$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa File: AS141945.roa (raw, json) Hash identifier: vNjQH/tvKEIi9j9vYY5A2Nq1K6J2MUxdmDvN4XoXJeE= Subject key identifier: 2A:44:9C:17:82:A7:66:4C:25:A9:5A:E4:10:D5:02:D5:46:9A:3F:BB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 508C9665CD73873FE5DC1A45781D850FEFCC6E0F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa Signing time: Wed 10 Sep 2025 09:00:08 +0000 ROA not before: Wed 10 Sep 2025 08:55:08 +0000 ROA not after: Wed 09 Sep 2026 09:00:08 +0000 asID: 141945 IP address blocks: 103.166.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:8c:96:65:cd:73:87:3f:e5:dc:1a:45:78:1d:85:0f:ef:cc:6e:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 10 08:55:08 2025 GMT Not After : Sep 9 09:00:08 2026 GMT Subject: CN=2A449C1782A7664C25A95AE410D502D5469A3FBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:98:7c:ae:9a:08:37:23:f0:21:66:4e:50:f6: 6d:5b:39:6e:25:bf:1f:ca:d2:73:f4:ad:f6:2a:61: aa:fd:d3:1f:7a:33:fd:89:59:6c:bd:d2:20:eb:0c: f3:e8:99:d1:44:62:e3:48:89:33:3f:c7:17:38:cc: c4:a1:22:19:a9:c7:ed:20:43:0d:39:35:7e:d7:75: ec:f5:aa:40:8e:1a:be:98:cf:60:6f:b2:4d:27:cd: 9c:a3:ca:71:e0:8c:7f:56:30:d5:2e:b2:4c:ca:f4: f0:a9:a9:5d:c0:10:11:d4:a9:af:8d:21:8d:5c:73: 61:c5:f5:9a:8d:4a:aa:71:db:ca:d8:2c:de:a5:bc: f4:ae:18:64:aa:b2:7e:b4:b9:c2:ee:de:41:eb:4c: 87:e1:ad:51:d7:de:e7:d9:e1:f4:2b:af:0a:af:3b: e9:8b:cc:00:50:ff:e3:08:a9:e0:d8:f2:35:ac:a0: 11:5f:6e:86:49:04:30:e8:e1:4e:d5:21:a7:84:7a: d4:e6:67:f8:30:d4:f4:08:e9:5b:6b:6b:cb:d8:f7: 1f:25:7c:35:af:c0:0e:69:19:9d:2d:30:d0:93:e4: 83:a1:74:ba:8b:41:3e:b0:64:33:ca:70:e2:a9:06: 77:ca:d1:55:99:89:b7:13:dd:4c:29:13:78:1e:96: e8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:44:9C:17:82:A7:66:4C:25:A9:5A:E4:10:D5:02:D5:46:9A:3F:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141945.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.122.0/23 Signature Algorithm: sha256WithRSAEncryption 05:53:50:c3:b2:4e:f4:2a:b6:70:04:47:7d:49:2e:b9:d9:ac: f2:f6:d2:a6:e0:cb:52:5e:c1:61:a7:1c:0b:e9:c7:59:7f:fb: 86:4e:e7:06:52:7a:b2:15:82:00:a6:64:02:11:9c:1b:1c:2e: 54:d1:27:f6:06:d4:68:c2:99:ea:5d:36:50:91:73:74:c3:50: d1:37:da:dc:a0:5f:65:3f:42:b1:7e:92:79:32:26:24:1a:27: 79:cf:bb:5b:0d:70:92:be:82:fc:fe:a2:80:e9:9e:9a:6a:7d: ab:ee:6d:ab:d2:1c:f8:e6:b6:62:e6:dc:0b:1c:83:31:9f:9a: 4e:d7:f2:da:23:df:95:c4:3b:71:b7:d0:e1:54:fa:e7:52:5c: 64:3b:90:d1:5a:1b:22:45:df:53:e0:3c:9b:ed:bc:3e:7e:17: df:5e:ee:6e:2f:3a:8f:b1:00:90:4f:ad:64:d4:ac:3b:6b:27: d5:f3:14:0e:e7:c9:83:82:02:8d:f8:c0:ac:75:4c:fd:6e:96: 18:40:cf:38:d0:47:a4:67:9c:5f:5c:8a:07:50:2b:28:3d:9d: f6:f1:38:0d:6b:ea:c9:b3:28:e6:cf:5d:0e:97:11:80:ea:b0: 98:6c:c6:d5:a9:f1:9f:3c:ad:62:25:dc:4c:ca:63:8d:47:f6: c1:22:8b:e5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUIyWZc1zhz/l3BpFeB2FD+/Mbg8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxMDA4NTUwOFoX DTI2MDkwOTA5MDAwOFowMzExMC8GA1UEAxMoMkE0NDlDMTc4MkE3NjY0QzI1QTk1 QUU0MTBENTAyRDU0NjlBM0ZCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuYfK6aCDcj8CFmTlD2bVs5biW/H8rSc/St9iphqv3TH3oz/YlZbL3SIOsM 8+iZ0URi40iJMz/HFzjMxKEiGanH7SBDDTk1ftd17PWqQI4avpjPYG+yTSfNnKPK ceCMf1Yw1S6yTMr08KmpXcAQEdSpr40hjVxzYcX1mo1KqnHbytgs3qW89K4YZKqy frS5wu7eQetMh+GtUdfe59nh9CuvCq876YvMAFD/4wip4NjyNaygEV9uhkkEMOjh TtUhp4R61OZn+DDU9AjpW2try9j3HyV8Na/ADmkZnS0w0JPkg6F0uotBPrBkM8pw 4qkGd8rRVZmJtxPdTCkTeB6W6MUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQqRJwX gqdmTCWpWuQQ1QLVRpo/uzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWemejANBgkqhkiG9w0BAQsFAAOCAQEABVNQw7JO9Cq2cARHfUku udms8vbSpuDLUl7BYaccC+nHWX/7hk7nBlJ6shWCAKZkAhGcGxwuVNEn9gbUaMKZ 6l02UJFzdMNQ0Tfa3KBfZT9CsX6SeTImJBonec+7Ww1wkr6C/P6igOmemmp9q+5t q9Ic+Oa2YubcCxyDMZ+aTtfy2iPflcQ7cbfQ4VT651JcZDuQ0VobIkXfU+A8m+28 Pn4X317ubi86j7EAkE+tZNSsO2sn1fMUDufJg4ICjfjArHVM/W6WGEDPONBHpGec X1yKB1ArKD2d9vE4DWvqybMo5s9dDpcRgOqwmGzG1anxnzytYiXcTMpjjUf2wSKL 5Q== -----END CERTIFICATE-----Generated at Mon Oct 20 03:03:06 2025 by rpki-client