$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141113.roa File: AS141113.roa (raw, json) Hash identifier: j05ZpqjS56ZsPgkFdqgAKgYCppeY0g/I721aA46xyZw= Subject key identifier: 58:2B:EB:75:B4:4E:56:DD:59:92:03:57:3C:15:11:45:D6:26:FE:75 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21E72F401F35A57765229028DFE86CEC41F2F8F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141113.roa Signing time: Wed 04 Jun 2025 03:00:00 +0000 ROA not before: Wed 04 Jun 2025 02:55:00 +0000 ROA not after: Wed 03 Jun 2026 03:00:00 +0000 asID: 141113 IP address blocks: 103.157.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:e7:2f:40:1f:35:a5:77:65:22:90:28:df:e8:6c:ec:41:f2:f8:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 4 02:55:00 2025 GMT Not After : Jun 3 03:00:00 2026 GMT Subject: CN=582BEB75B44E56DD599203573C151145D626FE75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:85:6b:f3:aa:8e:d4:a6:74:ae:62:32:c6:93: f5:5a:81:e7:70:5e:19:cb:67:3a:e1:be:a3:7d:18: 0e:4f:53:c2:a9:7f:87:c9:ce:e6:2f:c2:99:b6:8d: 5d:bd:96:a1:83:11:60:f7:76:31:df:f2:2b:80:d7: 14:49:c6:27:13:7a:b1:36:50:53:e6:c9:da:d2:fb: 44:c4:54:60:77:e1:5a:2d:2f:12:81:4f:9d:5a:e8: f3:8f:fc:60:47:7f:07:83:20:da:b4:9b:ec:d9:f3: 94:de:fb:43:3d:5e:3a:ee:8a:f0:e1:5d:5c:5e:7f: e7:82:22:53:37:4a:0b:49:0e:53:8d:c8:ca:b9:8e: 3b:ec:72:21:a1:19:78:be:d4:9f:16:9b:1e:5a:c5: 85:f1:6e:b0:ce:36:e6:3b:aa:29:59:5f:0d:9f:04: 22:b0:ab:6f:c9:7e:90:26:21:4a:38:f8:a8:87:87: 03:aa:0d:94:79:81:0e:b9:08:42:5d:c7:d7:7e:15: 72:ac:ed:c0:c7:2e:e3:73:e7:1c:a4:80:25:77:7d: 9d:44:8e:5f:dd:1c:50:07:f1:fb:9d:75:94:54:8a: 6f:e8:fa:f3:40:d4:ed:9b:cd:4d:bb:61:ea:fa:b3: cf:aa:86:87:3c:f2:e2:b7:97:83:a5:ec:84:da:07: ed:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2B:EB:75:B4:4E:56:DD:59:92:03:57:3C:15:11:45:D6:26:FE:75 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.80.0/23 Signature Algorithm: sha256WithRSAEncryption 90:e0:ff:9d:b4:d4:79:21:b5:2a:92:24:58:e5:b9:d6:39:2b: 4f:71:98:e9:23:fb:71:6f:ad:b5:a7:b9:38:1b:54:a6:08:24: 0c:a5:d8:72:e1:d5:19:94:c7:2a:8b:8e:e1:bc:29:7d:9a:84: 36:fc:5b:19:3c:94:1b:5c:0b:43:c2:ff:7f:8e:3e:b4:4b:97: db:de:16:7e:03:52:18:25:2d:51:9e:b8:27:16:7c:88:6e:ae: c4:83:86:c2:2f:50:dc:65:5c:af:af:1a:a9:96:be:75:eb:21: 34:42:04:fe:13:63:89:f2:6e:04:92:44:6a:67:ce:d0:c8:5d: ac:2e:58:84:cc:b4:5b:0c:bb:26:e9:95:80:f2:8a:ef:68:83: bf:b5:21:d9:53:0e:0e:b3:31:36:2e:d8:29:b5:db:d1:73:39: ca:1a:40:c6:2b:ba:ae:d8:de:d5:9e:b1:45:dd:65:5b:c2:d5: 85:f3:be:78:a8:65:36:cf:29:66:23:ea:12:ce:e8:60:50:54: 86:44:9b:18:d2:ba:2e:b5:e1:2b:a6:7b:c8:43:4d:c6:e1:ab: c1:bb:a2:5b:62:34:aa:a5:e2:7b:43:d3:ed:42:14:63:b4:7d: 8e:f1:46:37:c5:dc:2d:60:d6:b5:bf:56:68:c9:5d:91:0d:c1: 15:ec:96:0c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIecvQB81pXdlIpAo3+hs7EHy+PgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNDAyNTUwMFoX DTI2MDYwMzAzMDAwMFowMzExMC8GA1UEAxMoNTgyQkVCNzVCNDRFNTZERDU5OTIw MzU3M0MxNTExNDVENjI2RkU3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2Fa/OqjtSmdK5iMsaT9VqB53BeGctnOuG+o30YDk9Twql/h8nO5i/CmbaN Xb2WoYMRYPd2Md/yK4DXFEnGJxN6sTZQU+bJ2tL7RMRUYHfhWi0vEoFPnVro84/8 YEd/B4Mg2rSb7NnzlN77Qz1eOu6K8OFdXF5/54IiUzdKC0kOU43IyrmOO+xyIaEZ eL7UnxabHlrFhfFusM425juqKVlfDZ8EIrCrb8l+kCYhSjj4qIeHA6oNlHmBDrkI Ql3H134VcqztwMcu43PnHKSAJXd9nUSOX90cUAfx+511lFSKb+j680DU7ZvNTbth 6vqzz6qGhzzy4reXg6XshNoH7QUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRYK+t1 tE5W3VmSA1c8FRFF1ib+dTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTExMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWedUDANBgkqhkiG9w0BAQsFAAOCAQEAkOD/nbTUeSG1KpIkWOW5 1jkrT3GY6SP7cW+ttae5OBtUpggkDKXYcuHVGZTHKouO4bwpfZqENvxbGTyUG1wL Q8L/f44+tEuX294WfgNSGCUtUZ64JxZ8iG6uxIOGwi9Q3GVcr68aqZa+deshNEIE /hNjifJuBJJEamfO0MhdrC5YhMy0Wwy7JumVgPKK72iDv7Uh2VMODrMxNi7YKbXb 0XM5yhpAxiu6rtje1Z6xRd1lW8LVhfO+eKhlNs8pZiPqEs7oYFBUhkSbGNK6LrXh K6Z7yENNxuGrwbuiW2I0qqXie0PT7UIUY7R9jvFGN8XcLWDWtb9WaMldkQ3BFeyW DA== -----END CERTIFICATE-----Generated at Mon Jun 16 04:33:58 2025 by rpki-client