$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140470.roa File: AS140470.roa (raw, json) Hash identifier: mgqaoYUCbcm18t6SaLEho0M/JAEp1b17nWZUdTmux1U= Subject key identifier: 8F:0B:2F:A5:9D:A4:D2:E7:C7:E7:21:07:89:C2:3E:5E:25:10:9B:62 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6BCC1AEA426B2CCEE57432EEE2FD73D00F87DA23 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140470.roa Signing time: Tue 04 Nov 2025 04:47:23 +0000 ROA not before: Tue 04 Nov 2025 04:42:23 +0000 ROA not after: Tue 03 Nov 2026 04:47:23 +0000 asID: 140470 IP address blocks: 157.66.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:cc:1a:ea:42:6b:2c:ce:e5:74:32:ee:e2:fd:73:d0:0f:87:da:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 4 04:42:23 2025 GMT Not After : Nov 3 04:47:23 2026 GMT Subject: CN=8F0B2FA59DA4D2E7C7E7210789C23E5E25109B62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:0e:78:11:7e:8e:b2:0e:9e:55:83:f6:f1: aa:02:8e:42:3c:f3:c6:41:61:fc:28:89:4c:84:91: 80:f0:10:0a:0d:a3:1b:26:14:80:94:83:96:bb:d1: e2:68:4e:a6:a4:19:4b:05:5b:64:ee:67:75:76:12: 1f:81:44:7c:9f:1c:93:b6:c5:d3:5d:be:1c:3d:ac: 3d:26:4a:91:02:25:0b:d8:69:81:39:84:27:c7:02: f3:d0:c6:c4:c3:3a:23:67:e6:f3:24:21:8c:ac:30: 1f:5f:30:a2:30:35:1d:62:48:88:cb:66:67:72:6d: c0:ce:59:59:2a:15:00:c1:b7:75:6b:2b:71:77:e9: 57:58:9e:a4:6f:ae:6f:57:49:60:ee:74:ed:8d:fa: 37:90:b9:15:13:97:73:55:ef:60:7b:02:0b:3e:5b: 30:59:9a:fe:f6:ec:09:ae:7d:31:8c:48:5d:96:16: b3:41:e9:a9:eb:bf:9b:bd:8f:d0:e6:9f:ff:10:a0: f1:9d:77:b3:b6:68:e0:b5:98:c1:4d:bd:ba:7b:c2: 76:ed:7d:15:59:05:ed:68:4b:08:2e:45:ba:18:08: 53:4a:cc:61:51:90:e6:f5:b0:94:96:29:05:3b:41: ca:3a:bf:56:9b:00:c6:75:98:00:b1:37:63:78:c6: 90:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0B:2F:A5:9D:A4:D2:E7:C7:E7:21:07:89:C2:3E:5E:25:10:9B:62 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.82.0/23 Signature Algorithm: sha256WithRSAEncryption 96:6e:2f:c2:df:8c:c3:32:88:e3:ae:74:04:5b:1c:79:38:f1: c3:20:b1:14:91:79:7f:a4:ea:cb:7c:ce:21:99:0b:bb:15:93: aa:26:be:16:03:b9:02:c1:c0:ba:de:f0:02:8d:ae:08:44:d3: 0f:54:cd:c5:17:89:50:f3:9c:8c:3b:bf:45:cc:54:74:28:5c: 00:6d:fb:70:85:8c:2b:82:4c:51:cd:95:41:48:10:79:1c:11: da:cd:c0:74:c9:85:93:b9:08:db:57:fb:67:ee:95:f5:05:1b: 00:93:e0:da:cb:40:b3:81:14:05:d6:aa:94:37:b9:e2:71:54: 26:64:0c:44:27:85:a7:19:f8:31:5c:2d:dd:b8:50:f8:cc:08: 8e:be:6f:a7:57:37:2d:a1:59:ee:73:02:95:1b:28:98:4c:d7: 64:78:80:63:5b:bf:57:e8:ce:6c:d6:39:1e:13:39:16:fc:34: ff:c1:2c:dd:6f:0a:cd:65:cd:02:77:ab:08:85:40:36:bd:c2: a0:a2:0a:df:a4:cc:bf:1f:98:f5:02:ce:57:b6:ff:0c:1b:0d: c2:47:fd:83:b1:72:eb:48:83:67:e2:9d:5e:30:cd:12:f7:e2: bd:f6:ec:86:13:2b:1c:76:8b:33:ba:b5:63:43:37:eb:5f:03: 71:3f:3e:5c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUa8wa6kJrLM7ldDLu4v1z0A+H2iMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTEwNDA0NDIyM1oX DTI2MTEwMzA0NDcyM1owMzExMC8GA1UEAxMoOEYwQjJGQTU5REE0RDJFN0M3RTcy MTA3ODlDMjNFNUUyNTEwOUI2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/3DngRfo6yDp5Vg/bxqgKOQjzzxkFh/CiJTISRgPAQCg2jGyYUgJSDlrvR 4mhOpqQZSwVbZO5ndXYSH4FEfJ8ck7bF012+HD2sPSZKkQIlC9hpgTmEJ8cC89DG xMM6I2fm8yQhjKwwH18wojA1HWJIiMtmZ3JtwM5ZWSoVAMG3dWsrcXfpV1iepG+u b1dJYO507Y36N5C5FROXc1XvYHsCCz5bMFma/vbsCa59MYxIXZYWs0Hpqeu/m72P 0Oaf/xCg8Z13s7Zo4LWYwU29unvCdu19FVkF7WhLCC5FuhgIU0rMYVGQ5vWwlJYp BTtByjq/VpsAxnWYALE3Y3jGkE0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSPCy+l naTS58fnIQeJwj5eJRCbYjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MDQ3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ1CUjANBgkqhkiG9w0BAQsFAAOCAQEAlm4vwt+MwzKI4650BFsc eTjxwyCxFJF5f6Tqy3zOIZkLuxWTqia+FgO5AsHAut7wAo2uCETTD1TNxReJUPOc jDu/RcxUdChcAG37cIWMK4JMUc2VQUgQeRwR2s3AdMmFk7kI21f7Z+6V9QUbAJPg 2stAs4EUBdaqlDe54nFUJmQMRCeFpxn4MVwt3bhQ+MwIjr5vp1c3LaFZ7nMClRso mEzXZHiAY1u/V+jObNY5HhM5Fvw0/8Es3W8KzWXNAnerCIVANr3CoKIK36TMvx+Y 9QLOV7b/DBsNwkf9g7Fy60iDZ+KdXjDNEvfivfbshhMrHHaLM7q1Y0M3618DcT8+ XA== -----END CERTIFICATE-----Generated at Tue Nov 4 22:54:48 2025 by rpki-client