$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141084.roa File: AS141084.roa (raw, json) Hash identifier: zMzJK+e7idG3B0bSqjDdd561ogd2fQJ4UXJ6RCt9Fsg= Subject key identifier: 92:39:3F:51:2B:41:82:00:B0:1D:C7:A0:23:D5:C5:A7:46:80:17:53 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 304D6879C74C991B05CCA28AB38A969992B72536 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141084.roa Signing time: Sun 03 May 2026 15:10:54 +0000 ROA not before: Sun 03 May 2026 15:05:54 +0000 ROA not after: Sun 02 May 2027 15:10:54 +0000 asID: 141084 IP address blocks: 103.156.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4d:68:79:c7:4c:99:1b:05:cc:a2:8a:b3:8a:96:99:92:b7:25:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 15:05:54 2026 GMT Not After : May 2 15:10:54 2027 GMT Subject: CN=92393F512B418200B01DC7A023D5C5A746801753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8d:91:1e:ef:cc:57:60:3c:7d:8f:40:98:ca: cc:5c:59:cc:d2:88:8b:11:8c:ad:2f:44:f0:6e:96: ae:2d:04:15:a9:e1:ed:68:f2:6d:a8:a5:b9:cd:09: dd:77:61:93:45:ed:3e:17:e8:32:b7:6b:78:8a:cd: 05:1a:6e:4e:60:8f:c9:11:75:33:86:85:d0:91:6a: ee:8c:ef:e6:e7:e8:fa:35:0f:0c:d1:59:e2:ec:69: e7:a9:be:46:34:5b:b1:f2:a8:a9:64:a0:28:bd:b2: b1:ff:5e:04:a7:e0:26:fb:ab:23:b0:ad:4a:03:ec: 89:a3:d3:45:b1:a0:08:c3:27:8c:3f:cc:de:e3:87: 6a:b4:a1:a6:71:c6:d4:b7:a1:3c:fa:66:d0:9a:10: 19:b0:5f:37:34:e9:60:d5:11:7e:00:48:9a:95:ad: c3:94:44:37:3c:5b:53:db:cd:b4:9d:98:40:2b:1d: 5a:2d:dc:5e:ad:c7:af:9f:14:d5:23:1f:7f:75:86: cc:10:1f:16:90:bb:cd:68:91:9f:06:d3:a8:9b:af: 40:65:4f:f1:d6:c8:c2:49:e5:87:39:e3:a3:39:f9: f5:99:aa:e2:20:02:c8:e9:8a:39:fa:69:5d:21:50: f3:7e:c2:f9:86:51:b6:1b:d2:81:e1:1f:4c:3f:93: e7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:39:3F:51:2B:41:82:00:B0:1D:C7:A0:23:D5:C5:A7:46:80:17:53 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141084.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.86.0/23 Signature Algorithm: sha256WithRSAEncryption 60:25:db:4f:a9:0d:2f:de:9e:36:ae:66:41:f3:8f:62:af:01: 07:ef:e4:31:53:13:87:c6:a1:77:97:05:d3:c3:24:bb:d9:e9: 24:70:55:cf:b8:9f:b3:3d:0b:ce:4c:14:92:cb:5c:f3:12:7b: fe:67:f2:f0:65:db:87:69:32:13:06:c7:76:bb:28:f7:53:12: 90:ea:3b:a8:7e:17:3c:f9:f2:7d:e3:e5:47:b3:1c:9f:42:41: 4b:a9:0c:ab:5a:a1:2b:f0:74:4b:b9:fa:39:0b:5e:3d:85:a6: 37:23:7a:e3:18:58:40:22:0f:4d:66:06:7a:f1:d5:d3:b4:31: ed:87:f3:38:b5:d1:96:5a:5e:47:9b:8f:61:c2:66:24:2f:7e: a6:dd:b6:9d:c5:e7:ee:5a:25:69:bc:ac:2c:96:f4:49:7d:7c: ed:c4:13:3f:fa:98:25:79:67:d1:6b:51:17:94:bd:0b:61:75: a5:29:81:99:1f:dc:c5:b3:5d:1e:95:8f:61:41:39:42:3e:ef: 28:d4:5a:81:4e:8d:7e:05:7d:ee:48:48:93:cf:ec:5b:3a:e4: 4e:52:fc:d3:e4:12:54:17:17:40:7f:9d:51:a3:2e:62:1c:ca: e7:1e:1f:90:02:a2:c9:84:9f:bf:c6:df:76:95:0f:06:fe:d4: 2d:ee:c4:e4 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUME1oecdMmRsFzKKKs4qWmZK3JTYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzE1MDU1NFoX DTI3MDUwMjE1MTA1NFowMzExMC8GA1UEAxMoOTIzOTNGNTEyQjQxODIwMEIwMURD N0EwMjNENUM1QTc0NjgwMTc1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmNkR7vzFdgPH2PQJjKzFxZzNKIixGMrS9E8G6Wri0EFanh7Wjybailuc0J 3Xdhk0XtPhfoMrdreIrNBRpuTmCPyRF1M4aF0JFq7ozv5ufo+jUPDNFZ4uxp56m+ RjRbsfKoqWSgKL2ysf9eBKfgJvurI7CtSgPsiaPTRbGgCMMnjD/M3uOHarShpnHG 1LehPPpm0JoQGbBfNzTpYNURfgBImpWtw5RENzxbU9vNtJ2YQCsdWi3cXq3Hr58U 1SMff3WGzBAfFpC7zWiRnwbTqJuvQGVP8dbIwknlhznjozn59Zmq4iACyOmKOfpp XSFQ837C+YZRthvSgeEfTD+T58UCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSSOT9R K0GCALAdx6Aj1cWnRoAXUzAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMDg0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ5xWMA0GCSqGSIb3DQEBCwUAA4IBAQBgJdtPqQ0v3p42rmZB849irwEH 7+QxUxOHxqF3lwXTwyS72ekkcFXPuJ+zPQvOTBSSy1zzEnv+Z/LwZduHaTITBsd2 uyj3UxKQ6juofhc8+fJ94+VHsxyfQkFLqQyrWqEr8HRLufo5C149haY3I3rjGFhA Ig9NZgZ68dXTtDHth/M4tdGWWl5Hm49hwmYkL36m3badxefuWiVpvKwslvRJfXzt xBM/+pgleWfRa1EXlL0LYXWlKYGZH9zFs10elY9hQTlCPu8o1FqBTo1+BX3uSEiT z+xbOuROUvzT5BJUFxdAf51Roy5iHMrnHh+QAqLJhJ+/xt92lQ8G/tQt7sTk -----END CERTIFICATE-----Generated at Tue May 12 22:56:02 2026 by rpki-client