$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS142214.roa File: AS142214.roa (raw, json) Hash identifier: sg3Nj+ScFOst4mL+6eVmc+p7qnq/1hFGV9Gn3GXRAiA= Subject key identifier: CD:18:ED:74:C9:AA:02:BE:E4:55:2B:8A:B4:B0:E4:54:47:FF:C5:F0 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 2B9F936384B5124E517E9FD1379B2D0C375D0806 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142214.roa Signing time: Sat 02 May 2026 09:23:02 +0000 ROA not before: Sat 02 May 2026 09:18:02 +0000 ROA not after: Sat 01 May 2027 09:23:02 +0000 asID: 142214 IP address blocks: 144.79.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:9f:93:63:84:b5:12:4e:51:7e:9f:d1:37:9b:2d:0c:37:5d:08:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:02 2026 GMT Not After : May 1 09:23:02 2027 GMT Subject: CN=CD18ED74C9AA02BEE4552B8AB4B0E45447FFC5F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:d6:49:fa:95:bc:06:1e:a7:12:9f:3c:08: 56:94:0f:92:31:13:38:d8:4c:49:56:95:c9:b1:f3: cb:51:03:60:e1:f7:65:ce:ae:ad:54:31:43:bb:aa: 53:6c:46:35:d2:37:82:a3:f7:af:6a:ea:08:b0:19: af:0f:e7:0f:68:d8:16:3c:7a:6c:dd:99:a4:2c:60: 0b:4f:3b:8f:c0:96:b1:9a:08:94:d1:d3:bd:4c:de: 0f:28:fb:df:c5:c9:82:df:1d:8d:23:98:6a:cf:a3: fe:d9:42:a7:b7:dd:6c:d0:29:43:9e:7e:a3:d8:db: 52:56:0d:a0:2b:28:65:b8:c0:e6:28:fc:df:4d:01: e0:f8:e3:df:93:66:38:b5:9e:1f:ad:c1:12:fe:31: e0:cb:9e:5a:b8:e2:a0:f2:49:2a:68:04:21:ae:54: 11:77:f3:27:fb:d3:64:ea:67:ec:df:d1:48:46:10: 20:b3:5d:52:c5:ee:eb:a7:a8:8c:3c:3e:a6:97:e1: 0b:3b:07:45:1d:ee:00:ff:e9:d1:eb:bf:a5:f9:5e: a9:68:b7:4e:5b:fa:09:93:92:c1:9c:b2:d2:e3:51: 67:9a:6c:68:ba:13:c7:1c:ca:cc:3c:36:1e:09:56: c7:27:ef:f9:03:2e:ae:40:0f:79:50:07:e0:bd:03: 31:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:18:ED:74:C9:AA:02:BE:E4:55:2B:8A:B4:B0:E4:54:47:FF:C5:F0 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142214.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.245.0/24 Signature Algorithm: sha256WithRSAEncryption 65:10:62:07:77:dd:8c:84:96:82:71:31:be:3b:d8:74:63:80: c2:32:6c:29:8c:8e:17:ca:73:a9:1d:a3:5d:35:f2:7d:cc:82: 3a:77:20:2a:08:96:2a:8f:63:33:09:cc:03:1f:43:5a:02:e3: 3e:b4:83:06:c1:14:2d:ef:34:85:ed:13:42:9d:c5:2b:e4:5e: 51:37:f7:d1:15:c7:c2:29:c5:84:67:1f:d0:fd:77:29:1e:56: 77:c7:74:35:fc:f4:09:11:dc:8e:6e:2d:96:21:a6:86:e7:a5: 99:1e:b5:08:d9:a6:d3:cd:0c:ef:80:7c:67:13:3f:a3:8c:af: 74:c1:66:79:51:01:e7:42:7b:73:b7:74:65:53:a9:f4:9a:a1: 29:95:70:18:74:93:c6:8d:e2:0a:d0:39:92:32:b3:e7:19:19: 0d:b9:22:30:65:38:7f:01:25:59:45:41:cb:11:1a:d6:f4:c6: f3:62:e5:0b:14:a8:61:66:8b:f7:46:ce:44:1b:24:32:a5:aa: 05:b8:af:7e:ba:e2:fd:04:aa:a6:50:5b:40:4e:6d:93:15:bf: ed:b6:76:97:a8:58:b1:ae:26:ee:e8:b5:12:81:3b:2d:5f:ec: 14:da:48:74:ea:b0:a5:3b:98:b9:e5:ad:e0:f7:7b:fb:51:55: 70:7c:2c:31 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUK5+TY4S1Ek5Rfp/RN5stDDddCAYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgwMloX DTI3MDUwMTA5MjMwMlowMzExMC8GA1UEAxMoQ0QxOEVENzRDOUFBMDJCRUU0NTUy QjhBQjRCMEU0NTQ0N0ZGQzVGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3/1kn6lbwGHqcSnzwIVpQPkjETONhMSVaVybHzy1EDYOH3Zc6urVQxQ7uq U2xGNdI3gqP3r2rqCLAZrw/nD2jYFjx6bN2ZpCxgC087j8CWsZoIlNHTvUzeDyj7 38XJgt8djSOYas+j/tlCp7fdbNApQ55+o9jbUlYNoCsoZbjA5ij8300B4Pjj35Nm OLWeH63BEv4x4MueWrjioPJJKmgEIa5UEXfzJ/vTZOpn7N/RSEYQILNdUsXu66eo jDw+ppfhCzsHRR3uAP/p0eu/pfleqWi3Tlv6CZOSwZyy0uNRZ5psaLoTxxzKzDw2 HglWxyfv+QMurkAPeVAH4L0DMTkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTNGO10 yaoCvuRVK4q0sORUR//F8DAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQyMjE0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAkE/1MA0GCSqGSIb3DQEBCwUAA4IBAQBlEGIHd92MhJaCcTG+O9h0Y4DC MmwpjI4XynOpHaNdNfJ9zII6dyAqCJYqj2MzCcwDH0NaAuM+tIMGwRQt7zSF7RNC ncUr5F5RN/fRFcfCKcWEZx/Q/XcpHlZ3x3Q1/PQJEdyObi2WIaaG56WZHrUI2abT zQzvgHxnEz+jjK90wWZ5UQHnQntzt3RlU6n0mqEplXAYdJPGjeIK0DmSMrPnGRkN uSIwZTh/ASVZRUHLERrW9MbzYuULFKhhZov3Rs5EGyQypaoFuK9+uuL9BKqmUFtA Tm2TFb/ttnaXqFixribu6LUSgTstX+wU2kh06rClO5i55a3g93v7UVVwfCwx -----END CERTIFICATE-----Generated at Sat May 2 21:05:39 2026 by rpki-client