$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142212.roa File: AS142212.roa (raw, json) Hash identifier: qlthmqGVNAb0bLm/SqQcwfgLNqOXoMSH6oxprdk5Fk4= Subject key identifier: AC:AF:EA:2E:14:31:FB:13:28:DB:4F:7C:7C:28:08:F6:1E:81:C7:F5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5A69D90203E9D31989E60E0EC495ED2F199109EB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142212.roa Signing time: Tue 21 Apr 2026 03:06:58 +0000 ROA not before: Tue 21 Apr 2026 03:01:58 +0000 ROA not after: Tue 20 Apr 2027 03:06:58 +0000 asID: 142212 IP address blocks: 2001:df6:8ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 05:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:69:d9:02:03:e9:d3:19:89:e6:0e:0e:c4:95:ed:2f:19:91:09:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 21 03:01:58 2026 GMT Not After : Apr 20 03:06:58 2027 GMT Subject: CN=ACAFEA2E1431FB1328DB4F7C7C2808F61E81C7F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:28:12:a7:b8:dc:6f:12:77:08:40:db:b8:f2: 51:25:24:09:65:3d:83:eb:58:20:87:42:09:9f:3a: 3f:97:2d:c4:10:f1:b6:01:e5:c5:e3:23:b6:ce:e6: 10:6a:07:a3:68:28:de:24:fc:eb:e2:2e:15:62:a6: be:37:af:1d:33:d8:f6:3a:a3:9d:69:c7:ec:98:ca: 8a:b7:c7:e3:19:71:0d:80:a2:96:ac:b4:17:3f:fe: 42:c8:3d:1b:1b:3b:a6:8c:24:31:f5:97:23:6c:d5: 51:53:c5:34:29:d3:07:5a:60:73:5e:3a:3c:4c:68: 53:b4:a4:d5:6e:00:5f:be:28:dc:b7:18:14:51:14: 15:43:e1:c2:7c:ac:e7:b5:3d:e9:70:02:20:32:15: cf:b3:a7:a8:25:b8:48:25:35:09:ef:d2:61:0d:ae: ab:6a:35:4c:eb:18:ad:ab:55:44:e5:d1:d5:a1:c9: ab:06:33:c8:d3:4e:58:08:54:8c:de:12:ba:76:46: a7:bf:20:a8:b2:62:5b:6f:b3:ce:9e:b6:91:d1:92: 7b:d2:91:74:bc:96:8a:bc:2e:d8:38:21:6f:85:21: c8:b5:f6:20:a5:b4:67:88:1f:59:69:86:5a:c9:2d: 6d:a5:34:74:09:90:21:92:b7:26:d7:02:6b:9b:5e: b0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:AF:EA:2E:14:31:FB:13:28:DB:4F:7C:7C:28:08:F6:1E:81:C7:F5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142212.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:8ac0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:5d:96:92:1d:11:cb:5c:c2:34:04:e2:1d:4d:30:01:c7:9e: d6:30:85:e8:1c:51:dc:7c:7a:63:02:8f:69:1f:3a:6c:db:93: 9c:7f:19:0b:69:36:52:f7:5b:51:b0:86:5b:ad:20:24:01:92: 5d:6a:46:bc:24:92:9c:77:9f:44:ea:93:3b:c6:34:e3:ce:41: 50:39:5e:4a:31:3f:87:10:d7:4f:26:bd:0e:18:a4:1f:51:95: 4d:34:56:65:f7:79:8b:05:ea:4b:78:f1:39:cc:3f:6d:a5:17: 2b:66:38:24:54:20:de:4a:f2:55:68:19:38:4c:ba:35:f5:d6: 54:dc:83:4f:81:d1:a9:44:79:f4:c2:1b:74:13:a6:3f:cc:4e: c4:3e:4b:32:ee:4d:74:12:4b:ed:8d:90:00:8b:23:fd:bf:c2: 59:42:6a:e4:eb:f8:b8:81:d0:88:06:72:9b:59:4c:e6:1b:2e: 77:f4:5b:fb:95:9b:68:cc:dd:e0:ae:62:02:03:9e:a4:f3:7b: f3:57:fa:4a:30:f2:72:14:3e:5f:00:c7:88:de:40:fe:2e:15: 57:fc:6b:c0:d5:89:97:12:d9:a7:64:cf:39:c4:5f:d4:f6:2a: a8:86:de:e2:e0:15:9b:5d:97:1b:80:a8:ca:46:a3:4b:74:0e: c2:5e:d4:ca -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUWmnZAgPp0xmJ5g4OxJXtLxmRCeswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQyMTAzMDE1OFoX DTI3MDQyMDAzMDY1OFowMzExMC8GA1UEAxMoQUNBRkVBMkUxNDMxRkIxMzI4REI0 RjdDN0MyODA4RjYxRTgxQzdGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0oEqe43G8SdwhA27jyUSUkCWU9g+tYIIdCCZ86P5ctxBDxtgHlxeMjts7m EGoHo2go3iT86+IuFWKmvjevHTPY9jqjnWnH7JjKirfH4xlxDYCilqy0Fz/+Qsg9 Gxs7powkMfWXI2zVUVPFNCnTB1pgc146PExoU7Sk1W4AX74o3LcYFFEUFUPhwnys 57U96XACIDIVz7OnqCW4SCU1Ce/SYQ2uq2o1TOsYratVROXR1aHJqwYzyNNOWAhU jN4SunZGp78gqLJiW2+zzp62kdGSe9KRdLyWirwu2Dghb4UhyLX2IKW0Z4gfWWmG WsktbaU0dAmQIZK3JtcCa5tesO8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSsr+ou FDH7EyjbT3x8KAj2HoHH9TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjIxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfaKwDANBgkqhkiG9w0BAQsFAAOCAQEAO12Wkh0Ry1zCNATi HU0wAcee1jCF6BxR3Hx6YwKPaR86bNuTnH8ZC2k2UvdbUbCGW60gJAGSXWpGvCSS nHefROqTO8Y0485BUDleSjE/hxDXTya9DhikH1GVTTRWZfd5iwXqS3jxOcw/baUX K2Y4JFQg3kryVWgZOEy6NfXWVNyDT4HRqUR59MIbdBOmP8xOxD5LMu5NdBJL7Y2Q AIsj/b/CWUJq5Ov4uIHQiAZym1lM5hsud/Rb+5WbaMzd4K5iAgOepPN781f6SjDy chQ+XwDHiN5A/i4VV/xrwNWJlxLZp2TPOcRf1PYqqIbe4uAVm12XG4CoykajS3QO wl7Uyg== -----END CERTIFICATE-----Generated at Wed Apr 22 05:59:30 2026 by rpki-client