$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142389.roa File: AS142389.roa (raw, json) Hash identifier: 2UmTLGT5S8EhyyJ2jQs2TsddIF4FyqvjJUsHZqDZvzo= Subject key identifier: 28:A9:A6:01:A1:73:26:C8:09:BC:F5:CA:B2:BF:F4:C5:86:E5:FB:E0 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4C5D9723FAB57C1F3AD6DEC88A1F315E4DC635FA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142389.roa Signing time: Sat 02 May 2026 09:20:22 +0000 ROA not before: Sat 02 May 2026 09:15:22 +0000 ROA not after: Sat 01 May 2027 09:20:22 +0000 asID: 142389 IP address blocks: 103.172.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:5d:97:23:fa:b5:7c:1f:3a:d6:de:c8:8a:1f:31:5e:4d:c6:35:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:22 2026 GMT Not After : May 1 09:20:22 2027 GMT Subject: CN=28A9A601A17326C809BCF5CAB2BFF4C586E5FBE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:0e:a7:02:7a:c3:6a:7e:da:ea:7d:9e:6c:c6: 22:0a:0c:3c:9d:cf:64:d3:2b:4a:e5:01:74:f5:61: 8b:e8:a4:15:ee:ec:07:f2:14:08:46:f1:49:9a:0d: 4f:2b:e8:3c:68:47:2d:34:fd:c7:74:25:da:bb:7d: 59:3f:70:63:29:9c:f7:eb:b4:58:84:05:c5:44:c2: 2e:b8:76:ea:4d:b3:12:25:23:3b:9b:64:7c:db:3e: 1b:f3:6b:5d:dc:ed:58:fd:31:e5:68:61:68:23:3d: 5a:e6:1c:bb:7f:a1:85:04:06:59:5b:b3:27:43:2b: c5:7a:36:5b:bc:42:2e:89:40:57:f1:5f:f5:4b:84: 1d:09:a6:99:e1:c9:56:55:ae:aa:26:f6:19:f7:60: 5b:d9:3e:ac:5a:4d:f5:8a:49:99:d8:0c:da:45:d7: e4:47:a6:53:73:78:e1:51:54:f0:9c:dd:af:cb:e5: 4e:b4:ac:7f:6f:5d:87:16:55:f0:90:42:23:69:0f: b1:7a:bc:17:f7:62:ac:59:5e:26:42:af:99:cb:fa: 2d:b2:a8:9a:26:53:87:f1:9a:0c:17:43:e8:db:86: ee:af:44:2a:aa:e5:b0:d7:04:9c:4a:66:81:20:54: 8c:03:46:a3:84:b9:81:0b:5b:25:25:64:d3:f2:e7: 4c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A9:A6:01:A1:73:26:C8:09:BC:F5:CA:B2:BF:F4:C5:86:E5:FB:E0 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142389.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.144.0/24 Signature Algorithm: sha256WithRSAEncryption 10:3c:4f:ea:ce:ed:ed:e0:bb:5b:45:5f:97:93:ea:63:82:91: 44:fd:08:82:f6:4b:eb:b0:77:a6:d4:2e:85:3a:87:69:11:95: 83:ca:64:02:10:3a:ff:d8:36:1a:b8:1e:19:f9:fc:3d:e8:56: b6:b1:e1:35:8a:7b:02:a6:0a:6b:a3:9a:93:e2:db:77:82:73: 5d:eb:7c:06:f5:7c:8e:32:af:c2:2a:d2:ab:1d:63:b1:ee:f3: 62:ba:48:dc:88:a7:82:0b:d9:92:6d:80:51:e9:c6:1e:a0:bf: 39:60:ec:55:a8:f3:78:89:cf:8d:1b:7f:cb:fe:31:bd:32:cf: f9:df:0c:95:23:31:fe:79:c3:24:20:f0:e0:7e:35:8f:eb:d1: 46:e0:27:f9:eb:cd:2d:1d:5e:e1:b5:1f:d7:02:8d:3b:e0:aa: f2:98:08:79:b0:9d:dc:37:5e:bc:2f:25:27:c6:a0:94:76:89: e0:9b:23:cf:41:0f:6f:ac:bf:2d:3a:1c:df:c9:17:67:f0:fb: 70:17:e0:6f:4e:ae:cb:51:d9:e4:df:24:8b:a2:cf:8b:12:08: 50:38:78:62:91:32:ef:0f:16:13:9a:91:b9:18:28:6b:70:af: 08:06:e0:d3:61:4c:e5:b8:c3:d6:70:92:24:ea:cd:15:6f:57: cb:cc:00:58 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUTF2XI/q1fB861t7Iih8xXk3GNfowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUyMloX DTI3MDUwMTA5MjAyMlowMzExMC8GA1UEAxMoMjhBOUE2MDFBMTczMjZDODA5QkNG NUNBQjJCRkY0QzU4NkU1RkJFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOsOpwJ6w2p+2up9nmzGIgoMPJ3PZNMrSuUBdPVhi+ikFe7sB/IUCEbxSZoN TyvoPGhHLTT9x3Ql2rt9WT9wYymc9+u0WIQFxUTCLrh26k2zEiUjO5tkfNs+G/Nr XdztWP0x5WhhaCM9WuYcu3+hhQQGWVuzJ0MrxXo2W7xCLolAV/Ff9UuEHQmmmeHJ VlWuqib2GfdgW9k+rFpN9YpJmdgM2kXX5EemU3N44VFU8Jzdr8vlTrSsf29dhxZV 8JBCI2kPsXq8F/dirFleJkKvmcv6LbKomiZTh/GaDBdD6NuG7q9EKqrlsNcEnEpm gSBUjANGo4S5gQtbJSVk0/LnTPsCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBQoqaYB oXMmyAm89cqyv/TFhuX74DAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzg5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6yQMA0GCSqGSIb3DQEBCwUAA4IBAQAQPE/qzu3t4LtbRV+Xk+pjgpFE /QiC9kvrsHem1C6FOodpEZWDymQCEDr/2DYauB4Z+fw96Fa2seE1insCpgpro5qT 4tt3gnNd63wG9XyOMq/CKtKrHWOx7vNiukjciKeCC9mSbYBR6cYeoL85YOxVqPN4 ic+NG3/L/jG9Ms/53wyVIzH+ecMkIPDgfjWP69FG4Cf5680tHV7htR/XAo074Kry mAh5sJ3cN168LyUnxqCUdongmyPPQQ9vrL8tOhzfyRdn8PtwF+BvTq7LUdnk3ySL os+LEghQOHhikTLvDxYTmpG5GChrcK8IBuDTYUzluMPWcJIk6s0Vb1fLzABY -----END CERTIFICATE-----Generated at Sun May 3 00:41:51 2026 by rpki-client