$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141890.roa File: AS141890.roa (raw, json) Hash identifier: b+tYhJ13SmCeUocG49sCV57mIE0S41YkWIzzdmleWwo= Subject key identifier: 5B:C3:6F:8E:2B:7A:5D:73:31:3D:58:B6:14:E0:01:D4:C7:98:A3:9E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55919961043566EF5AF854BF69366471A7FC0D1A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141890.roa Signing time: Thu 14 Aug 2025 08:02:28 +0000 ROA not before: Thu 14 Aug 2025 07:57:28 +0000 ROA not after: Thu 13 Aug 2026 08:02:28 +0000 asID: 141890 IP address blocks: 103.76.178.0/24 maxlen: 24 103.163.39.0/24 maxlen: 24 103.200.116.0/23 maxlen: 24 103.200.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:91:99:61:04:35:66:ef:5a:f8:54:bf:69:36:64:71:a7:fc:0d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 14 07:57:28 2025 GMT Not After : Aug 13 08:02:28 2026 GMT Subject: CN=5BC36F8E2B7A5D73313D58B614E001D4C798A39E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f0:eb:34:1c:47:d2:6f:44:29:d8:e4:7d:fd: 4a:12:d5:7a:64:be:ab:b3:1a:19:ee:a3:aa:49:a5: 85:ef:8f:c2:ba:97:c4:97:c3:d1:61:ac:38:b3:39: 10:75:27:92:88:74:d3:1c:d2:76:29:f6:3b:2a:25: 9c:bb:13:24:be:17:ce:ad:c7:95:02:10:cc:e9:67: 95:e1:a3:eb:3d:17:94:8a:cd:7f:b6:a5:78:ce:e5: 0a:d1:5b:84:4d:6c:0b:c2:ce:fc:6a:c9:24:37:83: ba:43:e2:15:51:86:d9:2a:f3:59:86:56:e1:82:1d: c5:59:1d:3c:0d:06:ed:70:01:e2:c8:82:f1:3e:8f: 3f:c7:24:5c:bb:f7:15:4b:a2:d2:8c:c4:21:29:17: 3f:d8:dc:ef:37:8b:4e:e8:a6:56:91:ae:30:8d:31: 6b:91:c9:86:2b:8f:78:fc:e2:d4:19:f3:43:9c:4f: ac:bf:05:2f:33:af:68:fc:4d:9c:dc:a9:66:f6:a2: 06:d5:21:30:4f:c4:62:72:ea:5d:25:7a:d0:8c:24: d8:aa:3e:ae:8e:0e:b9:6d:50:bb:ec:2e:80:ba:de: 02:e4:6a:c4:f5:52:5e:71:da:dd:61:37:52:b3:c7: 94:17:6f:4c:d8:6d:0c:1c:e5:c0:c3:b0:61:6e:f5: f2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C3:6F:8E:2B:7A:5D:73:31:3D:58:B6:14:E0:01:D4:C7:98:A3:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.178.0/24 103.163.39.0/24 103.200.116.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:08:91:4f:b9:bd:22:fa:69:68:3a:01:24:b5:0e:ec:34:08: 11:22:fb:5c:70:c4:33:0a:fa:fa:ac:ca:e3:91:90:0e:90:b0: 66:b6:34:cc:6e:b1:77:5a:fd:d7:4e:ad:95:81:aa:e8:b1:11: 49:69:48:79:14:da:08:fb:f4:58:2b:6e:62:5e:aa:a2:73:be: 20:a6:17:78:4d:4d:71:9c:f3:ca:cf:be:2e:fb:53:15:e8:fa: e6:5f:c4:51:5a:e6:db:e4:0b:ce:ab:02:6a:d4:fc:57:66:e8: 95:b3:89:38:7e:09:95:d2:c4:aa:00:18:87:d6:01:e7:81:38: eb:3c:a9:1d:b5:ab:65:d0:22:d9:4c:ae:50:c7:d7:7e:41:87: f3:a5:be:6d:15:73:f7:b8:b5:b7:ee:d7:48:e8:55:db:e0:df: d5:8c:e9:a2:4c:49:60:95:97:e5:c1:a4:8c:e5:3c:e9:10:8c: 1d:27:ec:77:9e:d8:23:83:6f:81:ad:86:01:af:48:55:73:42: 0e:49:5c:09:85:e1:e9:47:2f:a2:6f:67:28:ee:29:b4:90:cd: b9:ff:d8:59:7d:e2:c2:74:07:b2:6f:9d:fb:f4:c2:da:4a:b2: 6a:f1:2d:dd:bd:59:13:cf:ce:8d:a7:5b:f7:b6:fd:f9:9a:9d: 57:31:05:57 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUVZGZYQQ1Zu9a+FS/aTZkcaf8DRowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxNDA3NTcyOFoX DTI2MDgxMzA4MDIyOFowMzExMC8GA1UEAxMoNUJDMzZGOEUyQjdBNUQ3MzMxM0Q1 OEI2MTRFMDAxRDRDNzk4QTM5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOzw6zQcR9JvRCnY5H39ShLVemS+q7MaGe6jqkmlhe+PwrqXxJfD0WGsOLM5 EHUnkoh00xzSdin2OyolnLsTJL4Xzq3HlQIQzOlnleGj6z0XlIrNf7aleM7lCtFb hE1sC8LO/GrJJDeDukPiFVGG2SrzWYZW4YIdxVkdPA0G7XAB4siC8T6PP8ckXLv3 FUui0ozEISkXP9jc7zeLTuimVpGuMI0xa5HJhiuPePzi1BnzQ5xPrL8FLzOvaPxN nNypZvaiBtUhME/EYnLqXSV60Iwk2Ko+ro4OuW1Qu+wugLreAuRqxPVSXnHa3WE3 UrPHlBdvTNhtDBzlwMOwYW718lUCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBRbw2+O K3pdczE9WLYU4AHUx5ijnjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAGdMsgMEAGejJwMEAmfIdDANBgkqhkiG9w0BAQsFAAOCAQEASgiR T7m9IvppaDoBJLUO7DQIESL7XHDEMwr6+qzK45GQDpCwZrY0zG6xd1r9106tlYGq 6LERSWlIeRTaCPv0WCtuYl6qonO+IKYXeE1NcZzzys++LvtTFej65l/EUVrm2+QL zqsCatT8V2bolbOJOH4JldLEqgAYh9YB54E46zypHbWrZdAi2UyuUMfXfkGH86W+ bRVz97i1t+7XSOhV2+Df1YzpokxJYJWX5cGkjOU86RCMHSfsd57YI4Nvga2GAa9I VXNCDklcCYXh6Ucvom9nKO4ptJDNuf/YWX3iwnQHsm+d+/TC2kqyavEt3b1ZE8/O jadb97b9+ZqdVzEFVw== -----END CERTIFICATE-----Generated at Sat Aug 23 07:11:57 2025 by rpki-client