$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142317.roa File: AS142317.roa (raw, json) Hash identifier: eQjrKCBmTDUxwWELTAsm2m99B15AcKBCQcq4FXS8/6Q= Subject key identifier: 1B:AA:2A:3F:D0:FB:FE:20:CA:00:C7:B0:5A:E4:2E:87:2E:F4:FC:7A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 471B8D7E447CE54945CF73E7D5585C65401A104A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142317.roa Signing time: Sat 02 May 2026 08:35:07 +0000 ROA not before: Sat 02 May 2026 08:30:07 +0000 ROA not after: Sat 01 May 2027 08:35:07 +0000 asID: 142317 IP address blocks: 103.168.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1b:8d:7e:44:7c:e5:49:45:cf:73:e7:d5:58:5c:65:40:1a:10:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:07 2026 GMT Not After : May 1 08:35:07 2027 GMT Subject: CN=1BAA2A3FD0FBFE20CA00C7B05AE42E872EF4FC7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:b9:62:e9:ac:27:0e:e2:d5:47:98:3c:e7:d9: 5b:de:49:17:64:bc:2b:32:ce:44:c3:1e:a2:c4:f4: c5:cc:05:7b:24:77:2e:6a:5a:43:8f:02:25:2e:44: 67:09:6b:b0:9a:bc:4c:2f:4d:8b:5d:d8:73:d1:09: a2:94:d8:d7:2d:9c:09:bd:0a:df:1c:18:31:31:27: c5:61:c2:f8:59:7f:8f:4f:25:43:11:eb:3e:a1:ed: 4f:e2:e3:55:cc:60:f4:95:48:6d:a0:98:21:67:ed: cc:d8:9e:9a:95:b2:72:18:bf:0d:7e:cb:9b:d3:94: dd:7f:bf:14:9c:75:c4:58:5f:9f:4b:93:56:a3:81: 33:ba:b9:b1:0c:ce:83:c0:6b:03:ef:01:7b:fc:5e: 34:0b:ef:12:24:96:78:dc:36:54:34:04:69:a2:06: 8e:7a:03:41:64:85:d6:ee:34:4e:61:79:50:86:bf: 36:e7:92:4f:b6:c7:e1:05:f0:1d:94:5f:db:49:03: 07:1d:2a:6e:3a:e7:15:26:6a:3d:fb:99:79:ac:ed: 0a:ae:ea:11:ee:36:f4:29:95:53:a0:95:0c:fe:63: 98:d1:03:2d:64:52:b1:26:b5:9e:59:a1:f4:c2:94: c0:df:32:8c:52:46:84:20:e6:34:dd:d4:62:cc:35: 0c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AA:2A:3F:D0:FB:FE:20:CA:00:C7:B0:5A:E4:2E:87:2E:F4:FC:7A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142317.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.158.0/23 Signature Algorithm: sha256WithRSAEncryption 77:fa:cb:31:1f:27:7f:6b:0f:91:3d:66:37:3f:4d:6f:52:14: 5a:e2:17:e1:a3:71:8d:21:3d:33:93:90:f2:36:d3:93:db:13: d3:b5:7e:15:14:90:13:98:be:b2:e6:6a:a1:6d:24:fa:dd:73: 5a:78:87:85:74:88:c7:b6:fd:50:14:e7:30:a9:48:d6:c9:bb: 88:99:35:4f:a3:d9:cf:ac:36:bc:d5:2c:95:da:e0:26:ab:2d: 9c:fc:07:48:b6:38:f0:5d:69:4f:ba:ff:ef:42:4f:cf:dc:6c: d0:f1:1a:e0:35:91:d2:c3:7e:90:06:b1:45:63:2a:6d:90:0a: 61:a3:96:5d:fe:a8:37:04:18:24:51:97:ed:11:ec:b3:84:38: 45:0b:87:c7:54:1e:68:81:e1:d0:0d:2f:67:c3:91:f2:61:4d: 57:d9:ef:2c:87:6a:b5:ed:da:3b:e3:5c:a0:1c:79:bd:4f:33: af:18:1d:5f:d5:3a:7d:b9:f9:cd:29:a9:62:d0:4a:48:83:06: 9b:b4:e2:3f:68:1d:78:c5:97:d2:7e:eb:07:a7:0e:a8:b5:8f: 9a:62:ab:ca:f5:81:04:4e:aa:74:8b:44:8e:b7:28:e6:f7:53: a4:1e:06:f4:2f:2f:2c:e2:02:0e:34:63:49:d4:a1:73:04:7c: 42:d7:fd:ee -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIURxuNfkR85UlFz3Pn1VhcZUAaEEowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAwN1oX DTI3MDUwMTA4MzUwN1owMzExMC8GA1UEAxMoMUJBQTJBM0ZEMEZCRkUyMENBMDBD N0IwNUFFNDJFODcyRUY0RkM3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIi5YumsJw7i1UeYPOfZW95JF2S8KzLORMMeosT0xcwFeyR3LmpaQ48CJS5E ZwlrsJq8TC9Ni13Yc9EJopTY1y2cCb0K3xwYMTEnxWHC+Fl/j08lQxHrPqHtT+Lj Vcxg9JVIbaCYIWftzNiempWychi/DX7Lm9OU3X+/FJx1xFhfn0uTVqOBM7q5sQzO g8BrA+8Be/xeNAvvEiSWeNw2VDQEaaIGjnoDQWSF1u40TmF5UIa/NueST7bH4QXw HZRf20kDBx0qbjrnFSZqPfuZeaztCq7qEe429CmVU6CVDP5jmNEDLWRSsSa1nlmh 9MKUwN8yjFJGhCDmNN3UYsw1DP8CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQbqio/ 0Pv+IMoAx7Ba5C6HLvT8ejAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzE3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6ieMA0GCSqGSIb3DQEBCwUAA4IBAQB3+ssxHyd/aw+RPWY3P01vUhRa 4hfho3GNIT0zk5DyNtOT2xPTtX4VFJATmL6y5mqhbST63XNaeIeFdIjHtv1QFOcw qUjWybuImTVPo9nPrDa81SyV2uAmqy2c/AdItjjwXWlPuv/vQk/P3GzQ8RrgNZHS w36QBrFFYyptkApho5Zd/qg3BBgkUZftEeyzhDhFC4fHVB5ogeHQDS9nw5HyYU1X 2e8sh2q17do741ygHHm9TzOvGB1f1Tp9ufnNKali0EpIgwabtOI/aB14xZfSfusH pw6otY+aYqvK9YEETqp0i0SOtyjm91OkHgb0Ly8s4gIONGNJ1KFzBHxC1/3u -----END CERTIFICATE-----Generated at Sun May 3 00:42:21 2026 by rpki-client