$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142397.roa File: AS142397.roa (raw, json) Hash identifier: NfjK0n4lYWqydPoHz38JCNsZpsjSKzkk00bw0Zrdz3M= Subject key identifier: CB:FF:64:C4:83:52:84:92:0C:B4:95:AE:44:DD:C2:F7:24:BC:27:9A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4BC58A7A01AF60309D39D5E5FD575436CAEE9025 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142397.roa Signing time: Sat 02 May 2026 09:20:27 +0000 ROA not before: Sat 02 May 2026 09:15:27 +0000 ROA not after: Sat 01 May 2027 09:20:27 +0000 asID: 142397 IP address blocks: 103.170.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:c5:8a:7a:01:af:60:30:9d:39:d5:e5:fd:57:54:36:ca:ee:90:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:27 2026 GMT Not After : May 1 09:20:27 2027 GMT Subject: CN=CBFF64C4835284920CB495AE44DDC2F724BC279A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9f:6b:44:81:27:97:3b:44:3d:3f:a1:06:4c: 9f:fa:73:2f:1b:97:30:64:5f:e0:4f:2d:0d:94:ef: 02:5e:0b:cd:c9:04:f1:c4:95:b3:9f:56:76:eb:1f: ef:52:8e:10:e6:50:24:8a:3c:b6:e5:c5:e3:68:50: 2f:11:31:4e:b8:ea:20:f6:76:c3:df:ea:1c:7a:f8: 81:10:17:30:6c:98:f5:f3:28:8e:fe:29:eb:fa:8f: 05:5e:27:92:f9:bf:d2:65:37:a5:b7:ed:0f:22:12: 9e:74:2d:d9:c6:4e:24:b4:1a:46:0b:be:ac:ab:d6: 59:03:d2:43:8a:a1:f4:0b:ce:40:2a:33:1c:1b:ff: 2a:29:19:d4:1b:43:63:7f:f6:21:ec:41:13:8b:18: b5:9e:48:bf:73:94:27:d0:10:b6:b3:7b:44:f9:df: 4a:ed:7e:14:5b:d1:8b:8c:3b:ae:82:9a:7e:d9:22: bc:87:10:f1:69:59:e0:3a:15:88:92:36:c8:e2:8b: 56:62:31:52:70:58:7c:30:95:7c:69:6f:05:cf:79: ce:f5:a1:b3:8f:43:88:54:53:91:e0:ae:3b:45:5e: 7e:7d:f7:6a:a2:2d:e3:8a:b8:76:82:65:f0:9f:67: 2e:51:88:bb:20:2a:09:b0:73:e5:8f:16:e0:bf:f4: e1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FF:64:C4:83:52:84:92:0C:B4:95:AE:44:DD:C2:F7:24:BC:27:9A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142397.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.188.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:34:64:4c:8d:e8:a4:4f:19:9c:ba:7e:81:12:b9:28:7a:83: 87:bf:d3:ca:22:08:a3:66:d5:6b:6f:6f:32:96:70:2d:5b:2c: 86:ec:61:fa:37:22:1d:ac:c3:08:d4:56:db:88:0e:9e:c4:55: 9a:77:3f:3e:7f:8c:09:d4:e3:af:ac:1c:4a:cc:5d:82:56:c2: 68:30:05:15:0f:33:f1:88:20:89:24:1e:ba:48:78:f2:6a:01: c4:36:2c:e8:54:7b:4e:7e:33:c9:0b:4f:88:7e:f9:de:fa:b1: 15:94:cc:5c:e8:18:ea:7d:c0:a4:1a:0b:58:7d:6b:31:e7:8a: 54:a5:bf:77:e2:71:66:3a:ea:03:3f:54:15:a9:f2:63:8f:a7: a9:0e:e6:59:bb:00:0a:d4:3a:a5:d7:f0:01:f7:77:88:73:40: 23:1c:2d:44:ef:f6:ec:46:57:69:f9:14:eb:1a:c3:5e:a5:bc: a6:2d:74:ae:1d:76:d2:e4:54:0d:3c:7b:ce:22:89:e8:66:1c: 12:ab:9e:28:d3:1d:bd:98:8c:cc:ea:3e:a3:94:b6:01:80:e5: be:ac:40:a3:5a:31:1d:6f:14:ed:a9:ae:f9:4f:58:c4:e0:e2: f3:be:3a:1b:7b:27:09:d7:20:45:10:5e:e5:42:47:a6:a4:1d: 0b:30:cf:a5 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUS8WKegGvYDCdOdXl/VdUNsrukCUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUyN1oX DTI3MDUwMTA5MjAyN1owMzExMC8GA1UEAxMoQ0JGRjY0QzQ4MzUyODQ5MjBDQjQ5 NUFFNDREREMyRjcyNEJDMjc5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKCfa0SBJ5c7RD0/oQZMn/pzLxuXMGRf4E8tDZTvAl4LzckE8cSVs59Wdusf 71KOEOZQJIo8tuXF42hQLxExTrjqIPZ2w9/qHHr4gRAXMGyY9fMojv4p6/qPBV4n kvm/0mU3pbftDyISnnQt2cZOJLQaRgu+rKvWWQPSQ4qh9AvOQCozHBv/KikZ1BtD Y3/2IexBE4sYtZ5Iv3OUJ9AQtrN7RPnfSu1+FFvRi4w7roKaftkivIcQ8WlZ4DoV iJI2yOKLVmIxUnBYfDCVfGlvBc95zvWhs49DiFRTkeCuO0Vefn33aqIt44q4doJl 8J9nLlGIuyAqCbBz5Y8W4L/04XcCAwEAAaOCAcwwggHIMB0GA1UdDgQWBBTL/2TE g1KEkgy0la5E3cL3JLwnmjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyMzk3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ6q8MA0GCSqGSIb3DQEBCwUAA4IBAQA+NGRMjeikTxmcun6BErkoeoOH v9PKIgijZtVrb28ylnAtWyyG7GH6NyIdrMMI1FbbiA6exFWadz8+f4wJ1OOvrBxK zF2CVsJoMAUVDzPxiCCJJB66SHjyagHENizoVHtOfjPJC0+Ifvne+rEVlMxc6Bjq fcCkGgtYfWsx54pUpb934nFmOuoDP1QVqfJjj6epDuZZuwAK1Dql1/AB93eIc0Aj HC1E7/bsRldp+RTrGsNepbymLXSuHXbS5FQNPHvOIonoZhwSq54o0x29mIzM6j6j lLYBgOW+rECjWjEdbxTtqa75T1jE4OLzvjobeycJ1yBFEF7lQkempB0LMM+l -----END CERTIFICATE-----Generated at Sun May 3 00:42:01 2026 by rpki-client