$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS142220.roa File: AS142220.roa (raw, json) Hash identifier: HJac5SpZiSSHgowiE3Znjl6YSA0/lt2Gmtpgvt4Tq5k= Subject key identifier: BB:7F:21:49:D5:D2:8F:D2:69:8E:C7:82:AE:0B:9D:B7:44:E2:6C:8C Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 2D8219C991BFA851FFCF1172590BBE62C27BECF6 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142220.roa Signing time: Sat 02 May 2026 09:25:06 +0000 ROA not before: Sat 02 May 2026 09:20:06 +0000 ROA not after: Sat 01 May 2027 09:25:06 +0000 asID: 142220 IP address blocks: 192.135.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:82:19:c9:91:bf:a8:51:ff:cf:11:72:59:0b:be:62:c2:7b:ec:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:06 2026 GMT Not After : May 1 09:25:06 2027 GMT Subject: CN=BB7F2149D5D28FD2698EC782AE0B9DB744E26C8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4e:68:d3:4e:52:3a:2c:18:49:8c:d8:33:b6: e9:92:62:33:78:8b:d9:b8:b3:9c:62:0c:3e:43:57: 57:76:0e:2f:24:52:5c:e0:11:43:83:d2:de:21:e5: b7:b5:51:fe:09:fb:79:86:67:1d:a2:c9:7d:1d:46: 17:6a:c7:2a:72:8e:2e:7a:d3:65:cb:d7:07:d9:5c: 4c:27:69:5b:ad:b3:b2:6c:8c:a5:89:eb:26:03:c1: a2:0e:c2:85:02:50:df:24:06:39:46:af:8d:cc:cb: 5b:03:d2:09:d2:62:7b:95:bc:f3:e6:25:d6:ff:d4: a3:3b:f7:45:d9:38:96:d2:8d:39:77:85:61:57:64: 87:ea:7c:90:0d:41:fb:55:47:b8:72:09:fa:b9:1b: a9:aa:eb:b8:6d:85:c8:74:a6:57:a8:a3:0c:7b:e5: 82:62:5a:54:5b:5f:39:2e:b7:be:32:50:88:1b:1b: 51:06:47:be:92:27:fa:6c:25:31:f3:c6:ca:6a:f9: 0a:cd:0a:98:b1:78:e7:af:1c:de:54:e1:32:59:19: 60:8d:95:65:17:6b:f4:2e:e3:93:12:1d:e6:9d:3c: 6f:21:23:4c:ef:31:6f:64:41:0f:18:78:05:95:74: f8:91:e9:03:1a:55:59:24:4a:68:fe:15:c5:5c:b2: fb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7F:21:49:D5:D2:8F:D2:69:8E:C7:82:AE:0B:9D:B7:44:E2:6C:8C X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142220.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.135.210.0/24 Signature Algorithm: sha256WithRSAEncryption 07:b1:d7:b0:65:3a:5c:79:10:0e:b4:01:bf:5f:14:bd:f8:bd: 8e:50:84:cb:7e:a6:9c:99:72:28:3f:60:fa:62:2b:a1:f8:19: fa:df:58:c7:d6:7c:47:2d:8d:0a:da:7b:9a:ef:a5:b1:5e:73: 36:62:ff:54:9e:45:0d:ec:46:b8:21:7a:3c:cf:8d:95:be:07: 5e:8b:6e:09:fd:88:c2:fc:63:38:ef:40:7d:98:e3:e9:20:88: 1f:fa:2f:9e:ed:ec:c6:f7:9c:59:e9:5b:22:f3:ac:fa:ba:af: 55:ed:e4:b2:f8:70:7b:37:77:38:8d:31:d0:d2:7a:6e:d2:1b: 3f:49:4c:86:59:21:90:39:c0:f3:f4:00:48:21:40:a6:4c:54: 04:b0:29:93:1c:64:4e:ab:f1:86:35:03:4a:6f:87:5c:85:37: 0c:f4:82:41:98:89:7b:81:d8:93:10:a3:21:2b:91:3f:85:7c: 4c:ea:8d:95:06:de:dd:59:c8:7d:b8:40:78:5f:17:1c:e4:31: 10:9c:86:70:7b:21:cf:c8:3f:ad:6f:c1:64:bd:a3:70:89:90: f4:b7:52:de:58:bc:99:05:9d:a3:e1:19:14:97:d8:33:58:70: e2:86:8d:cd:b5:11:f7:1d:a4:bd:10:0f:d1:7e:bc:34:3e:18: e5:c2:1d:8b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIULYIZyZG/qFH/zxFyWQu+YsJ77PYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAwNloX DTI3MDUwMTA5MjUwNlowMzExMC8GA1UEAxMoQkI3RjIxNDlENUQyOEZEMjY5OEVD NzgyQUUwQjlEQjc0NEUyNkM4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZOaNNOUjosGEmM2DO26ZJiM3iL2biznGIMPkNXV3YOLyRSXOARQ4PS3iHl t7VR/gn7eYZnHaLJfR1GF2rHKnKOLnrTZcvXB9lcTCdpW62zsmyMpYnrJgPBog7C hQJQ3yQGOUavjczLWwPSCdJie5W88+Yl1v/Uozv3Rdk4ltKNOXeFYVdkh+p8kA1B +1VHuHIJ+rkbqarruG2FyHSmV6ijDHvlgmJaVFtfOS63vjJQiBsbUQZHvpIn+mwl MfPGymr5Cs0KmLF4568c3lThMlkZYI2VZRdr9C7jkxId5p08byEjTO8xb2RBDxh4 BZV0+JHpAxpVWSRKaP4VxVyy+0UCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBS7fyFJ 1dKP0mmOx4KuC523ROJsjDAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQyMjIwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwIfSMA0GCSqGSIb3DQEBCwUAA4IBAQAHsdewZTpceRAOtAG/XxS9+L2O UITLfqacmXIoP2D6Yiuh+Bn631jH1nxHLY0K2nua76WxXnM2Yv9UnkUN7Ea4IXo8 z42Vvgdei24J/YjC/GM470B9mOPpIIgf+i+e7ezG95xZ6Vsi86z6uq9V7eSy+HB7 N3c4jTHQ0npu0hs/SUyGWSGQOcDz9ABIIUCmTFQEsCmTHGROq/GGNQNKb4dchTcM 9IJBmIl7gdiTEKMhK5E/hXxM6o2VBt7dWch9uEB4Xxcc5DEQnIZweyHPyD+tb8Fk vaNwiZD0t1LeWLyZBZ2j4RkUl9gzWHDiho3NtRH3HaS9EA/Rfrw0Phjlwh2L -----END CERTIFICATE-----Generated at Sat May 2 21:05:29 2026 by rpki-client