$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141896.roa File: AS141896.roa (raw, json) Hash identifier: PKjf6Vfa6vGPwJlxDL74U4P/U0SRx71grSPZY5wCP/g= Subject key identifier: C6:58:21:AB:78:28:DE:3F:92:40:82:E9:60:3C:84:45:D1:86:95:BA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 07AE7357F3C5AE394CE63D01D74D55BE598742DF Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141896.roa Signing time: Sat 02 May 2026 09:19:47 +0000 ROA not before: Sat 02 May 2026 09:14:47 +0000 ROA not after: Sat 01 May 2027 09:19:47 +0000 asID: 141896 IP address blocks: 103.163.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ae:73:57:f3:c5:ae:39:4c:e6:3d:01:d7:4d:55:be:59:87:42:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:14:47 2026 GMT Not After : May 1 09:19:47 2027 GMT Subject: CN=C65821AB7828DE3F924082E9603C8445D18695BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3d:25:de:d0:dc:61:7d:64:9f:1a:de:3c:6c: ba:1a:c1:83:2c:a4:b0:98:f8:d0:33:8a:6b:c1:ce: a1:0a:50:f2:7b:64:fe:12:ac:06:03:c0:fa:8a:73: 3a:cc:de:f1:46:c8:77:47:7e:3e:c0:b0:a3:a6:81: ce:f4:d3:ba:1f:d4:ad:1a:6c:cb:4c:39:0a:0e:ad: 06:4b:8e:f0:18:ea:9f:76:a3:f9:20:01:64:0d:6c: 14:12:a9:f9:4f:d2:2b:f5:e7:61:ce:79:df:f2:76: 8d:f1:2c:cc:4c:2c:4a:d7:78:d4:d8:70:af:47:d6: 26:b0:35:1b:31:c1:fe:a3:fa:32:5c:c9:08:fc:04: eb:2e:11:81:17:7f:af:a3:f6:34:b0:0c:70:cd:8d: 1c:52:3d:4d:cd:25:f1:a2:f0:3d:90:38:66:ed:63: cd:18:be:91:ed:91:92:7a:b2:14:fc:21:03:62:13: 43:5e:4c:4d:a9:7d:8f:3c:4c:0d:8e:f6:dc:19:e7: 46:91:1d:39:98:a5:27:d5:a1:d3:2b:6c:22:8b:25: be:64:6e:78:f7:bc:63:e9:5e:5c:f8:24:f3:75:13: 1f:6b:44:f4:8b:ef:22:5e:1f:b7:09:8a:03:d3:d3: 4a:93:6e:4c:d1:59:60:d1:ab:c5:ce:f5:0e:27:48: ec:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:58:21:AB:78:28:DE:3F:92:40:82:E9:60:3C:84:45:D1:86:95:BA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141896.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.226.0/23 Signature Algorithm: sha256WithRSAEncryption 22:5d:83:b6:e8:b4:25:23:7d:4d:2c:1a:bc:dd:b9:e9:00:f1: 3a:65:a5:8f:12:a5:48:b8:e5:51:27:71:5d:55:a7:ee:cc:b1: b1:93:4a:d5:93:b3:9e:9e:c9:4e:9a:9e:5d:ae:21:ed:1b:92: 58:2f:8b:7b:e8:a8:02:94:f0:cc:36:d6:63:0e:90:0a:25:38: 4e:de:07:96:28:26:b8:fb:b3:a3:b2:5a:80:7f:05:6a:97:cf: f3:e7:fd:14:8e:44:5a:da:0c:81:83:51:65:eb:c9:cd:50:55: e5:65:82:0d:af:24:31:9a:6d:2a:15:3a:6f:f8:4e:37:c5:f8: 5f:65:cb:86:89:aa:d6:98:54:cb:11:93:17:86:29:74:63:df: d2:fb:1d:ae:82:d8:a2:8e:93:1e:db:c8:c2:e8:2a:29:f1:48: 61:3a:d1:a3:cc:19:4e:26:02:09:c2:12:8d:33:77:2d:24:b6: 08:58:5b:9c:06:8d:f1:17:60:31:58:90:4d:18:b2:a1:66:47: 01:59:b1:32:3b:39:e5:30:3b:2f:aa:82:c9:62:40:6a:83:c3: 65:7d:49:2b:98:83:27:28:6f:1e:e9:73:44:d0:d7:f4:f2:3a: 79:c7:e3:0d:aa:ac:ab:d8:ae:84:c4:a3:79:80:54:7d:71:37: 4d:40:4f:ec -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUB65zV/PFrjlM5j0B101VvlmHQt8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTQ0N1oX DTI3MDUwMTA5MTk0N1owMzExMC8GA1UEAxMoQzY1ODIxQUI3ODI4REUzRjkyNDA4 MkU5NjAzQzg0NDVEMTg2OTVCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ9Jd7Q3GF9ZJ8a3jxsuhrBgyyksJj40DOKa8HOoQpQ8ntk/hKsBgPA+opz Osze8UbId0d+PsCwo6aBzvTTuh/UrRpsy0w5Cg6tBkuO8Bjqn3aj+SABZA1sFBKp +U/SK/XnYc553/J2jfEszEwsStd41Nhwr0fWJrA1GzHB/qP6MlzJCPwE6y4RgRd/ r6P2NLAMcM2NHFI9Tc0l8aLwPZA4Zu1jzRi+ke2RknqyFPwhA2ITQ15MTal9jzxM DY723BnnRpEdOZilJ9Wh0ytsIoslvmRuePe8Y+leXPgk83UTH2tE9IvvIl4ftwmK A9PTSpNuTNFZYNGrxc71DidI7C8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTGWCGr eCjeP5JAgulgPIRF0YaVujAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxODk2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6PiMA0GCSqGSIb3DQEBCwUAA4IBAQAiXYO26LQlI31NLBq83bnpAPE6 ZaWPEqVIuOVRJ3FdVafuzLGxk0rVk7OenslOmp5driHtG5JYL4t76KgClPDMNtZj DpAKJThO3geWKCa4+7OjslqAfwVql8/z5/0UjkRa2gyBg1Fl68nNUFXlZYINryQx mm0qFTpv+E43xfhfZcuGiarWmFTLEZMXhil0Y9/S+x2ugtiijpMe28jC6Cop8Uhh OtGjzBlOJgIJwhKNM3ctJLYIWFucBo3xF2AxWJBNGLKhZkcBWbEyOznlMDsvqoLJ YkBqg8NlfUkrmIMnKG8e6XNE0Nf08jp5x+MNqqyr2K6ExKN5gFR9cTdNQE/s -----END CERTIFICATE-----Generated at Sun May 3 00:42:15 2026 by rpki-client