$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142214.roa File: AS142214.roa (raw, json) Hash identifier: Yea9S94KuajTJDdKH0H38ptuJasm7hnIit9XN7BC8u8= Subject key identifier: 4F:65:66:61:9F:97:AB:F3:80:AC:6A:0E:B6:BA:7F:8C:1A:CC:5D:00 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7C1BAD84F11B290E4D6463F625060F6042307B24 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142214.roa Signing time: Tue 24 Feb 2026 02:33:30 +0000 ROA not before: Tue 24 Feb 2026 02:28:30 +0000 ROA not after: Tue 23 Feb 2027 02:33:30 +0000 asID: 142214 IP address blocks: 144.79.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1b:ad:84:f1:1b:29:0e:4d:64:63:f6:25:06:0f:60:42:30:7b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 24 02:28:30 2026 GMT Not After : Feb 23 02:33:30 2027 GMT Subject: CN=4F6566619F97ABF380AC6A0EB6BA7F8C1ACC5D00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b8:27:11:9a:f6:fb:1a:b1:40:de:dd:da:c8: 74:85:ae:ff:ae:22:0a:31:4b:4e:49:ed:62:4c:02: 0b:51:06:2f:7a:91:d1:e3:64:a8:ed:91:0d:4a:01: 3f:42:44:90:16:20:f9:8a:fd:ef:9b:1f:c6:d8:a0: 62:f2:0f:83:9f:c2:a6:39:6a:50:41:7d:99:07:5d: 16:a9:c3:e2:b4:f2:e2:de:a4:b1:91:bf:c4:bb:91: f7:e1:15:49:cd:2d:e3:82:b9:c9:d8:02:a2:6d:ad: 86:2c:f9:2f:05:9d:64:5f:51:dd:9d:8a:27:fd:5d: 8f:7f:56:cb:55:c8:fb:46:a0:95:d2:e4:6e:72:64: 4b:e5:ae:26:9b:78:e4:a5:6d:42:63:8c:b9:4a:1f: 26:90:05:d5:84:86:93:35:3e:a9:f4:06:da:ca:a6: 2e:40:ab:95:4c:5c:88:27:9d:c3:19:b3:0a:11:6c: b9:cf:45:e0:f7:b0:8f:87:85:8c:46:6f:4b:db:1d: 90:1a:c9:19:ba:65:0a:6f:c8:fb:2e:c8:6d:02:d6: 87:98:fe:7e:a4:cf:1f:78:23:64:77:a6:47:d5:da: 47:95:73:f9:b6:63:45:03:82:40:42:8b:60:60:42: 88:2e:d5:e0:e4:74:72:91:de:ac:9e:00:56:80:57: 08:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:65:66:61:9F:97:AB:F3:80:AC:6A:0E:B6:BA:7F:8C:1A:CC:5D:00 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142214.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.245.0/24 Signature Algorithm: sha256WithRSAEncryption 80:29:45:11:40:42:46:17:fa:db:22:21:ec:ee:28:38:90:94: 34:de:41:f2:77:de:dd:2c:68:fc:cf:b0:83:df:20:1c:50:27: fd:29:80:d1:6e:c8:df:e6:64:fa:77:3a:fe:f1:46:a3:12:02: 90:84:85:b5:16:38:5b:f4:1c:fd:9a:cf:ff:e2:55:4c:75:0d: 69:b0:07:a8:10:f6:be:71:e8:1c:aa:ba:0c:19:0d:3d:bd:6c: b0:e1:0a:51:59:03:28:99:31:e6:a2:db:0e:6b:cf:c4:aa:6f: 6b:47:61:fa:36:0f:69:2c:e5:e2:fa:77:e9:ad:0b:b2:30:18: a5:5b:1a:3f:d4:a8:89:23:60:4a:46:8a:07:c6:c1:ce:58:7c: c2:80:ce:a9:58:1d:d0:06:15:01:83:e8:d4:47:3e:ab:f0:17: 84:a8:8f:13:8b:27:b5:b7:8f:65:ec:fa:a8:37:46:8c:22:db: c1:2a:f3:3d:f0:aa:df:80:3e:81:1a:de:a1:ef:bf:ed:e6:98: a7:3f:47:39:9c:a7:e6:df:de:ad:06:9a:b6:c3:bf:ff:ce:79: df:5a:50:80:01:04:b1:0f:ba:e1:99:c4:0b:c9:35:22:88:b3: b0:7a:e5:eb:dc:6a:70:f0:76:40:c7:cb:72:3b:15:4d:33:8c: 16:31:bd:de -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfButhPEbKQ5NZGP2JQYPYEIweyQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIyNDAyMjgzMFoX DTI3MDIyMzAyMzMzMFowMzExMC8GA1UEAxMoNEY2NTY2NjE5Rjk3QUJGMzgwQUM2 QTBFQjZCQTdGOEMxQUNDNUQwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALm4JxGa9vsasUDe3drIdIWu/64iCjFLTkntYkwCC1EGL3qR0eNkqO2RDUoB P0JEkBYg+Yr975sfxtigYvIPg5/CpjlqUEF9mQddFqnD4rTy4t6ksZG/xLuR9+EV Sc0t44K5ydgCom2thiz5LwWdZF9R3Z2KJ/1dj39Wy1XI+0agldLkbnJkS+WuJpt4 5KVtQmOMuUofJpAF1YSGkzU+qfQG2sqmLkCrlUxciCedwxmzChFsuc9F4Pewj4eF jEZvS9sdkBrJGbplCm/I+y7IbQLWh5j+fqTPH3gjZHemR9XaR5Vz+bZjRQOCQEKL YGBCiC7V4OR0cpHerJ4AVoBXCMMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRPZWZh n5er84Csag62un+MGsxdADAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MjIxNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBP9TANBgkqhkiG9w0BAQsFAAOCAQEAgClFEUBCRhf62yIh7O4o OJCUNN5B8nfe3Sxo/M+wg98gHFAn/SmA0W7I3+Zk+nc6/vFGoxICkISFtRY4W/Qc /ZrP/+JVTHUNabAHqBD2vnHoHKq6DBkNPb1ssOEKUVkDKJkx5qLbDmvPxKpva0dh +jYPaSzl4vp36a0LsjAYpVsaP9SoiSNgSkaKB8bBzlh8woDOqVgd0AYVAYPo1Ec+ q/AXhKiPE4sntbePZez6qDdGjCLbwSrzPfCq34A+gRreoe+/7eaYpz9HOZyn5t/e rQaatsO//85531pQgAEEsQ+64ZnEC8k1IoizsHrl69xqcPB2QMfLcjsVTTOMFjG9 3g== -----END CERTIFICATE-----Generated at Mon Mar 2 09:34:50 2026 by rpki-client