$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140436.roa File: AS140436.roa (raw, json) Hash identifier: 0RuAAKaX+17IGl0n6mBShgsN2rXWKi3iVgRGMH+MGOo= Subject key identifier: 62:27:78:85:89:A6:6D:3F:C1:1C:44:DE:E5:92:50:20:9C:B2:4A:C7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B51549FB8CFE658C60544F6C03727A4114628A2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140436.roa Signing time: Mon 11 Aug 2025 04:19:05 +0000 ROA not before: Mon 11 Aug 2025 04:14:05 +0000 ROA not after: Mon 10 Aug 2026 04:19:05 +0000 asID: 140436 IP address blocks: 103.151.71.0/24 maxlen: 24 2001:df3:af80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:51:54:9f:b8:cf:e6:58:c6:05:44:f6:c0:37:27:a4:11:46:28:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 11 04:14:05 2025 GMT Not After : Aug 10 04:19:05 2026 GMT Subject: CN=6227788589A66D3FC11C44DEE59250209CB24AC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:23:41:83:c0:6a:ba:d2:21:42:46:0f:f3:4e: c3:7f:2f:30:52:24:b6:94:fe:ef:ec:46:9d:7e:0f: fd:22:4e:cd:a1:bd:a2:0f:c1:2c:a6:65:ad:9e:b3: 44:4a:e2:ac:39:1e:62:86:ce:cb:05:33:ef:e6:9b: 77:8f:7c:b8:20:dc:2a:9f:af:64:c4:2f:41:6e:d8: 52:32:f7:68:42:7b:a6:56:92:92:54:c3:21:dd:83: b0:6d:84:ca:7f:5e:d1:96:f1:bd:fd:42:26:6d:08: 56:b4:c1:ff:b0:fe:79:b4:47:a0:69:d1:1f:bf:41: 37:68:18:ba:27:27:cf:9d:ca:63:49:c9:79:3b:32: d2:ec:5d:21:aa:c8:8e:18:83:07:c9:c2:a2:ff:16: 7d:95:b8:01:ed:dc:5f:9e:33:e1:94:23:a1:59:5f: 16:9a:8a:69:37:59:a0:31:fa:ca:d9:ad:3e:87:e6: 2c:98:66:d5:70:3a:19:de:50:cd:52:c8:17:28:54: c7:26:22:e1:66:e8:ad:de:02:eb:2c:da:a2:e1:cd: 04:12:3c:93:9a:d2:ba:1d:a4:d1:33:69:12:19:f5: 1b:51:a6:5a:ed:88:c6:92:a0:30:dd:26:a5:a9:b9: b8:bd:00:9b:4e:16:67:9f:6d:e8:02:60:fd:7b:31: 9b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:27:78:85:89:A6:6D:3F:C1:1C:44:DE:E5:92:50:20:9C:B2:4A:C7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.71.0/24 IPv6: 2001:df3:af80::/48 Signature Algorithm: sha256WithRSAEncryption 12:4d:83:84:b6:73:d7:35:a6:16:e2:c0:e2:0c:c8:09:4f:81: 86:e1:0c:b5:2b:c8:95:7e:5f:b2:6e:fa:fe:4e:16:50:30:59: c9:51:f7:06:78:e2:e3:5e:1f:f5:ba:9e:65:8a:2d:0b:e5:e1: ed:4b:bd:34:2b:77:9a:61:e5:cf:b5:a3:e6:2b:67:6f:8d:77: 75:a5:9b:bd:db:87:1b:75:2f:22:d1:a1:af:09:d8:03:14:3a: d3:2c:d2:f1:84:bc:fa:d0:ff:c2:f2:54:08:5e:7b:37:25:2e: 47:de:ba:41:59:55:64:2c:62:cd:2e:89:dd:1e:71:c8:bc:00: 64:f0:5f:14:93:52:f4:73:44:d7:9b:a5:6c:64:26:c1:4e:57: 21:f2:91:48:d0:d2:2a:3c:bf:67:9e:1a:95:e2:08:07:35:6f: c5:22:b9:9a:eb:a7:c8:d5:23:18:53:c8:5f:13:54:c1:11:75: 65:76:71:17:fd:8d:99:a4:08:ca:48:0d:1f:3c:f8:1f:da:2b: 5d:26:e0:13:79:d7:d1:35:5a:09:c2:05:d8:99:f4:68:bc:be: 44:ee:79:b0:89:0e:6a:9a:29:57:82:78:23:7f:0b:83:56:16: 53:21:68:7d:50:f3:31:6c:56:4c:2c:f9:64:c4:d7:14:c0:64: d4:f6:8d:8a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUG1FUn7jP5ljGBUT2wDcnpBFGKKIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxMTA0MTQwNVoX DTI2MDgxMDA0MTkwNVowMzExMC8GA1UEAxMoNjIyNzc4ODU4OUE2NkQzRkMxMUM0 NERFRTU5MjUwMjA5Q0IyNEFDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYjQYPAarrSIUJGD/NOw38vMFIktpT+7+xGnX4P/SJOzaG9og/BLKZlrZ6z RErirDkeYobOywUz7+abd498uCDcKp+vZMQvQW7YUjL3aEJ7plaSklTDId2DsG2E yn9e0Zbxvf1CJm0IVrTB/7D+ebRHoGnRH79BN2gYuicnz53KY0nJeTsy0uxdIarI jhiDB8nCov8WfZW4Ae3cX54z4ZQjoVlfFpqKaTdZoDH6ytmtPofmLJhm1XA6Gd5Q zVLIFyhUxyYi4Wbord4C6yzaouHNBBI8k5rSuh2k0TNpEhn1G1GmWu2IxpKgMN0m pam5uL0Am04WZ59t6AJg/Xsxm8MCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRiJ3iF iaZtP8EcRN7lklAgnLJKxzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeXRzAPBAIAAjAJAwcAIAEN86+AMA0GCSqGSIb3DQEBCwUAA4IB AQASTYOEtnPXNaYW4sDiDMgJT4GG4Qy1K8iVfl+ybvr+ThZQMFnJUfcGeOLjXh/1 up5lii0L5eHtS700K3eaYeXPtaPmK2dvjXd1pZu924cbdS8i0aGvCdgDFDrTLNLx hLz60P/C8lQIXns3JS5H3rpBWVVkLGLNLondHnHIvABk8F8Uk1L0c0TXm6VsZCbB Tlch8pFI0NIqPL9nnhqV4ggHNW/FIrma66fI1SMYU8hfE1TBEXVldnEX/Y2ZpAjK SA0fPPgf2itdJuATedfRNVoJwgXYmfRovL5E7nmwiQ5qmilXgngjfwuDVhZTIWh9 UPMxbFZMLPlkxNcUwGTU9o2K -----END CERTIFICATE-----Generated at Sat Aug 23 07:12:36 2025 by rpki-client