$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142349.roa File: AS142349.roa (raw, json) Hash identifier: FNigNHt6PpI74SFmgp77+w1fyk5k0dm4zM1My/BLIwU= Subject key identifier: C9:78:21:5D:FB:B3:70:03:16:BE:CE:49:CB:89:B8:C5:A2:7B:B2:A6 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4F3A762ADE1B78905FEDBA67767A8CDD0D0687D0 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142349.roa Signing time: Sat 02 May 2026 09:20:41 +0000 ROA not before: Sat 02 May 2026 09:15:41 +0000 ROA not after: Sat 01 May 2027 09:20:41 +0000 asID: 142349 IP address blocks: 103.169.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3a:76:2a:de:1b:78:90:5f:ed:ba:67:76:7a:8c:dd:0d:06:87:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:41 2026 GMT Not After : May 1 09:20:41 2027 GMT Subject: CN=C978215DFBB3700316BECE49CB89B8C5A27BB2A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:65:58:01:d3:84:81:1c:85:ed:45:36:85:29: f4:c3:cc:16:2f:f8:49:c2:9c:e9:7c:31:34:74:32: 2b:7b:09:8f:e2:ee:ea:9e:6f:67:e8:90:42:ec:7a: a4:75:70:5f:fa:d9:5e:68:c6:07:7c:f1:82:aa:50: 19:e5:cf:1a:90:43:f5:88:bc:f3:3e:b8:c3:ae:13: 0a:82:b0:81:9b:d9:84:6e:f9:35:9b:cf:49:71:a9: e8:dc:3d:b1:84:5e:ba:6f:b6:f9:cf:3f:f9:2d:27: 30:94:08:51:68:f5:29:9c:5e:cf:4c:fd:6f:3d:41: d3:3a:9a:ba:c6:c3:cd:ff:c7:4e:0f:44:17:ba:5e: f5:16:62:70:57:e2:98:9e:6b:e8:e6:4f:ed:20:3a: 14:a1:b2:e5:10:7c:7c:f8:fd:3c:cb:94:9e:98:d4: 2d:09:40:45:a0:c3:a8:eb:85:5d:4b:c1:38:30:e4: 10:60:58:a8:d6:54:87:b5:30:b9:d8:b9:d0:13:c4: 34:a1:1b:d7:1f:c9:0f:cd:83:08:23:ea:7c:13:05: 4b:bd:84:c6:72:9c:ac:3e:10:8c:3d:57:e9:62:68: 5f:2d:0c:0e:29:67:eb:ad:71:41:ab:3b:99:8b:ff: a6:4f:f0:0f:a4:11:5d:a5:8a:02:c7:bf:6f:95:fa: 25:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:78:21:5D:FB:B3:70:03:16:BE:CE:49:CB:89:B8:C5:A2:7B:B2:A6 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142349.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.71.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:d8:b0:3b:6e:86:db:b0:af:9c:e5:97:5f:9a:17:8e:1b:5d: aa:c5:53:32:8d:85:f9:ca:d8:16:21:b5:53:49:b1:26:70:b2: ad:1e:25:b6:28:5a:22:5c:e9:ff:87:95:93:a5:8e:86:d0:0e: 4a:37:a3:23:78:bd:53:44:75:fe:6a:08:ed:58:02:c3:1a:04: 72:ba:58:96:8c:76:37:02:66:5f:b7:ca:72:44:40:f6:85:50: 44:ea:7e:08:47:4a:57:10:a9:95:47:67:47:15:08:91:ad:9b: bb:4b:a9:ef:c3:fc:5e:9b:a6:db:f5:71:b4:0b:03:63:be:9a: c8:2c:ab:a1:a1:30:85:0f:ca:d0:a6:98:b1:8c:42:4b:60:ea: 4e:44:fe:92:53:e3:7e:84:30:93:a3:e4:d6:97:7f:15:3d:b1: 41:70:3c:45:2e:a6:97:ee:2a:9d:08:f6:08:d5:d8:96:11:89: 81:40:55:79:48:d2:fa:ab:e3:5a:bc:46:2e:7f:eb:c1:b0:09: 40:75:d4:ce:2a:f8:5d:c6:cc:cf:6e:f7:89:b4:3f:f4:f3:f7: e9:59:59:10:24:e8:e3:58:0b:bb:52:10:2b:16:2d:8b:0d:5c: c7:d1:f4:9d:4f:fa:56:93:84:5a:80:4a:f9:30:69:cd:f1:aa: e9:0c:cb:e6 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUTzp2Kt4beJBf7bpndnqM3Q0Gh9AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTU0MVoX DTI3MDUwMTA5MjA0MVowMzExMC8GA1UEAxMoQzk3ODIxNURGQkIzNzAwMzE2QkVD RTQ5Q0I4OUI4QzVBMjdCQjJBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPZlWAHThIEche1FNoUp9MPMFi/4ScKc6XwxNHQyK3sJj+Lu6p5vZ+iQQux6 pHVwX/rZXmjGB3zxgqpQGeXPGpBD9Yi88z64w64TCoKwgZvZhG75NZvPSXGp6Nw9 sYReum+2+c8/+S0nMJQIUWj1KZxez0z9bz1B0zqausbDzf/HTg9EF7pe9RZicFfi mJ5r6OZP7SA6FKGy5RB8fPj9PMuUnpjULQlARaDDqOuFXUvBODDkEGBYqNZUh7Uw udi50BPENKEb1x/JD82DCCPqfBMFS72ExnKcrD4QjD1X6WJoXy0MDiln661xQas7 mYv/pk/wD6QRXaWKAse/b5X6JQkCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTJeCFd +7NwAxa+zknLibjFonuypjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzQ5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6lHMA0GCSqGSIb3DQEBCwUAA4IBAQAN2LA7bobbsK+c5ZdfmheOG12q xVMyjYX5ytgWIbVTSbEmcLKtHiW2KFoiXOn/h5WTpY6G0A5KN6MjeL1TRHX+agjt WALDGgRyuliWjHY3AmZft8pyRED2hVBE6n4IR0pXEKmVR2dHFQiRrZu7S6nvw/xe m6bb9XG0CwNjvprILKuhoTCFD8rQppixjEJLYOpORP6SU+N+hDCTo+TWl38VPbFB cDxFLqaX7iqdCPYI1diWEYmBQFV5SNL6q+NavEYuf+vBsAlAddTOKvhdxszPbveJ tD/08/fpWVkQJOjjWAu7UhArFi2LDVzH0fSdT/pWk4RagEr5MGnN8arpDMvm -----END CERTIFICATE-----Generated at Sun May 3 00:42:15 2026 by rpki-client