$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142196.roa File: AS142196.roa (raw, json) Hash identifier: NwifY+V+sBMQVHZFFlpP3TlabfWxMqGtCmIL7aMGKeM= Subject key identifier: 01:99:31:F5:C8:F8:87:9D:DE:5A:E3:98:56:EB:06:9F:93:9F:51:B5 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 73A0B9292901D022F3D7484CCAABF26672BAF26E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142196.roa Signing time: Sat 02 May 2026 09:27:06 +0000 ROA not before: Sat 02 May 2026 09:22:06 +0000 ROA not after: Sat 01 May 2027 09:27:06 +0000 asID: 142196 IP address blocks: 2001:df6:7c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a0:b9:29:29:01:d0:22:f3:d7:48:4c:ca:ab:f2:66:72:ba:f2:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:06 2026 GMT Not After : May 1 09:27:06 2027 GMT Subject: CN=019931F5C8F8879DDE5AE39856EB069F939F51B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:01:af:94:dd:e7:b6:86:dd:89:c9:07:39:60: 35:2b:88:17:cb:45:ac:e2:e7:21:c4:d5:08:58:6d: 75:c6:0c:0f:ee:95:15:e8:fb:59:d8:c2:99:06:f9: ea:06:58:a3:58:2f:26:07:10:84:6b:9b:9d:23:de: e6:e1:91:31:ee:dd:c6:d8:4a:08:15:c9:49:97:80: e5:9d:67:53:c1:35:dd:ee:6f:03:88:4b:26:b2:13: c8:72:12:62:f5:4a:d3:71:01:ae:b5:ea:06:f5:ba: 6f:22:26:27:23:15:07:17:22:d5:5f:80:32:a3:35: b6:40:9f:34:bf:75:e9:92:68:29:40:6e:bc:b7:11: cc:11:d1:d0:83:39:d5:32:1a:76:b8:99:e2:41:d4: a9:3c:98:c3:fa:4b:3d:f2:2b:83:b5:6d:0a:d8:29: 46:9b:93:67:e4:d4:24:a5:d5:1b:b0:d3:a3:05:56: be:7e:7f:03:0e:e4:ed:22:74:a6:32:6d:81:f1:af: e2:ff:ef:34:52:fa:64:87:ce:fc:86:3f:a3:1f:89: f3:de:75:15:08:5b:ad:2d:6a:58:67:89:74:21:4e: 13:4e:0f:25:08:08:18:1d:bd:d4:5b:9e:81:54:05: 89:7c:02:b0:0d:6f:10:09:8f:16:50:27:09:64:1d: 83:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:99:31:F5:C8:F8:87:9D:DE:5A:E3:98:56:EB:06:9F:93:9F:51:B5 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142196.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:7c40::/48 Signature Algorithm: sha256WithRSAEncryption 6e:64:d6:a5:78:9a:c1:77:77:06:13:d5:0f:20:54:8e:97:16: e6:d6:23:7c:92:62:65:6e:9c:00:51:ba:cc:36:ff:18:35:52: ac:5b:52:26:cb:14:c5:32:22:32:dc:8c:49:45:4d:5f:10:7f: 3d:f3:69:55:76:ee:95:60:32:90:ef:16:31:a8:2b:a0:85:45: 19:6c:49:d6:e1:bf:8e:3d:3c:57:c5:b3:f4:d0:3e:f3:5c:b4: 3f:24:f2:ba:43:1f:5b:60:29:45:da:15:1f:40:4d:00:fa:7b: c0:4c:20:42:d8:5d:7a:0b:6e:50:92:0c:c0:e0:39:70:57:13: c1:48:0f:02:70:75:9d:0e:51:d5:5f:36:0a:8c:8f:03:7e:69: 07:c4:4b:e5:ce:be:aa:2e:ec:d1:22:e1:73:2e:75:79:7a:0b: d4:a5:05:c0:02:b0:4d:9b:c0:27:5a:60:bc:96:df:d5:45:30: 47:f7:e8:69:d1:02:43:4d:5c:da:ff:f2:ed:0b:bf:c4:14:b6: 03:ea:08:fb:e2:e9:e4:0a:12:75:29:20:79:16:ad:a7:22:5e: 10:8a:74:97:aa:73:1b:9c:70:bc:d1:60:ef:10:49:a0:bd:ac: 62:84:14:c7:38:af:57:f6:7f:ed:c5:2a:95:82:2d:aa:bf:d2: cc:19:4d:b9 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUc6C5KSkB0CLz10hMyqvyZnK68m4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIwNloX DTI3MDUwMTA5MjcwNlowMzExMC8GA1UEAxMoMDE5OTMxRjVDOEY4ODc5RERFNUFF Mzk4NTZFQjA2OUY5MzlGNTFCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoBr5Td57aG3YnJBzlgNSuIF8tFrOLnIcTVCFhtdcYMD+6VFej7WdjCmQb5 6gZYo1gvJgcQhGubnSPe5uGRMe7dxthKCBXJSZeA5Z1nU8E13e5vA4hLJrITyHIS YvVK03EBrrXqBvW6byImJyMVBxci1V+AMqM1tkCfNL916ZJoKUBuvLcRzBHR0IM5 1TIadriZ4kHUqTyYw/pLPfIrg7VtCtgpRpuTZ+TUJKXVG7DTowVWvn5/Aw7k7SJ0 pjJtgfGv4v/vNFL6ZIfO/IY/ox+J8951FQhbrS1qWGeJdCFOE04PJQgIGB291Fue gVQFiXwCsA1vEAmPFlAnCWQdg7UCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQBmTH1 yPiHnd5a45hW6wafk59RtTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMTk2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9nxAMA0GCSqGSIb3DQEBCwUAA4IBAQBuZNaleJrBd3cGE9UPIFSO lxbm1iN8kmJlbpwAUbrMNv8YNVKsW1ImyxTFMiIy3IxJRU1fEH8982lVdu6VYDKQ 7xYxqCughUUZbEnW4b+OPTxXxbP00D7zXLQ/JPK6Qx9bYClF2hUfQE0A+nvATCBC 2F16C25QkgzA4DlwVxPBSA8CcHWdDlHVXzYKjI8DfmkHxEvlzr6qLuzRIuFzLnV5 egvUpQXAArBNm8AnWmC8lt/VRTBH9+hp0QJDTVza//LtC7/EFLYD6gj74unkChJ1 KSB5Fq2nIl4QinSXqnMbnHC80WDvEEmgvaxihBTHOK9X9n/txSqVgi2qv9LMGU25 -----END CERTIFICATE-----Generated at Sun May 3 00:39:44 2026 by rpki-client