$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142345.roa File: AS142345.roa (raw, json) Hash identifier: pbRGAuVN1uoZwF9Nk39A6bs/RelgBbXqZHCR2kQqJLo= Subject key identifier: 03:BB:CD:3A:03:0E:52:91:D5:4F:AA:B3:12:86:02:8F:42:CF:CE:B2 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 56B9A071E97BEB738363848B5AFDA1CCB4069AB0 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142345.roa Signing time: Sat 02 May 2026 09:20:28 +0000 ROA not before: Sat 02 May 2026 09:15:28 +0000 ROA not after: Sat 01 May 2027 09:20:28 +0000 asID: 142345 IP address blocks: 103.169.42.0/24 maxlen: 24 103.169.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b9:a0:71:e9:7b:eb:73:83:63:84:8b:5a:fd:a1:cc:b4:06:9a:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:28 2026 GMT Not After : May 1 09:20:28 2027 GMT Subject: CN=03BBCD3A030E5291D54FAAB31286028F42CFCEB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:31:1f:fe:d6:99:64:f9:26:92:90:4e:08:6f: d1:27:15:8f:33:f8:6e:9d:bc:61:bb:a1:ab:66:8a: 23:13:dd:9a:0f:91:cd:ac:52:c8:4c:e6:53:75:fb: f8:12:1c:0b:ad:fc:d9:23:21:d4:51:80:f1:d6:61: 6f:5f:b4:7e:03:c7:3b:59:cd:a7:10:f7:26:be:a9: d7:21:26:8e:90:b0:f6:ec:29:0c:13:a9:3e:59:d3: 37:a0:0e:4c:07:45:f5:b6:e2:3f:14:23:a1:e5:e0: 7c:0f:d2:47:c8:28:77:72:65:7b:11:92:cc:6c:d9: 3b:8e:32:8b:e7:f4:e9:fb:8e:e2:44:95:e5:fe:2e: 96:e2:dc:44:7f:26:38:96:a5:02:26:df:cf:d3:e0: 79:66:f7:0a:44:03:64:2f:04:19:73:36:a5:ab:c7: e3:2f:39:91:5c:77:a1:08:1e:c8:f1:33:b3:b9:9b: 3a:7a:47:e8:3d:9b:8c:08:8e:03:9b:ed:87:ee:f4: 8a:26:c7:af:50:5c:55:56:1d:01:c2:49:fd:67:d8: d7:ca:db:2c:cd:79:e4:5f:a8:04:21:47:5e:40:c7: 27:21:b4:97:56:f4:70:ba:61:0d:f7:50:d6:85:3e: a7:35:be:68:04:3a:f3:d2:03:66:36:71:4f:76:23: 6b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BB:CD:3A:03:0E:52:91:D5:4F:AA:B3:12:86:02:8F:42:CF:CE:B2 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142345.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.42.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:96:28:ee:2a:8a:c4:ff:7e:70:3e:bd:8e:41:68:c5:18:45: e2:c0:4d:07:48:37:66:45:53:d9:9a:72:56:24:35:ad:d4:33: 48:c6:63:c0:9e:89:c2:eb:88:ac:eb:41:7f:dc:01:30:26:c0: 93:04:16:64:77:9c:19:69:92:71:7c:c4:d0:62:56:f7:59:c5: 34:bf:3b:1b:2f:02:ae:04:93:3b:67:bc:22:1c:be:47:52:81: 90:31:97:a7:16:34:ea:ad:a6:18:1f:5c:5c:c3:4a:44:ed:de: b5:b9:14:1f:57:fe:27:4d:43:0b:f1:f0:14:43:dd:4e:74:ac: fc:f8:19:67:a2:76:18:06:a7:cc:cf:08:32:86:1a:44:3a:b0: 41:0b:b7:64:cb:54:d7:34:1d:e2:3a:c7:d1:ab:94:48:b8:de: e8:28:a7:5d:8a:6b:f7:39:ad:6e:22:b5:8b:83:e3:2d:1e:a6: cb:4b:87:84:24:e3:cf:b1:4e:4f:40:6c:97:0d:9e:0a:c2:61: 10:7c:9e:f4:0c:0f:7b:22:00:94:f4:6e:4a:a8:53:00:eb:3f: 6b:3e:f2:76:54:fc:81:67:09:52:e7:ff:e8:2a:d7:49:3c:1e: 46:46:68:0f:d0:a4:69:b1:68:ba:04:6a:cb:bb:8c:c6:41:75: 17:09:72:5b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUVrmgcel763ODY4SLWv2hzLQGmrAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUyOFoX DTI3MDUwMTA5MjAyOFowMzExMC8GA1UEAxMoMDNCQkNEM0EwMzBFNTI5MUQ1NEZB QUIzMTI4NjAyOEY0MkNGQ0VCMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJYxH/7WmWT5JpKQTghv0ScVjzP4bp28Ybuhq2aKIxPdmg+RzaxSyEzmU3X7 +BIcC6382SMh1FGA8dZhb1+0fgPHO1nNpxD3Jr6p1yEmjpCw9uwpDBOpPlnTN6AO TAdF9bbiPxQjoeXgfA/SR8god3JlexGSzGzZO44yi+f06fuO4kSV5f4uluLcRH8m OJalAibfz9PgeWb3CkQDZC8EGXM2pavH4y85kVx3oQgeyPEzs7mbOnpH6D2bjAiO A5vth+70iibHr1BcVVYdAcJJ/WfY18rbLM155F+oBCFHXkDHJyG0l1b0cLphDfdQ 1oU+pzW+aAQ689IDZjZxT3Yja78CAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQDu806 Aw5SkdVPqrMShgKPQs/OsjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzQ1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBZ6kqMA0GCSqGSIb3DQEBCwUAA4IBAQBalijuKorE/35wPr2OQWjFGEXi wE0HSDdmRVPZmnJWJDWt1DNIxmPAnonC64is60F/3AEwJsCTBBZkd5wZaZJxfMTQ Ylb3WcU0vzsbLwKuBJM7Z7wiHL5HUoGQMZenFjTqraYYH1xcw0pE7d61uRQfV/4n TUML8fAUQ91OdKz8+BlnonYYBqfMzwgyhhpEOrBBC7dky1TXNB3iOsfRq5RIuN7o KKddimv3Oa1uIrWLg+MtHqbLS4eEJOPPsU5PQGyXDZ4KwmEQfJ70DA97IgCU9G5K qFMA6z9rPvJ2VPyBZwlS5//oKtdJPB5GRmgP0KRpsWi6BGrLu4zGQXUXCXJb -----END CERTIFICATE-----Generated at Sun May 3 01:44:05 2026 by rpki-client