$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141137.roa File: AS141137.roa (raw, json) Hash identifier: zOO5jz72X6S3cUq8lAMSTbAkVxxR2f6eZBzTqqTMLz4= Subject key identifier: 21:B6:2C:33:4E:66:B8:DC:77:A3:6D:8D:31:CC:0B:AE:7C:3F:9F:58 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5C5DA881A797C4CB3FCCAE21B1E2E4BFA5A5C7E6 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141137.roa Signing time: Sun 03 May 2026 05:55:59 +0000 ROA not before: Sun 03 May 2026 05:50:59 +0000 ROA not after: Sun 02 May 2027 05:55:59 +0000 asID: 141137 IP address blocks: 103.105.217.0/24 maxlen: 24 103.167.11.0/24 maxlen: 24 117.102.162.0/23 maxlen: 24 202.56.170.0/23 maxlen: 24 202.56.170.0/24 maxlen: 24 202.56.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:5d:a8:81:a7:97:c4:cb:3f:cc:ae:21:b1:e2:e4:bf:a5:a5:c7:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 05:50:59 2026 GMT Not After : May 2 05:55:59 2027 GMT Subject: CN=21B62C334E66B8DC77A36D8D31CC0BAE7C3F9F58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:85:c5:71:33:47:00:cc:20:1a:6a:ec:01:fb: 01:f1:eb:ff:07:9b:33:fb:a8:b0:16:15:0f:4c:4e: 8b:b3:63:f6:b7:d3:b8:4f:c3:cf:23:bc:57:36:f1: 49:f2:4d:9a:51:e5:8d:f3:ed:79:fb:40:e5:d5:44: e0:7d:cf:fe:45:73:41:b7:92:5e:c0:68:f8:d2:38: d0:b5:1a:00:36:04:32:54:2f:e1:06:8f:42:62:54: c4:f3:5b:3c:35:2e:75:f5:87:5e:d9:87:41:fe:26: 49:5e:ec:88:75:d2:94:33:cf:ec:97:2a:90:b7:bf: ee:ec:32:6e:74:3b:ea:35:bc:b6:97:15:1a:68:c7: 70:33:ea:1a:2d:61:16:a7:97:00:d2:1f:1a:7c:5a: 08:62:a7:f8:b5:9d:fc:fe:31:1a:04:72:31:4d:de: b4:c0:e4:4a:4b:09:88:c0:44:08:a2:e7:79:33:eb: 7a:a2:ac:49:8f:1a:3d:a1:ae:72:b4:17:60:54:88: be:08:4f:b7:54:7b:8e:3d:c2:1d:65:35:cf:e0:12: 16:37:2a:43:14:c6:60:ce:77:69:c8:e3:08:d7:f8: 35:92:f0:9e:be:ac:a8:3c:1e:aa:ea:d2:01:9c:e6: 5d:af:f8:06:0e:df:7a:c7:9b:c6:22:8f:c6:c5:35: 0d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B6:2C:33:4E:66:B8:DC:77:A3:6D:8D:31:CC:0B:AE:7C:3F:9F:58 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.217.0/24 103.167.11.0/24 117.102.162.0/23 202.56.170.0/23 Signature Algorithm: sha256WithRSAEncryption 37:2e:54:10:06:a9:4e:20:71:b1:4b:f4:cd:37:f8:96:bd:91: b2:35:b1:5e:c2:9c:70:72:e5:e3:ca:4b:e0:21:68:92:7b:78: f8:21:a1:03:a1:06:7c:8c:30:88:ed:25:be:14:f3:c1:81:e2: 0a:c7:65:6e:5a:61:4c:4d:12:83:86:b7:f4:6f:05:47:ce:7c: 8b:a9:8d:c1:c2:f1:13:69:48:80:fa:c8:07:81:f8:fc:62:8d: e1:84:ae:c8:36:4e:6f:c0:93:90:db:ce:d8:0c:51:9a:04:22: 93:eb:6f:51:6b:2f:ef:ab:53:3d:38:ec:ed:d9:ea:d1:2d:29: 01:e4:92:e0:e6:8e:fd:80:bc:37:ef:92:d3:ee:fc:93:e5:74: 88:55:b8:6d:26:0e:c1:61:70:ef:0e:f8:32:77:7a:a7:91:83: fb:b0:77:03:0c:bf:5a:a0:25:cd:85:99:c4:87:14:44:c0:23: 3d:0e:06:67:5e:f9:8a:e8:2b:20:50:53:78:1b:e4:6d:e5:ef: 20:5b:59:2c:03:fe:7f:ff:a6:13:7f:d4:80:d8:9b:34:99:a9: f6:d4:45:f2:85:05:e4:9d:12:6d:72:61:14:be:bd:8f:3a:b7: 43:dd:2c:f2:8b:7c:76:41:ba:21:ab:b6:c4:e6:71:49:56:ea: 59:7d:d4:75 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUXF2ogaeXxMs/zK4hseLkv6Wlx+YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA1NTA1OVoX DTI3MDUwMjA1NTU1OVowMzExMC8GA1UEAxMoMjFCNjJDMzM0RTY2QjhEQzc3QTM2 RDhEMzFDQzBCQUU3QzNGOUY1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKuFxXEzRwDMIBpq7AH7AfHr/webM/uosBYVD0xOi7Nj9rfTuE/DzyO8Vzbx SfJNmlHljfPteftA5dVE4H3P/kVzQbeSXsBo+NI40LUaADYEMlQv4QaPQmJUxPNb PDUudfWHXtmHQf4mSV7siHXSlDPP7JcqkLe/7uwybnQ76jW8tpcVGmjHcDPqGi1h FqeXANIfGnxaCGKn+LWd/P4xGgRyMU3etMDkSksJiMBECKLneTPreqKsSY8aPaGu crQXYFSIvghPt1R7jj3CHWU1z+ASFjcqQxTGYM53acjjCNf4NZLwnr6sqDwequrS AZzmXa/4Bg7fesebxiKPxsU1DUMCAwEAAaOCAd4wggHaMB0GA1UdDgQWBBQhtiwz Tma43HejbY0xzAuufD+fWDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxMTM3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIA ATAYAwQAZ2nZAwQAZ6cLAwQBdWaiAwQByjiqMA0GCSqGSIb3DQEBCwUAA4IBAQA3 LlQQBqlOIHGxS/TNN/iWvZGyNbFewpxwcuXjykvgIWiSe3j4IaEDoQZ8jDCI7SW+ FPPBgeIKx2VuWmFMTRKDhrf0bwVHznyLqY3BwvETaUiA+sgHgfj8Yo3hhK7INk5v wJOQ287YDFGaBCKT629Ray/vq1M9OOzt2erRLSkB5JLg5o79gLw375LT7vyT5XSI VbhtJg7BYXDvDvgyd3qnkYP7sHcDDL9aoCXNhZnEhxREwCM9DgZnXvmK6CsgUFN4 G+Rt5e8gW1ksA/5//6YTf9SA2Js0man21EXyhQXknRJtcmEUvr2POrdD3Szyi3x2 Qbohq7bE5nFJVupZfdR1 -----END CERTIFICATE-----Generated at Tue May 12 23:04:01 2026 by rpki-client