$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa File: AS140006.roa (raw, json) Hash identifier: 1PIITUkhurjxU1B0TwGrviCu3mPwscAVJyXEYlUZ61A= Subject key identifier: D9:34:4C:25:2E:E2:62:95:D2:B3:56:68:0E:CA:21:31:A6:B9:D4:04 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3AB86B40E2A973B02EBBAAF2189F9E3D999C80C2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa Signing time: Thu 26 Feb 2026 09:00:00 +0000 ROA not before: Thu 26 Feb 2026 08:55:00 +0000 ROA not after: Thu 25 Feb 2027 09:00:00 +0000 asID: 140006 IP address blocks: 103.148.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b8:6b:40:e2:a9:73:b0:2e:bb:aa:f2:18:9f:9e:3d:99:9c:80:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 26 08:55:00 2026 GMT Not After : Feb 25 09:00:00 2027 GMT Subject: CN=D9344C252EE26295D2B356680ECA2131A6B9D404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:36:83:95:bf:53:c4:d8:2e:41:a6:17:af:c8: 10:36:2c:fb:45:b2:43:cb:c7:31:6a:23:8c:fc:d3: 59:45:4e:11:18:1a:2e:10:fe:98:88:50:11:68:53: 4e:46:87:d4:a9:9c:3a:c8:c3:d6:21:74:d6:ed:c2: 39:53:4b:e4:8d:f9:7e:2f:c8:04:2c:46:33:ee:4e: 60:c7:35:8d:97:0a:a7:c7:3c:71:67:bf:e6:85:c5: d9:00:69:3b:a9:a1:83:39:fe:a2:72:52:c9:88:0c: 9c:e3:12:ad:5d:d6:95:a8:de:f6:25:91:64:8f:3c: 25:c3:a8:5c:6f:53:71:9e:85:bb:aa:dc:40:f2:55: 01:98:56:07:d6:80:8b:89:4d:2f:c8:e4:66:e8:ac: 74:35:b0:73:77:01:87:b7:d6:9a:e1:44:7e:c4:a0: 65:e5:93:2b:a1:37:f8:0b:6f:ae:f6:7e:2c:de:8a: 31:41:06:63:0d:9c:45:0c:c9:8a:f7:68:32:10:b1: e2:20:88:69:f9:e5:76:5c:3a:3b:18:8a:c0:08:3c: 9a:1b:b9:26:6c:70:7c:a0:05:21:c0:6b:11:de:67: 1f:f5:4b:16:db:37:97:88:fb:93:83:4e:bb:55:45: de:8c:3a:86:5b:40:94:74:bd:eb:b7:1b:cf:7a:9c: f9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:34:4C:25:2E:E2:62:95:D2:B3:56:68:0E:CA:21:31:A6:B9:D4:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140006.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.235.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:a5:f9:f3:02:4c:7c:9c:b1:74:b2:3a:37:87:26:7f:52:e9: fd:f7:c4:59:f4:33:5b:76:fb:ad:7b:fe:0b:ea:19:25:6a:6c: ec:cf:3e:39:3b:92:0f:94:3f:0e:fc:51:d7:7d:f6:7b:f8:62: 75:89:45:ee:fa:0c:a3:27:7b:36:af:e3:f0:2a:4c:81:b8:41: 27:4a:4d:49:2c:36:70:ab:a0:2f:7f:13:92:00:d5:d2:5d:c3: f2:31:be:be:e7:b0:ec:56:25:52:99:69:e8:76:65:57:55:ad: f0:17:97:e2:4d:ce:60:6c:1f:29:a7:ff:0d:a3:99:13:26:1f: fe:b4:f8:41:f8:66:7d:a6:f4:c1:d5:77:40:f0:43:bc:f5:f4: c7:0e:a7:78:fc:6f:86:de:ba:7f:97:8c:be:09:e7:7c:04:bc: a3:c2:ce:bb:b0:0c:6c:20:c5:c2:d7:e3:dd:bc:02:22:9c:f3: 41:bb:0a:ad:19:82:b3:05:c3:c8:a4:f1:26:c8:30:2a:70:90: 4d:c6:f7:f2:eb:83:da:4f:29:f5:56:9e:a4:68:9d:c3:5c:11: 08:ef:74:bd:30:12:a5:73:6e:c1:e6:e6:b7:08:69:6a:0e:0f: bf:49:51:cc:1d:09:94:96:82:2f:c8:61:aa:4a:6a:61:87:e9: ac:fe:f8:77 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOrhrQOKpc7Auu6ryGJ+ePZmcgMIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIyNjA4NTUwMFoX DTI3MDIyNTA5MDAwMFowMzExMC8GA1UEAxMoRDkzNDRDMjUyRUUyNjI5NUQyQjM1 NjY4MEVDQTIxMzFBNkI5RDQwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJo2g5W/U8TYLkGmF6/IEDYs+0WyQ8vHMWojjPzTWUVOERgaLhD+mIhQEWhT TkaH1KmcOsjD1iF01u3COVNL5I35fi/IBCxGM+5OYMc1jZcKp8c8cWe/5oXF2QBp O6mhgzn+onJSyYgMnOMSrV3Wlaje9iWRZI88JcOoXG9TcZ6Fu6rcQPJVAZhWB9aA i4lNL8jkZuisdDWwc3cBh7fWmuFEfsSgZeWTK6E3+AtvrvZ+LN6KMUEGYw2cRQzJ ivdoMhCx4iCIafnldlw6OxiKwAg8mhu5JmxwfKAFIcBrEd5nH/VLFts3l4j7k4NO u1VF3ow6hltAlHS967cbz3qc+SkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTZNEwl LuJildKzVmgOyiExprnUBDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeU6zANBgkqhkiG9w0BAQsFAAOCAQEAHKX58wJMfJyxdLI6N4cm f1Lp/ffEWfQzW3b7rXv+C+oZJWps7M8+OTuSD5Q/DvxR1332e/hidYlF7voMoyd7 Nq/j8CpMgbhBJ0pNSSw2cKugL38TkgDV0l3D8jG+vuew7FYlUplp6HZlV1Wt8BeX 4k3OYGwfKaf/DaOZEyYf/rT4Qfhmfab0wdV3QPBDvPX0xw6nePxvht66f5eMvgnn fAS8o8LOu7AMbCDFwtfj3bwCIpzzQbsKrRmCswXDyKTxJsgwKnCQTcb38uuD2k8p 9VaepGidw1wRCO90vTASpXNuwebmtwhpag4Pv0lRzB0JlJaCL8hhqkpqYYfprP74 dw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:00:18 2026 by rpki-client