$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141916.roa File: AS141916.roa (raw, json) Hash identifier: xtbt1IatCBmjNMBJUtlVkXCCJSoVqSgVtqkfyXhAYg4= Subject key identifier: A2:04:C4:C4:E8:3F:62:3F:8B:58:02:54:7F:2A:92:81:B1:6E:AD:35 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 2277DA0B4E455FD216F04CB578632BCCE29D39FD Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141916.roa Signing time: Sat 02 May 2026 09:24:50 +0000 ROA not before: Sat 02 May 2026 09:19:50 +0000 ROA not after: Sat 01 May 2027 09:24:50 +0000 asID: 141916 IP address blocks: 103.164.235.0/24 maxlen: 24 163.128.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:77:da:0b:4e:45:5f:d2:16:f0:4c:b5:78:63:2b:cc:e2:9d:39:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:19:50 2026 GMT Not After : May 1 09:24:50 2027 GMT Subject: CN=A204C4C4E83F623F8B5802547F2A9281B16EAD35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:89:6d:0b:bf:e5:13:8b:7f:74:b7:5e:6f:21: 10:01:ab:3e:43:b2:49:85:bd:09:8e:f1:88:4c:03: 44:1d:5b:3e:dd:19:1e:09:04:bc:fc:5c:8d:55:e6: fb:4f:b1:a9:8c:37:8a:4b:c5:ed:55:6f:de:13:17: 01:2d:41:a7:b4:89:77:00:a4:be:4e:4c:2f:4c:05: 90:10:26:4f:44:aa:a2:0b:46:73:04:dd:1c:e4:2d: 63:98:08:a5:05:70:c7:19:e7:0d:fb:08:41:ab:77: f0:43:d0:03:c4:f0:4a:be:c6:f3:73:bf:a3:00:c1: 9a:54:ce:d5:b3:28:2c:ca:ea:5f:12:67:6a:99:04: c7:33:ac:42:05:10:e7:8a:60:e2:14:4d:88:9a:aa: ee:3c:59:b3:42:5a:c3:05:4d:75:c7:52:29:35:b3: 5d:f5:ba:27:f9:5f:03:93:57:20:40:7f:78:c1:9e: 86:9f:26:36:a7:25:e7:7e:b0:7a:fb:5c:89:0e:0e: 67:18:a6:c5:74:15:c3:82:f0:86:d7:c3:4e:4d:43: 3e:25:6c:5a:7d:76:18:02:3c:ce:da:5f:43:f9:75: 86:5d:0a:c5:7c:e6:43:68:d2:83:74:51:a1:e8:e2: 48:36:2b:72:00:c5:85:6c:8c:04:8a:98:76:fd:d0: 06:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:04:C4:C4:E8:3F:62:3F:8B:58:02:54:7F:2A:92:81:B1:6E:AD:35 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141916.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.235.0/24 163.128.163.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:dc:a0:5e:4b:92:ea:7b:60:67:d4:8d:59:96:59:4a:43:02: cb:c0:62:f7:4f:28:24:fa:50:18:c0:8c:1a:e7:71:aa:98:b1: 30:9e:bc:d9:58:a9:d0:68:2f:82:0f:36:fe:de:ba:f9:0f:83: 1f:09:a8:16:43:49:c9:8e:d9:4e:51:c4:a4:6f:2a:14:ac:9c: 87:ac:84:5b:10:01:09:6a:95:f7:36:37:9e:96:48:bc:8c:c3: 6a:94:92:6c:3f:d9:e6:89:d3:47:28:a2:35:63:b4:e1:7a:cf: 51:b8:4f:17:1b:a7:ab:d8:ee:f3:17:97:61:ca:82:46:90:a8: d8:f9:4d:c4:dc:93:c0:be:4f:18:1e:f9:7f:f1:f5:2a:45:f9: 60:d2:6b:9f:40:bd:6e:db:92:2a:6d:71:a9:4f:e8:a4:58:85: 21:66:55:91:5f:f5:6b:d3:7c:d9:9e:17:6f:ad:d5:68:5a:96: 1f:a7:f4:fa:15:52:9b:82:e3:d1:c7:fe:73:1f:03:ea:82:b4: 74:4c:7f:33:dd:73:8d:fe:54:08:2b:04:18:85:4e:96:4c:c8: 60:9d:2f:7a:02:84:fb:7c:a3:a3:55:37:7a:4a:49:dd:e7:bb: 9a:7f:f6:4d:e0:14:66:c4:b8:29:95:34:7a:6c:7a:5b:89:7f: 46:a2:ea:45 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUInfaC05FX9IW8Ey1eGMrzOKdOf0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTk1MFoX DTI3MDUwMTA5MjQ1MFowMzExMC8GA1UEAxMoQTIwNEM0QzRFODNGNjIzRjhCNTgw MjU0N0YyQTkyODFCMTZFQUQzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPiJbQu/5ROLf3S3Xm8hEAGrPkOySYW9CY7xiEwDRB1bPt0ZHgkEvPxcjVXm +0+xqYw3ikvF7VVv3hMXAS1Bp7SJdwCkvk5ML0wFkBAmT0SqogtGcwTdHOQtY5gI pQVwxxnnDfsIQat38EPQA8TwSr7G83O/owDBmlTO1bMoLMrqXxJnapkExzOsQgUQ 54pg4hRNiJqq7jxZs0JawwVNdcdSKTWzXfW6J/lfA5NXIEB/eMGehp8mNqcl536w evtciQ4OZximxXQVw4LwhtfDTk1DPiVsWn12GAI8ztpfQ/l1hl0KxXzmQ2jSg3RR oejiSDYrcgDFhWyMBIqYdv3QBlUCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBSiBMTE 6D9iP4tYAlR/KpKBsW6tNTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTE2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQAZ6TrAwQAo4CjMA0GCSqGSIb3DQEBCwUAA4IBAQBf3KBeS5Lqe2Bn1I1Z lllKQwLLwGL3Tygk+lAYwIwa53GqmLEwnrzZWKnQaC+CDzb+3rr5D4MfCagWQ0nJ jtlOUcSkbyoUrJyHrIRbEAEJapX3Njeelki8jMNqlJJsP9nmidNHKKI1Y7Thes9R uE8XG6er2O7zF5dhyoJGkKjY+U3E3JPAvk8YHvl/8fUqRflg0mufQL1u25IqbXGp T+ikWIUhZlWRX/Vr03zZnhdvrdVoWpYfp/T6FVKbguPRx/5zHwPqgrR0TH8z3XON /lQIKwQYhU6WTMhgnS96AoT7fKOjVTd6Sknd57uaf/ZN4BRmxLgplTR6bHpbiX9G oupF -----END CERTIFICATE-----Generated at Sun May 3 00:42:24 2026 by rpki-client