$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS142190.roa File: AS142190.roa (raw, json) Hash identifier: Poyq96pUEbGLMpNX5hom8Bo4CpKiUf1wzloAbcbmc7U= Subject key identifier: 9B:3A:AA:9B:BB:95:65:E9:62:C4:62:86:D7:4C:77:C2:10:48:45:55 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 7A376E81AF29D2294689DDA429D20128190D61FC Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142190.roa Signing time: Sat 02 May 2026 09:25:16 +0000 ROA not before: Sat 02 May 2026 09:20:16 +0000 ROA not after: Sat 01 May 2027 09:25:16 +0000 asID: 142190 IP address blocks: 192.232.36.0/24 maxlen: 24 192.232.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:37:6e:81:af:29:d2:29:46:89:dd:a4:29:d2:01:28:19:0d:61:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:16 2026 GMT Not After : May 1 09:25:16 2027 GMT Subject: CN=9B3AAA9BBB9565E962C46286D74C77C210484555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c0:13:cc:2a:9a:b1:61:dc:0e:75:a2:ee:5c: 73:bd:1e:23:91:a6:f2:c0:d6:88:e4:d5:c2:73:cd: 50:ef:0e:62:b2:59:00:23:a7:bd:86:2e:87:62:42: d7:e2:ed:c5:ef:a0:0f:5a:12:b4:f0:83:3b:29:f6: 9b:08:f2:b5:45:dd:4c:41:93:48:1b:0d:01:9d:83: be:52:23:d1:ab:e0:ca:f0:4a:06:e8:c9:b2:28:d2: 5d:d1:37:7a:f2:05:4e:a4:13:ef:8f:61:26:67:8c: 93:47:de:4a:81:00:26:2d:55:ac:55:a7:d1:fe:c7: f7:99:66:18:a3:85:c1:b3:2e:0c:32:cc:bb:01:45: e3:18:5d:9c:8c:40:39:27:63:72:dd:72:aa:2e:74: a9:7c:b4:b8:e6:28:7e:23:3b:59:59:ef:c2:64:12: 32:cd:1b:12:07:0d:37:92:cd:83:3c:4e:27:76:6d: e9:2a:5b:4c:11:d5:23:dc:8c:d3:87:3c:56:d0:f3: c1:6f:ad:59:f7:4b:12:00:94:3a:c8:77:96:56:ab: 4b:8e:62:d4:2d:28:29:a3:11:e6:5c:e9:e8:4b:7b: 7d:e7:d6:7e:48:74:5d:ca:6d:dd:57:2c:6c:90:84: 9d:32:40:63:85:fe:16:6e:2e:10:6c:5a:4e:41:fb: 9d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3A:AA:9B:BB:95:65:E9:62:C4:62:86:D7:4C:77:C2:10:48:45:55 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142190.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.232.36.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:11:f6:d4:7e:61:ae:8c:78:05:89:68:cb:7a:3b:d9:b3:5d: bf:36:c9:37:d5:cc:3c:3a:ef:65:c8:0d:81:ba:49:35:9f:47: d6:68:34:db:8f:c5:c8:06:3a:77:f0:b5:b0:15:be:cc:21:c1: 43:90:e1:db:27:aa:79:54:68:81:0b:b1:2e:bd:0f:9a:fc:ef: 34:c0:97:b3:ae:25:73:06:62:1f:ed:2f:38:6e:f6:1f:c6:34: 80:42:b5:94:10:a6:fe:98:62:18:60:44:6f:fb:8a:ca:8c:81: af:da:46:29:9d:e6:ec:10:de:5f:46:89:78:e4:e6:56:9c:1d: 3c:58:b2:35:59:20:65:5a:57:4f:3a:90:fa:c3:f9:f9:1a:86: 77:5d:71:0f:e5:39:e3:f5:82:ce:c9:89:d3:d4:eb:c1:8f:b6: 57:8b:45:05:4d:7d:08:c8:6a:28:86:af:4f:7e:f1:f3:d6:34: 3f:c6:c6:18:86:27:8c:0d:3b:e3:60:e5:58:bb:64:d4:16:6d: 8b:dd:cf:d5:8e:6a:14:82:f6:0a:2c:bf:80:90:b9:fd:7b:45: ff:30:92:88:81:66:a4:9f:18:99:fd:40:0a:c7:49:a7:d1:5f: e1:dc:81:4e:60:a2:09:b3:d0:db:96:29:b2:d7:85:cc:72:b2: 4a:08:68:c5 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUejduga8p0ilGid2kKdIBKBkNYfwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAxNloX DTI3MDUwMTA5MjUxNlowMzExMC8GA1UEAxMoOUIzQUFBOUJCQjk1NjVFOTYyQzQ2 Mjg2RDc0Qzc3QzIxMDQ4NDU1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjAE8wqmrFh3A51ou5cc70eI5Gm8sDWiOTVwnPNUO8OYrJZACOnvYYuh2JC 1+Ltxe+gD1oStPCDOyn2mwjytUXdTEGTSBsNAZ2DvlIj0avgyvBKBujJsijSXdE3 evIFTqQT749hJmeMk0feSoEAJi1VrFWn0f7H95lmGKOFwbMuDDLMuwFF4xhdnIxA OSdjct1yqi50qXy0uOYofiM7WVnvwmQSMs0bEgcNN5LNgzxOJ3Zt6SpbTBHVI9yM 04c8VtDzwW+tWfdLEgCUOsh3llarS45i1C0oKaMR5lzp6Et7fefWfkh0Xcpt3Vcs bJCEnTJAY4X+Fm4uEGxaTkH7nVsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSbOqqb u5Vl6WLEYobXTHfCEEhFVTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQyMTkwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBwOgkMA0GCSqGSIb3DQEBCwUAA4IBAQCNEfbUfmGujHgFiWjLejvZs12/ Nsk31cw8Ou9lyA2Bukk1n0fWaDTbj8XIBjp38LWwFb7MIcFDkOHbJ6p5VGiBC7Eu vQ+a/O80wJezriVzBmIf7S84bvYfxjSAQrWUEKb+mGIYYERv+4rKjIGv2kYpnebs EN5fRol45OZWnB08WLI1WSBlWldPOpD6w/n5GoZ3XXEP5Tnj9YLOyYnT1OvBj7ZX i0UFTX0IyGoohq9PfvHz1jQ/xsYYhieMDTvjYOVYu2TUFm2L3c/VjmoUgvYKLL+A kLn9e0X/MJKIgWaknxiZ/UAKx0mn0V/h3IFOYKIJs9Dblimy14XMcrJKCGjF -----END CERTIFICATE-----Generated at Sat May 2 21:03:47 2026 by rpki-client