$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142373.roa File: AS142373.roa (raw, json) Hash identifier: kHWrqqngCLnB3rBaT0uI5OL50wb2OsbAFTDfE4yzLUI= Subject key identifier: 70:B2:62:49:3F:21:92:57:8E:17:54:85:97:C9:B2:DA:F5:E6:3B:71 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 55876243E4F169E65B1F9B19933A56F65AE51A0E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142373.roa Signing time: Sat 02 May 2026 21:32:41 +0000 ROA not before: Sat 02 May 2026 21:27:41 +0000 ROA not after: Sat 01 May 2027 21:32:41 +0000 asID: 142373 IP address blocks: 103.171.82.0/23 maxlen: 24 2401:c7a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:87:62:43:e4:f1:69:e6:5b:1f:9b:19:93:3a:56:f6:5a:e5:1a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:27:41 2026 GMT Not After : May 1 21:32:41 2027 GMT Subject: CN=70B262493F2192578E17548597C9B2DAF5E63B71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f9:7c:7f:44:37:3a:bf:7b:5f:39:fb:84:f5: 46:ff:88:f9:97:af:b6:a5:3d:3d:66:10:28:ad:50: d9:1d:ec:ef:0b:35:eb:93:8c:f3:d2:fc:22:5d:4e: d8:10:9b:fd:e2:7f:2f:80:94:9b:97:1e:ae:9a:d0: 4d:3d:56:80:b9:89:f6:08:ce:07:e6:90:a3:85:c8: e2:20:81:76:a8:62:59:a7:68:5b:92:93:19:5c:39: b1:bc:ea:17:08:82:df:46:93:98:31:a6:0f:3d:a7: ff:21:61:dc:42:5e:a0:4f:24:e4:5a:9b:31:40:32: ef:30:b2:42:6a:43:99:3f:00:3a:1d:9c:a5:60:11: fe:9d:b4:93:74:29:49:76:e4:0e:6e:a2:a1:94:d3: 0f:53:3e:d1:f3:88:46:5a:c3:5a:88:41:b5:1d:c8: d5:53:e9:3c:75:03:fb:52:c3:7e:df:b1:5d:f2:ac: 62:b7:71:5f:9b:93:59:15:46:5c:5d:b8:26:46:46: 42:93:72:e1:0b:67:fe:fe:9e:4c:2b:e6:51:cf:41: a1:5d:fb:57:56:30:fc:f9:48:54:c8:1f:f8:71:e9: d4:5d:3c:90:32:ca:d7:d5:2f:56:97:f2:44:3c:bb: 52:a3:19:08:de:70:88:ce:c7:0e:a8:4a:41:9a:39: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B2:62:49:3F:21:92:57:8E:17:54:85:97:C9:B2:DA:F5:E6:3B:71 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142373.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.82.0/23 IPv6: 2401:c7a0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:23:f1:73:40:21:3d:03:01:dc:50:63:8c:16:7f:88:95:1f: a0:a1:90:fd:7f:e2:b1:b2:0c:40:8c:7f:00:b5:2e:af:c9:2e: 87:a5:4c:ab:21:09:4a:91:c6:fe:53:f9:4c:b0:87:1c:ba:09: 8a:82:52:d3:33:10:e9:ff:bb:e4:32:13:38:c7:90:69:26:e4: 0b:f3:f2:34:9b:dd:92:78:c8:c9:d3:0c:94:1f:37:61:f9:1f: 58:4b:bc:81:94:0f:24:61:fc:14:a8:91:63:a7:fe:18:c0:37: 9a:89:8a:1c:90:cd:5c:94:da:40:88:28:59:68:f2:a1:de:35: 18:70:2f:a1:4b:ed:85:c8:f0:ce:af:f1:09:3c:9b:d1:41:8f: 80:9d:8b:a7:0b:f3:7c:fb:41:ea:36:74:4e:a2:96:2a:26:2b: f0:43:15:0a:e9:fb:96:30:cc:0f:aa:61:a0:88:a4:99:b9:8f: 94:b8:41:44:e7:6e:06:94:80:62:f4:9f:9a:41:ce:2c:34:a8: d3:d2:65:df:84:1f:f2:b3:ff:b2:a0:88:26:9e:03:5e:1b:d7: 6f:09:f0:c9:0e:7b:72:df:89:4a:10:00:08:d0:3f:fa:38:4d: e5:8f:ea:69:3d:31:e3:18:e7:81:22:c6:fe:2c:49:31:f5:f3: d2:63:71:8b -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUVYdiQ+TxaeZbH5sZkzpW9lrlGg4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjc0MVoX DTI3MDUwMTIxMzI0MVowMzExMC8GA1UEAxMoNzBCMjYyNDkzRjIxOTI1NzhFMTc1 NDg1OTdDOUIyREFGNUU2M0I3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ75fH9ENzq/e185+4T1Rv+I+ZevtqU9PWYQKK1Q2R3s7ws165OM89L8Il1O 2BCb/eJ/L4CUm5cerprQTT1WgLmJ9gjOB+aQo4XI4iCBdqhiWadoW5KTGVw5sbzq FwiC30aTmDGmDz2n/yFh3EJeoE8k5FqbMUAy7zCyQmpDmT8AOh2cpWAR/p20k3Qp SXbkDm6ioZTTD1M+0fOIRlrDWohBtR3I1VPpPHUD+1LDft+xXfKsYrdxX5uTWRVG XF24JkZGQpNy4Qtn/v6eTCvmUc9BoV37V1Yw/PlIVMgf+HHp1F08kDLK19UvVpfy RDy7UqMZCN5wiM7HDqhKQZo5TbkCAwEAAaOCAdswggHXMB0GA1UdDgQWBBRwsmJJ PyGSV44XVIWXybLa9eY7cTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzczLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIA ATAGAwQBZ6tSMA0EAgACMAcDBQAkAcegMA0GCSqGSIb3DQEBCwUAA4IBAQBOI/Fz QCE9AwHcUGOMFn+IlR+goZD9f+KxsgxAjH8AtS6vyS6HpUyrIQlKkcb+U/lMsIcc ugmKglLTMxDp/7vkMhM4x5BpJuQL8/I0m92SeMjJ0wyUHzdh+R9YS7yBlA8kYfwU qJFjp/4YwDeaiYockM1clNpAiChZaPKh3jUYcC+hS+2FyPDOr/EJPJvRQY+AnYun C/N8+0HqNnROopYqJivwQxUK6fuWMMwPqmGgiKSZuY+UuEFE524GlIBi9J+aQc4s NKjT0mXfhB/ys/+yoIgmngNeG9dvCfDJDnty34lKEAAI0D/6OE3lj+ppPTHjGOeB Isb+LEkx9fPSY3GL -----END CERTIFICATE-----Generated at Sun May 3 00:42:30 2026 by rpki-client