:a3: 08:ed:ea:f1:c1:af:6b:0e:ad:e3:b5:30:33:44:bf:8f:fe:5b: 58:81:4f:95:f0:ac:77:d8:36:c5:ff:88:d6:e8:0a:69:ed:01: 41:13:76:80:7b:c7:8a:53:a5:86:5f:a2:7f:d3:c0:49:3c:bb: a6:90:f2:f1:72:1a:db:cb:c7:5c:0b:2b:41:7d:a2:9d:fc:eb: 8b:53:c5:f2:69:4d:77:04:75:05:a6:57:d3:8d:23:74:43:46: 57:a7:5e:48:52:49:cc:08:13:ea:05:23:92:14:f3:d5:61:ca: 67:9b:41:5d:82:57:08:e0:7f:d6:e1:db:6f:69:4c:61:66:f8: 46:99:f1:3e:da:b2:c8:5c:a6:30:6e:60:1d:2d:1f:22:91:b4: a5:73:fa:20:49:8e:55:4b:78:f4:fc:c1:5f:fd:b3:3e:c0:08: 06:a8:ca:18 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUeYhhNBktimSQXFDbUJVoRZl/jlwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjYyN1oX DTI3MDUwMTIxMzEyN1owMzExMC8GA1UEAxMoRjgxQjBCQUZFRDRGNEU1NDFDQkMx QjM2QzU4ODIzOTcxQzMzNzlCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBO/zCqI/pKFARw2fcBII4M4v8WzBOgMuSmr14f6/DlFyuo+wQ/+31gNbNi hZRAo2LjWxioNckQ7BkMFJK6LdPN31tTuC9j6EX5q4+fbg/KdPMG7SpSl6ZgPzBp 5i6a1UMggcIIbCxa3m2d5rcW6jOZkyEfegFogpKxA3SKNY6Rn02bpaABx9wEwH9v eGsbVrNJnlKJSPeVSfBsaU8Ljm05XApCRl0qmAo3zRugoKkfM25EXF8+WmhUhoz5 oSbVWe8H/En4qHUZUqRUNyGQk0B6enF6qaX57D0pNeceivyweJ1xUhfC5BmP9IbR bSejYDHHsAaE91z+tLLryP5gjekCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBT4Gwuv 7U9OVBy8GzbFiCOXHDN5vzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxNjcxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIA ATAMAwQCZ+BkAwQCZ+OQMA0EAgACMAcDBQAkAK1gMA0GCSqGSIb3DQEBCwUAA4IB AQCfPZaOS1M+c9NUBsuFcReu1idOlTRsmxrGLbwHUVEKjnWpwH4KWldtNm96jW89 n8nVrXWqBEVZs1rqsQ7x+k71dVPNg4Hlzt1ty0gaKXGlEJytwjw9Y1rGNqMI7erx wa9rDq3jtTAzRL+P/ltYgU+V8Kx32DbF/4jW6App7QFBE3aAe8eKU6WGX6J/08BJ PLumkPLxchrby8dcCytBfaKd/OuLU8XyaU13BHUFplfTjSN0Q0ZXp15IUknMCBPq BSOSFPPVYcpnm0FdglcI4H/W4dtvaUxhZvhGmfE+2rLIXKYwbmAdLR8ikbSlc/og SY5VS3j0/MFf/bM+wAgGqMoY -----END CERTIFICATE-----Generated at Sun May 3 01:44:43 2026 by rpki-client