$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141087.roa File: AS141087.roa (raw, json) Hash identifier: ZvWRSnE+Sv4FGvE13UTBzJt/sEcyeLkRNWDxg6VBnz0= Subject key identifier: 04:12:D1:55:87:16:08:25:0A:82:24:81:D4:A8:E9:6E:E0:0E:50:73 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6077669EE7847EB34DD2F01E37893C9504A1C415 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141087.roa Signing time: Mon 28 Jul 2025 03:00:00 +0000 ROA not before: Mon 28 Jul 2025 02:55:00 +0000 ROA not after: Mon 27 Jul 2026 03:00:00 +0000 asID: 141087 IP address blocks: 103.127.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:77:66:9e:e7:84:7e:b3:4d:d2:f0:1e:37:89:3c:95:04:a1:c4:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 28 02:55:00 2025 GMT Not After : Jul 27 03:00:00 2026 GMT Subject: CN=0412D155871608250A822481D4A8E96EE00E5073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:70:81:dd:24:b1:55:e0:9f:e8:55:2f:43:29: 10:b2:ba:2d:0f:a7:86:9b:f4:40:35:d0:ae:b7:02: 86:aa:a3:b5:ad:1e:d8:a0:38:8e:53:5f:e7:64:1c: 62:ae:7a:9a:15:c4:6c:c2:74:70:14:83:e3:73:4b: 79:48:51:1c:2d:bc:71:fd:9e:7a:c2:b2:f6:2b:02: 3c:63:94:c7:21:d4:0c:65:7d:2c:7a:d7:17:28:9d: 37:44:3e:43:88:74:bb:38:4b:76:31:fa:8a:56:14: cf:93:76:76:a0:74:71:bc:9d:e8:60:44:58:3e:1e: 38:25:a2:21:85:42:b4:eb:ef:be:c9:5b:c1:18:88: ca:67:81:c5:55:98:94:d8:2b:ef:ae:0b:c8:e9:fd: 19:bb:58:b3:26:e2:28:50:8c:9e:b4:fd:ea:c1:32: 20:aa:c3:dd:77:3f:9b:2f:b2:3c:7a:af:f3:82:6d: de:05:5b:51:c9:2c:24:5f:ad:9c:9e:1d:b1:c5:d9: 99:d8:d3:0c:51:4a:a6:8c:84:b0:a5:38:07:73:eb: 69:61:e4:a3:52:ff:7f:a0:76:f7:48:9a:04:7c:6c: 9f:0d:82:32:b7:e6:2b:e1:ee:ec:a1:1b:96:fb:7a: 57:ab:8e:18:14:f1:f1:e5:7c:67:9c:98:85:ef:a1: 57:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:12:D1:55:87:16:08:25:0A:82:24:81:D4:A8:E9:6E:E0:0E:50:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141087.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.221.0/24 Signature Algorithm: sha256WithRSAEncryption 90:6b:f9:72:b3:6e:19:3d:90:74:22:25:81:54:5e:45:55:0b: 6b:ac:84:ea:5b:be:5a:2a:25:d2:49:c1:93:6f:6d:37:93:12: 00:e1:a5:9f:64:f9:f4:a6:b5:07:5e:57:9b:07:5c:91:11:ff: 54:cb:00:8f:3c:78:d2:05:5c:eb:68:02:a0:f6:1a:e3:39:0f: de:a5:72:e1:12:97:57:2b:f7:c4:77:18:39:cb:5b:fb:ae:c9: 51:b1:67:69:f7:ad:3b:99:ae:51:79:10:bc:50:e3:f8:f1:b8: 11:75:9b:a2:c3:ba:de:ea:14:5b:36:8c:cc:3e:af:62:ea:01: 81:94:2d:ce:80:59:b3:13:fe:e4:f1:7a:b3:a8:88:5f:c3:32: 1b:1a:36:e4:c3:75:0d:b3:e7:68:25:0f:df:40:1b:4b:77:cf: 52:d7:d3:f2:56:49:7f:c1:1b:d3:70:82:b7:8b:05:40:cc:34: ac:2e:c3:87:de:44:90:9d:c6:87:9c:66:94:0c:50:0e:db:85: 9b:65:77:a6:aa:40:89:13:c2:14:a7:6d:4c:7e:e1:e2:be:8e: 49:3b:f8:99:2f:11:8c:48:38:c2:fe:4c:50:97:ea:ea:a8:aa: 29:5e:51:37:2a:82:c9:f2:4d:af:75:53:82:98:e1:56:ea:6d: 34:7d:01:80 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYHdmnueEfrNN0vAeN4k8lQShxBUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyODAyNTUwMFoX DTI2MDcyNzAzMDAwMFowMzExMC8GA1UEAxMoMDQxMkQxNTU4NzE2MDgyNTBBODIy NDgxRDRBOEU5NkVFMDBFNTA3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1wgd0ksVXgn+hVL0MpELK6LQ+nhpv0QDXQrrcChqqjta0e2KA4jlNf52Qc Yq56mhXEbMJ0cBSD43NLeUhRHC28cf2eesKy9isCPGOUxyHUDGV9LHrXFyidN0Q+ Q4h0uzhLdjH6ilYUz5N2dqB0cbyd6GBEWD4eOCWiIYVCtOvvvslbwRiIymeBxVWY lNgr764LyOn9GbtYsybiKFCMnrT96sEyIKrD3Xc/my+yPHqv84Jt3gVbUcksJF+t nJ4dscXZmdjTDFFKpoyEsKU4B3PraWHko1L/f6B290iaBHxsnw2CMrfmK+Hu7KEb lvt6V6uOGBTx8eV8Z5yYhe+hV1cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEEtFV hxYIJQqCJIHUqOlu4A5QczAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA4Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd/3TANBgkqhkiG9w0BAQsFAAOCAQEAkGv5crNuGT2QdCIlgVRe RVULa6yE6lu+Wiol0knBk29tN5MSAOGln2T59Ka1B15XmwdckRH/VMsAjzx40gVc 62gCoPYa4zkP3qVy4RKXVyv3xHcYOctb+67JUbFnafetO5muUXkQvFDj+PG4EXWb osO63uoUWzaMzD6vYuoBgZQtzoBZsxP+5PF6s6iIX8MyGxo25MN1DbPnaCUP30Ab S3fPUtfT8lZJf8Eb03CCt4sFQMw0rC7Dh95EkJ3Gh5xmlAxQDtuFm2V3pqpAiRPC FKdtTH7h4r6OSTv4mS8RjEg4wv5MUJfq6qiqKV5RNyqCyfJNr3VTgpjhVuptNH0B gA== -----END CERTIFICATE-----Generated at Wed Aug 6 03:57:27 2025 by rpki-client