$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS142221.roa File: AS142221.roa (raw, json) Hash identifier: LMCB6lZLYhYwh1BLuhj44q++Cwmi0xwELRlOkJ08CI8= Subject key identifier: AB:73:FB:D6:BF:2E:1F:FA:77:5F:2E:E4:F8:B4:02:4E:7A:74:93:9D Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 16DCE97B1DC95D2A085684EEBAFA5A9A1E6DF221 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142221.roa Signing time: Sat 02 May 2026 09:25:14 +0000 ROA not before: Sat 02 May 2026 09:20:14 +0000 ROA not after: Sat 01 May 2027 09:25:14 +0000 asID: 142221 IP address blocks: 192.103.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:dc:e9:7b:1d:c9:5d:2a:08:56:84:ee:ba:fa:5a:9a:1e:6d:f2:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:20:14 2026 GMT Not After : May 1 09:25:14 2027 GMT Subject: CN=AB73FBD6BF2E1FFA775F2EE4F8B4024E7A74939D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:72:4f:89:f4:dc:4b:16:3f:bb:9a:6d:70: 61:f5:81:53:dd:a6:a0:eb:a1:6e:bd:3e:42:d6:49: cc:f8:ac:43:16:52:0e:09:41:10:f0:86:5f:96:bf: 3f:52:fa:10:67:5b:10:e4:f3:b4:4f:21:9a:e2:5b: 38:c2:4e:3a:d1:da:df:77:ad:63:32:9e:fd:58:66: 2d:cf:d0:57:52:cf:b7:6b:f1:6e:93:5b:b0:47:a5: 76:6f:41:06:c9:ce:ef:a7:48:3e:3e:32:e2:32:bb: 24:d1:92:3a:30:a0:6d:e1:11:55:de:19:38:94:c2: 70:67:58:dc:04:40:d0:f7:93:d4:22:1e:8b:0d:7a: 64:78:a9:91:02:88:51:67:59:6f:88:17:4c:c9:e3: 46:0f:83:3e:a9:0b:c2:10:df:9a:99:4d:0e:83:53: 83:05:aa:bf:47:a2:e7:c3:a6:80:67:7c:f9:c0:d8: 7a:bd:df:7f:24:d7:28:53:15:c0:5b:cb:4c:2d:c5: 5e:ac:40:60:78:de:7a:d0:48:4c:9f:21:10:dc:6b: 86:83:23:92:8a:dc:61:61:5f:7e:8e:b6:ba:61:c2: 6f:24:be:d7:b5:9b:fe:75:66:44:27:e9:22:ec:8d: 15:7a:a3:10:91:12:ce:ad:9d:4c:e2:9f:35:01:41: e3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:73:FB:D6:BF:2E:1F:FA:77:5F:2E:E4:F8:B4:02:4E:7A:74:93:9D X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142221.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.103.46.0/24 Signature Algorithm: sha256WithRSAEncryption 50:c4:66:d4:ab:2b:b0:8f:c4:76:3d:8b:72:d7:8f:de:01:b3: a1:ce:3e:2e:e2:f9:67:41:ce:cd:c1:c2:72:2c:a0:21:a0:dc: 54:24:40:a3:0f:7e:98:f7:b7:6b:01:c0:99:59:c6:cb:01:f6: 47:5d:2c:d1:fe:2b:4b:b7:fa:a9:b4:ad:01:10:37:2c:f5:57: 74:a1:4f:7b:89:e3:7b:f2:73:de:93:ef:95:ca:ff:f0:98:0c: 58:4b:3d:57:f4:cd:62:39:93:61:31:2d:a5:cb:5a:c0:1d:8c: 08:43:63:78:42:f9:ca:ac:4c:06:9b:e4:48:3f:90:09:49:a6: 75:ff:1b:f0:c7:ec:ee:56:83:07:57:f7:98:8a:8e:2c:93:77: ff:aa:c2:20:e5:b4:59:5a:4b:4d:c8:67:c5:7e:ef:61:6a:09: b4:d6:a6:69:06:04:5d:26:53:84:ed:d5:02:33:60:c2:c6:34: c6:51:4e:48:0b:39:00:6c:2c:ea:68:4c:9c:58:f6:6a:04:6c: cd:a3:0d:a6:fc:5e:64:71:19:f5:e0:34:90:d0:f2:1d:ed:39: 4b:39:af:77:22:ff:bd:2d:67:5b:29:7b:18:77:19:d1:52:22: b5:28:2a:3b:66:96:af:6f:69:d8:ce:01:58:e7:74:93:05:23: 1b:35:56:f5 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUFtzpex3JXSoIVoTuuvpamh5t8iEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MjAxNFoX DTI3MDUwMTA5MjUxNFowMzExMC8GA1UEAxMoQUI3M0ZCRDZCRjJFMUZGQTc3NUYy RUU0RjhCNDAyNEU3QTc0OTM5RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUCck+J9NxLFj+7mm1wYfWBU92moOuhbr0+QtZJzPisQxZSDglBEPCGX5a/ P1L6EGdbEOTztE8hmuJbOMJOOtHa33etYzKe/VhmLc/QV1LPt2vxbpNbsEeldm9B BsnO76dIPj4y4jK7JNGSOjCgbeERVd4ZOJTCcGdY3ARA0PeT1CIeiw16ZHipkQKI UWdZb4gXTMnjRg+DPqkLwhDfmplNDoNTgwWqv0ei58OmgGd8+cDYer3ffyTXKFMV wFvLTC3FXqxAYHjeetBITJ8hENxrhoMjkorcYWFffo62umHCbyS+17Wb/nVmRCfp IuyNFXqjEJESzq2dTOKfNQFB48MCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSrc/vW vy4f+ndfLuT4tAJOenSTnTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQyMjIxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwGcuMA0GCSqGSIb3DQEBCwUAA4IBAQBQxGbUqyuwj8R2PYty14/eAbOh zj4u4vlnQc7NwcJyLKAhoNxUJECjD36Y97drAcCZWcbLAfZHXSzR/itLt/qptK0B EDcs9Vd0oU97ieN78nPek++Vyv/wmAxYSz1X9M1iOZNhMS2ly1rAHYwIQ2N4QvnK rEwGm+RIP5AJSaZ1/xvwx+zuVoMHV/eYio4sk3f/qsIg5bRZWktNyGfFfu9hagm0 1qZpBgRdJlOE7dUCM2DCxjTGUU5ICzkAbCzqaEycWPZqBGzNow2m/F5kcRn14DSQ 0PId7TlLOa93Iv+9LWdbKXsYdxnRUiK1KCo7Zpavb2nYzgFY53STBSMbNVb1 -----END CERTIFICATE-----Generated at Sat May 2 21:05:38 2026 by rpki-client