$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141929.roa File: AS141929.roa (raw, json) Hash identifier: 2WMV4eXRD8oBEGB5xunfIHQW3JtF69VzVda0YiVZJhw= Subject key identifier: 6D:DB:0A:17:C7:0A:4D:AA:C3:61:7B:F3:BF:A2:E6:5D:71:BB:E3:D8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 58405A45019E77A3C78CB05E420DF31C68FC5612 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141929.roa Signing time: Sat 02 May 2026 08:35:04 +0000 ROA not before: Sat 02 May 2026 08:30:04 +0000 ROA not after: Sat 01 May 2027 08:35:04 +0000 asID: 141929 IP address blocks: 103.166.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:40:5a:45:01:9e:77:a3:c7:8c:b0:5e:42:0d:f3:1c:68:fc:56:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:04 2026 GMT Not After : May 1 08:35:04 2027 GMT Subject: CN=6DDB0A17C70A4DAAC3617BF3BFA2E65D71BBE3D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:86:eb:28:74:19:23:06:c9:7e:27:2a:bf:f8: 63:fb:f0:d8:41:ed:b2:90:21:33:80:d2:aa:51:20: 1d:5b:24:af:fd:e4:b1:39:3d:1f:a3:14:f0:63:c9: 30:fc:67:c2:24:bb:8b:87:ff:9b:a2:0d:c5:8a:6c: 1d:33:8d:6c:5c:4e:1e:cf:a4:3c:99:24:24:9f:34: d3:18:f4:81:03:32:88:b0:4c:b0:28:ec:9a:05:1e: 17:52:50:55:bf:5d:a5:61:0f:f2:d5:2b:af:f6:73: e6:98:7c:70:6a:d1:f0:ba:0f:45:dc:1c:fc:26:b3: b8:ee:4d:8c:5b:f8:e3:ae:df:d6:47:03:a7:48:68: 0a:bc:1c:60:6a:77:0d:8e:d3:0d:63:1e:37:c4:d4: 30:f2:f2:e7:32:b6:a6:11:41:9e:2c:bf:a4:b7:d8: 10:89:e5:ab:18:95:4b:76:3b:bc:7c:4a:55:8c:c8: c3:cd:71:84:51:54:37:84:a0:77:b4:cd:b7:95:7c: a6:f0:47:15:af:c4:07:33:41:10:e1:8d:77:4b:86: 20:86:92:a8:da:cc:cc:90:ed:be:fe:0c:71:f8:b0: 7b:2d:cd:7a:19:54:9a:99:69:53:34:3d:ce:4b:c0: 4e:ba:65:cb:a5:78:5c:63:07:0f:9e:49:98:67:7c: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:DB:0A:17:C7:0A:4D:AA:C3:61:7B:F3:BF:A2:E6:5D:71:BB:E3:D8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.32.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:5f:db:c6:45:a1:b5:33:99:08:55:80:42:46:ea:c7:ed:aa: 9d:a3:ac:1b:e9:8e:6b:9d:72:b1:a8:4b:5e:7a:64:c6:d1:49: cb:3f:85:d1:85:b7:39:45:ad:35:37:18:47:21:ea:f0:1c:0b: 7d:9d:ee:cb:9f:18:2c:7c:ca:7f:62:a8:73:59:29:0a:8c:81: 57:a1:f3:82:ef:7a:bb:8e:82:8a:0d:b5:36:fa:aa:0e:ff:74: 3c:f7:05:c8:49:25:1f:d3:f5:7c:10:01:8f:7a:91:2a:ba:c8: 68:6e:4b:c2:85:c1:9b:a7:16:04:9c:c6:16:ad:90:1e:41:62: eb:d7:11:d4:30:15:30:04:ec:49:71:0d:b0:b4:00:84:b0:66: 0f:f4:98:90:07:a6:7c:5b:ca:14:4d:c5:45:df:6a:2d:1b:5a: e6:32:ba:4a:09:40:9b:b9:1f:07:41:e0:0f:4f:d0:1c:69:59: d9:02:c9:92:1c:21:ec:03:bf:91:ed:fa:7d:c0:60:64:6b:87: 2d:31:a6:12:10:1c:f3:19:06:1e:21:f4:0b:c6:fe:f8:b6:dc: 07:3b:a1:c0:be:6f:41:09:c6:0e:2b:08:f6:4b:a4:98:23:8e: 76:a8:0e:b5:af:ce:8a:29:d6:6c:93:9d:e1:89:fa:3c:44:8b: c8:17:0a:65 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWEBaRQGed6PHjLBeQg3zHGj8VhIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAwNFoX DTI3MDUwMTA4MzUwNFowMzExMC8GA1UEAxMoNkREQjBBMTdDNzBBNERBQUMzNjE3 QkYzQkZBMkU2NUQ3MUJCRTNEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPGG6yh0GSMGyX4nKr/4Y/vw2EHtspAhM4DSqlEgHVskr/3ksTk9H6MU8GPJ MPxnwiS7i4f/m6INxYpsHTONbFxOHs+kPJkkJJ800xj0gQMyiLBMsCjsmgUeF1JQ Vb9dpWEP8tUrr/Zz5ph8cGrR8LoPRdwc/CazuO5NjFv4467f1kcDp0hoCrwcYGp3 DY7TDWMeN8TUMPLy5zK2phFBniy/pLfYEInlqxiVS3Y7vHxKVYzIw81xhFFUN4Sg d7TNt5V8pvBHFa/EBzNBEOGNd0uGIIaSqNrMzJDtvv4Mcfiwey3NehlUmplpUzQ9 zkvATrply6V4XGMHD55JmGd8JYECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRt2woX xwpNqsNhe/O/ouZdcbvj2DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTI5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6YgMA0GCSqGSIb3DQEBCwUAA4IBAQAvX9vGRaG1M5kIVYBCRurH7aqd o6wb6Y5rnXKxqEteemTG0UnLP4XRhbc5Ra01NxhHIerwHAt9ne7LnxgsfMp/Yqhz WSkKjIFXofOC73q7joKKDbU2+qoO/3Q89wXISSUf0/V8EAGPepEqushobkvChcGb pxYEnMYWrZAeQWLr1xHUMBUwBOxJcQ2wtACEsGYP9JiQB6Z8W8oUTcVF32otG1rm MrpKCUCbuR8HQeAPT9AcaVnZAsmSHCHsA7+R7fp9wGBka4ctMaYSEBzzGQYeIfQL xv74ttwHO6HAvm9BCcYOKwj2S6SYI452qA61r86KKdZsk53hifo8RIvIFwpl -----END CERTIFICATE-----Generated at Sun May 3 00:42:14 2026 by rpki-client