$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa File: AS141642.roa (raw, json) Hash identifier: GnU2Me6idFN6V6HC+OIMQVIq80KK4DoAI2wvWUcIawM= Subject key identifier: 6B:5F:EA:B6:C8:18:85:8F:FE:DA:B9:0F:A1:BE:58:8A:B6:2C:F0:63 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D841F7BAF7FD27C9118F264B7D56F1AC3F7D78B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa Signing time: Fri 24 Oct 2025 03:00:00 +0000 ROA not before: Fri 24 Oct 2025 02:55:00 +0000 ROA not after: Fri 23 Oct 2026 03:00:00 +0000 asID: 141642 IP address blocks: 36.50.92.0/24 maxlen: 24 36.50.109.0/24 maxlen: 24 103.190.170.0/23 maxlen: 24 103.202.226.0/24 maxlen: 24 2401:13e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:84:1f:7b:af:7f:d2:7c:91:18:f2:64:b7:d5:6f:1a:c3:f7:d7:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 24 02:55:00 2025 GMT Not After : Oct 23 03:00:00 2026 GMT Subject: CN=6B5FEAB6C818858FFEDAB90FA1BE588AB62CF063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:51:cc:a9:95:83:c2:fd:96:9a:da:cb:f1:81: b4:6d:1c:44:45:3d:e7:48:89:f4:c3:ea:82:d9:df: 03:b2:2a:8b:82:dc:5f:db:e5:7b:fb:bf:bb:f5:b8: 0f:60:f0:ff:bc:65:be:6e:a6:d4:cd:e2:6b:bc:85: f4:30:a3:5a:81:72:eb:1c:fb:b8:01:d8:ca:1f:99: bd:c9:22:7a:a8:6e:32:53:9f:dd:d4:f8:5e:6e:e9: de:89:c7:81:07:6a:3d:f2:97:b1:74:dd:e9:c6:32: be:a0:26:a0:e8:79:24:a7:c9:8c:0a:6d:73:92:86: f4:c2:96:19:70:59:63:c4:33:7d:31:36:2a:b0:51: 32:3e:5e:da:5c:b0:e5:8a:04:f0:3f:57:c3:84:e2: f4:6c:59:de:98:08:fe:95:66:b5:02:b4:57:f0:96: c8:be:a4:07:bf:2e:8e:e2:6a:9c:1c:14:7a:9f:55: 2f:22:e2:f8:ee:c4:a8:1c:dc:95:14:2f:6e:14:c4: 7b:0a:2c:57:4f:58:1b:65:ff:12:69:7e:54:0f:7b: 82:5b:25:71:48:af:d4:39:6f:c9:df:6d:a5:36:fe: da:25:c5:03:05:a4:84:9f:a0:52:ed:00:9f:ae:02: 33:93:fe:86:ef:5b:d5:55:f1:df:ce:dd:58:e6:2a: 32:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:5F:EA:B6:C8:18:85:8F:FE:DA:B9:0F:A1:BE:58:8A:B6:2C:F0:63 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141642.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.92.0/24 36.50.109.0/24 103.190.170.0/23 103.202.226.0/24 IPv6: 2401:13e0::/32 Signature Algorithm: sha256WithRSAEncryption 92:2d:bd:6b:77:a6:2d:3e:ff:5c:c2:2a:c1:6f:f2:5c:ac:fc: 1a:e2:46:48:c6:65:74:01:95:03:fd:0d:e7:7f:61:8a:a4:8e: a7:72:e0:7c:03:31:ea:54:a4:35:4b:e6:d0:4f:b5:1b:a4:19: 14:aa:82:95:c2:68:01:5a:21:87:4a:35:22:0e:ee:e8:11:a3: 3b:b0:93:ba:ee:21:59:fb:cf:39:6b:fc:d9:13:95:01:bb:1d: 2b:e3:01:85:65:ca:df:1e:7a:c4:eb:ec:9b:ae:71:bc:30:4c: 0e:6a:66:08:ab:9b:e8:ad:a8:c7:31:3e:4d:89:e4:9f:79:ae: aa:cc:3e:f5:26:e1:ad:05:fa:32:e2:46:80:94:98:6d:4f:ff: ca:a0:6c:e5:f0:62:6b:e5:bb:f4:d6:6b:4d:e6:8e:69:06:60: fe:87:b1:ff:9a:86:36:84:1d:14:7a:17:f9:50:71:13:4d:39: c4:11:e8:98:3f:78:fa:22:53:cf:51:40:fb:4d:3e:fb:20:66: 1f:86:0e:94:4a:b9:bb:14:78:80:f8:ac:5d:3f:b3:07:ec:86: be:2b:6f:99:17:9f:f4:90:7c:45:06:d7:73:0f:c9:70:11:8c: 06:66:77:97:e6:2b:b8:b9:2e:e2:10:a3:75:e4:ea:c1:04:49: 0a:eb:ed:e8 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUDYQfe69/0nyRGPJkt9VvGsP314swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyNDAyNTUwMFoX DTI2MTAyMzAzMDAwMFowMzExMC8GA1UEAxMoNkI1RkVBQjZDODE4ODU4RkZFREFC OTBGQTFCRTU4OEFCNjJDRjA2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO1RzKmVg8L9lpray/GBtG0cREU950iJ9MPqgtnfA7Iqi4LcX9vle/u/u/W4 D2Dw/7xlvm6m1M3ia7yF9DCjWoFy6xz7uAHYyh+ZvckieqhuMlOf3dT4Xm7p3onH gQdqPfKXsXTd6cYyvqAmoOh5JKfJjAptc5KG9MKWGXBZY8QzfTE2KrBRMj5e2lyw 5YoE8D9Xw4Ti9GxZ3pgI/pVmtQK0V/CWyL6kB78ujuJqnBwUep9VLyLi+O7EqBzc lRQvbhTEewosV09YG2X/Eml+VA97glslcUiv1Dlvyd9tpTb+2iXFAwWkhJ+gUu0A n64CM5P+hu9b1VXx387dWOYqMtUCAwEAAaOCAfEwggHtMB0GA1UdDgQWBBRrX+q2 yBiFj/7auQ+hvliKtizwYzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBABggrBgEFBQcBBwEB/wQxMC8w HgQCAAEwGAMEACQyXAMEACQybQMEAWe+qgMEAGfK4jANBAIAAjAHAwUAJAET4DAN BgkqhkiG9w0BAQsFAAOCAQEAki29a3emLT7/XMIqwW/yXKz8GuJGSMZldAGVA/0N 539hiqSOp3LgfAMx6lSkNUvm0E+1G6QZFKqClcJoAVohh0o1Ig7u6BGjO7CTuu4h WfvPOWv82ROVAbsdK+MBhWXK3x56xOvsm65xvDBMDmpmCKub6K2oxzE+TYnkn3mu qsw+9SbhrQX6MuJGgJSYbU//yqBs5fBia+W79NZrTeaOaQZg/oex/5qGNoQdFHoX +VBxE005xBHomD94+iJTz1FA+00++yBmH4YOlEq5uxR4gPisXT+zB+yGvitvmRef 9JB8RQbXcw/JcBGMBmZ3l+YruLku4hCjdeTqwQRJCuvt6A== -----END CERTIFICATE-----Generated at Mon Nov 3 19:33:18 2025 by rpki-client