$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141937.roa File: AS141937.roa (raw, json) Hash identifier: TaM6Jb40VCVZToKAH0ugBfnwM0cx5je5i8wNnq39gG4= Subject key identifier: 88:87:A7:0B:B5:FC:D1:16:AD:49:17:C9:58:C7:21:11:24:52:72:29 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1B8E34AA8863D05BB7817E746651CCBE8E4BEC24 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141937.roa Signing time: Sat 02 May 2026 09:20:12 +0000 ROA not before: Sat 02 May 2026 09:15:12 +0000 ROA not after: Sat 01 May 2027 09:20:12 +0000 asID: 141937 IP address blocks: 103.165.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8e:34:aa:88:63:d0:5b:b7:81:7e:74:66:51:cc:be:8e:4b:ec:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:12 2026 GMT Not After : May 1 09:20:12 2027 GMT Subject: CN=8887A70BB5FCD116AD4917C958C7211124527229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:46:e8:b4:d9:d3:1a:a5:2f:8f:19:f1:15:96: a1:c2:75:6f:3e:07:ce:e9:88:c7:af:82:c2:85:93: c0:88:1e:44:5b:b6:70:d2:1d:6a:72:f0:01:36:92: 91:bb:8b:30:14:f4:bf:3c:eb:f2:df:45:60:8f:ce: 16:2e:68:dd:a3:60:b0:77:83:5b:ec:1b:2d:4e:bd: dc:a3:f6:40:0d:65:d8:4d:4f:a4:ea:42:8b:fb:25: 9b:6d:38:f2:3b:19:f4:0b:ec:e6:99:24:95:db:1b: 71:7f:44:f5:bb:25:f2:94:e5:b2:88:b7:a1:75:66: b1:c6:32:f8:e5:b9:63:83:2d:09:98:0d:0f:c7:f4: 2c:34:69:ff:33:d6:2f:7b:ac:83:0e:b6:31:a5:3f: ff:84:ea:19:0e:8c:fd:52:c1:94:b3:f5:fb:15:50: ea:2d:49:3b:5c:b9:cb:0c:17:06:cd:d7:15:f8:1f: 49:54:25:d5:f5:90:a4:22:d4:30:ae:7b:ce:0a:12: 0f:74:28:0a:a4:00:c2:5f:42:3e:92:ae:9f:8d:e4: e7:1a:f7:38:75:96:e1:0b:30:0c:70:17:c8:88:aa: 35:6c:24:95:18:23:3a:7a:19:d7:98:a8:d2:05:69: f4:03:56:a8:22:95:b1:c2:26:27:b1:f0:bc:8d:72: eb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:87:A7:0B:B5:FC:D1:16:AD:49:17:C9:58:C7:21:11:24:52:72:29 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.250.0/23 Signature Algorithm: sha256WithRSAEncryption 46:e6:1d:9d:0f:0f:92:05:40:90:8c:5d:4e:50:1e:ec:e9:c4: cc:fa:1d:f4:3e:8a:30:e1:0b:dc:69:96:76:77:22:9a:a4:38: 0d:d0:c7:1b:06:68:46:71:39:cf:f7:3d:8a:45:fa:1a:2c:a1: e7:e7:56:44:99:30:0d:dd:9a:2b:ea:58:9f:90:13:62:8b:6b: 52:ee:80:e3:f1:d6:50:67:f7:93:7b:3f:9d:33:39:c4:76:75: df:ee:fc:b6:d4:f8:3f:de:0b:23:38:ef:d6:03:1f:c9:1b:cc: 8f:63:63:62:4c:2e:7a:f3:c1:f8:84:60:c4:88:40:77:9c:42: 41:20:8a:1e:a6:70:6e:9d:e5:5c:91:38:e6:d4:8e:cf:92:34: d5:55:e4:3f:81:87:1d:7c:64:f9:b0:40:71:a5:87:42:12:84: 7a:e5:42:7e:d8:97:79:77:c4:fd:7a:bb:1e:74:1c:0b:ad:7f: 9d:0d:c1:95:50:d9:e1:64:5a:b6:3e:92:07:26:1b:1d:ea:cc: 56:2a:e2:9b:6b:5e:2e:70:be:b9:08:8a:75:dd:7f:6d:43:8a: fc:81:64:9e:d3:bf:36:28:1b:d8:70:fe:33:6f:55:f1:e2:94: fd:37:3b:06:bd:7a:ea:4d:7a:33:29:0b:95:a9:e2:cc:a4:7a: 47:f6:8a:2b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUG440qohj0Fu3gX50ZlHMvo5L7CQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUxMloX DTI3MDUwMTA5MjAxMlowMzExMC8GA1UEAxMoODg4N0E3MEJCNUZDRDExNkFENDkx N0M5NThDNzIxMTEyNDUyNzIyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNG6LTZ0xqlL48Z8RWWocJ1bz4HzumIx6+CwoWTwIgeRFu2cNIdanLwATaS kbuLMBT0vzzr8t9FYI/OFi5o3aNgsHeDW+wbLU693KP2QA1l2E1PpOpCi/slm204 8jsZ9Avs5pkkldsbcX9E9bsl8pTlsoi3oXVmscYy+OW5Y4MtCZgND8f0LDRp/zPW L3usgw62MaU//4TqGQ6M/VLBlLP1+xVQ6i1JO1y5ywwXBs3XFfgfSVQl1fWQpCLU MK57zgoSD3QoCqQAwl9CPpKun43k5xr3OHWW4QswDHAXyIiqNWwklRgjOnoZ15io 0gVp9ANWqCKVscImJ7HwvI1y600CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSIh6cL tfzRFq1JF8lYxyERJFJyKTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTM3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6X6MA0GCSqGSIb3DQEBCwUAA4IBAQBG5h2dDw+SBUCQjF1OUB7s6cTM +h30Poow4QvcaZZ2dyKapDgN0McbBmhGcTnP9z2KRfoaLKHn51ZEmTAN3Zor6lif kBNii2tS7oDj8dZQZ/eTez+dMznEdnXf7vy21Pg/3gsjOO/WAx/JG8yPY2NiTC56 88H4hGDEiEB3nEJBIIoepnBuneVckTjm1I7PkjTVVeQ/gYcdfGT5sEBxpYdCEoR6 5UJ+2Jd5d8T9ersedBwLrX+dDcGVUNnhZFq2PpIHJhsd6sxWKuKba14ucL65CIp1 3X9tQ4r8gWSe0782KBvYcP4zb1Xx4pT9NzsGvXrqTXozKQuVqeLMpHpH9oor -----END CERTIFICATE-----Generated at Sun May 3 00:42:12 2026 by rpki-client