$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS142206.roa File: AS142206.roa (raw, json) Hash identifier: Yj+YaOMPQqokatIiIAEgJUh9Vm3bzlfO0vKIXs2fwqE= Subject key identifier: 26:86:75:AD:EF:9B:E9:5B:F8:5D:7F:C0:9A:4B:AE:DB:9D:EB:5C:C4 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 1791E255766EC60425BEA51E33B0587A5F0EB3AB Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142206.roa Signing time: Sat 02 May 2026 09:25:20 +0000 ROA not before: Sat 02 May 2026 09:20:20 +0000 ROA not after: Sat 01 May 2027 09:25:20 +0000 asID: 142206 IP address blocks: 192.232.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:91:e2:55:76:6e:c6:04:25:be:a5:1e:33:b0:58:7a:5f:0e:b3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:20 2026 GMT Not After : May 1 09:25:20 2027 GMT Subject: CN=268675ADEF9BE95BF85D7FC09A4BAEDB9DEB5CC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3a:c7:46:0e:ec:ff:a7:74:04:0b:b5:8e:ff: 17:6c:49:d0:81:09:df:65:da:83:d5:74:28:a9:ec: 2d:d3:83:0d:ea:b8:67:39:96:fd:92:db:e2:50:73: cf:05:0b:ab:50:86:d5:cc:12:9e:7b:39:55:23:86: 32:6a:f2:ab:df:92:d8:63:65:ec:c3:a8:87:fb:5e: 45:a7:8c:33:33:5e:6d:2d:82:4b:2d:0c:e9:6c:7b: 72:60:78:67:fc:68:f2:c4:31:f9:f4:3a:c9:90:55: f3:e0:00:d1:1b:3f:79:fb:4c:90:25:cb:29:73:43: ed:59:9a:51:53:94:a7:c7:74:93:c2:14:4a:c2:32: 4f:84:e4:15:1b:74:5c:52:48:8c:7a:6d:94:56:c7: 81:62:19:ca:78:ee:04:03:d8:1b:8f:b4:82:fc:2a: 92:1f:54:3d:b9:05:4b:64:15:14:0d:aa:bd:f2:11: e3:6f:0d:e2:c7:39:eb:17:27:c1:b8:45:a8:54:42: 92:68:fe:4b:d3:57:35:9f:a3:39:4d:7d:25:0e:44: e8:34:6c:7e:a6:b7:e0:94:02:1f:b7:fc:ff:a5:3e: 76:5b:0c:0b:0a:c5:6a:b0:9a:3c:f7:f5:7a:84:b0: a8:b9:60:aa:24:b8:21:cf:ae:7c:09:da:63:8c:d0: 97:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:86:75:AD:EF:9B:E9:5B:F8:5D:7F:C0:9A:4B:AE:DB:9D:EB:5C:C4 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142206.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.232.38.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:89:cb:2d:01:76:31:d2:b1:b3:b9:30:49:f5:c8:b5:6f:4e: 24:35:24:ae:7e:9a:8d:00:fe:e9:2c:44:f6:4a:f0:8d:8e:77: 04:02:d9:13:ac:41:e0:b7:dc:09:ed:58:e4:fd:69:05:6b:d1: a2:12:46:d3:03:10:49:14:4e:4d:25:ad:3e:23:db:8a:83:da: e7:c1:e1:74:cd:e3:91:1d:e9:fa:12:a3:be:b5:d6:e3:0d:f5: 02:23:fc:ad:ff:6d:73:ad:49:3a:d2:0a:2b:45:78:27:c1:00: 18:df:a6:e0:d5:a6:56:0d:6a:cd:7f:34:e0:40:4a:80:b7:3e: 25:71:1b:dc:ea:c3:2f:61:d4:9a:28:89:4f:b9:94:ee:52:85: 6b:cf:08:2d:f4:3b:0a:09:9a:26:bd:e7:52:2e:8f:79:24:42: d9:3a:a2:c0:26:15:29:88:6a:8c:86:c7:f6:05:8a:00:0a:01: 9e:00:cc:d6:d9:16:50:f8:6c:22:f0:75:1b:bc:1a:a5:9e:ec: 74:a0:78:a5:52:9c:40:9c:3f:fe:ee:88:4d:99:93:3e:23:96: 07:7f:4b:91:ef:7e:61:68:ba:a8:e1:19:d2:70:12:9e:0e:a5: 12:4d:49:3a:a4:f4:ed:26:41:b4:48:92:a7:cd:4a:9a:a0:a7: cb:6e:28:87 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUF5HiVXZuxgQlvqUeM7BYel8Os6swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAyMFoX DTI3MDUwMTA5MjUyMFowMzExMC8GA1UEAxMoMjY4Njc1QURFRjlCRTk1QkY4NUQ3 RkMwOUE0QkFFREI5REVCNUNDNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQ6x0YO7P+ndAQLtY7/F2xJ0IEJ32Xag9V0KKnsLdODDeq4ZzmW/ZLb4lBz zwULq1CG1cwSnns5VSOGMmryq9+S2GNl7MOoh/teRaeMMzNebS2CSy0M6Wx7cmB4 Z/xo8sQx+fQ6yZBV8+AA0Rs/eftMkCXLKXND7VmaUVOUp8d0k8IUSsIyT4TkFRt0 XFJIjHptlFbHgWIZynjuBAPYG4+0gvwqkh9UPbkFS2QVFA2qvfIR428N4sc56xcn wbhFqFRCkmj+S9NXNZ+jOU19JQ5E6DRsfqa34JQCH7f8/6U+dlsMCwrFarCaPPf1 eoSwqLlgqiS4Ic+ufAnaY4zQl3ECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQmhnWt 75vpW/hdf8CaS67bnetcxDAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQyMjA2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBwOgmMA0GCSqGSIb3DQEBCwUAA4IBAQB/icstAXYx0rGzuTBJ9ci1b04k NSSufpqNAP7pLET2SvCNjncEAtkTrEHgt9wJ7Vjk/WkFa9GiEkbTAxBJFE5NJa0+ I9uKg9rnweF0zeORHen6EqO+tdbjDfUCI/yt/21zrUk60gorRXgnwQAY36bg1aZW DWrNfzTgQEqAtz4lcRvc6sMvYdSaKIlPuZTuUoVrzwgt9DsKCZomvedSLo95JELZ OqLAJhUpiGqMhsf2BYoACgGeAMzW2RZQ+Gwi8HUbvBqlnux0oHilUpxAnD/+7ohN mZM+I5YHf0uR735haLqo4RnScBKeDqUSTUk6pPTtJkG0SJKnzUqaoKfLbiiH -----END CERTIFICATE-----Generated at Sat May 2 21:05:39 2026 by rpki-client