$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142318.roa File: AS142318.roa (raw, json) Hash identifier: CtmYZWWi25/g+8Gu0aJHauHNBV4f6uWvdWBWKyX5F+w= Subject key identifier: 51:73:AC:DC:41:7F:73:B6:D7:FE:54:7C:E3:1B:A1:7E:65:96:92:09 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 580EA8DF1773E00491F5EB573064DB903389B442 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142318.roa Signing time: Sat 02 May 2026 09:20:09 +0000 ROA not before: Sat 02 May 2026 09:15:09 +0000 ROA not after: Sat 01 May 2027 09:20:09 +0000 asID: 142318 IP address blocks: 103.168.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:0e:a8:df:17:73:e0:04:91:f5:eb:57:30:64:db:90:33:89:b4:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:09 2026 GMT Not After : May 1 09:20:09 2027 GMT Subject: CN=5173ACDC417F73B6D7FE547CE31BA17E65969209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:0f:f6:79:ea:64:26:5b:ef:11:ff:c3:af: 43:3a:c7:fd:49:cf:68:5c:d6:64:d2:98:11:ac:34: 82:0d:75:7f:8c:f5:7d:5a:65:5d:ba:88:55:92:f9: 4d:b6:d1:72:83:5f:d2:a5:dd:37:35:33:59:81:42: a2:75:65:d4:86:03:c7:0a:ca:47:e6:ae:28:7e:31: 6c:93:fc:c5:bb:27:c5:e5:89:1a:62:bd:68:f7:af: 78:01:0e:6f:bf:0f:89:35:a8:82:32:e1:c8:0e:a4: 5a:63:71:aa:dd:37:26:d7:5d:50:1a:40:40:b9:b4: b6:8b:59:0a:8a:b8:0a:ad:b6:27:c6:3c:d6:74:18: 55:14:57:41:b0:a9:0d:30:fa:96:d4:19:5d:28:68: 2a:f6:dc:69:7b:11:10:a6:f5:36:c1:50:fa:cb:9d: 10:2d:b1:93:07:7a:3e:5c:f6:75:b9:a6:c4:00:72: c3:90:da:4d:30:71:d8:ab:89:af:4d:5f:50:6e:33: 7f:4d:2c:c6:f1:8e:2d:e3:4d:34:ac:60:20:d1:d6: ba:3b:f6:52:3f:2a:f7:0b:df:9b:03:9c:08:d2:68: 3e:33:b0:4b:b2:09:00:b0:c8:10:e7:43:24:dc:22: e9:34:13:c7:0b:f2:75:fd:53:f1:2a:a7:f4:b7:07: 22:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:73:AC:DC:41:7F:73:B6:D7:FE:54:7C:E3:1B:A1:7E:65:96:92:09 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142318.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.166.0/24 Signature Algorithm: sha256WithRSAEncryption 00:29:a1:54:03:c3:51:23:fb:9f:f0:c1:5b:02:26:fc:3d:0b: 43:77:1a:e0:02:b4:32:20:de:5c:f3:8b:11:72:16:7e:f9:5b: fb:d8:fc:fc:6c:cc:17:2c:dc:b1:a5:3f:85:2a:07:6f:f5:f4: f2:a3:31:8a:4c:2b:dd:24:1f:f4:83:28:87:44:19:d5:7f:b0: 61:6e:a7:9b:a1:51:ba:c2:dd:9b:1e:97:e3:66:71:a8:b1:f6: 0b:9a:cc:81:17:c8:a3:4b:2b:72:bc:cd:f9:54:72:a5:9c:88: 07:1f:91:68:8f:96:c3:09:c5:0f:f2:a9:9e:a2:e3:9c:79:90: ce:67:bf:be:83:f8:5a:85:90:20:a5:16:ab:9c:4b:84:95:c8: 96:8e:ae:b5:67:8e:79:d6:ba:9f:0e:1c:b9:92:88:f2:e4:0b: 04:46:29:df:05:4e:29:88:6b:a2:da:7c:a1:f4:9e:09:28:b0: 4e:a1:43:c3:55:a4:f2:10:94:68:2a:cc:01:6f:1a:6f:8b:2c: 80:5d:89:0e:a3:e6:1f:44:82:5e:f6:af:48:b7:64:14:0e:f6: 1b:6c:f6:98:37:c7:23:8a:a0:2e:ce:f3:7e:63:7c:f6:d9:68: e5:65:d1:3c:2e:79:3c:cc:6d:88:63:31:69:e4:3f:43:05:03: 27:71:a5:07 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUWA6o3xdz4ASR9etXMGTbkDOJtEIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUwOVoX DTI3MDUwMTA5MjAwOVowMzExMC8GA1UEAxMoNTE3M0FDREM0MTdGNzNCNkQ3RkU1 NDdDRTMxQkExN0U2NTk2OTIwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEZD/Z56mQmW+8R/8OvQzrH/UnPaFzWZNKYEaw0gg11f4z1fVplXbqIVZL5 TbbRcoNf0qXdNzUzWYFConVl1IYDxwrKR+auKH4xbJP8xbsnxeWJGmK9aPeveAEO b78PiTWogjLhyA6kWmNxqt03JtddUBpAQLm0totZCoq4Cq22J8Y81nQYVRRXQbCp DTD6ltQZXShoKvbcaXsREKb1NsFQ+sudEC2xkwd6Plz2dbmmxAByw5DaTTBx2KuJ r01fUG4zf00sxvGOLeNNNKxgINHWujv2Uj8q9wvfmwOcCNJoPjOwS7IJALDIEOdD JNwi6TQTxwvydf1T8Sqn9LcHIikCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBRRc6zc QX9zttf+VHzjG6F+ZZaSCTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzE4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6imMA0GCSqGSIb3DQEBCwUAA4IBAQAAKaFUA8NRI/uf8MFbAib8PQtD dxrgArQyIN5c84sRchZ++Vv72Pz8bMwXLNyxpT+FKgdv9fTyozGKTCvdJB/0gyiH RBnVf7BhbqeboVG6wt2bHpfjZnGosfYLmsyBF8ijSytyvM35VHKlnIgHH5Foj5bD CcUP8qmeouOceZDOZ7++g/hahZAgpRarnEuElciWjq61Z4551rqfDhy5kojy5AsE RinfBU4piGui2nyh9J4JKLBOoUPDVaTyEJRoKswBbxpviyyAXYkOo+YfRIJe9q9I t2QUDvYbbPaYN8cjiqAuzvN+Y3z22WjlZdE8Lnk8zG2IYzFp5D9DBQMncaUH -----END CERTIFICATE-----Generated at Sun May 3 00:42:26 2026 by rpki-client