$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS142387.roa File: AS142387.roa (raw, json) Hash identifier: Xfk1fNzeS9iWhhc5ZTwBrSRIOD6LNB0xubHiC6wvd2Y= Subject key identifier: 93:45:11:FB:82:58:50:74:78:57:8C:35:A8:BD:F2:18:30:99:1D:71 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 30243C7EB49208E5A233D8A881F6937D302FE4C8 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142387.roa Signing time: Sat 02 May 2026 09:22:50 +0000 ROA not before: Sat 02 May 2026 09:17:50 +0000 ROA not after: Sat 01 May 2027 09:22:50 +0000 asID: 142387 IP address blocks: 216.243.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:24:3c:7e:b4:92:08:e5:a2:33:d8:a8:81:f6:93:7d:30:2f:e4:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:17:50 2026 GMT Not After : May 1 09:22:50 2027 GMT Subject: CN=934511FB8258507478578C35A8BDF21830991D71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:7b:bf:d7:ea:87:9e:57:df:c9:fb:29:22: f7:68:0e:04:ae:a7:c1:5d:a2:dd:26:91:7d:c7:17: 93:2d:91:1d:20:2a:15:7a:e1:dc:47:30:ee:80:39: 2f:9a:9f:29:0c:15:d4:27:1a:a9:2b:ed:23:13:ea: 8b:74:ec:7f:a3:ed:b5:46:84:0b:ea:62:b1:0d:9c: 1b:ae:68:c7:30:9b:41:50:d7:ad:50:c7:96:8f:79: 38:ce:a5:31:83:e9:68:fa:9e:56:89:74:f5:e4:10: 04:f4:4d:60:cd:ba:50:68:66:e8:53:78:4b:10:dd: f2:f3:1e:fc:68:f0:86:9d:50:eb:38:7a:30:17:6e: c6:fe:26:75:39:68:09:ae:c8:af:6a:9b:af:35:10: e4:e3:71:e4:a3:bc:2f:11:6a:06:cc:ba:59:d9:27: 48:39:07:6a:ca:af:4b:a2:01:c5:f3:f2:8a:7a:aa: f7:b8:b1:c6:5b:53:f9:7f:0b:5a:f5:4c:d6:86:cc: f0:ba:8e:2c:bc:fa:5e:df:64:f0:15:74:ff:fe:c7: ea:bd:65:56:65:22:2e:87:56:81:76:a8:40:48:08: 0a:17:0d:04:78:ef:27:f9:f7:b0:97:03:96:4a:02: 20:10:1d:c5:d0:eb:ce:45:c8:db:1d:18:ac:c0:a7: 48:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:45:11:FB:82:58:50:74:78:57:8C:35:A8:BD:F2:18:30:99:1D:71 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS142387.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.243.112.0/20 Signature Algorithm: sha256WithRSAEncryption 24:3a:76:e0:98:7e:ad:67:fa:77:e4:e3:8e:8c:ce:71:58:b0: 2b:98:2f:b1:03:3d:31:dc:ee:ce:b9:23:16:79:31:12:d4:5b: 6b:bb:57:06:45:24:ec:d9:7b:de:4d:d2:02:1b:8c:0a:f3:a2: 0a:29:bc:6e:13:6b:92:6b:d8:9d:c2:53:83:4d:7c:43:55:8c: 79:73:b2:35:0b:d2:48:92:7c:36:08:d7:f8:ac:e0:b8:f4:a1: f2:89:93:23:90:75:bd:c8:37:83:d1:35:2f:91:d9:9a:22:47: 35:bb:4a:2b:41:ad:09:69:5a:ab:c4:7c:7b:21:b6:1c:8e:d2: d0:48:1e:3e:c6:41:8b:3f:c7:10:7a:52:28:9d:f6:90:49:1c: 00:44:15:f0:a8:58:2b:32:92:2a:c5:b3:f0:90:85:ba:2f:60: 48:5d:a8:c4:5b:f7:95:d5:00:6b:a2:12:9c:18:43:6c:79:2b: 7a:49:5a:43:41:ee:13:d2:97:5c:46:a2:ae:db:94:3a:f0:db: 5b:8f:a8:83:a0:ab:98:3f:46:95:5a:dc:c2:96:9a:fe:84:ae: 27:9f:e9:f1:4f:ee:19:09:d5:5f:ab:26:f0:29:b0:98:68:33: 97:d1:5e:09:04:86:a8:0e:91:14:c4:f4:17:d4:24:2d:65:50: c0:6d:40:45 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUMCQ8frSSCOWiM9iogfaTfTAv5MgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTc1MFoX DTI3MDUwMTA5MjI1MFowMzExMC8GA1UEAxMoOTM0NTExRkI4MjU4NTA3NDc4NTc4 QzM1QThCREYyMTgzMDk5MUQ3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAce7/X6oeeV9/J+yki92gOBK6nwV2i3SaRfccXky2RHSAqFXrh3Ecw7oA5 L5qfKQwV1CcaqSvtIxPqi3Tsf6PttUaEC+pisQ2cG65oxzCbQVDXrVDHlo95OM6l MYPpaPqeVol09eQQBPRNYM26UGhm6FN4SxDd8vMe/Gjwhp1Q6zh6MBduxv4mdTlo Ca7Ir2qbrzUQ5ONx5KO8LxFqBsy6WdknSDkHasqvS6IBxfPyinqq97ixxltT+X8L WvVM1obM8LqOLLz6Xt9k8BV0//7H6r1lVmUiLodWgXaoQEgIChcNBHjvJ/n3sJcD lkoCIBAdxdDrzkXI2x0YrMCnSKkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBSTRRH7 glhQdHhXjDWovfIYMJkdcTAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTMTQyMzg3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQE2PNwMA0GCSqGSIb3DQEBCwUAA4IBAQAkOnbgmH6tZ/p35OOOjM5xWLAr mC+xAz0x3O7OuSMWeTES1Ftru1cGRSTs2XveTdICG4wK86IKKbxuE2uSa9idwlOD TXxDVYx5c7I1C9JIknw2CNf4rOC49KHyiZMjkHW9yDeD0TUvkdmaIkc1u0orQa0J aVqrxHx7IbYcjtLQSB4+xkGLP8cQelIonfaQSRwARBXwqFgrMpIqxbPwkIW6L2BI XajEW/eV1QBrohKcGENseSt6SVpDQe4T0pdcRqKu25Q68Ntbj6iDoKuYP0aVWtzC lpr+hK4nn+nxT+4ZCdVfqybwKbCYaDOX0V4JBIaoDpEUxPQX1CQtZVDAbUBF -----END CERTIFICATE-----Generated at Sat May 2 21:05:16 2026 by rpki-client