$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142345.roa File: AS142345.roa (raw, json) Hash identifier: /28QacQf7/HxCxXOk4Yd/Bke4/tWCOn+ILtvK7u8G1A= Subject key identifier: 8B:4E:7F:4E:11:1E:67:CC:20:50:B2:86:F9:7A:61:D2:29:CE:06:68 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6BD4F183566DB193100D1F116AF74DA8119BACDE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142345.roa Signing time: Thu 02 Oct 2025 03:20:55 +0000 ROA not before: Thu 02 Oct 2025 03:15:55 +0000 ROA not after: Thu 01 Oct 2026 03:20:55 +0000 asID: 142345 IP address blocks: 103.169.42.0/24 maxlen: 24 103.169.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d4:f1:83:56:6d:b1:93:10:0d:1f:11:6a:f7:4d:a8:11:9b:ac:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 2 03:15:55 2025 GMT Not After : Oct 1 03:20:55 2026 GMT Subject: CN=8B4E7F4E111E67CC2050B286F97A61D229CE0668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:16:f9:c6:3a:e8:5a:23:9f:77:30:64:95:79: 12:e4:68:3b:f9:4e:11:c0:82:18:b0:54:19:55:70: 10:73:0b:94:7d:7c:b8:31:0b:4e:70:e4:2c:9d:c5: ac:85:50:c9:27:ed:76:34:30:eb:aa:cf:88:e9:a9: 03:bf:ef:dc:7d:59:3b:ad:84:a6:a4:62:52:c3:a6: b1:71:d0:84:15:ca:d4:58:19:b2:92:d1:fc:3e:43: e5:36:62:a4:2a:4e:d4:35:1b:a9:eb:22:6d:08:d7: 5e:58:fe:e8:6f:36:70:22:b6:c8:6f:a3:af:a5:89: f6:99:87:59:4f:9e:03:57:24:d0:c3:e2:43:73:82: af:18:99:14:96:2f:78:f8:d5:90:8f:e7:82:9b:b0: b5:aa:71:a3:1b:b5:2a:e5:b8:80:64:55:89:7e:9a: 7d:b6:6c:98:0c:b3:34:74:38:7d:dd:ac:f1:55:7a: bb:d0:db:40:cc:b7:7c:20:94:3f:3b:10:f1:64:75: 6f:2f:fd:5a:e7:dd:f2:c4:bd:aa:b5:e4:d4:eb:17: dc:86:bb:f9:9d:55:ad:98:5d:d2:e4:74:94:27:e5: cd:14:b9:cd:fb:27:32:45:f7:0f:cc:bc:3d:10:cc: 9a:4e:82:cf:f5:ce:7f:31:5b:24:f5:17:1a:7b:a7: 0b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:4E:7F:4E:11:1E:67:CC:20:50:B2:86:F9:7A:61:D2:29:CE:06:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142345.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.42.0/23 Signature Algorithm: sha256WithRSAEncryption 81:9d:0e:5f:53:d2:10:26:6b:7b:b8:33:71:d0:99:d2:8b:c2: 94:26:d5:0a:05:c0:da:82:15:6f:50:20:df:30:79:cc:72:63: ea:55:52:c4:84:1d:b5:30:28:24:fc:b5:89:7a:3c:31:41:e4: 27:f1:b0:1b:6c:84:09:67:1a:ad:30:01:d5:b8:27:5e:fb:a6: 25:9c:f0:6c:0c:a7:93:e9:0e:d8:d5:93:93:f0:bd:dc:f8:3f: 29:b1:e7:81:bc:0c:d0:b5:fb:ef:da:1b:5c:33:9d:c8:b3:ea: 8f:c5:4f:72:87:0d:ac:14:b9:4f:96:0d:aa:1f:28:de:7c:3b: 0f:85:77:2a:79:ed:60:64:f2:5f:1b:4f:a5:93:57:33:09:70: 8a:81:9a:cb:8c:b6:71:5b:94:8b:52:83:e0:c1:dd:73:4e:40: df:4d:bc:21:7f:13:79:00:a4:29:be:ea:86:73:0c:d3:c8:82: 8a:49:90:91:4c:03:9b:da:16:3f:65:47:9b:40:a5:98:b1:80: 6e:8d:b8:df:7d:d6:b6:6b:86:b0:a0:70:85:2d:94:b7:54:fa: 90:d5:01:38:e2:c8:38:d9:0f:fc:59:37:e2:b6:56:aa:95:8a: 3d:62:4f:85:37:43:f6:20:4d:f2:d7:64:d8:e4:85:f3:18:0a: 5e:3d:0b:aa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUa9Txg1ZtsZMQDR8RavdNqBGbrN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwMjAzMTU1NVoX DTI2MTAwMTAzMjA1NVowMzExMC8GA1UEAxMoOEI0RTdGNEUxMTFFNjdDQzIwNTBC Mjg2Rjk3QTYxRDIyOUNFMDY2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMwW+cY66Fojn3cwZJV5EuRoO/lOEcCCGLBUGVVwEHMLlH18uDELTnDkLJ3F rIVQySftdjQw66rPiOmpA7/v3H1ZO62EpqRiUsOmsXHQhBXK1FgZspLR/D5D5TZi pCpO1DUbqesibQjXXlj+6G82cCK2yG+jr6WJ9pmHWU+eA1ck0MPiQ3OCrxiZFJYv ePjVkI/ngpuwtapxoxu1KuW4gGRViX6afbZsmAyzNHQ4fd2s8VV6u9DbQMy3fCCU PzsQ8WR1by/9Wufd8sS9qrXk1OsX3Ia7+Z1VrZhd0uR0lCflzRS5zfsnMkX3D8y8 PRDMmk6Cz/XOfzFbJPUXGnunC1kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSLTn9O ER5nzCBQsob5emHSKc4GaDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWepKjANBgkqhkiG9w0BAQsFAAOCAQEAgZ0OX1PSECZre7gzcdCZ 0ovClCbVCgXA2oIVb1Ag3zB5zHJj6lVSxIQdtTAoJPy1iXo8MUHkJ/GwG2yECWca rTAB1bgnXvumJZzwbAynk+kO2NWTk/C93Pg/KbHngbwM0LX779obXDOdyLPqj8VP cocNrBS5T5YNqh8o3nw7D4V3KnntYGTyXxtPpZNXMwlwioGay4y2cVuUi1KD4MHd c05A3028IX8TeQCkKb7qhnMM08iCikmQkUwDm9oWP2VHm0ClmLGAbo24333WtmuG sKBwhS2Ut1T6kNUBOOLIONkP/Fk34rZWqpWKPWJPhTdD9iBN8tdk2OSF8xgKXj0L qg== -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:15 2025 by rpki-client