$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS142544.roa File: AS142544.roa (raw, json) Hash identifier: Js5DqGiVfjDznPd9yvU9m3/DmsRlnDCvDqa6gDbntxs= Subject key identifier: CB:93:B4:84:7F:93:F7:83:4D:1D:84:A8:75:7E:FC:15:04:85:A8:A1 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6E47E95E71B70CE83C1E1A0D4DCB9B5B65D99551 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142544.roa Signing time: Sat 02 May 2026 08:35:11 +0000 ROA not before: Sat 02 May 2026 08:30:11 +0000 ROA not after: Sat 01 May 2027 08:35:11 +0000 asID: 142544 IP address blocks: 2001:df6:b940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:47:e9:5e:71:b7:0c:e8:3c:1e:1a:0d:4d:cb:9b:5b:65:d9:95:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 08:30:11 2026 GMT Not After : May 1 08:35:11 2027 GMT Subject: CN=CB93B4847F93F7834D1D84A8757EFC150485A8A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:54:b2:03:0a:12:8e:45:32:77:af:3d:4c: a5:c4:6d:d8:31:1c:91:70:5b:a3:2d:c8:d7:1e:cb: 2c:05:ce:ce:f6:fa:c7:0b:d6:9f:04:c5:d4:7b:7d: f9:40:ac:90:f0:29:0c:84:71:8f:29:78:76:83:46: f7:a4:e8:b7:47:01:20:6b:9e:8d:56:9b:ca:ec:21: 18:d5:f9:c7:51:7b:e8:31:6a:8b:45:07:c8:81:d1: 25:29:52:29:1b:a9:b2:6c:67:95:d1:ee:7e:16:ae: a8:2c:b2:58:42:94:99:2b:26:a3:f5:af:86:de:bd: ba:eb:49:7c:d9:59:b8:89:e4:dc:e2:f6:bf:7f:87: 6b:e2:01:a9:76:73:59:9e:cd:70:64:c4:e8:40:e8: 56:d8:59:e5:ff:bc:de:0c:d3:66:5e:49:6a:57:20: 8c:5b:fc:59:98:cb:9d:27:89:d8:5c:73:a2:d5:88: 12:62:47:5d:42:bd:61:0d:4c:b0:bb:9f:57:57:ef: 4b:ec:63:92:f2:ab:7a:3e:fb:da:35:93:32:f5:cc: 1a:1a:63:dd:c1:dc:64:c3:0d:f4:51:53:29:fd:06: e0:1d:2a:70:fe:2e:e9:ab:1c:4e:d5:19:75:f7:af: 34:58:43:cb:c0:b7:03:a2:1f:0f:5e:b2:1b:c5:3d: 1b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:93:B4:84:7F:93:F7:83:4D:1D:84:A8:75:7E:FC:15:04:85:A8:A1 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS142544.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:b940::/48 Signature Algorithm: sha256WithRSAEncryption 37:b6:bd:b1:c6:39:7f:00:01:67:e5:71:3f:59:17:37:b9:f8: a9:ca:2b:f9:6d:47:b7:24:3a:2c:57:c4:78:40:c4:9f:45:65: fa:c6:a8:3f:90:04:36:7e:d8:61:68:13:cf:bf:68:f2:55:7d: 17:c3:2a:27:df:0e:52:f8:33:dc:61:0b:ca:1f:ab:07:5e:10: 92:2f:69:86:87:6d:f1:36:9c:ba:08:20:4a:19:48:0f:b6:97: cb:1f:11:06:c1:c8:90:a8:d9:03:96:f7:44:38:61:2b:a5:9f: 6a:58:9b:8e:65:db:c5:16:5d:a9:f3:07:15:49:79:fd:fa:e3: 18:91:df:f8:79:03:da:26:42:ea:79:8c:e3:89:ad:82:7b:47: 03:44:26:68:c7:35:47:db:84:21:da:0e:df:1e:66:e4:b2:08: ff:b7:0a:94:10:ce:ea:1c:09:d0:cd:7f:c1:3d:54:55:7c:07: 7e:cd:15:f3:a3:30:b9:ca:71:59:e6:cb:a1:73:f8:ff:22:04: ce:97:78:74:20:54:ce:24:07:ee:16:fb:69:e1:3c:9a:e0:84: 63:f2:d2:93:ba:71:c6:54:5f:18:4e:18:a5:48:cb:61:e0:0d: ee:5d:49:fb:19:aa:68:40:cc:86:0c:05:a6:f2:06:99:af:19: 09:36:39:d4 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUbkfpXnG3DOg8HhoNTcubW2XZlVEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA4MzAxMVoX DTI3MDUwMTA4MzUxMVowMzExMC8GA1UEAxMoQ0I5M0I0ODQ3RjkzRjc4MzREMUQ4 NEE4NzU3RUZDMTUwNDg1QThBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMo6VLIDChKORTJ3rz1MpcRt2DEckXBboy3I1x7LLAXOzvb6xwvWnwTF1Ht9 +UCskPApDIRxjyl4doNG96Tot0cBIGuejVabyuwhGNX5x1F76DFqi0UHyIHRJSlS KRupsmxnldHufhauqCyyWEKUmSsmo/Wvht69uutJfNlZuInk3OL2v3+Ha+IBqXZz WZ7NcGTE6EDoVthZ5f+83gzTZl5JalcgjFv8WZjLnSeJ2FxzotWIEmJHXUK9YQ1M sLufV1fvS+xjkvKrej772jWTMvXMGhpj3cHcZMMN9FFTKf0G4B0qcP4u6ascTtUZ dfevNFhDy8C3A6IfD16yG8U9G68CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTLk7SE f5P3g00dhKh1fvwVBIWooTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBSBggrBgEFBQcBCwRGMEQwQgYIKwYBBQUHMAuGNnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTQyNTQ0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAIAEN9rlAMA0GCSqGSIb3DQEBCwUAA4IBAQA3tr2xxjl/AAFn5XE/WRc3 ufipyiv5bUe3JDosV8R4QMSfRWX6xqg/kAQ2fthhaBPPv2jyVX0Xwyon3w5S+DPc YQvKH6sHXhCSL2mGh23xNpy6CCBKGUgPtpfLHxEGwciQqNkDlvdEOGErpZ9qWJuO ZdvFFl2p8wcVSXn9+uMYkd/4eQPaJkLqeYzjia2Ce0cDRCZoxzVH24Qh2g7fHmbk sgj/twqUEM7qHAnQzX/BPVRVfAd+zRXzozC5ynFZ5suhc/j/IgTOl3h0IFTOJAfu Fvtp4Tya4IRj8tKTunHGVF8YThilSMth4A3uXUn7GapoQMyGDAWm8gaZrxkJNjnU -----END CERTIFICATE-----Generated at Sun May 3 01:44:40 2026 by rpki-client