$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140481.roa File: AS140481.roa (raw, json) Hash identifier: 02d+Ie/WWE8mFyNDXbHUnnsDKLpwKtdTl2J8dCO4vVQ= Subject key identifier: C6:EE:99:62:17:18:E5:C5:61:C5:63:0F:A6:3F:9E:22:FC:C3:F0:20 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C103D66C37B9A56D1A8EC60E6C836030342CAD9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140481.roa Signing time: Fri 03 Oct 2025 07:00:00 +0000 ROA not before: Fri 03 Oct 2025 06:55:00 +0000 ROA not after: Fri 02 Oct 2026 07:00:00 +0000 asID: 140481 IP address blocks: 103.154.76.0/23 maxlen: 24 2406:55c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:10:3d:66:c3:7b:9a:56:d1:a8:ec:60:e6:c8:36:03:03:42:ca:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 3 06:55:00 2025 GMT Not After : Oct 2 07:00:00 2026 GMT Subject: CN=C6EE99621718E5C561C5630FA63F9E22FCC3F020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:63:0c:be:e7:0e:8c:06:29:e1:72:d5:1e:3e: 05:c9:bc:2e:82:72:4a:8b:36:fd:37:8f:24:5a:b4: 5d:45:e9:32:f7:c4:24:6b:dc:1d:a2:0e:81:43:7e: e6:f2:be:a1:5d:e4:64:00:d5:3a:e2:ef:c7:73:f0: ab:03:0c:43:73:9d:33:d7:63:ee:a7:58:63:6a:bd: 10:9e:36:54:35:23:c9:42:b6:09:21:d5:ef:94:13: c0:8e:8e:87:2d:d0:26:53:16:91:05:8f:69:8a:17: 56:8d:e5:57:90:34:e3:d3:07:d1:5d:e0:0e:e0:1a: 03:4e:3d:96:3e:8c:14:20:51:ae:58:71:ec:7d:c4: 39:80:b2:88:a5:9b:d8:3b:b9:2f:f1:59:25:01:64: 84:f3:8e:a2:50:74:13:f7:3a:8a:7d:fd:66:e4:cc: c8:a7:0b:0e:45:c1:a8:5d:7c:94:0f:30:e4:25:30: f9:20:ec:5d:6f:73:81:38:3a:7f:ac:4e:9b:a1:b1: 32:84:48:e5:f3:d0:8c:9f:1c:32:3d:0a:2b:b2:27: 9a:c7:e2:dd:c2:e2:72:ee:c7:e0:c6:2a:6a:a5:dc: 58:2a:0c:6e:76:8a:fa:56:17:4f:e1:bf:81:63:8c: 57:2f:f5:e3:69:73:bc:fa:7b:63:da:79:57:91:d9: b8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EE:99:62:17:18:E5:C5:61:C5:63:0F:A6:3F:9E:22:FC:C3:F0:20 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.76.0/23 IPv6: 2406:55c0::/32 Signature Algorithm: sha256WithRSAEncryption 45:f8:bf:3e:02:99:59:5a:bf:73:17:e2:25:b6:84:72:cb:04: fa:dc:40:ae:75:f2:23:d0:26:6f:6e:42:ea:93:39:57:91:8c: 7d:0d:71:2b:52:ad:02:1f:37:62:9d:ac:42:8b:9f:d5:57:4c: 74:69:65:bd:48:53:36:cd:26:3e:8a:ba:94:58:4c:49:41:c0: 8b:c7:66:e3:44:82:d1:4c:bb:43:d7:14:5e:71:6d:34:dd:19: 69:f8:24:5a:02:c3:e6:aa:51:e9:dc:cc:fe:19:5b:30:12:fb: de:fe:4d:e6:6c:e3:62:63:47:e2:46:40:05:38:63:2b:bf:46: 2c:96:02:5e:48:e8:75:e3:f9:a1:dc:bb:ea:1f:5b:b5:32:fd: ec:77:c2:80:23:f2:dc:c4:50:fd:ec:5b:50:7f:7b:61:ac:31: 25:ef:cd:93:28:0f:72:84:e3:2e:aa:ed:c9:2e:45:5c:88:ca: 24:cb:62:a5:11:c7:13:95:d2:dc:66:7e:97:40:7d:1a:a1:17: c9:8a:06:7c:6a:70:1f:d2:ee:2a:36:5a:2f:1d:e8:e5:72:b0: bc:1d:f3:57:12:cb:19:8c:1d:a8:65:37:c8:c4:95:88:17:98: 0a:ec:4d:f0:7c:ef:fd:7b:b2:56:3d:4b:bd:ec:96:7e:db:af: 30:b1:12:77 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUDBA9ZsN7mlbRqOxg5sg2AwNCytkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwMzA2NTUwMFoX DTI2MTAwMjA3MDAwMFowMzExMC8GA1UEAxMoQzZFRTk5NjIxNzE4RTVDNTYxQzU2 MzBGQTYzRjlFMjJGQ0MzRjAyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZjDL7nDowGKeFy1R4+Bcm8LoJySos2/TePJFq0XUXpMvfEJGvcHaIOgUN+ 5vK+oV3kZADVOuLvx3PwqwMMQ3OdM9dj7qdYY2q9EJ42VDUjyUK2CSHV75QTwI6O hy3QJlMWkQWPaYoXVo3lV5A049MH0V3gDuAaA049lj6MFCBRrlhx7H3EOYCyiKWb 2Du5L/FZJQFkhPOOolB0E/c6in39ZuTMyKcLDkXBqF18lA8w5CUw+SDsXW9zgTg6 f6xOm6GxMoRI5fPQjJ8cMj0KK7Inmsfi3cLicu7H4MYqaqXcWCoMbnaK+lYXT+G/ gWOMVy/142lzvPp7Y9p5V5HZuCkCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBTG7pli FxjlxWHFYw+mP54i/MPwIDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeaTDANBAIAAjAHAwUAJAZVwDANBgkqhkiG9w0BAQsFAAOCAQEA Rfi/PgKZWVq/cxfiJbaEcssE+txArnXyI9Amb25C6pM5V5GMfQ1xK1KtAh83Yp2s Qouf1VdMdGllvUhTNs0mPoq6lFhMSUHAi8dm40SC0Uy7Q9cUXnFtNN0ZafgkWgLD 5qpR6dzM/hlbMBL73v5N5mzjYmNH4kZABThjK79GLJYCXkjodeP5ody76h9btTL9 7HfCgCPy3MRQ/exbUH97YawxJe/NkygPcoTjLqrtyS5FXIjKJMtipRHHE5XS3GZ+ l0B9GqEXyYoGfGpwH9LuKjZaLx3o5XKwvB3zVxLLGYwdqGU3yMSViBeYCuxN8Hzv /XuyVj1LveyWftuvMLESdw== -----END CERTIFICATE-----Generated at Mon Oct 20 08:51:44 2025 by rpki-client