$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142216.roa File: AS142216.roa (raw, json) Hash identifier: KiGcRipsA/+cFOviwsT/3HImJGXa+6sopBmBSxzCpAA= Subject key identifier: D4:FE:0D:4D:08:0D:1C:38:B2:8E:9B:A5:54:B5:3F:4D:3C:0C:54:48 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 69B3765349E9E56BABAD106959DA698BBF64FA61 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142216.roa Signing time: Mon 09 Mar 2026 16:55:09 +0000 ROA not before: Mon 09 Mar 2026 16:50:09 +0000 ROA not after: Mon 08 Mar 2027 16:55:09 +0000 asID: 142216 IP address blocks: 144.79.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 23:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b3:76:53:49:e9:e5:6b:ab:ad:10:69:59:da:69:8b:bf:64:fa:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 9 16:50:09 2026 GMT Not After : Mar 8 16:55:09 2027 GMT Subject: CN=D4FE0D4D080D1C38B28E9BA554B53F4D3C0C5448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:13:5d:16:20:4a:c1:81:c3:d2:bc:e8:67:80: 09:ca:f9:4b:50:e2:1a:3e:bd:5e:6c:59:57:47:72: eb:48:3d:70:24:e2:92:5d:7f:b9:bc:17:85:72:80: a9:30:4a:1b:a1:4c:9e:e3:c5:c1:23:3b:cc:8a:8a: b2:1b:89:b7:64:b1:4b:00:f6:a8:b8:fc:de:45:f8: 97:53:21:01:4b:a0:ba:8b:29:20:33:f6:28:19:08: 61:e3:29:b7:ce:ef:9b:3e:44:3d:7b:52:7c:8f:90: 1b:8f:cb:2b:e5:66:09:24:2a:c1:ef:96:6d:d2:f2: 15:af:5b:f5:b1:ff:a1:41:3b:bb:de:50:86:78:c6: 84:db:03:3b:48:7c:87:0e:e4:7e:61:08:23:5e:4c: ea:33:ba:ba:87:73:23:06:01:b9:b0:71:db:5b:4f: 73:b0:48:2a:0b:78:55:ec:64:76:ae:37:3c:cf:98: ce:dd:aa:48:0b:9b:fd:4c:57:76:e2:7a:71:67:66: 75:21:ab:ff:59:2c:05:6f:dc:f5:06:36:05:0f:4e: b0:9c:16:78:be:19:38:a8:f8:87:44:71:c3:84:2b: c7:52:e0:b4:0f:fd:e8:df:30:91:59:61:37:fb:f2: cf:63:36:29:58:9b:a8:9d:77:d9:ce:39:3d:e8:dd: 8b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FE:0D:4D:08:0D:1C:38:B2:8E:9B:A5:54:B5:3F:4D:3C:0C:54:48 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142216.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.136.0/23 Signature Algorithm: sha256WithRSAEncryption 28:33:95:65:d1:13:de:58:b1:fd:0a:df:66:29:3d:d8:ae:e3: 9d:6c:ec:55:86:1a:f8:f3:55:15:bf:4e:27:ca:ee:d3:69:f1: a6:d6:53:2e:78:23:64:a0:3e:6e:e1:4e:35:41:8d:e7:ee:33: e9:b6:5f:da:7a:0f:35:8e:8d:90:d9:39:c3:94:e9:36:e2:bd: 6e:5c:b7:8b:24:0d:dd:f2:36:e9:91:49:0d:e0:13:69:0c:1d: a0:7a:99:ad:3f:e8:83:59:13:3f:54:ab:f5:f2:75:be:e4:87: 1d:ca:e9:35:43:fc:b1:71:ec:dc:b4:37:bc:be:45:3f:de:b3: cf:1a:43:19:a4:27:92:4f:47:8d:59:9c:65:f5:54:a8:0e:2f: 58:14:5f:a6:47:eb:d9:74:9f:24:92:ec:fa:9b:ee:26:f1:26: 1f:be:7b:17:d7:55:d1:d5:ea:25:79:2a:57:40:37:58:16:7e: f6:e3:f9:d4:1a:33:dd:32:3e:91:b7:7d:df:ed:fe:4c:b5:9d: bf:ea:96:f1:c9:5e:b3:bd:3f:57:2c:96:48:b4:d5:5d:e1:71: fb:64:c2:41:c2:58:f4:93:89:18:3f:13:12:94:98:05:ca:18: ff:b7:fd:2f:f3:39:69:18:f9:23:e8:e8:ed:be:ad:22:fa:bf: 6b:14:fd:27 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUabN2U0np5WurrRBpWdppi79k+mEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDMwOTE2NTAwOVoX DTI3MDMwODE2NTUwOVowMzExMC8GA1UEAxMoRDRGRTBENEQwODBEMUMzOEIyOEU5 QkE1NTRCNTNGNEQzQzBDNTQ0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMITXRYgSsGBw9K86GeACcr5S1DiGj69XmxZV0dy60g9cCTikl1/ubwXhXKA qTBKG6FMnuPFwSM7zIqKshuJt2SxSwD2qLj83kX4l1MhAUuguospIDP2KBkIYeMp t87vmz5EPXtSfI+QG4/LK+VmCSQqwe+WbdLyFa9b9bH/oUE7u95QhnjGhNsDO0h8 hw7kfmEII15M6jO6uodzIwYBubBx21tPc7BIKgt4Vexkdq43PM+Yzt2qSAub/UxX duJ6cWdmdSGr/1ksBW/c9QY2BQ9OsJwWeL4ZOKj4h0Rxw4Qrx1LgtA/96N8wkVlh N/vyz2M2KVibqJ132c45Pejdi90CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTU/g1N CA0cOLKOm6VUtT9NPAxUSDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MjIxNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZBPiDANBgkqhkiG9w0BAQsFAAOCAQEAKDOVZdET3lix/QrfZik9 2K7jnWzsVYYa+PNVFb9OJ8ru02nxptZTLngjZKA+buFONUGN5+4z6bZf2noPNY6N kNk5w5TpNuK9bly3iyQN3fI26ZFJDeATaQwdoHqZrT/og1kTP1Sr9fJ1vuSHHcrp NUP8sXHs3LQ3vL5FP96zzxpDGaQnkk9HjVmcZfVUqA4vWBRfpkfr2XSfJJLs+pvu JvEmH757F9dV0dXqJXkqV0A3WBZ+9uP51Boz3TI+kbd93+3+TLWdv+qW8cles70/ VyyWSLTVXeFx+2TCQcJY9JOJGD8TEpSYBcoY/7f9L/M5aRj5I+jo7b6tIvq/axT9 Jw== -----END CERTIFICATE-----Generated at Thu Mar 19 10:50:44 2026 by rpki-client