$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141968.roa File: AS141968.roa (raw, json) Hash identifier: Q+ByownnCntCYaDa9SC/DPnoWEM/F2YsWTJ+X9vv38k= Subject key identifier: D7:2C:46:98:2F:99:31:BB:53:1D:53:5B:F6:E6:88:ED:D7:F4:DA:F7 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 24DA90D8B14DB993F864771EF58112D921DB0C9A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141968.roa Signing time: Sat 02 May 2026 09:20:53 +0000 ROA not before: Sat 02 May 2026 09:15:53 +0000 ROA not after: Sat 01 May 2027 09:20:53 +0000 asID: 141968 IP address blocks: 103.177.94.0/23 maxlen: 24 103.180.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:da:90:d8:b1:4d:b9:93:f8:64:77:1e:f5:81:12:d9:21:db:0c:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:53 2026 GMT Not After : May 1 09:20:53 2027 GMT Subject: CN=D72C46982F9931BB531D535BF6E688EDD7F4DAF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f2:04:af:b1:5b:8b:29:d0:8c:e7:ab:35:1b: e9:22:6f:c0:56:a2:2f:28:97:fe:1f:85:26:92:56: 1b:37:7a:73:a1:11:eb:ed:04:7d:95:7c:f7:71:94: 36:c8:6d:fd:7b:e7:93:0c:85:fd:91:7e:e5:02:33: d9:5e:b4:40:b4:fb:45:9e:92:a8:21:03:03:33:11: 6e:d6:a9:b4:4a:8f:d5:3b:0f:9a:65:fe:b4:67:66: b2:c7:1f:54:84:7a:79:77:7e:47:04:14:04:dd:0b: c4:7c:0c:68:09:97:a3:2a:58:5b:dc:9e:ae:42:16: e9:9f:b8:5a:38:0d:f1:c8:ec:ee:a4:5b:a9:85:07: f7:e3:41:3e:b4:f0:d1:02:5a:b1:99:de:e0:d9:a9: 8b:66:94:d2:20:2e:f8:c2:e8:37:52:97:e0:82:97: d6:11:f1:4f:44:34:9e:09:4b:fd:cc:22:5a:ea:12: 31:cb:ec:e9:97:e4:96:0e:d8:db:cc:54:b0:5d:c2: a2:fb:cf:35:18:04:a5:c0:03:62:e6:b2:41:88:14: 36:87:e1:51:33:33:50:a0:60:01:7a:6c:3d:67:72: 8c:c5:bf:f4:45:ed:b9:1a:90:57:f6:c3:07:26:28: 81:f4:ce:cf:f5:b4:c7:29:83:aa:2d:77:1d:49:4c: 95:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2C:46:98:2F:99:31:BB:53:1D:53:5B:F6:E6:88:ED:D7:F4:DA:F7 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.94.0/23 103.180.124.0/23 Signature Algorithm: sha256WithRSAEncryption 82:44:a4:fb:7d:be:d2:39:5e:5f:9e:38:d2:c8:f8:a1:5d:2c: c9:a8:5e:c8:d4:f8:a1:1a:9a:52:67:38:c5:e8:3c:6b:bd:14: 21:e0:41:b4:61:77:93:34:64:63:2c:95:c9:d1:e6:dc:55:60: aa:a7:31:64:2d:57:45:40:95:9d:ec:44:43:c0:b5:ba:fd:b8: 37:c2:55:ea:d2:4e:1e:5c:41:1f:fe:2b:46:d5:b4:b0:51:53: d8:4f:cb:e5:be:3d:36:45:0f:7f:67:0f:d9:e8:98:f5:cb:ab: 20:95:e8:50:be:f0:12:11:a7:21:1f:92:c3:b3:ab:ca:e5:9b: 98:12:59:59:e3:3a:80:58:eb:9c:b3:05:f5:39:af:b6:bd:05: d7:30:b7:1d:e3:f4:af:3f:98:31:43:a3:1f:ed:e8:10:79:c6: c4:17:e5:1d:12:2e:20:3f:4d:71:e2:45:b1:22:4d:07:98:ff: 36:96:e6:4d:57:67:46:3f:42:68:c7:5a:63:26:cf:db:1e:2c: f1:3c:7d:6e:3e:f5:35:7e:70:cd:2c:90:0a:20:38:b4:ed:96: 07:60:71:8e:bd:29:99:2b:4a:78:94:be:a4:5c:92:e3:50:35: 18:60:67:61:22:39:b6:58:0c:95:07:de:07:3f:4e:7e:68:16: 7f:81:5a:e1 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUJNqQ2LFNuZP4ZHce9YES2SHbDJowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTU1M1oX DTI3MDUwMTA5MjA1M1owMzExMC8GA1UEAxMoRDcyQzQ2OTgyRjk5MzFCQjUzMUQ1 MzVCRjZFNjg4RUREN0Y0REFGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOTyBK+xW4sp0IznqzUb6SJvwFaiLyiX/h+FJpJWGzd6c6ER6+0EfZV893GU Nsht/XvnkwyF/ZF+5QIz2V60QLT7RZ6SqCEDAzMRbtaptEqP1TsPmmX+tGdmsscf VIR6eXd+RwQUBN0LxHwMaAmXoypYW9yerkIW6Z+4WjgN8cjs7qRbqYUH9+NBPrTw 0QJasZne4Nmpi2aU0iAu+MLoN1KX4IKX1hHxT0Q0nglL/cwiWuoSMcvs6Zfklg7Y 28xUsF3CovvPNRgEpcADYuayQYgUNofhUTMzUKBgAXpsPWdyjMW/9EXtuRqQV/bD ByYogfTOz/W0xymDqi13HUlMlekCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBTXLEaY L5kxu1MdU1v25ojt1/Ta9zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTY4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQBZ7FeAwQBZ7R8MA0GCSqGSIb3DQEBCwUAA4IBAQCCRKT7fb7SOV5fnjjS yPihXSzJqF7I1PihGppSZzjF6DxrvRQh4EG0YXeTNGRjLJXJ0ebcVWCqpzFkLVdF QJWd7ERDwLW6/bg3wlXq0k4eXEEf/itG1bSwUVPYT8vlvj02RQ9/Zw/Z6Jj1y6sg lehQvvASEachH5LDs6vK5ZuYEllZ4zqAWOucswX1Oa+2vQXXMLcd4/SvP5gxQ6Mf 7egQecbEF+UdEi4gP01x4kWxIk0HmP82luZNV2dGP0Jox1pjJs/bHizxPH1uPvU1 fnDNLJAKIDi07ZYHYHGOvSmZK0p4lL6kXJLjUDUYYGdhIjm2WAyVB94HP05+aBZ/ gVrh -----END CERTIFICATE-----Generated at Sun May 3 00:40:21 2026 by rpki-client