$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142330.roa File: AS142330.roa (raw, json) Hash identifier: pNVfTWIQOdVTZxHVWYY2LR+3JQKXlE4PfYwHNbnJyZc= Subject key identifier: 5E:10:40:AB:48:3E:B9:91:EB:05:DF:F8:80:D6:A0:E5:38:3A:C3:DA Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 0ECD5D12C3DAA31FF1E5250A0BF1155CF7C81081 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142330.roa Signing time: Sat 02 May 2026 09:20:11 +0000 ROA not before: Sat 02 May 2026 09:15:11 +0000 ROA not after: Sat 01 May 2027 09:20:11 +0000 asID: 142330 IP address blocks: 103.168.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:cd:5d:12:c3:da:a3:1f:f1:e5:25:0a:0b:f1:15:5c:f7:c8:10:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:11 2026 GMT Not After : May 1 09:20:11 2027 GMT Subject: CN=5E1040AB483EB991EB05DFF880D6A0E5383AC3DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7e:9d:74:06:48:8d:ad:fb:f4:33:8f:8e:fa: b7:46:27:c4:1c:41:0d:79:65:3a:4d:97:2b:2b:55: 5f:1f:6c:5e:df:ec:09:17:42:25:26:0b:82:0c:ce: 21:9e:06:3f:ce:86:62:44:1d:8c:e4:3a:1e:7a:2b: ff:cc:07:6e:a4:da:8d:6e:96:58:69:b0:85:06:54: 8e:c1:db:9f:bb:fc:0f:2d:17:d1:04:35:af:c3:48: 13:96:39:f2:14:39:74:61:e2:db:7c:3c:de:fe:7b: 4f:75:50:f8:50:d4:cb:dd:5c:47:75:e8:8f:c8:d9: a3:a5:95:33:3c:12:cb:ca:d5:e7:1a:e2:b7:26:40: e8:1e:6a:25:21:4a:1a:17:a1:69:3e:97:cc:d5:ed: 78:e7:7e:c9:43:4c:c1:58:68:21:19:40:0a:4a:7b: 68:b8:13:2e:c5:8c:9c:04:22:0a:bc:6e:ed:b6:7e: 3e:eb:9a:2c:f1:55:20:12:31:b2:55:ba:bc:21:60: f7:61:e9:5c:97:93:4e:d4:97:7a:13:83:6a:1e:92: 3f:83:0d:71:fc:5d:06:08:b9:15:de:02:76:c4:9e: 41:79:d5:a4:cb:7f:88:cc:ce:38:59:ae:4b:b7:e7: f7:20:fb:2e:87:48:13:72:75:dd:fd:c3:66:1c:dd: b3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:10:40:AB:48:3E:B9:91:EB:05:DF:F8:80:D6:A0:E5:38:3A:C3:DA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.246.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ab:e5:fc:50:bf:66:94:ed:a2:79:b4:fe:9d:fa:77:4d:5b: 5e:4d:48:9d:bd:21:10:e6:42:1e:ec:86:ad:5c:97:bd:32:98: 09:55:23:24:4c:4c:ca:63:ce:0c:60:04:fb:3b:aa:a7:92:36: 09:dd:de:af:f3:e4:36:ab:00:b6:70:be:dc:e1:36:7e:f9:f6: 3f:73:89:e0:a7:19:ef:8f:23:a2:54:8c:85:ad:91:52:03:73: 47:ff:7e:f3:fb:46:26:66:9c:00:a7:bc:c5:69:3d:5f:78:df: 04:b5:16:81:8b:a1:64:f8:94:68:93:84:e4:7f:33:83:b8:aa: 81:9f:9f:be:b5:37:9c:d3:31:8a:1d:46:8a:71:92:52:98:e3: 9a:b0:27:a1:ed:31:ae:6b:90:05:84:48:7d:8d:43:f1:1b:a7: f7:49:89:f1:63:84:05:c4:84:1b:2e:f4:d7:4d:aa:81:d2:f8: ec:31:bf:eb:2a:77:d1:a9:39:1b:92:a7:7b:c5:95:74:12:68: f3:77:ba:de:1f:5c:8f:8f:9c:3b:04:6f:3f:8a:e0:4f:91:c0: c6:1a:8a:f4:ff:ef:93:21:f8:88:1c:b2:b3:8b:f3:de:f8:e1: 69:31:d3:9f:02:68:d1:9b:79:14:0f:e2:30:dc:d3:cb:3a:c9: c2:1b:0d:42 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUDs1dEsPaox/x5SUKC/EVXPfIEIEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUxMVoX DTI3MDUwMTA5MjAxMVowMzExMC8GA1UEAxMoNUUxMDQwQUI0ODNFQjk5MUVCMDVE RkY4ODBENkEwRTUzODNBQzNEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOd+nXQGSI2t+/Qzj476t0YnxBxBDXllOk2XKytVXx9sXt/sCRdCJSYLggzO IZ4GP86GYkQdjOQ6Hnor/8wHbqTajW6WWGmwhQZUjsHbn7v8Dy0X0QQ1r8NIE5Y5 8hQ5dGHi23w83v57T3VQ+FDUy91cR3Xoj8jZo6WVMzwSy8rV5xrityZA6B5qJSFK GhehaT6XzNXteOd+yUNMwVhoIRlACkp7aLgTLsWMnAQiCrxu7bZ+PuuaLPFVIBIx slW6vCFg92HpXJeTTtSXehODah6SP4MNcfxdBgi5Fd4CdsSeQXnVpMt/iMzOOFmu S7fn9yD7LodIE3J13f3DZhzds7MCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBReEECr SD65kesF3/iA1qDlODrD2jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6j2MA0GCSqGSIb3DQEBCwUAA4IBAQAYq+X8UL9mlO2iebT+nfp3TVte TUidvSEQ5kIe7IatXJe9MpgJVSMkTEzKY84MYAT7O6qnkjYJ3d6v8+Q2qwC2cL7c 4TZ++fY/c4ngpxnvjyOiVIyFrZFSA3NH/37z+0YmZpwAp7zFaT1feN8EtRaBi6Fk +JRok4TkfzODuKqBn5++tTec0zGKHUaKcZJSmOOasCeh7TGua5AFhEh9jUPxG6f3 SYnxY4QFxIQbLvTXTaqB0vjsMb/rKnfRqTkbkqd7xZV0Emjzd7reH1yPj5w7BG8/ iuBPkcDGGor0/++TIfiIHLKzi/Pe+OFpMdOfAmjRm3kUD+Iw3NPLOsnCGw1C -----END CERTIFICATE-----Generated at Sun May 3 00:42:14 2026 by rpki-client