$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141904.roa File: AS141904.roa (raw, json) Hash identifier: nCQZ2uKSxy4Cvin8bO4wUs21X08DdahdOqJCt4m/aTc= Subject key identifier: BD:E4:9D:25:08:D2:17:DB:AB:21:62:4C:D4:5D:62:96:04:D0:C3:4A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 468CF64A6A7FEA83EC2BFB4ED18860BF41CDA684 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141904.roa Signing time: Sat 02 May 2026 08:37:13 +0000 ROA not before: Sat 02 May 2026 08:32:13 +0000 ROA not after: Sat 01 May 2027 08:37:13 +0000 asID: 141904 IP address blocks: 103.164.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:8c:f6:4a:6a:7f:ea:83:ec:2b:fb:4e:d1:88:60:bf:41:cd:a6:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:32:13 2026 GMT Not After : May 1 08:37:13 2027 GMT Subject: CN=BDE49D2508D217DBAB21624CD45D629604D0C34A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d3:47:cc:39:02:db:45:ea:f6:73:40:ac:6a: f5:94:fe:94:e0:f7:58:12:69:5b:97:22:87:a7:4e: 79:e4:83:19:f1:51:d3:d3:2e:e7:30:54:ea:c1:b6: 1d:30:8f:fc:58:a7:ce:28:91:a1:4d:06:38:89:04: a3:35:41:01:18:6b:10:7b:dc:f1:09:50:60:af:e1: d0:f2:7a:8a:c1:72:97:43:26:d3:3f:e4:48:c8:8a: d8:7f:12:cc:b1:ad:f9:e8:50:c9:b6:6a:9d:57:91: c5:93:a9:f6:a7:7c:2b:1a:0a:d8:ab:11:06:bf:25: 2d:b6:b5:48:88:d9:5e:ff:25:49:b4:8b:d0:4b:4f: 56:29:9d:34:17:36:3a:90:df:5a:93:a4:3d:62:8a: b8:29:11:ec:12:04:74:83:e9:73:7e:ed:a6:3d:b3: 3d:d7:88:9e:84:b4:7f:4a:85:bd:45:f6:2f:ee:b0: 4d:bf:d0:c5:4c:db:66:d4:cc:5e:95:77:ee:ee:fd: 88:c6:f1:aa:ed:81:84:64:41:a1:f5:55:f1:5c:2d: bb:cc:47:78:12:87:2d:80:2e:91:f3:58:80:cf:53: 7f:43:29:ee:7c:a6:0a:b5:62:a5:12:75:5c:f4:5c: 01:4c:8b:bd:9c:ff:ae:86:b8:64:7c:05:fa:6e:c1: 48:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E4:9D:25:08:D2:17:DB:AB:21:62:4C:D4:5D:62:96:04:D0:C3:4A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141904.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.68.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:ca:f0:39:92:e9:97:ff:80:7a:b0:36:c6:ad:42:61:0b:1a: e3:58:e5:ae:16:07:d6:80:38:45:f6:88:0f:4c:fc:78:95:24: 39:58:29:16:57:b5:c2:f1:32:61:4c:47:ef:64:ca:b9:5c:c7: 51:38:43:1d:90:8d:42:af:86:17:1f:de:be:23:c0:f2:07:e3: db:c4:83:99:b3:a2:06:65:e9:9e:01:bf:a3:81:f0:fa:f6:96: 20:a7:6a:44:fc:bb:bd:9f:bc:fa:82:cd:e0:42:08:66:e5:40: 7b:ae:f0:f8:e9:5e:a8:71:58:d3:f5:88:dd:05:37:9a:70:cb: c1:ff:2a:1f:84:75:e0:ef:ad:09:2a:4a:04:cb:7b:65:71:25: 03:72:95:3c:cb:83:d2:a9:c7:52:97:0b:df:ea:3a:7e:28:ca: eb:d8:cb:7b:76:f4:ef:05:73:d1:01:c3:e1:25:39:4a:46:7f: a0:19:c6:05:11:b0:56:27:0e:d2:b4:c6:91:15:de:c3:5f:a9: cb:80:11:6a:6e:b7:14:ae:43:f4:ac:73:d6:ab:c1:dc:fb:01: e7:4b:2d:2f:00:2e:f0:ef:fa:2a:9c:36:e3:30:c0:9c:86:a3: 71:ab:b1:05:3b:87:52:82:2f:34:4c:9e:89:01:df:87:86:a7: b0:b4:0b:25 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURoz2Smp/6oPsK/tO0Yhgv0HNpoQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzIxM1oX DTI3MDUwMTA4MzcxM1owMzExMC8GA1UEAxMoQkRFNDlEMjUwOEQyMTdEQkFCMjE2 MjRDRDQ1RDYyOTYwNEQwQzM0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfTR8w5AttF6vZzQKxq9ZT+lOD3WBJpW5cih6dOeeSDGfFR09Mu5zBU6sG2 HTCP/FinziiRoU0GOIkEozVBARhrEHvc8QlQYK/h0PJ6isFyl0Mm0z/kSMiK2H8S zLGt+ehQybZqnVeRxZOp9qd8KxoK2KsRBr8lLba1SIjZXv8lSbSL0EtPVimdNBc2 OpDfWpOkPWKKuCkR7BIEdIPpc37tpj2zPdeInoS0f0qFvUX2L+6wTb/QxUzbZtTM XpV37u79iMbxqu2BhGRBofVV8Vwtu8xHeBKHLYAukfNYgM9Tf0Mp7nymCrVipRJ1 XPRcAUyLvZz/roa4ZHwF+m7BSNECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBS95J0l CNIX26shYkzUXWKWBNDDSjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTA0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6REMA0GCSqGSIb3DQEBCwUAA4IBAQCayvA5kumX/4B6sDbGrUJhCxrj WOWuFgfWgDhF9ogPTPx4lSQ5WCkWV7XC8TJhTEfvZMq5XMdROEMdkI1Cr4YXH96+ I8DyB+PbxIOZs6IGZemeAb+jgfD69pYgp2pE/Lu9n7z6gs3gQghm5UB7rvD46V6o cVjT9YjdBTeacMvB/yofhHXg760JKkoEy3tlcSUDcpU8y4PSqcdSlwvf6jp+KMrr 2Mt7dvTvBXPRAcPhJTlKRn+gGcYFEbBWJw7StMaRFd7DX6nLgBFqbrcUrkP0rHPW q8Hc+wHnSy0vAC7w7/oqnDbjMMCchqNxq7EFO4dSgi80TJ6JAd+HhqewtAsl -----END CERTIFICATE-----Generated at Sun May 3 00:42:26 2026 by rpki-client