$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140467.roa File: AS140467.roa (raw, json) Hash identifier: QDi5kbIqi696soeRAT7jOWyd/CcW4q4hgKtgPBS3N2E= Subject key identifier: 4F:5E:2B:54:6B:93:C8:88:6F:32:80:64:D7:B1:19:C5:E7:33:02:83 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3ED8B0D6506365FCD23C59B118E1F1190D65EFB9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140467.roa Signing time: Mon 23 Mar 2026 05:00:00 +0000 ROA not before: Mon 23 Mar 2026 04:55:00 +0000 ROA not after: Mon 22 Mar 2027 05:00:00 +0000 asID: 140467 IP address blocks: 103.153.150.0/24 maxlen: 24 103.235.65.0/24 maxlen: 24 2406:4640::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d8:b0:d6:50:63:65:fc:d2:3c:59:b1:18:e1:f1:19:0d:65:ef:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 23 04:55:00 2026 GMT Not After : Mar 22 05:00:00 2027 GMT Subject: CN=4F5E2B546B93C8886F328064D7B119C5E7330283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8f:d6:68:b5:d9:fe:b0:e1:20:49:a6:40:ba: 99:b8:85:b0:a4:da:de:10:bf:74:fb:9f:ee:73:10: 04:22:7f:4b:b3:73:2d:5b:d9:f2:07:4f:48:34:fd: 32:82:7a:e1:44:be:e8:a1:a6:f6:5d:7c:d6:b7:f0: db:ed:3f:2d:65:b1:a4:70:3b:fe:59:33:b5:87:49: 9d:03:da:77:48:30:7d:f2:9d:62:af:cf:56:88:78: 8d:cb:a3:51:73:98:48:03:56:56:14:0c:4e:dd:77: 32:0f:99:ae:3b:48:b8:aa:dc:b8:5d:6e:f4:ce:dc: 89:90:88:3e:f7:1f:13:ea:f3:fb:3f:b7:f0:5d:47: 28:ad:83:7a:4f:2b:31:4c:f6:a4:f9:1f:6c:56:1b: f6:1d:f1:02:b5:34:31:9c:20:aa:85:a0:dc:f1:73: 5a:29:30:59:23:75:01:fc:82:1c:59:5f:c8:38:1a: 09:c2:4b:5c:91:2d:43:46:90:7c:fb:64:21:3a:af: d0:f0:52:38:a3:89:d6:6b:06:63:83:0b:e1:94:c8: e8:c9:69:52:ec:f9:cd:2c:ff:53:20:3b:6a:b2:52: f0:0b:7b:d7:d6:fb:b9:f5:a7:0d:25:41:cf:4d:19: 23:81:d6:c2:59:81:ab:e3:64:21:20:3c:19:74:0b: cd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5E:2B:54:6B:93:C8:88:6F:32:80:64:D7:B1:19:C5:E7:33:02:83 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140467.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.150.0/24 103.235.65.0/24 IPv6: 2406:4640::/32 Signature Algorithm: sha256WithRSAEncryption 3c:36:1c:02:06:d0:58:82:83:c6:04:b3:f8:d2:9a:fb:4b:4e: 6c:d0:f7:89:e5:af:1d:b3:60:d9:8b:88:9f:3f:14:20:13:77: a1:b5:5f:6c:d0:ef:4c:36:95:ea:fb:ae:f0:5e:02:05:21:ab: da:7a:7d:79:d5:2d:48:bf:36:6f:e3:d0:d2:bb:a3:0e:79:f7: fd:83:9c:87:22:ca:50:23:60:cc:f5:b6:53:05:57:8b:cc:03: 10:cc:5b:81:de:6d:c5:67:e1:3f:fe:1e:71:2f:f9:2e:c5:76: 4d:f6:21:09:51:31:7a:a2:a5:fc:ed:90:70:64:cf:c0:1b:3a: 45:5e:86:87:e7:d4:e4:91:3c:ef:18:28:07:8d:07:0b:6f:3a: 01:24:48:d4:ff:ed:53:ff:3d:9e:76:ea:0c:4b:7f:1a:06:de: ec:27:bb:df:bd:8d:3d:13:7f:a5:e7:90:01:34:75:8f:1b:b2: 69:d5:66:95:9b:8e:eb:f5:98:50:c2:19:72:af:dd:2d:12:f3: e9:9a:42:58:2f:48:ef:4e:75:3a:7b:6c:b9:19:5c:b6:9f:9d: 6c:31:86:da:e3:84:24:1c:ac:24:94:de:f1:73:6f:ac:6f:71: b0:1f:14:dc:49:c9:d8:0f:cb:04:ed:f6:40:37:75:89:d0:c5: 29:ee:b7:ab -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUPtiw1lBjZfzSPFmxGOHxGQ1l77kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMyMzA0NTUwMFoX DTI3MDMyMjA1MDAwMFowMzExMC8GA1UEAxMoNEY1RTJCNTQ2QjkzQzg4ODZGMzI4 MDY0RDdCMTE5QzVFNzMzMDI4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCP1mi12f6w4SBJpkC6mbiFsKTa3hC/dPuf7nMQBCJ/S7NzLVvZ8gdPSDT9 MoJ64US+6KGm9l181rfw2+0/LWWxpHA7/lkztYdJnQPad0gwffKdYq/PVoh4jcuj UXOYSANWVhQMTt13Mg+ZrjtIuKrcuF1u9M7ciZCIPvcfE+rz+z+38F1HKK2Dek8r MUz2pPkfbFYb9h3xArU0MZwgqoWg3PFzWikwWSN1AfyCHFlfyDgaCcJLXJEtQ0aQ fPtkITqv0PBSOKOJ1msGY4ML4ZTI6MlpUuz5zSz/UyA7arJS8At719b7ufWnDSVB z00ZI4HWwlmBq+NkISA8GXQLzTUCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBRPXitU a5PIiG8ygGTXsRnF5zMCgzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAGeZlgMEAGfrQTANBAIAAjAHAwUAJAZGQDANBgkqhkiG9w0BAQsF AAOCAQEAPDYcAgbQWIKDxgSz+NKa+0tObND3ieWvHbNg2YuInz8UIBN3obVfbNDv TDaV6vuu8F4CBSGr2np9edUtSL82b+PQ0rujDnn3/YOchyLKUCNgzPW2UwVXi8wD EMxbgd5txWfhP/4ecS/5LsV2TfYhCVExeqKl/O2QcGTPwBs6RV6Gh+fU5JE87xgo B40HC286ASRI1P/tU/89nnbqDEt/Ggbe7Ce7372NPRN/peeQATR1jxuyadVmlZuO 6/WYUMIZcq/dLRLz6ZpCWC9I7051OntsuRlctp+dbDGG2uOEJBysJJTe8XNvrG9x sB8U3EnJ2A/LBO32QDd1idDFKe63qw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:01:41 2026 by rpki-client