$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142264.roa File: AS142264.roa (raw, json) Hash identifier: 7LORvAYZ6Kzy2BuVYE8O9dXlF/Q2BZChrMBEvX2G+Rs= Subject key identifier: 5C:28:70:59:84:F5:4B:83:8F:C3:B1:D7:D2:20:16:F0:F9:78:FA:84 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 650B10B01EA2D65D2066A2470F8849CEA57EBA0F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142264.roa Signing time: Fri 13 Feb 2026 08:27:20 +0000 ROA not before: Fri 13 Feb 2026 08:22:20 +0000 ROA not after: Fri 12 Feb 2027 08:27:20 +0000 asID: 142264 IP address blocks: 198.15.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0b:10:b0:1e:a2:d6:5d:20:66:a2:47:0f:88:49:ce:a5:7e:ba:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 13 08:22:20 2026 GMT Not After : Feb 12 08:27:20 2027 GMT Subject: CN=5C28705984F54B838FC3B1D7D22016F0F978FA84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:7d:c8:d2:f4:57:a2:5c:40:1f:9b:9e:bc:66: 2d:16:d2:27:c3:fb:4c:28:95:19:a2:f6:5e:4e:02: 93:e7:99:7f:39:d4:63:b0:e5:b9:d0:98:bb:e0:72: 34:54:cf:dd:6d:3d:84:2f:0c:2a:6a:bb:4e:a0:c4: 57:e5:72:9e:c7:16:fd:ad:81:3f:72:26:ac:a6:82: 95:0d:c9:4f:f0:c5:db:87:74:bb:d1:58:3e:71:c0: 02:c2:0a:f8:26:ad:23:6c:70:41:fc:f1:95:a0:23: 3c:91:15:98:34:d4:17:58:d7:b7:53:a1:d4:9f:3f: c4:4b:94:33:d9:60:5e:96:53:a1:33:0f:59:05:37: 9a:da:d6:16:b4:01:bc:52:27:46:2b:91:b3:30:8b: 23:d0:28:e0:74:91:b8:11:b1:f3:7a:1a:a5:b2:08: 4d:d3:8b:77:66:30:48:fe:57:07:7d:81:b0:cb:e5: 43:9a:c3:ae:1a:38:85:a7:e1:30:da:f9:a3:70:1a: 13:92:fa:b0:28:33:40:e8:7e:3c:89:d3:d2:2f:8a: 89:b8:f2:5d:6f:f2:8c:45:63:28:36:ff:c7:44:b9: 90:dd:41:ca:38:91:d4:e3:51:59:b5:dd:fa:c0:7f: b0:a0:48:cd:e5:48:1b:2e:e2:b5:1b:e5:cc:e8:d6: 25:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:28:70:59:84:F5:4B:83:8F:C3:B1:D7:D2:20:16:F0:F9:78:FA:84 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142264.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.15.25.0/24 Signature Algorithm: sha256WithRSAEncryption 62:ea:21:0c:37:bc:49:70:f3:bd:3e:72:46:bb:bc:4c:96:59: 1d:f6:4e:05:6a:16:72:f7:cf:0e:3e:fa:ca:8f:4e:a9:c4:ef: f9:16:65:46:70:b8:32:27:a2:d1:e4:17:5b:ac:32:1f:b2:12: f4:fb:bd:67:93:e9:8f:c7:45:66:58:ee:df:ad:62:da:e7:e8: d9:51:71:15:67:42:7a:d1:66:6b:40:81:d6:42:97:26:f3:77: f3:5d:c8:d3:67:54:64:51:12:69:19:24:0b:be:59:87:a2:af: 05:7b:d8:13:fe:25:a9:85:69:b7:32:fe:5e:1d:0c:6d:87:7c: 3c:90:b9:ca:ca:08:9f:bf:98:99:a8:e5:5a:61:66:2d:0a:52: 5f:11:53:43:bc:9d:c1:38:57:de:f4:ff:a6:93:b4:f5:1b:95: 07:8f:b3:65:b9:f2:d6:5d:2f:26:87:a7:99:c9:f5:a4:14:17: 35:a0:2e:a0:ab:c4:ec:d3:0d:a8:da:6d:10:96:d9:8b:36:9a: 00:8e:2d:28:85:2d:9d:81:7c:b2:95:da:77:01:ce:88:ee:74: 9c:d0:b8:0f:b4:90:f6:92:84:6f:c5:bf:49:c2:9e:de:e0:fb: e0:f6:47:9d:71:87:05:40:a9:70:e4:c3:5b:c4:15:fd:ef:8f: f2:76:a0:a4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZQsQsB6i1l0gZqJHD4hJzqV+ug8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIxMzA4MjIyMFoX DTI3MDIxMjA4MjcyMFowMzExMC8GA1UEAxMoNUMyODcwNTk4NEY1NEI4MzhGQzNC MUQ3RDIyMDE2RjBGOTc4RkE4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPx9yNL0V6JcQB+bnrxmLRbSJ8P7TCiVGaL2Xk4Ck+eZfznUY7DludCYu+By NFTP3W09hC8MKmq7TqDEV+VynscW/a2BP3ImrKaClQ3JT/DF24d0u9FYPnHAAsIK +CatI2xwQfzxlaAjPJEVmDTUF1jXt1Oh1J8/xEuUM9lgXpZToTMPWQU3mtrWFrQB vFInRiuRszCLI9Ao4HSRuBGx83oapbIITdOLd2YwSP5XB32BsMvlQ5rDrho4hafh MNr5o3AaE5L6sCgzQOh+PInT0i+KibjyXW/yjEVjKDb/x0S5kN1ByjiR1ONRWbXd +sB/sKBIzeVIGy7itRvlzOjWJV8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRcKHBZ hPVLg4/DsdfSIBbw+Xj6hDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MjI2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMYPGTANBgkqhkiG9w0BAQsFAAOCAQEAYuohDDe8SXDzvT5yRru8 TJZZHfZOBWoWcvfPDj76yo9OqcTv+RZlRnC4Miei0eQXW6wyH7IS9Pu9Z5Ppj8dF Zlju361i2ufo2VFxFWdCetFma0CB1kKXJvN3813I02dUZFESaRkkC75Zh6KvBXvY E/4lqYVptzL+Xh0MbYd8PJC5ysoIn7+YmajlWmFmLQpSXxFTQ7ydwThX3vT/ppO0 9RuVB4+zZbny1l0vJoenmcn1pBQXNaAuoKvE7NMNqNptEJbZizaaAI4tKIUtnYF8 spXadwHOiO50nNC4D7SQ9pKEb8W/ScKe3uD74PZHnXGHBUCpcOTDW8QV/e+P8nag pA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:34:52 2026 by rpki-client