$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS142319.roa File: AS142319.roa (raw, json) Hash identifier: 9BzubZmiXrIwNbbX2tR3flTJtG669NequRZT2/XZgwk= Subject key identifier: E3:93:7F:25:E5:E0:AE:C5:85:39:BF:F3:24:EB:72:F4:43:2B:E2:02 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 36D3F54B865FCD430D840BD5FF701FFE34B39F9C Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142319.roa Signing time: Sat 02 May 2026 09:23:23 +0000 ROA not before: Sat 02 May 2026 09:18:23 +0000 ROA not after: Sat 01 May 2027 09:23:23 +0000 asID: 142319 IP address blocks: 204.51.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:d3:f5:4b:86:5f:cd:43:0d:84:0b:d5:ff:70:1f:fe:34:b3:9f:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:18:23 2026 GMT Not After : May 1 09:23:23 2027 GMT Subject: CN=E3937F25E5E0AEC58539BFF324EB72F4432BE202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d8:43:e3:0a:51:69:9d:3c:27:17:30:39:37: 29:5c:b4:30:a0:62:21:90:07:db:8e:5e:a3:b6:bc: 77:08:c3:aa:23:98:a6:1b:3b:75:5b:da:3d:1e:0d: 5f:3e:fa:45:ff:be:8f:0e:59:df:63:59:72:28:ef: e1:f7:6f:47:c5:e5:12:ee:e7:34:da:f4:c4:91:f9: af:d4:14:cc:94:f2:e5:b2:aa:a8:29:46:63:58:b0: b2:23:48:de:ef:be:4f:07:8f:94:39:68:47:30:83: 0c:9e:f6:2f:cb:5b:1c:7b:1a:63:7d:71:99:4c:8c: 7d:86:7c:2a:c3:9d:40:85:ad:08:38:b3:8b:f5:e1: 17:7d:cf:f2:42:03:ad:d1:7f:fb:8e:49:d2:24:e6: ba:83:bb:48:86:59:d2:62:d7:33:2c:34:cd:90:6b: 78:84:b5:a1:7d:4e:a5:00:3b:7a:8b:c3:3c:ce:7b: ab:f5:af:92:d7:88:7b:f2:5d:fb:06:fa:ea:f9:65: bb:b2:e7:e7:05:a4:aa:9a:d4:e5:e9:7d:b6:2f:72: ff:45:87:3d:d2:3d:62:d5:8a:b9:a3:e3:54:7d:11: a1:2f:05:6e:80:59:a3:57:a7:69:ab:7e:a0:13:11: 03:0b:4a:d1:a8:9e:9d:27:f7:e0:0e:de:81:eb:26: 1e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:93:7F:25:E5:E0:AE:C5:85:39:BF:F3:24:EB:72:F4:43:2B:E2:02 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142319.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.51.0.0/18 Signature Algorithm: sha256WithRSAEncryption ab:7a:d9:d4:85:ac:ac:91:a2:cc:a5:ff:56:9f:79:32:a5:1c: 23:82:e3:df:44:df:6f:f4:1e:c9:89:b8:78:71:e7:d7:1d:a1: 7c:97:51:3a:db:e4:a0:69:c6:ae:5d:57:1e:ac:12:22:68:16: 04:ff:90:3e:09:1c:17:63:bb:02:3b:11:57:60:96:7b:28:f7: 4c:3f:a5:c7:80:fb:04:6b:90:74:0f:dc:c2:d2:c5:b7:36:e1: eb:47:6f:54:1a:d1:56:95:de:87:ec:b6:16:40:fb:ba:93:0f: 0f:02:0c:cf:48:5d:f6:ae:0e:3f:9b:2c:47:36:3d:c4:fc:a2: ce:cd:53:92:94:14:14:db:48:d2:2b:a1:1b:5a:f2:11:44:5a: a0:e3:e0:78:9f:c0:ad:e1:65:0d:02:b0:40:f1:19:51:36:e9: 26:71:7c:f0:c4:60:c8:e6:09:d4:9b:da:ba:4e:e6:69:4f:3b: 7b:dd:b9:28:e9:ac:c3:c1:c9:df:7d:91:d4:f0:20:c3:50:31: 25:33:7f:0c:5d:c9:f1:b7:6b:0a:99:20:8b:8e:ab:fc:65:bb: b5:34:d5:9f:1a:25:4b:66:80:a7:1d:f0:86:71:c7:6b:a8:6c: 21:a6:28:e8:36:76:bb:5f:51:0e:62:ff:b8:e6:da:b4:cc:10: 5d:fc:7e:f3 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUNtP1S4ZfzUMNhAvV/3Af/jSzn5wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTgyM1oX DTI3MDUwMTA5MjMyM1owMzExMC8GA1UEAxMoRTM5MzdGMjVFNUUwQUVDNTg1MzlC RkYzMjRFQjcyRjQ0MzJCRTIwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMrYQ+MKUWmdPCcXMDk3KVy0MKBiIZAH245eo7a8dwjDqiOYphs7dVvaPR4N Xz76Rf++jw5Z32NZcijv4fdvR8XlEu7nNNr0xJH5r9QUzJTy5bKqqClGY1iwsiNI 3u++TwePlDloRzCDDJ72L8tbHHsaY31xmUyMfYZ8KsOdQIWtCDizi/XhF33P8kID rdF/+45J0iTmuoO7SIZZ0mLXMyw0zZBreIS1oX1OpQA7eovDPM57q/WvkteIe/Jd +wb66vllu7Ln5wWkqprU5el9ti9y/0WHPdI9YtWKuaPjVH0RoS8FboBZo1enaat+ oBMRAwtK0aienSf34A7egesmHjECAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTjk38l 5eCuxYU5v/Mk63L0QyviAjAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQyMzE5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQGzDMAMA0GCSqGSIb3DQEBCwUAA4IBAQCretnUhayskaLMpf9Wn3kypRwj guPfRN9v9B7Jibh4cefXHaF8l1E62+SgacauXVcerBIiaBYE/5A+CRwXY7sCOxFX YJZ7KPdMP6XHgPsEa5B0D9zC0sW3NuHrR29UGtFWld6H7LYWQPu6kw8PAgzPSF32 rg4/myxHNj3E/KLOzVOSlBQU20jSK6EbWvIRRFqg4+B4n8Ct4WUNArBA8RlRNukm cXzwxGDI5gnUm9q6TuZpTzt73bko6azDwcnffZHU8CDDUDElM38MXcnxt2sKmSCL jqv8Zbu1NNWfGiVLZoCnHfCGccdrqGwhpijoNna7X1EOYv+45tq0zBBd/H7z -----END CERTIFICATE-----Generated at Sat May 2 21:05:39 2026 by rpki-client