$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141981.roa File: AS141981.roa (raw, json) Hash identifier: rIXzfkJfev1JHFSVQQbnQe9bD/C82RO57hUoE7l92LA= Subject key identifier: F0:9D:F9:AF:3E:E1:4D:69:9C:A6:BC:3C:D3:A1:88:7B:0B:B9:21:1A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6F2E2D40D9E9B71571EC9C4EFFAEC0C229FD7A55 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141981.roa Signing time: Sat 02 May 2026 08:36:01 +0000 ROA not before: Sat 02 May 2026 08:31:01 +0000 ROA not after: Sat 01 May 2027 08:36:01 +0000 asID: 141981 IP address blocks: 103.167.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:2e:2d:40:d9:e9:b7:15:71:ec:9c:4e:ff:ae:c0:c2:29:fd:7a:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:31:01 2026 GMT Not After : May 1 08:36:01 2027 GMT Subject: CN=F09DF9AF3EE14D699CA6BC3CD3A1887B0BB9211A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:90:eb:31:eb:24:27:37:5e:f6:8b:45:07:33: 72:cc:a6:74:e0:d5:d9:80:b5:c0:76:92:3d:4b:58: 62:98:9d:ef:2e:a7:e7:5a:82:ba:84:f4:11:52:c9: 3d:40:8d:ce:a8:0b:26:fc:eb:27:e9:ea:b4:9e:36: 79:11:84:02:21:7e:b5:ea:80:b6:15:09:29:01:dd: bb:aa:fb:49:a1:51:d1:b6:ea:3e:38:33:f9:aa:66: dd:d5:89:6c:c0:77:21:4c:83:a3:98:4b:bc:fb:ff: 76:5e:e4:ad:38:33:f8:09:a8:36:4f:ba:a3:0e:cd: 4d:29:32:6d:92:33:b0:b7:d6:71:16:78:44:7f:9a: f2:b6:89:b1:a1:5a:47:08:87:66:c4:aa:99:bd:30: d1:d8:cd:62:b1:a8:05:f2:a0:e8:31:ad:06:d2:1d: ba:7f:8c:a5:8a:0b:51:2a:49:e0:5f:23:2f:a5:96: 90:03:73:2b:f9:21:24:ec:c3:4f:f2:2c:f8:dc:29: dd:fb:d0:62:4e:e9:de:b3:dd:48:a5:91:c4:99:7d: 97:e5:e7:60:27:ae:63:56:71:36:a5:b9:cb:61:8f: a5:36:da:9b:a7:bb:17:8f:f0:7b:ca:2b:63:e8:c8: ac:5e:86:19:a2:60:68:6c:97:df:0d:a9:bd:68:94: 5a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9D:F9:AF:3E:E1:4D:69:9C:A6:BC:3C:D3:A1:88:7B:0B:B9:21:1A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.110.0/23 Signature Algorithm: sha256WithRSAEncryption 25:99:3c:78:73:e8:b4:b5:08:d3:a3:91:39:2d:29:48:8f:e5: b3:42:46:20:56:a2:69:45:c5:f8:29:67:1e:57:41:fe:b0:fe: 4f:ba:a8:09:dd:e9:7e:56:33:3a:36:e6:85:a6:60:18:6c:55: 38:59:10:9b:06:8d:6f:55:a5:d8:85:5e:a0:b2:9f:24:bb:fa: 0a:76:34:c7:32:d0:84:b1:8e:2f:e7:8d:78:3a:40:0e:79:b5: 0d:11:29:16:53:92:0a:76:5c:83:8a:e7:16:a0:84:30:da:14: aa:5b:9c:e1:29:e4:07:93:65:35:68:ac:64:2c:9d:e0:66:0c: b6:15:52:87:ef:95:05:1b:21:14:d2:1e:d9:31:29:cf:b6:8e: 6e:59:9b:ed:7c:1a:10:32:78:c1:b1:00:12:0a:fc:33:ba:fd: f7:1a:3b:b5:c7:fa:f6:2a:c9:c0:29:eb:74:2e:3d:a3:c4:75: a0:10:37:20:49:79:36:9b:05:11:a0:e7:6e:aa:06:cb:4b:d4: 7e:49:59:93:05:12:65:6c:c9:1f:ff:e4:1b:9e:05:32:bc:d1: 17:db:9d:e8:3d:66:a1:d3:0f:a5:43:88:83:6e:4a:ad:29:68: 02:00:60:44:25:8e:15:29:01:82:ed:50:85:c1:e3:8c:b0:0d: 3b:9c:46:84 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUby4tQNnptxVx7JxO/67Awin9elUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzEwMVoX DTI3MDUwMTA4MzYwMVowMzExMC8GA1UEAxMoRjA5REY5QUYzRUUxNEQ2OTlDQTZC QzNDRDNBMTg4N0IwQkI5MjExQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI2Q6zHrJCc3XvaLRQczcsymdODV2YC1wHaSPUtYYpid7y6n51qCuoT0EVLJ PUCNzqgLJvzrJ+nqtJ42eRGEAiF+teqAthUJKQHdu6r7SaFR0bbqPjgz+apm3dWJ bMB3IUyDo5hLvPv/dl7krTgz+AmoNk+6ow7NTSkybZIzsLfWcRZ4RH+a8raJsaFa RwiHZsSqmb0w0djNYrGoBfKg6DGtBtIdun+MpYoLUSpJ4F8jL6WWkANzK/khJOzD T/Is+Nwp3fvQYk7p3rPdSKWRxJl9l+XnYCeuY1ZxNqW5y2GPpTbam6e7F4/we8or Y+jIrF6GGaJgaGyX3w2pvWiUWncCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTwnfmv PuFNaZymvDzToYh7C7khGjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTgxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6duMA0GCSqGSIb3DQEBCwUAA4IBAQAlmTx4c+i0tQjTo5E5LSlIj+Wz QkYgVqJpRcX4KWceV0H+sP5PuqgJ3el+VjM6NuaFpmAYbFU4WRCbBo1vVaXYhV6g sp8ku/oKdjTHMtCEsY4v5414OkAOebUNESkWU5IKdlyDiucWoIQw2hSqW5zhKeQH k2U1aKxkLJ3gZgy2FVKH75UFGyEU0h7ZMSnPto5uWZvtfBoQMnjBsQASCvwzuv33 Gju1x/r2KsnAKet0Lj2jxHWgEDcgSXk2mwURoOduqgbLS9R+SVmTBRJlbMkf/+Qb ngUyvNEX253oPWah0w+lQ4iDbkqtKWgCAGBEJY4VKQGC7VCFweOMsA07nEaE -----END CERTIFICATE-----Generated at Sun May 3 00:39:39 2026 by rpki-client