$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS141922.roa File: AS141922.roa (raw, json) Hash identifier: NbfKr0qELZVD6s/GLZ/PcJJxjuiuCQtSQ+i5um3x1E4= Subject key identifier: 8F:D9:D8:F5:AD:B0:0F:2B:96:6A:6B:1D:06:04:F8:06:78:EF:67:7A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4FD8C6B87B40336BF4184150CE583DA42F9F5D1B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141922.roa Signing time: Sun 03 May 2026 05:38:51 +0000 ROA not before: Sun 03 May 2026 05:33:51 +0000 ROA not after: Sun 02 May 2027 05:38:51 +0000 asID: 141922 IP address blocks: 103.165.150.0/23 maxlen: 23 180.94.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d8:c6:b8:7b:40:33:6b:f4:18:41:50:ce:58:3d:a4:2f:9f:5d:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 05:33:51 2026 GMT Not After : May 2 05:38:51 2027 GMT Subject: CN=8FD9D8F5ADB00F2B966A6B1D0604F80678EF677A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:60:8d:c9:ad:00:87:48:07:cc:9a:f1:8a: 7e:6b:16:6b:5b:13:b0:52:0d:6b:b9:a7:1a:ef:cc: d5:ca:bd:0a:9e:f4:31:79:b8:7f:c4:2e:73:10:6f: c5:9d:fc:2e:9e:a4:bf:2e:80:57:91:40:52:6a:26: 6e:d7:82:cb:69:fc:d7:84:ca:cd:84:39:b1:bc:57: 15:bc:f9:31:98:b6:b8:93:59:e2:b6:33:5f:c8:ee: f6:25:55:95:e7:60:0c:50:f1:28:2e:ce:53:91:ba: ef:6c:ef:1a:09:40:f9:4f:04:a8:c7:60:54:a4:8f: 27:61:11:f0:5d:bf:be:1d:bf:76:94:90:bf:6c:f2: 31:cd:68:b8:38:3a:53:13:75:be:bd:71:cf:22:56: 80:02:db:6c:72:69:0e:58:37:a5:fe:de:66:9a:34: 44:79:3a:b3:1c:f2:6e:98:a7:3e:62:0e:91:4c:2b: bf:af:29:6e:41:22:d5:86:f5:5f:81:a5:0d:d8:2a: cb:1c:b8:37:ca:ff:4b:3e:7b:27:37:ca:bb:0a:ca: e3:d1:31:dd:50:32:34:27:8f:54:44:a6:10:b3:b5: 9b:12:71:e4:0f:ce:eb:0f:bf:c8:d0:50:e7:b3:2e: 52:60:0a:ca:aa:bf:99:5f:8f:d1:b0:86:60:87:fc: 0e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D9:D8:F5:AD:B0:0F:2B:96:6A:6B:1D:06:04:F8:06:78:EF:67:7A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS141922.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.150.0/23 180.94.12.0/23 Signature Algorithm: sha256WithRSAEncryption 74:7a:9f:53:14:6c:ab:b7:34:69:ba:af:e2:50:55:89:29:dc: 2e:49:6e:31:de:dd:71:53:14:ab:d2:5d:c8:19:21:23:a5:51: 55:6d:1a:3a:e7:8c:26:5e:a6:98:7a:73:fe:6b:37:f0:e0:25: 07:8f:4d:59:7b:aa:22:df:56:da:68:62:9c:b7:2c:1c:8a:0f: 60:c9:fc:0c:ec:37:09:81:52:89:01:b4:d0:0f:fd:03:be:7c: 40:b8:d9:82:75:82:3f:f3:1a:c3:3a:01:64:3f:96:fc:d7:90: e4:a8:87:4c:cf:71:0e:5d:68:23:0b:d6:c3:a8:86:55:dc:04: 45:03:40:45:b0:1f:f5:1a:02:9a:30:05:4d:b6:8e:9c:a9:42: 7b:4d:0b:1e:ed:d4:45:9e:f9:88:2c:cb:28:81:0e:b4:9f:29: 00:d0:69:0b:07:ee:e5:1f:82:2f:49:83:2a:c3:c9:5f:b6:b9: c2:22:ab:ce:54:40:dc:0c:f3:37:30:a6:96:67:b7:ff:70:40: 60:f2:32:10:18:b8:a7:a7:0b:c9:f9:a2:ee:fe:02:73:51:12: 83:7d:59:6f:58:76:74:32:ca:f2:73:dd:9a:f8:73:b2:12:f5: 8d:d9:3e:f5:1a:3b:ec:f8:c3:95:99:78:4f:19:bd:6c:16:f5: 37:02:c1:21 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUT9jGuHtAM2v0GEFQzlg9pC+fXRswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA1MzM1MVoX DTI3MDUwMjA1Mzg1MVowMzExMC8GA1UEAxMoOEZEOUQ4RjVBREIwMEYyQjk2NkE2 QjFEMDYwNEY4MDY3OEVGNjc3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZoYI3JrQCHSAfMmvGKfmsWa1sTsFINa7mnGu/M1cq9Cp70MXm4f8QucxBv xZ38Lp6kvy6AV5FAUmombteCy2n814TKzYQ5sbxXFbz5MZi2uJNZ4rYzX8ju9iVV ledgDFDxKC7OU5G672zvGglA+U8EqMdgVKSPJ2ER8F2/vh2/dpSQv2zyMc1ouDg6 UxN1vr1xzyJWgALbbHJpDlg3pf7eZpo0RHk6sxzybpinPmIOkUwrv68pbkEi1Yb1 X4GlDdgqyxy4N8r/Sz57JzfKuwrK49Ex3VAyNCePVESmELO1mxJx5A/O6w+/yNBQ 57MuUmAKyqq/mV+P0bCGYIf8DsUCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBSP2dj1 rbAPK5Zqax0GBPgGeO9nejAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQxOTIyLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIA ATAMAwQBZ6WWAwQBtF4MMA0GCSqGSIb3DQEBCwUAA4IBAQB0ep9TFGyrtzRpuq/i UFWJKdwuSW4x3t1xUxSr0l3IGSEjpVFVbRo654wmXqaYenP+azfw4CUHj01Ze6oi 31baaGKctywcig9gyfwM7DcJgVKJAbTQD/0DvnxAuNmCdYI/8xrDOgFkP5b815Dk qIdMz3EOXWgjC9bDqIZV3ARFA0BFsB/1GgKaMAVNto6cqUJ7TQse7dRFnvmILMso gQ60nykA0GkLB+7lH4IvSYMqw8lftrnCIqvOVEDcDPM3MKaWZ7f/cEBg8jIQGLin pwvJ+aLu/gJzURKDfVlvWHZ0Msryc92a+HOyEvWN2T71Gjvs+MOVmXhPGb1sFvU3 AsEh -----END CERTIFICATE-----Generated at Tue May 12 23:04:06 2026 by rpki-client