$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141649.roa File: AS141649.roa (raw, json) Hash identifier: P3KZrxEyAhhTLCgyOh8nO7XYzwy0p+v3M5/ItrkB7Cc= Subject key identifier: AC:D4:5C:39:6E:EC:8E:2A:B0:D0:AC:C5:E3:89:09:C3:44:06:DA:58 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 1F153BA96AE9BE4C4AABA504BE67E73F799C0813 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141649.roa Signing time: Sun 03 May 2026 01:33:07 +0000 ROA not before: Sun 03 May 2026 01:28:07 +0000 ROA not after: Sun 02 May 2027 01:33:07 +0000 asID: 141649 IP address blocks: 103.162.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:15:3b:a9:6a:e9:be:4c:4a:ab:a5:04:be:67:e7:3f:79:9c:08:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:28:07 2026 GMT Not After : May 2 01:33:07 2027 GMT Subject: CN=ACD45C396EEC8E2AB0D0ACC5E38909C34406DA58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:71:aa:6c:56:14:9e:35:0b:2f:da:54:e2:23: 4b:05:3e:65:54:1b:65:4d:27:04:86:89:06:bf:51: 7a:0a:d6:ad:76:8f:bb:d2:f4:41:86:53:69:79:75: af:9c:e3:20:e6:4d:ee:6b:82:c5:e8:42:4f:2c:00: d5:f1:eb:44:62:bf:8c:13:7c:61:63:1f:8f:50:fa: 6f:9d:5d:ab:6d:f3:87:30:5f:c7:25:4d:50:44:af: 0e:07:16:e5:d8:74:d0:8c:4f:b3:af:cd:a4:80:25: 4a:36:de:5a:79:fa:d4:87:d4:17:74:94:25:4d:62: f0:07:5b:fb:d5:18:03:95:99:e6:cb:77:a7:fb:fc: 73:71:7a:f1:a3:3a:ee:63:b7:e5:08:c4:c1:95:27: d3:64:cb:b0:13:1a:27:75:bb:8b:44:76:11:61:42: ea:84:2a:e5:66:73:1e:33:44:3e:d9:a8:b2:07:d0: 83:c0:da:3c:83:1e:e7:fc:8b:52:3f:6c:1e:04:a8: db:7e:38:7b:c8:05:71:64:90:e6:78:91:17:26:27: 15:6e:ab:9a:65:f5:3a:9c:3e:49:0e:0d:c5:51:26: ed:69:dd:5f:29:24:1d:a2:f4:66:2a:28:4f:d3:75: 18:96:c0:bc:b9:e1:a2:16:5c:bf:d0:b5:0a:6f:a0: ad:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D4:5C:39:6E:EC:8E:2A:B0:D0:AC:C5:E3:89:09:C3:44:06:DA:58 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141649.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.55.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:34:56:10:32:14:33:1b:6b:29:73:09:8e:b0:2f:52:33:56: c1:ee:40:68:80:d0:5f:48:16:29:6a:91:27:88:dc:05:98:bf: f0:3e:ff:a1:92:1b:a2:95:46:f2:4e:71:cb:cf:ad:34:dd:a4: 6e:9e:28:4a:f5:17:3f:71:1c:d4:87:7c:7a:36:da:07:64:12: 9d:78:00:17:77:7a:0f:3c:63:dd:ea:38:95:7e:a6:d6:85:b6: 12:34:7d:37:86:27:62:59:1c:5e:f1:e7:0a:b7:b5:d5:fa:f1: d3:4b:2f:f9:6f:a9:06:8b:a5:ae:ce:05:55:a8:a7:4d:a2:49: 01:0d:c2:df:7e:f9:37:48:49:c6:e9:57:38:bc:c1:72:c0:e9: 2a:18:8e:9a:91:f9:15:1c:8b:d1:a9:9e:ff:85:a9:13:09:c7: 4f:c0:4b:69:64:d6:18:5b:58:08:9d:75:47:3d:5e:dd:6e:ff: 92:00:06:a0:34:f1:99:e1:dd:c6:73:d1:8c:ff:8f:9b:af:9b: e4:b1:a1:7f:14:e5:ec:63:16:21:7c:f3:64:40:c5:d0:ad:43: 9a:ee:56:7d:9a:2e:8a:a5:08:76:bc:29:fd:52:cf:3e:95:13: dc:2b:a8:c8:a2:69:9e:9a:6d:5e:56:76:d7:79:77:93:1f:43: 88:0d:2a:b0 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUHxU7qWrpvkxKq6UEvmfnP3mcCBMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxMjgwN1oX DTI3MDUwMjAxMzMwN1owMzExMC8GA1UEAxMoQUNENDVDMzk2RUVDOEUyQUIwRDBB Q0M1RTM4OTA5QzM0NDA2REE1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdxqmxWFJ41Cy/aVOIjSwU+ZVQbZU0nBIaJBr9RegrWrXaPu9L0QYZTaXl1 r5zjIOZN7muCxehCTywA1fHrRGK/jBN8YWMfj1D6b51dq23zhzBfxyVNUESvDgcW 5dh00IxPs6/NpIAlSjbeWnn61IfUF3SUJU1i8Adb+9UYA5WZ5st3p/v8c3F68aM6 7mO35QjEwZUn02TLsBMaJ3W7i0R2EWFC6oQq5WZzHjNEPtmosgfQg8DaPIMe5/yL Uj9sHgSo2344e8gFcWSQ5niRFyYnFW6rmmX1Opw+SQ4NxVEm7WndXykkHaL0Zioo T9N1GJbAvLnhohZcv9C1Cm+grY8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSs1Fw5 buyOKrDQrMXjiQnDRAbaWDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxNjQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6I3MA0GCSqGSIb3DQEBCwUAA4IBAQAfNFYQMhQzG2spcwmOsC9SM1bB 7kBogNBfSBYpapEniNwFmL/wPv+hkhuilUbyTnHLz6003aRunihK9Rc/cRzUh3x6 NtoHZBKdeAAXd3oPPGPd6jiVfqbWhbYSNH03hidiWRxe8ecKt7XV+vHTSy/5b6kG i6WuzgVVqKdNokkBDcLffvk3SEnG6Vc4vMFywOkqGI6akfkVHIvRqZ7/hakTCcdP wEtpZNYYW1gInXVHPV7dbv+SAAagNPGZ4d3Gc9GM/4+br5vksaF/FOXsYxYhfPNk QMXQrUOa7lZ9mi6KpQh2vCn9Us8+lRPcK6jIommemm1eVnbXeXeTH0OIDSqw -----END CERTIFICATE-----Generated at Tue May 12 23:03:57 2026 by rpki-client