$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141960.roa File: AS141960.roa (raw, json) Hash identifier: B0oBSGpUapfwvOJaEKsyhbbOcxIl+hBKED6dSpMG2is= Subject key identifier: F7:A5:57:F9:F7:09:95:15:CD:95:F9:A9:31:6C:C8:F8:34:80:50:64 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 47897E7522C62E51C83C2B7A5A9AB17B0769D3A1 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141960.roa Signing time: Sat 02 May 2026 09:20:13 +0000 ROA not before: Sat 02 May 2026 09:15:13 +0000 ROA not after: Sat 01 May 2027 09:20:13 +0000 asID: 141960 IP address blocks: 103.165.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:89:7e:75:22:c6:2e:51:c8:3c:2b:7a:5a:9a:b1:7b:07:69:d3:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:13 2026 GMT Not After : May 1 09:20:13 2027 GMT Subject: CN=F7A557F9F7099515CD95F9A9316CC8F834805064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:43:84:15:f9:09:1e:53:a9:69:34:82:df:f1: 0e:35:a6:6b:04:80:f0:f5:a6:10:62:b2:6a:42:5d: 0f:0f:05:53:92:c2:34:4e:6f:be:fa:56:47:6c:db: 0e:98:04:a4:19:e7:a4:db:2d:8e:74:e4:f0:bb:e9: 06:6c:64:a8:79:3a:23:1a:2a:20:1e:89:d7:6c:9f: e6:f0:1f:ea:3c:83:37:59:76:ee:90:bf:a5:41:6e: 1b:73:ff:c7:01:1a:ea:88:c0:4e:7f:de:4e:0a:32: 1d:75:45:a8:6c:b4:4a:4d:b2:8f:af:d7:20:65:ed: ad:8d:92:7c:a1:d5:69:f9:40:7d:15:3a:84:57:23: 59:d8:7d:74:60:c3:03:c0:c0:7e:84:fd:13:0a:fe: c1:6b:37:85:e1:59:e0:d0:d9:63:13:2f:af:8d:3f: a9:12:60:0d:8e:2e:c3:b0:80:da:cf:1d:69:49:79: a1:b8:0d:d1:23:9e:3d:00:d7:9c:0f:42:0e:40:00: a0:42:7a:0f:e8:c5:95:48:7f:e4:ba:95:1d:91:f3: 26:33:c1:2b:71:62:18:6f:9d:aa:bb:39:59:e6:a1: b8:85:f8:53:3c:1b:35:d6:1c:ee:81:a4:66:98:b2: 1a:b5:ea:b8:84:f7:ae:59:0c:f2:4b:13:a2:88:a5: 85:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A5:57:F9:F7:09:95:15:CD:95:F9:A9:31:6C:C8:F8:34:80:50:64 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141960.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.253.0/24 Signature Algorithm: sha256WithRSAEncryption 96:d5:76:33:72:8b:bf:3f:e3:30:6e:fb:9e:c7:e1:f4:14:a1: 89:75:b5:e1:2e:8b:8f:4d:e2:ec:f2:eb:9f:6a:b5:04:61:f4: 80:b0:15:6f:2d:4e:31:50:d2:fd:8b:7b:6d:16:5c:ae:a2:28: fc:d8:cc:13:37:91:4a:e4:f8:c1:9e:e1:14:0b:4c:6f:a5:23: f7:b1:e3:35:8d:3b:ec:2a:7e:e7:52:e2:a5:47:3d:6e:45:f6: 4a:fa:ad:03:92:07:1c:22:5f:93:c0:24:4a:ef:c3:5d:de:cc: a3:a7:a7:08:1e:8b:71:e7:ca:f0:1d:02:3b:1d:37:83:39:34: e9:e1:d7:d0:5d:7d:b4:cd:41:b1:24:30:af:39:98:d1:a3:a5: dc:15:af:36:d4:8a:53:9e:9b:ea:39:a6:95:4b:bf:be:15:db: 68:ff:3c:00:b4:42:80:0e:16:fd:2f:5b:ec:a7:0f:d2:d9:28: f0:f4:bb:fe:6d:3a:08:c9:e8:cc:29:b9:2f:6b:3b:0e:81:db: e3:55:5a:9e:0a:77:56:ee:f9:9e:c6:f2:b0:57:92:16:8d:00: 06:09:3d:19:52:61:8d:39:c7:a4:b2:bb:c7:08:6e:d3:05:67: 77:1f:52:93:e2:ef:15:20:fd:8a:cb:50:ce:f0:20:ec:29:a1: 2f:5d:82:ee -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUR4l+dSLGLlHIPCt6Wpqxewdp06EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUxM1oX DTI3MDUwMTA5MjAxM1owMzExMC8GA1UEAxMoRjdBNTU3RjlGNzA5OTUxNUNEOTVG OUE5MzE2Q0M4RjgzNDgwNTA2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9DhBX5CR5TqWk0gt/xDjWmawSA8PWmEGKyakJdDw8FU5LCNE5vvvpWR2zb DpgEpBnnpNstjnTk8LvpBmxkqHk6IxoqIB6J12yf5vAf6jyDN1l27pC/pUFuG3P/ xwEa6ojATn/eTgoyHXVFqGy0Sk2yj6/XIGXtrY2SfKHVaflAfRU6hFcjWdh9dGDD A8DAfoT9Ewr+wWs3heFZ4NDZYxMvr40/qRJgDY4uw7CA2s8daUl5obgN0SOePQDX nA9CDkAAoEJ6D+jFlUh/5LqVHZHzJjPBK3FiGG+dqrs5WeahuIX4UzwbNdYc7oGk ZpiyGrXquIT3rlkM8ksTooilhXcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBT3pVf5 9wmVFc2V+akxbMj4NIBQZDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTYwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6X9MA0GCSqGSIb3DQEBCwUAA4IBAQCW1XYzcou/P+Mwbvuex+H0FKGJ dbXhLouPTeLs8uufarUEYfSAsBVvLU4xUNL9i3ttFlyuoij82MwTN5FK5PjBnuEU C0xvpSP3seM1jTvsKn7nUuKlRz1uRfZK+q0DkgccIl+TwCRK78Nd3syjp6cIHotx 58rwHQI7HTeDOTTp4dfQXX20zUGxJDCvOZjRo6XcFa821IpTnpvqOaaVS7++Fdto /zwAtEKADhb9L1vspw/S2Sjw9Lv+bToIyejMKbkvazsOgdvjVVqeCndW7vmexvKw V5IWjQAGCT0ZUmGNOceksrvHCG7TBWd3H1KT4u8VIP2Ky1DO8CDsKaEvXYLu -----END CERTIFICATE-----Generated at Sun May 3 00:42:18 2026 by rpki-client