$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/AS59142.roa File: AS59142.roa (raw, json) Hash identifier: KwoQR9VVWs6A4uiy1jvSpqVLFMle2x5FPU9PfqeV9FE= Subject key identifier: 4E:5B:6F:E9:3E:1E:D6:24:A0:8B:AD:CA:18:CC:3E:C2:C8:EF:6F:77 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 5894A0C117EFD567827FB63892C460A2CC376110 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS59142.roa Signing time: Sat 02 May 2026 09:24:21 +0000 ROA not before: Sat 02 May 2026 09:19:21 +0000 ROA not after: Sat 01 May 2027 09:24:21 +0000 asID: 59142 IP address blocks: 160.25.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:94:a0:c1:17:ef:d5:67:82:7f:b6:38:92:c4:60:a2:cc:37:61:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 09:19:21 2026 GMT Not After : May 1 09:24:21 2027 GMT Subject: CN=4E5B6FE93E1ED624A08BADCA18CC3EC2C8EF6F77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:43:ae:8a:96:3b:39:6d:ec:d1:91:3a:19:4a: 8a:fc:96:6b:ad:80:32:e9:71:89:c6:51:39:90:c2: cd:44:ed:56:1b:9a:57:03:b2:27:de:a8:f9:4f:d1: 2c:d7:53:03:ff:e9:95:26:15:1b:cc:d5:ba:a8:7e: f1:d6:ca:54:27:3b:95:90:f4:ad:fd:7f:3c:d4:a1: 7c:31:7c:05:ea:0e:18:0a:68:59:71:88:24:c8:71: 38:5b:f5:f8:08:3c:b1:cb:12:d0:cb:43:b5:4e:f5: d8:ca:d1:f9:40:7f:2a:32:a1:d8:47:64:27:38:a0: cb:47:d1:2f:08:7e:8d:db:65:ac:0d:7a:32:bc:6b: b9:a2:78:68:80:cb:93:6d:95:21:1e:36:f0:df:86: 30:9c:b4:86:9e:59:02:3b:86:69:48:2d:31:24:5f: 34:97:25:18:56:c8:82:a2:c1:df:21:4d:86:90:48: 52:c5:06:01:85:c9:91:29:57:91:fa:ec:cb:4b:5a: 4e:e3:5a:a8:8a:2c:2d:85:10:06:9a:b4:83:37:45: ed:6c:c3:63:d4:5b:27:a1:0f:1f:6d:44:70:6a:f8: 07:b6:d3:a6:f6:31:0a:7d:30:01:8d:27:6e:ac:34: 25:bf:3c:f1:f7:22:50:49:1b:e1:93:da:4b:05:d6: 9e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5B:6F:E9:3E:1E:D6:24:A0:8B:AD:CA:18:CC:3E:C2:C8:EF:6F:77 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AS59142.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.212.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:9f:2b:b2:a6:8a:12:a7:9f:20:1f:7b:84:4a:d3:3a:14:29: 01:45:83:79:72:e9:ea:62:72:77:17:5c:23:a1:56:08:32:1c: af:f6:d6:5b:00:ca:14:0b:03:42:34:81:61:67:80:e2:2f:2b: 32:2e:97:18:de:f9:2b:78:61:db:6b:e6:29:fd:92:ff:20:d3: 68:f7:11:53:55:fa:04:b6:2d:3d:f6:fb:9b:77:f5:89:2d:c3: 69:fe:af:47:96:ee:02:36:1a:e2:ec:2b:57:8a:02:e6:80:d7: ba:44:a9:16:a1:7c:61:dc:a9:03:91:c8:e4:f3:3b:8f:b0:35: 8a:36:53:11:1d:66:ea:73:9c:4b:d6:1a:fc:73:68:8b:62:ef: 6c:92:8f:8d:c5:3a:13:ab:dc:34:fc:23:99:8e:9f:6c:3e:8f: e6:90:58:b9:3f:d3:6c:6d:d2:90:76:a5:0d:0a:3d:03:3a:6a: 8e:22:c6:8a:8f:d7:a2:ee:f4:98:8b:b4:07:45:71:5e:50:db: 15:0c:d9:c8:9e:3f:55:e5:67:7a:21:42:0b:e7:19:15:ff:b0: 27:6b:8f:ba:93:e0:b7:a9:02:34:8f:dd:20:2b:72:3c:9b:c8: 00:ee:99:5b:1f:70:72:ff:f3:8e:e1:7c:51:b9:a0:b2:f0:fc: 4d:3d:2d:1e -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUWJSgwRfv1WeCf7Y4ksRgosw3YRAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjA5MTkyMVoX DTI3MDUwMTA5MjQyMVowMzExMC8GA1UEAxMoNEU1QjZGRTkzRTFFRDYyNEEwOEJB RENBMThDQzNFQzJDOEVGNkY3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJDroqWOzlt7NGROhlKivyWa62AMulxicZROZDCzUTtVhuaVwOyJ96o+U/R LNdTA//plSYVG8zVuqh+8dbKVCc7lZD0rf1/PNShfDF8BeoOGApoWXGIJMhxOFv1 +Ag8scsS0MtDtU712MrR+UB/KjKh2EdkJzigy0fRLwh+jdtlrA16MrxruaJ4aIDL k22VIR428N+GMJy0hp5ZAjuGaUgtMSRfNJclGFbIgqLB3yFNhpBIUsUGAYXJkSlX kfrsy0taTuNaqIosLYUQBpq0gzdF7WzDY9RbJ6EPH21EcGr4B7bTpvYxCn0wAY0n bqw0Jb888fciUEkb4ZPaSwXWntcCAwEAAaOCAcswggHHMB0GA1UdDgQWBBROW2/p Ph7WJKCLrcoYzD7CyO9vdzAfBgNVHSMEGDAWgBR99DSVNEQa8Rpl3dNYj3TcWcLT YjAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzAvN0RGNDM0OTUzNDQ0MUFGMTFB NjVEREQzNTg4Rjc0REM1OUMyRDM2Mi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRG MjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvZmZRMGxUUkVHdkVhWmQzVFdJOTAz Rm5DMDJJLmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8wL0FTNTkxNDIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACgGdQwDQYJKoZIhvcNAQELBQADggEBAByfK7KmihKnnyAfe4RK0zoUKQFF g3ly6epicncXXCOhVggyHK/21lsAyhQLA0I0gWFngOIvKzIulxje+St4Ydtr5in9 kv8g02j3EVNV+gS2LT32+5t39Yktw2n+r0eW7gI2GuLsK1eKAuaA17pEqRahfGHc qQORyOTzO4+wNYo2UxEdZupznEvWGvxzaIti72ySj43FOhOr3DT8I5mOn2w+j+aQ WLk/02xt0pB2pQ0KPQM6ao4ixoqP16Lu9JiLtAdFcV5Q2xUM2cieP1XlZ3ohQgvn GRX/sCdrj7qT4LepAjSP3SArcjybyADumVsfcHL/847hfFG5oLLw/E09LR4= -----END CERTIFICATE-----Generated at Sat May 2 21:05:17 2026 by rpki-client