$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140401.roa File: AS140401.roa (raw, json) Hash identifier: xlIj9z1qFcinIqU3c96SwlRbCFAMwLmT72rKEvpeukQ= Subject key identifier: B9:AD:14:D8:E1:52:23:AB:4B:C3:51:DD:B1:D5:51:06:E7:31:1E:B4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 638C48528B2285AA2186D01F2E61011BCA9D365D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140401.roa Signing time: Fri 13 Jun 2025 07:00:00 +0000 ROA not before: Fri 13 Jun 2025 06:55:00 +0000 ROA not after: Fri 12 Jun 2026 07:00:00 +0000 asID: 140401 IP address blocks: 103.184.54.0/23 maxlen: 24 103.187.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:8c:48:52:8b:22:85:aa:21:86:d0:1f:2e:61:01:1b:ca:9d:36:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 13 06:55:00 2025 GMT Not After : Jun 12 07:00:00 2026 GMT Subject: CN=B9AD14D8E15223AB4BC351DDB1D55106E7311EB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:9c:8c:9e:cc:dc:7d:a8:0d:34:63:48:5a: f5:f6:da:5d:71:c9:89:ad:58:12:ce:22:c1:82:04: 92:59:7f:15:8e:cc:43:65:d7:7b:5e:4a:a2:10:c9: d8:28:33:d6:a1:00:b6:4d:a1:68:de:d6:63:b7:4d: 32:0d:a9:4e:b5:39:3b:6c:26:58:52:a0:9f:2c:60: ee:50:45:a1:d0:f5:fe:f9:96:91:c8:07:ea:86:54: e0:ee:34:be:ec:d1:90:4a:04:c3:0b:7a:64:48:1e: 0e:eb:08:44:d2:ef:d4:07:d9:42:35:dc:77:eb:e3: 26:b3:67:7c:15:66:bc:4f:f2:10:b7:98:5e:bd:34: 5d:b7:db:1f:c8:10:ee:c3:e3:60:d8:0d:0a:54:b2: 43:95:b4:02:28:03:a3:e4:e5:93:26:05:e6:13:64: 90:28:87:87:9a:0e:df:94:22:cb:85:75:59:8d:99: c9:66:b5:05:26:39:33:87:db:39:47:62:ed:73:99: 63:8e:35:4f:09:33:b8:22:89:79:5e:a1:c8:79:b3: 22:28:ac:24:b4:9e:b4:aa:14:02:49:d2:f7:f3:27: 7c:48:64:55:b5:22:53:f7:66:65:81:84:a2:c4:3a: ab:75:1e:2c:03:3e:64:9c:c9:83:b5:e6:bb:fd:1c: 34:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AD:14:D8:E1:52:23:AB:4B:C3:51:DD:B1:D5:51:06:E7:31:1E:B4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140401.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.54.0/23 103.187.116.0/23 Signature Algorithm: sha256WithRSAEncryption 07:ad:c8:2e:20:9c:c3:30:97:0a:51:00:b1:31:83:ee:49:ec: 77:75:c8:7c:bb:50:6e:ab:7e:0e:68:f0:64:df:15:ec:f6:42: da:e1:5c:8d:8a:20:b4:45:fb:8b:11:64:72:24:a2:12:a0:35: 5a:8b:10:23:ab:cc:99:6a:2f:aa:63:69:ed:e1:5d:bb:3c:fc: 8e:51:0d:53:fa:a9:f0:ab:c4:de:be:7b:1f:ed:ce:77:fe:23: 09:56:41:ea:53:b0:ed:54:77:b2:79:2c:a4:f3:9d:0f:a5:f6: 3d:29:09:cc:60:4d:e0:6c:54:a7:33:3b:91:51:e5:d4:46:1c: 9e:ea:55:bc:48:45:59:cb:71:be:2b:e7:e5:26:cf:6e:d9:d9: 3a:66:00:59:dd:d8:69:55:9a:3d:22:32:18:61:8e:3f:fd:a7: 6c:59:a7:09:f5:85:bf:49:b8:ca:9d:f5:42:0f:6c:d0:2f:15: 91:a9:26:a1:72:9d:8a:a1:17:46:1c:b0:05:ec:be:73:b0:bc: 31:43:2b:2e:57:ef:a5:9b:ab:20:57:47:1e:da:3a:df:de:ef: 4f:24:ec:c9:d4:54:48:df:15:ec:54:22:e6:3b:a2:b6:73:b0: f5:39:08:fa:b0:9c:f3:78:bb:51:ad:70:82:d3:c1:b3:71:8f: cd:2d:37:75 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUY4xIUosihaohhtAfLmEBG8qdNl0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxMzA2NTUwMFoX DTI2MDYxMjA3MDAwMFowMzExMC8GA1UEAxMoQjlBRDE0RDhFMTUyMjNBQjRCQzM1 MUREQjFENTUxMDZFNzMxMUVCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBAnIyezNx9qA00Y0ha9fbaXXHJia1YEs4iwYIEkll/FY7MQ2XXe15KohDJ 2Cgz1qEAtk2haN7WY7dNMg2pTrU5O2wmWFKgnyxg7lBFodD1/vmWkcgH6oZU4O40 vuzRkEoEwwt6ZEgeDusIRNLv1AfZQjXcd+vjJrNnfBVmvE/yELeYXr00XbfbH8gQ 7sPjYNgNClSyQ5W0AigDo+TlkyYF5hNkkCiHh5oO35Qiy4V1WY2ZyWa1BSY5M4fb OUdi7XOZY441TwkzuCKJeV6hyHmzIiisJLSetKoUAknS9/MnfEhkVbUiU/dmZYGE osQ6q3UeLAM+ZJzJg7Xmu/0cNGMCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBS5rRTY 4VIjq0vDUd2x1VEG5zEetDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQwMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWe4NgMEAWe7dDANBgkqhkiG9w0BAQsFAAOCAQEAB63ILiCcwzCX ClEAsTGD7knsd3XIfLtQbqt+DmjwZN8V7PZC2uFcjYogtEX7ixFkciSiEqA1WosQ I6vMmWovqmNp7eFduzz8jlENU/qp8KvE3r57H+3Od/4jCVZB6lOw7VR3snkspPOd D6X2PSkJzGBN4GxUpzM7kVHl1EYcnupVvEhFWctxvivn5SbPbtnZOmYAWd3YaVWa PSIyGGGOP/2nbFmnCfWFv0m4yp31Qg9s0C8VkakmoXKdiqEXRhywBey+c7C8MUMr LlfvpZurIFdHHto6397vTyTsydRUSN8V7FQi5juitnOw9TkI+rCc83i7Ua1wgtPB s3GPzS03dQ== -----END CERTIFICATE-----Generated at Mon Nov 3 19:33:16 2025 by rpki-client