$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142331.roa File: AS142331.roa (raw, json) Hash identifier: 7Whka9eyLMfyIMNL/h7Zyr/1NonVg0zZZGMuf1cYrdc= Subject key identifier: B6:F2:68:2B:E4:64:2F:B5:EC:9B:47:BF:41:FF:00:DA:6A:9D:A7:B9 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4BDB4BB47D6DD5AED123B86671CDB015D3FE9A4D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142331.roa Signing time: Sat 02 May 2026 09:22:13 +0000 ROA not before: Sat 02 May 2026 09:17:13 +0000 ROA not after: Sat 01 May 2027 09:22:13 +0000 asID: 142331 IP address blocks: 113.192.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:db:4b:b4:7d:6d:d5:ae:d1:23:b8:66:71:cd:b0:15:d3:fe:9a:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:17:13 2026 GMT Not After : May 1 09:22:13 2027 GMT Subject: CN=B6F2682BE4642FB5EC9B47BF41FF00DA6A9DA7B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6a:c5:87:8f:bd:50:22:f2:2c:b7:e1:a4:0c: 51:51:dc:70:e7:88:95:d2:aa:24:18:78:50:50:bd: 4b:ed:d5:1f:0f:04:43:6f:c1:db:69:5d:7e:47:8f: 5e:5f:cb:32:49:b9:a5:af:1c:99:c1:59:2d:75:ce: bc:55:71:37:49:d5:3b:8c:72:64:2a:c0:f7:91:f8: a6:85:99:7e:da:70:38:ee:88:ce:2b:56:26:77:8b: 4f:db:e0:5a:d5:60:be:22:4e:7a:32:fa:bf:72:7a: 19:73:79:c3:f4:2e:b4:dd:f4:30:01:57:5f:d5:5e: 07:7e:f3:21:ea:b0:f7:ea:71:6b:73:6a:63:dd:8d: 4a:88:69:53:95:a7:43:12:21:7f:d9:d6:0b:ec:3f: 2f:2d:6e:88:be:34:92:91:f2:47:5d:f7:53:57:f9: 5b:ba:05:73:ab:3f:2a:1d:19:af:86:69:d0:a4:98: dc:99:1b:34:bd:7c:7c:1a:23:5a:17:c2:02:53:0c: d6:61:c0:c7:8d:3d:cb:20:99:50:09:77:1e:29:54: bb:07:7d:b9:c1:07:b0:f1:76:0e:71:7c:a8:d5:ff: 73:fb:d4:7a:1e:3f:ce:71:0b:91:74:2f:b1:ad:b4: 53:5f:3b:b4:de:e6:0e:54:5c:13:05:cf:f0:9d:15: 4c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:F2:68:2B:E4:64:2F:B5:EC:9B:47:BF:41:FF:00:DA:6A:9D:A7:B9 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.192.3.0/24 Signature Algorithm: sha256WithRSAEncryption 73:1d:8e:1f:b8:8c:86:64:da:32:4b:6b:75:79:4e:f5:5d:0c: 38:05:62:49:b9:d6:62:ac:e4:17:22:4b:0d:70:01:ae:97:18: 22:b6:31:89:f6:8b:78:39:ee:28:39:3d:dc:a8:bb:24:e9:fb: dd:a2:87:34:a2:45:7b:0c:2c:77:84:a8:22:49:5c:c5:5d:82: 11:c3:df:25:53:89:b3:ec:27:95:cf:f8:1e:64:9e:2b:fc:ee: b7:7a:11:ae:29:fe:ee:1b:da:2c:23:da:7a:c0:b4:19:c3:fd: 9d:98:65:02:d5:96:ec:1f:77:7e:3e:cd:3f:46:b7:1b:7d:98: 37:f2:2c:b3:36:b5:9e:cc:8d:c2:12:8e:f8:7e:27:a1:7b:db: 6c:a8:52:93:3c:29:2f:71:84:21:28:af:b7:d0:66:e8:3b:c6: cf:7e:ae:88:77:67:5b:94:25:1b:9f:ad:7c:03:ef:23:6c:b3: db:eb:92:73:f6:aa:51:90:78:d7:a5:97:80:12:57:81:23:ab: 8a:88:6f:19:2f:92:ef:3e:e2:8a:15:ed:c2:0e:f6:10:89:1f: 01:5b:c0:24:23:b6:63:35:51:3f:1f:f1:cd:dc:fc:e4:68:e3: 45:9d:df:72:16:9f:cf:d6:38:a5:1e:e5:ef:77:e1:ab:07:8a: 78:de:85:77 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUS9tLtH1t1a7RI7hmcc2wFdP+mk0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTcxM1oX DTI3MDUwMTA5MjIxM1owMzExMC8GA1UEAxMoQjZGMjY4MkJFNDY0MkZCNUVDOUI0 N0JGNDFGRjAwREE2QTlEQTdCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdqxYePvVAi8iy34aQMUVHccOeIldKqJBh4UFC9S+3VHw8EQ2/B22ldfkeP Xl/LMkm5pa8cmcFZLXXOvFVxN0nVO4xyZCrA95H4poWZftpwOO6IzitWJneLT9vg WtVgviJOejL6v3J6GXN5w/QutN30MAFXX9VeB37zIeqw9+pxa3NqY92NSohpU5Wn QxIhf9nWC+w/Ly1uiL40kpHyR133U1f5W7oFc6s/Kh0Zr4Zp0KSY3JkbNL18fBoj WhfCAlMM1mHAx409yyCZUAl3HilUuwd9ucEHsPF2DnF8qNX/c/vUeh4/znELkXQv sa20U187tN7mDlRcEwXP8J0VTPMCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBS28mgr 5GQvteybR79B/wDaap2nuTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzMxLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAccADMA0GCSqGSIb3DQEBCwUAA4IBAQBzHY4fuIyGZNoyS2t1eU71XQw4 BWJJudZirOQXIksNcAGulxgitjGJ9ot4Oe4oOT3cqLsk6fvdooc0okV7DCx3hKgi SVzFXYIRw98lU4mz7CeVz/geZJ4r/O63ehGuKf7uG9osI9p6wLQZw/2dmGUC1Zbs H3d+Ps0/RrcbfZg38iyzNrWezI3CEo74fiehe9tsqFKTPCkvcYQhKK+30GboO8bP fq6Id2dblCUbn618A+8jbLPb65Jz9qpRkHjXpZeAEleBI6uKiG8ZL5LvPuKKFe3C DvYQiR8BW8AkI7ZjNVE/H/HN3PzkaONFnd9yFp/P1jilHuXvd+GrB4p43oV3 -----END CERTIFICATE-----Generated at Sun May 3 00:42:21 2026 by rpki-client