$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142544.roa File: AS142544.roa (raw, json) Hash identifier: w3b129UWNaow72ZEuMIOMHt/QjPNVTAalIJCPiAChOE= Subject key identifier: E1:58:20:D0:AE:9F:08:B4:D3:D0:40:B9:56:0F:AE:B9:55:D7:92:4D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09A8CB021162AA18644DFE43ECC1DF4C4646EEEA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142544.roa Signing time: Thu 05 Mar 2026 04:08:30 +0000 ROA not before: Thu 05 Mar 2026 04:03:30 +0000 ROA not after: Thu 04 Mar 2027 04:08:30 +0000 asID: 142544 IP address blocks: 2001:df6:b940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a8:cb:02:11:62:aa:18:64:4d:fe:43:ec:c1:df:4c:46:46:ee:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 5 04:03:30 2026 GMT Not After : Mar 4 04:08:30 2027 GMT Subject: CN=E15820D0AE9F08B4D3D040B9560FAEB955D7924D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:42:8e:83:fb:36:c5:1d:cc:0d:6a:d5:05:3b: 8f:51:6d:ae:f5:51:08:64:00:ac:8c:90:b5:f5:12: 99:e6:3c:99:92:75:cb:a1:b3:13:f2:df:2a:f8:09: a8:fb:ba:60:b5:de:4d:e4:38:41:c1:7f:03:e4:1b: 30:0b:3b:6e:de:09:d6:cc:b8:6e:c0:45:65:86:6f: 2d:38:b0:16:34:8e:b4:92:d5:c1:e5:44:33:8d:a6: f6:69:2a:10:a1:86:5b:de:c8:69:72:f2:9c:68:10: dd:56:8b:fc:28:04:a2:85:8c:da:a1:5f:e3:ab:a1: 2c:00:56:75:66:41:e5:6e:a2:81:e2:1c:df:30:ae: 1b:a2:89:fb:0b:49:74:ca:ac:5f:a7:b1:92:9b:a6: 37:2b:66:0a:ca:44:f1:07:94:e1:c9:dd:06:dd:e2: db:e4:5c:99:dd:fd:a9:12:ce:42:8c:87:46:8d:45: 16:3d:f9:e9:68:7e:b7:c8:f6:ff:0c:3f:4a:63:42: d4:2d:7a:08:a2:95:67:95:83:f1:55:9e:d4:a6:a5: b4:64:55:c5:3c:ad:b5:ec:f8:54:59:e1:2e:d2:4d: 9d:cf:c5:9d:08:ef:23:23:49:04:56:1a:67:c5:55: c3:70:17:1d:fc:c0:80:49:54:1e:f2:8d:eb:c8:44: 3f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:58:20:D0:AE:9F:08:B4:D3:D0:40:B9:56:0F:AE:B9:55:D7:92:4D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142544.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:b940::/48 Signature Algorithm: sha256WithRSAEncryption 8d:09:eb:96:d6:8b:99:23:24:75:1e:0c:c6:0e:c7:ab:36:2e: 0b:ff:30:75:f2:6f:30:1f:91:89:75:cb:16:45:7c:43:f2:c3: a4:53:d3:0a:5e:c4:05:02:0b:38:cd:2e:1a:f6:c8:37:4c:a9: df:a1:a7:21:6d:e7:ee:f5:67:ee:bb:e7:27:b6:3d:78:fc:20: a5:cc:7d:ab:9b:81:69:d4:ef:c1:e8:22:5a:9e:93:5b:15:a0: 91:12:ba:27:19:79:53:b0:11:cb:af:bd:74:5b:03:a4:a6:a4: 26:10:fd:7f:2b:d0:c3:f5:ea:3b:49:1a:5f:88:e8:e6:91:d9: 19:94:ec:20:1e:fe:6b:e9:7b:2e:2d:f9:d6:b5:0f:33:c3:53: 3d:06:e2:fe:39:7f:e8:70:1c:a7:c6:20:d0:88:bf:06:4a:8d: 35:e2:18:65:51:6b:1c:2f:9f:17:11:f2:88:34:28:2c:0c:9e: 87:6d:2e:27:c1:1b:6e:14:9a:2a:bc:bb:a9:e2:29:0c:bc:9d: b9:5b:5d:ec:e2:88:05:84:10:64:d4:49:b1:c0:37:40:f0:05: 69:17:14:3c:de:6d:ff:d3:41:b5:08:9b:30:84:14:c1:bc:d5: a0:f1:4d:67:c7:15:74:16:56:72:ee:88:e3:d2:a1:69:4b:25: 33:e7:78:1d -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUCajLAhFiqhhkTf5D7MHfTEZG7uowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMwNTA0MDMzMFoX DTI3MDMwNDA0MDgzMFowMzExMC8GA1UEAxMoRTE1ODIwRDBBRTlGMDhCNEQzRDA0 MEI5NTYwRkFFQjk1NUQ3OTI0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZCjoP7NsUdzA1q1QU7j1FtrvVRCGQArIyQtfUSmeY8mZJ1y6GzE/LfKvgJ qPu6YLXeTeQ4QcF/A+QbMAs7bt4J1sy4bsBFZYZvLTiwFjSOtJLVweVEM42m9mkq EKGGW97IaXLynGgQ3VaL/CgEooWM2qFf46uhLABWdWZB5W6igeIc3zCuG6KJ+wtJ dMqsX6exkpumNytmCspE8QeU4cndBt3i2+Rcmd39qRLOQoyHRo1FFj356Wh+t8j2 /ww/SmNC1C16CKKVZ5WD8VWe1KaltGRVxTyttez4VFnhLtJNnc/FnQjvIyNJBFYa Z8VVw3AXHfzAgElUHvKN68hEP1kCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBThWCDQ rp8ItNPQQLlWD665VdeSTTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjU0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfa5QDANBgkqhkiG9w0BAQsFAAOCAQEAjQnrltaLmSMkdR4M xg7HqzYuC/8wdfJvMB+RiXXLFkV8Q/LDpFPTCl7EBQILOM0uGvbIN0yp36GnIW3n 7vVn7rvnJ7Y9ePwgpcx9q5uBadTvwegiWp6TWxWgkRK6Jxl5U7ARy6+9dFsDpKak JhD9fyvQw/XqO0kaX4jo5pHZGZTsIB7+a+l7Li351rUPM8NTPQbi/jl/6HAcp8Yg 0Ii/BkqNNeIYZVFrHC+fFxHyiDQoLAyeh20uJ8EbbhSaKry7qeIpDLyduVtd7OKI BYQQZNRJscA3QPAFaRcUPN5t/9NBtQibMIQUwbzVoPFNZ8cVdBZWcu6I49KhaUsl M+d4HQ== -----END CERTIFICATE-----Generated at Sat Mar 7 19:39:27 2026 by rpki-client