$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS140475.roa File: AS140475.roa (raw, json) Hash identifier: 3wS41LSr6B9FWsa2DtKJtDZmRwK2WLD4ihE6ityYDXc= Subject key identifier: 78:F9:CB:5D:07:2A:DB:1E:93:11:01:E9:92:0F:9F:0A:1C:57:D2:AD Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3529FDA057BA48134FC2B974C0AD7AF25DFCEF49 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140475.roa Signing time: Sun 03 May 2026 05:56:48 +0000 ROA not before: Sun 03 May 2026 05:51:48 +0000 ROA not after: Sun 02 May 2027 05:56:48 +0000 asID: 140475 IP address blocks: 103.153.246.0/24 maxlen: 24 103.153.247.0/24 maxlen: 24 202.10.54.0/24 maxlen: 24 202.10.55.0/24 maxlen: 24 2406:4ec0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:29:fd:a0:57:ba:48:13:4f:c2:b9:74:c0:ad:7a:f2:5d:fc:ef:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 05:51:48 2026 GMT Not After : May 2 05:56:48 2027 GMT Subject: CN=78F9CB5D072ADB1E931101E9920F9F0A1C57D2AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1e:db:c2:87:e0:4a:4b:07:26:fb:96:db:79: 44:85:d3:4a:3c:9f:99:4a:05:9c:7d:62:06:49:54: 0c:cd:a4:38:00:81:77:96:c0:46:c6:70:5e:8f:59: a8:ae:de:17:02:f4:ec:12:66:d0:1e:07:dc:54:ff: ef:c5:90:c0:a6:6d:88:da:ea:bb:5a:bb:66:cb:95: 3e:3d:d7:31:40:09:d1:ec:29:0e:79:c2:30:14:e8: ee:d6:9e:02:3d:58:55:65:05:cc:7f:81:7b:18:c9: 51:c7:bc:a5:53:b4:6c:fd:cd:4b:87:3c:30:45:68: 49:4e:3b:50:71:29:b0:26:4c:bb:d3:ca:e6:4e:60: b0:73:f7:f2:58:79:6f:7d:7d:7a:f0:a8:46:33:00: 8c:b9:54:88:51:c4:9d:62:95:e3:97:17:bb:37:90: d0:53:3a:bf:eb:a3:1e:af:b0:06:8c:60:43:3b:89: 82:0e:b6:44:80:75:17:68:a0:10:de:39:fe:8f:d4: 32:1e:28:b0:32:bc:a1:e9:8d:5a:0e:7c:34:88:43: 9d:9a:f9:3e:f2:8b:2c:df:b9:1d:55:55:13:0e:23: 05:68:b8:66:10:88:6c:6b:d9:cf:38:d1:df:e8:88: a9:47:0d:83:5d:2c:c5:98:a9:1d:48:ec:4a:89:5f: 36:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F9:CB:5D:07:2A:DB:1E:93:11:01:E9:92:0F:9F:0A:1C:57:D2:AD X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS140475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.246.0/23 202.10.54.0/23 IPv6: 2406:4ec0::/32 Signature Algorithm: sha256WithRSAEncryption 71:73:11:83:31:99:91:3e:1c:85:da:1c:58:e4:51:ce:0e:85: 29:92:f1:88:5c:26:3a:0c:f1:aa:48:c9:03:ab:68:cd:c6:16: 4b:4b:de:d7:a0:ad:f1:94:d2:3d:a0:f6:59:c3:dc:ac:14:07: 18:92:98:8a:21:01:2a:8d:10:c1:3f:a5:49:fd:b4:7f:3b:74: d2:fb:06:5f:96:8e:8d:38:54:5e:5f:3a:c8:56:d4:4e:b8:e6: 55:e4:da:84:93:02:42:d6:3a:d4:d8:a8:67:c7:d1:3e:53:8c: 99:43:95:19:fc:f0:b0:cd:fb:05:b8:8a:d9:41:8a:54:81:00: be:c4:c3:03:f9:d7:45:1b:91:61:d5:d9:41:29:08:de:e0:05: e4:eb:94:88:25:d1:1a:7e:7e:29:86:5c:e6:43:0a:87:00:81: 90:00:49:1f:41:0d:a4:b2:87:07:43:54:5b:b0:c0:15:7d:15: 66:0b:ab:f5:25:e9:3f:ad:92:e6:7f:fd:5e:b7:ca:8a:b9:db: f0:08:75:ba:2a:af:d6:b7:c8:52:05:92:43:44:b9:23:db:7d: 25:8b:c6:dc:71:c0:71:05:20:13:10:31:83:12:99:e8:94:87: 8e:8d:8b:c4:ee:6a:b8:20:19:f9:77:4f:dd:c4:f6:b4:b6:f0: 7e:94:fb:ce -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUNSn9oFe6SBNPwrl0wK168l3870kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA1NTE0OFoX DTI3MDUwMjA1NTY0OFowMzExMC8GA1UEAxMoNzhGOUNCNUQwNzJBREIxRTkzMTEw MUU5OTIwRjlGMEExQzU3RDJBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUe28KH4EpLByb7ltt5RIXTSjyfmUoFnH1iBklUDM2kOACBd5bARsZwXo9Z qK7eFwL07BJm0B4H3FT/78WQwKZtiNrqu1q7ZsuVPj3XMUAJ0ewpDnnCMBTo7tae Aj1YVWUFzH+BexjJUce8pVO0bP3NS4c8MEVoSU47UHEpsCZMu9PK5k5gsHP38lh5 b319evCoRjMAjLlUiFHEnWKV45cXuzeQ0FM6v+ujHq+wBoxgQzuJgg62RIB1F2ig EN45/o/UMh4osDK8oemNWg58NIhDnZr5PvKLLN+5HVVVEw4jBWi4ZhCIbGvZzzjR 3+iIqUcNg10sxZipHUjsSolfNoMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBR4+ctd ByrbHpMRAemSD58KHFfSrTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQwNDc1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIA ATAMAwQBZ5n2AwQBygo2MA0EAgACMAcDBQAkBk7AMA0GCSqGSIb3DQEBCwUAA4IB AQBxcxGDMZmRPhyF2hxY5FHODoUpkvGIXCY6DPGqSMkDq2jNxhZLS97XoK3xlNI9 oPZZw9ysFAcYkpiKIQEqjRDBP6VJ/bR/O3TS+wZflo6NOFReXzrIVtROuOZV5NqE kwJC1jrU2Khnx9E+U4yZQ5UZ/PCwzfsFuIrZQYpUgQC+xMMD+ddFG5Fh1dlBKQje 4AXk65SIJdEafn4phlzmQwqHAIGQAEkfQQ2ksocHQ1RbsMAVfRVmC6v1Jek/rZLm f/1et8qKudvwCHW6Kq/Wt8hSBZJDRLkj230li8bcccBxBSATEDGDEpnolIeOjYvE 7mq4IBn5d0/dxPa0tvB+lPvO -----END CERTIFICATE-----Generated at Tue May 12 22:41:57 2026 by rpki-client