$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142374.roa File: AS142374.roa (raw, json) Hash identifier: 4mVipl5UpXQRw6NPJhLi+M0kyJPxc/RlSsbbRH8ttpQ= Subject key identifier: 02:12:75:28:16:65:03:7E:67:02:D2:21:90:B4:64:17:2C:C1:19:D3 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 153F8D63C1AFADC01429CEC88A7B628AEF5290FD Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142374.roa Signing time: Sat 02 May 2026 21:31:25 +0000 ROA not before: Sat 02 May 2026 21:26:25 +0000 ROA not after: Sat 01 May 2027 21:31:25 +0000 asID: 142374 IP address blocks: 2400:a060::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:3f:8d:63:c1:af:ad:c0:14:29:ce:c8:8a:7b:62:8a:ef:52:90:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:26:25 2026 GMT Not After : May 1 21:31:25 2027 GMT Subject: CN=021275281665037E6702D22190B464172CC119D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fd:ad:57:58:be:84:82:e2:1b:d6:a3:1b:c4: 65:14:b2:fc:60:56:00:78:ad:ba:bf:54:05:87:9b: c4:96:91:9a:53:41:d6:4c:07:2e:24:80:28:10:67: 28:f6:4e:b0:64:8b:e4:32:a7:1e:f3:b4:8e:f1:dc: 9a:5e:f0:78:e0:a0:11:ac:f7:7b:3f:38:39:ac:6f: da:b3:e4:fd:45:ec:0b:4e:df:54:46:27:d8:2a:47: 75:d3:27:fc:7b:09:7b:31:79:22:3b:fd:d0:16:cc: a8:b6:3e:2c:60:90:10:93:2c:a9:ac:ef:59:8f:a7: 1b:f5:f6:17:32:34:df:d7:d6:b7:32:d9:f9:29:21: 9b:9d:fb:ec:c9:23:af:85:7b:0e:c0:81:12:d2:1c: 87:5c:f4:cd:88:39:c8:2d:c9:ad:73:bd:6b:97:99: 60:cb:4c:86:17:0a:1b:e6:77:58:59:6a:19:7b:27: 66:2c:5a:71:e0:2d:ba:99:29:24:31:b9:7e:12:91: 35:7c:76:c8:5d:5f:5e:aa:2d:ae:71:72:48:17:6e: 17:7a:ff:2e:56:7e:25:2d:ba:91:31:82:fa:c4:a4: d0:92:1a:17:02:ca:4e:41:10:a9:67:27:fe:24:30: fa:82:0e:69:0e:10:d1:a1:97:6b:68:57:7b:e6:12: 54:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:12:75:28:16:65:03:7E:67:02:D2:21:90:B4:64:17:2C:C1:19:D3 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:a060::/32 Signature Algorithm: sha256WithRSAEncryption 40:b2:34:41:dd:59:7d:23:0a:bc:17:b6:ab:ec:1c:19:37:ab: 1a:71:ab:18:e7:40:e6:58:c5:63:b6:b9:6d:39:cc:19:4f:26: e5:bb:0a:f3:94:9c:b1:45:45:62:b1:ed:3c:3a:47:8f:93:c2: c0:7b:72:0c:b8:0d:46:9c:8c:fa:d5:68:12:8b:c1:b7:b1:91: ba:2b:63:c8:e7:60:e5:21:c4:46:7e:55:fa:1f:a5:59:05:b2: 11:e0:ae:e2:0e:6b:2c:c4:5a:f9:fa:85:22:0f:4a:17:5d:00: 97:90:d6:ea:60:e1:b8:72:f8:69:9f:09:cf:67:7d:e9:a4:26: fe:1e:e4:f3:dc:72:17:50:40:e7:37:84:08:33:2e:19:07:3c: 6c:60:13:86:a8:72:93:a0:fe:4c:b0:a6:a8:b9:b3:e4:59:6d: cd:57:4b:4e:e4:7b:2f:4c:76:9e:83:af:6a:17:92:71:32:ca: cf:da:0d:46:e9:83:5d:84:04:2a:5b:a3:f8:b5:4f:d4:71:4f: ce:e2:08:14:24:42:78:a8:a7:49:c6:42:3d:69:a8:00:08:e6: bd:d1:9e:e1:10:f8:47:99:45:49:26:67:8e:8d:37:0c:09:85: 19:9a:1d:6d:74:3b:7a:3a:5c:b7:77:47:e8:39:f1:30:ba:67: c7:a0:d6:21 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIUFT+NY8GvrcAUKc7Iintiiu9SkP0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjYyNVoX DTI3MDUwMTIxMzEyNVowMzExMC8GA1UEAxMoMDIxMjc1MjgxNjY1MDM3RTY3MDJE MjIxOTBCNDY0MTcyQ0MxMTlEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALP9rVdYvoSC4hvWoxvEZRSy/GBWAHitur9UBYebxJaRmlNB1kwHLiSAKBBn KPZOsGSL5DKnHvO0jvHcml7weOCgEaz3ez84Oaxv2rPk/UXsC07fVEYn2CpHddMn /HsJezF5Ijv90BbMqLY+LGCQEJMsqazvWY+nG/X2FzI039fWtzLZ+Skhm5377Mkj r4V7DsCBEtIch1z0zYg5yC3JrXO9a5eZYMtMhhcKG+Z3WFlqGXsnZixaceAtupkp JDG5fhKRNXx2yF1fXqotrnFySBduF3r/LlZ+JS26kTGC+sSk0JIaFwLKTkEQqWcn /iQw+oIOaQ4Q0aGXa2hXe+YSVBMCAwEAAaOCAc0wggHJMB0GA1UdDgQWBBQCEnUo FmUDfmcC0iGQtGQXLMEZ0zAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzc0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJACgYDANBgkqhkiG9w0BAQsFAAOCAQEAQLI0Qd1ZfSMKvBe2q+wcGTer GnGrGOdA5ljFY7a5bTnMGU8m5bsK85ScsUVFYrHtPDpHj5PCwHtyDLgNRpyM+tVo EovBt7GRuitjyOdg5SHERn5V+h+lWQWyEeCu4g5rLMRa+fqFIg9KF10Al5DW6mDh uHL4aZ8Jz2d96aQm/h7k89xyF1BA5zeECDMuGQc8bGAThqhyk6D+TLCmqLmz5Flt zVdLTuR7L0x2noOvaheScTLKz9oNRumDXYQEKluj+LVP1HFPzuIIFCRCeKinScZC PWmoAAjmvdGe4RD4R5lFSSZnjo03DAmFGZodbXQ7ejpct3dH6DnxMLpnx6DWIQ== -----END CERTIFICATE-----Generated at Sun May 3 01:44:41 2026 by rpki-client