$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140385.roa File: AS140385.roa (raw, json) Hash identifier: 95J23reY4u3D1/JY45iuSDgldf8uvANeTMZQFGa9FF4= Subject key identifier: C0:E0:9E:D6:77:23:BB:CC:A4:E8:27:15:51:9C:80:D9:05:EA:D6:4A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 50EE96EE464825F7A637EBFEE6FA7A97A656806D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140385.roa Signing time: Sun 03 May 2026 05:55:01 +0000 ROA not before: Sun 03 May 2026 05:50:01 +0000 ROA not after: Sun 02 May 2027 05:55:01 +0000 asID: 140385 IP address blocks: 103.149.114.0/23 maxlen: 24 103.149.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ee:96:ee:46:48:25:f7:a6:37:eb:fe:e6:fa:7a:97:a6:56:80:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 05:50:01 2026 GMT Not After : May 2 05:55:01 2027 GMT Subject: CN=C0E09ED67723BBCCA4E82715519C80D905EAD64A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:71:b8:1c:40:fb:b1:15:34:52:0e:0b:70:67: a2:64:4d:11:d7:27:b3:fb:77:09:b6:17:f3:dc:34: 55:62:75:9d:75:2f:6e:1a:c7:cb:79:ae:80:68:f9: 59:6b:0b:aa:d1:4b:78:e7:c5:bd:91:fd:f2:f2:a0: 6c:c1:82:14:fd:66:58:08:e6:47:e2:8f:22:37:c5: bd:e3:f8:e7:34:79:b8:90:8f:b6:72:96:93:bb:e5: 80:6a:da:d1:3e:82:92:2a:0b:29:35:81:05:6f:f3: 87:93:5e:54:73:b2:00:7e:39:64:bf:9b:58:bd:9a: 90:14:ea:2c:8e:53:77:16:05:bc:36:e3:1d:9e:06: ad:bb:65:5e:d4:13:93:f4:7c:86:20:c8:41:13:00: 1d:1c:fb:89:e5:42:d2:fc:26:bf:ed:fd:ac:34:cc: 72:a1:bd:92:04:5c:9b:6c:1f:2f:6a:99:7d:36:78: 88:52:36:fd:ad:d8:38:fd:c6:78:61:c3:a2:12:3c: 77:14:7b:ba:ad:2f:f5:4e:6b:27:fd:fc:62:a9:1a: e9:01:10:e0:80:23:96:3e:1d:c7:c7:92:6b:e1:b1: 76:71:2f:6e:94:1c:0a:9c:f5:9b:59:ad:ba:73:f2: 4b:09:5e:c0:37:9e:52:67:b8:2e:0c:4d:ad:81:54: f7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E0:9E:D6:77:23:BB:CC:A4:E8:27:15:51:9C:80:D9:05:EA:D6:4A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140385.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.114.0/23 Signature Algorithm: sha256WithRSAEncryption a6:90:c1:44:06:51:e8:99:02:ae:c7:97:f8:97:78:7a:c4:f9: b2:d2:00:a0:dd:ce:7d:0a:45:1f:91:09:88:d6:7b:05:bb:16: b6:27:34:83:3d:3d:48:e5:b0:24:09:20:7a:65:94:a6:f2:17: e9:f5:ca:17:2d:e9:43:61:4b:a8:d2:29:de:d1:a8:cf:30:51: 1a:55:59:7a:67:19:c8:20:30:b0:fa:c5:d3:20:bd:b2:8b:d1: eb:3b:b0:69:c6:f0:24:c5:64:41:ae:55:ff:e8:b0:f0:85:90: 28:34:9f:6a:b4:2b:14:a7:a5:d3:76:21:78:14:a1:d5:26:fc: c4:cc:ea:88:8b:00:fe:f8:93:3e:9e:85:01:98:62:1d:4a:f6: a1:00:a8:36:01:8e:49:3c:ea:23:2c:11:e9:7a:72:8b:21:b3: e4:d2:1d:ff:05:a4:b5:e0:f6:e8:91:b7:db:36:4c:50:dc:f2: 6e:28:25:d4:7d:93:15:7d:3b:dd:01:0a:02:c9:6d:4d:fa:a6: a3:02:1a:4d:2d:6c:5f:69:fd:2f:0c:88:16:6f:48:34:ad:34: 7f:d0:61:47:06:77:63:8d:24:d6:a1:01:d2:c7:b0:9d:e7:6d: 97:d7:b6:6c:20:33:72:b1:88:57:58:55:e7:4a:14:e3:1c:31: 55:6b:e8:0f -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUUO6W7kZIJfemN+v+5vp6l6ZWgG0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA1NTAwMVoX DTI3MDUwMjA1NTUwMVowMzExMC8GA1UEAxMoQzBFMDlFRDY3NzIzQkJDQ0E0RTgy NzE1NTE5QzgwRDkwNUVBRDY0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtxuBxA+7EVNFIOC3BnomRNEdcns/t3CbYX89w0VWJ1nXUvbhrHy3mugGj5 WWsLqtFLeOfFvZH98vKgbMGCFP1mWAjmR+KPIjfFveP45zR5uJCPtnKWk7vlgGra 0T6CkioLKTWBBW/zh5NeVHOyAH45ZL+bWL2akBTqLI5TdxYFvDbjHZ4GrbtlXtQT k/R8hiDIQRMAHRz7ieVC0vwmv+39rDTMcqG9kgRcm2wfL2qZfTZ4iFI2/a3YOP3G eGHDohI8dxR7uq0v9U5rJ/38Yqka6QEQ4IAjlj4dx8eSa+GxdnEvbpQcCpz1m1mt unPySwlewDeeUme4LgxNrYFU93ECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTA4J7W dyO7zKToJxVRnIDZBerWSjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwMzg1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ5VyMA0GCSqGSIb3DQEBCwUAA4IBAQCmkMFEBlHomQKux5f4l3h6xPmy 0gCg3c59CkUfkQmI1nsFuxa2JzSDPT1I5bAkCSB6ZZSm8hfp9coXLelDYUuo0ine 0ajPMFEaVVl6ZxnIIDCw+sXTIL2yi9HrO7BpxvAkxWRBrlX/6LDwhZAoNJ9qtCsU p6XTdiF4FKHVJvzEzOqIiwD++JM+noUBmGIdSvahAKg2AY5JPOojLBHpenKLIbPk 0h3/BaS14PbokbfbNkxQ3PJuKCXUfZMVfTvdAQoCyW1N+qajAhpNLWxfaf0vDIgW b0g0rTR/0GFHBndjjSTWoQHSx7Cd522X17ZsIDNysYhXWFXnShTjHDFVa+gP -----END CERTIFICATE-----Generated at Tue May 12 22:42:58 2026 by rpki-client