$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS147141.roa File: AS147141.roa (raw, json) Hash identifier: QOj+MccK2WHxnfVGBkoiFYjS7Wo/2gjLyiq7G8Vavic= Subject key identifier: 05:0F:C2:12:59:15:31:12:7A:A5:A3:DD:1C:D1:C1:97:55:26:D2:5B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 29C2CBCB52ABEF723AAFC4DD9B50B7D268C984F6 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147141.roa Signing time: Sat 02 May 2026 09:20:29 +0000 ROA not before: Sat 02 May 2026 09:15:29 +0000 ROA not after: Sat 01 May 2027 09:20:29 +0000 asID: 147141 IP address blocks: 103.176.94.0/24 maxlen: 24 103.176.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:c2:cb:cb:52:ab:ef:72:3a:af:c4:dd:9b:50:b7:d2:68:c9:84:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:29 2026 GMT Not After : May 1 09:20:29 2027 GMT Subject: CN=050FC212591531127AA5A3DD1CD1C1975526D25B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:62:e8:13:9b:0d:9a:57:22:d4:e0:de:d5: 03:d3:d7:0d:a6:01:65:41:fd:52:7b:74:ef:db:91: 47:ae:46:10:9d:27:9f:f2:ed:7d:ab:0c:c3:cb:dd: 47:95:51:6d:0a:6d:58:46:f6:d1:b7:f5:70:27:5f: 49:a3:b3:5a:7c:42:86:47:25:19:94:99:63:40:2e: e2:ac:0d:99:88:0b:37:6c:39:14:8d:6f:cb:f7:5c: 5e:82:bf:ba:a8:67:ae:91:91:7e:6e:7e:e1:ef:3b: 6d:01:07:13:41:33:0c:eb:08:99:9a:1a:7b:3c:54: e6:5f:88:7e:cd:d5:da:1c:0d:67:59:e1:38:a5:70: 84:f9:f1:5d:37:ba:57:ee:43:cb:1a:a9:c1:73:29: d6:65:aa:97:3a:d8:ac:e1:1b:be:e3:55:53:3e:5d: 43:4a:43:07:b5:25:c9:5c:5e:6f:f1:14:64:6d:e5: 38:4a:25:16:e3:8b:f0:b7:44:10:2c:d1:14:16:a5: e1:7b:a8:f5:dc:a1:14:2e:20:55:2d:31:e9:99:11: b0:d9:c5:d6:93:0c:34:ad:cd:17:3a:84:89:6d:8c: 37:bd:1e:10:a3:bb:5d:db:c4:d7:9c:e0:21:b8:e6: 79:a0:dc:d2:e8:62:8e:ef:cd:55:8e:c7:de:64:f2: 39:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:0F:C2:12:59:15:31:12:7A:A5:A3:DD:1C:D1:C1:97:55:26:D2:5B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS147141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.94.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:8a:f7:aa:2a:2f:69:b3:94:3e:03:7b:32:d5:5f:f6:8f:95: 5f:1a:28:f3:d0:fc:d8:0e:ff:36:ac:24:36:d0:bb:be:c2:49: 7b:77:28:31:46:1b:fa:c2:32:50:21:11:3c:f8:3b:79:f7:f5: f5:fe:91:c8:f0:f1:b3:97:17:29:f6:8c:b6:38:96:29:07:c6: 6f:07:ad:03:68:af:80:7f:dc:1d:01:e0:10:7c:20:37:27:b2: 84:8f:5d:c2:bc:18:c1:85:f4:7d:e5:e9:2e:5a:36:a9:e4:1c: ff:2f:e7:76:25:85:a8:a0:b7:bf:36:07:8b:82:2d:69:d0:cd: 9d:d7:3f:dd:51:92:60:ef:b8:0a:82:00:53:7a:04:7c:03:d2: 14:3d:96:37:64:66:d1:ef:39:98:2b:61:0c:79:8e:69:c2:fa: da:30:85:2c:6b:2a:74:84:d9:9e:7e:25:89:35:c2:fa:84:81: 74:44:a9:19:ee:54:31:35:d9:a4:f6:6d:3c:ba:a4:81:52:d3: f3:e0:1b:7c:64:7c:96:d9:84:b0:13:f9:79:a0:0b:b7:c3:e9: 98:9c:e9:bf:a1:57:77:a8:29:4b:91:8b:93:ca:79:39:13:1b: 0d:30:a6:53:6b:d2:4c:ea:a5:9b:f3:d8:c8:ba:69:40:72:7d: 47:63:72:b1 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUKcLLy1Kr73I6r8Tdm1C30mjJhPYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUyOVoX DTI3MDUwMTA5MjAyOVowMzExMC8GA1UEAxMoMDUwRkMyMTI1OTE1MzExMjdBQTVB M0REMUNEMUMxOTc1NTI2RDI1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMMxYugTmw2aVyLU4N7VA9PXDaYBZUH9Unt079uRR65GEJ0nn/LtfasMw8vd R5VRbQptWEb20bf1cCdfSaOzWnxChkclGZSZY0Au4qwNmYgLN2w5FI1vy/dcXoK/ uqhnrpGRfm5+4e87bQEHE0EzDOsImZoaezxU5l+Ifs3V2hwNZ1nhOKVwhPnxXTe6 V+5DyxqpwXMp1mWqlzrYrOEbvuNVUz5dQ0pDB7UlyVxeb/EUZG3lOEolFuOL8LdE ECzRFBal4Xuo9dyhFC4gVS0x6ZkRsNnF1pMMNK3NFzqEiW2MN70eEKO7XdvE15zg IbjmeaDc0uhiju/NVY7H3mTyOdkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQFD8IS WRUxEnqlo90c0cGXVSbSWzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQ3MTQxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ7BeMA0GCSqGSIb3DQEBCwUAA4IBAQBtiveqKi9ps5Q+A3sy1V/2j5Vf Gijz0PzYDv82rCQ20Lu+wkl7dygxRhv6wjJQIRE8+Dt59/X1/pHI8PGzlxcp9oy2 OJYpB8ZvB60DaK+Af9wdAeAQfCA3J7KEj13CvBjBhfR95ekuWjap5Bz/L+d2JYWo oLe/NgeLgi1p0M2d1z/dUZJg77gKggBTegR8A9IUPZY3ZGbR7zmYK2EMeY5pwvra MIUsayp0hNmefiWJNcL6hIF0RKkZ7lQxNdmk9m08uqSBUtPz4Bt8ZHyW2YSwE/l5 oAu3w+mYnOm/oVd3qClLkYuTynk5ExsNMKZTa9JM6qWb89jIumlAcn1HY3Kx -----END CERTIFICATE-----Generated at Sun May 3 00:39:51 2026 by rpki-client