$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142310.roa File: AS142310.roa (raw, json) Hash identifier: 3xz0lvjya/+3bicQimMLIGOTd8MK+WiKZRPwuJD6WDY= Subject key identifier: 9C:37:01:15:7A:FC:57:22:EB:69:9E:B2:A9:56:99:33:3B:B0:33:65 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3358F274701A0EA0EB130F1B8A5531EE17B110E6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142310.roa Signing time: Tue 03 Feb 2026 03:48:39 +0000 ROA not before: Tue 03 Feb 2026 03:43:39 +0000 ROA not after: Tue 02 Feb 2027 03:48:39 +0000 asID: 142310 IP address blocks: 2407:a540::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:58:f2:74:70:1a:0e:a0:eb:13:0f:1b:8a:55:31:ee:17:b1:10:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 3 03:43:39 2026 GMT Not After : Feb 2 03:48:39 2027 GMT Subject: CN=9C3701157AFC5722EB699EB2A95699333BB03365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e2:24:73:41:9c:f8:25:89:b0:d1:39:1d:a8: 49:55:e4:45:61:d4:84:4d:4e:fa:07:ea:54:c7:5b: 40:75:28:30:cf:72:3d:7f:bb:9c:51:c2:60:bc:47: 02:2a:0c:bf:be:1d:db:fa:25:f5:1a:dc:bd:68:20: 48:b0:c4:63:96:d8:a8:8f:3c:54:bc:69:d4:9d:c0: 70:b3:4a:bd:d2:a7:c4:5d:55:29:88:46:31:47:29: b8:b7:74:6d:c2:50:37:21:2e:d0:b3:61:15:9e:42: 97:8b:8f:c3:9e:89:84:37:c3:77:8b:b3:94:f5:cb: 76:c6:8a:af:e1:1c:7c:dd:8e:44:c2:0b:0a:46:22: e0:1c:b8:06:7f:2b:58:7d:d9:aa:aa:7c:4e:5f:ec: 0e:8d:8e:62:b5:1a:4c:cf:11:3c:7a:4d:57:b7:18: 44:a3:45:1d:45:c7:43:7b:57:59:8a:18:1b:13:35: 51:ec:a2:66:6c:ae:13:f2:e8:ef:03:69:69:1e:49: 68:51:bf:3a:48:fb:fe:01:14:2b:25:05:f9:3b:ba: f0:f4:d7:8b:d8:f8:97:92:68:12:50:5b:ec:d9:ae: f3:63:68:bc:ab:b8:7e:ff:33:63:95:17:a4:c0:40: cb:1d:88:cb:42:91:ef:48:bc:7f:e1:33:f6:9b:f3: 29:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:37:01:15:7A:FC:57:22:EB:69:9E:B2:A9:56:99:33:3B:B0:33:65 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142310.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a540::/32 Signature Algorithm: sha256WithRSAEncryption 20:f0:15:21:c6:1d:fb:6a:39:f6:0b:46:f4:c9:96:d6:f8:b7: 3f:e5:d2:99:9f:4b:05:5c:f1:b1:06:c1:aa:89:86:ab:8c:72: 32:1a:bc:ae:c5:af:78:dc:e2:9a:46:d9:03:aa:18:d1:6c:90: 16:be:9e:85:84:43:b2:cb:5d:ff:12:4d:b1:86:21:8d:00:26: 75:ed:d3:d2:11:42:2d:cb:40:af:26:ab:91:c1:c3:98:fd:e9: d5:d0:3b:f7:9e:28:ff:3c:63:a3:bd:5c:b6:68:f7:29:5f:60: 86:52:13:de:53:29:54:d8:9d:27:92:26:0a:cc:e5:83:c0:c9: 72:2a:46:72:0a:9a:37:ee:ba:32:82:ba:5c:df:7c:be:2d:2a: 71:64:3e:7e:a5:ab:de:6d:d2:77:58:6a:3c:81:0c:81:d8:5d: 2b:9f:61:44:94:ea:ac:d9:e8:69:8d:d9:18:ed:2d:30:d1:11: e7:d1:d4:88:ee:12:73:5e:a7:f2:87:97:bf:47:ca:72:6e:19: 15:6c:40:40:3a:63:98:60:a2:5f:22:dc:a5:11:85:c0:98:31: 27:b9:bf:20:df:86:fe:07:9b:40:e4:5a:23:45:53:41:93:cc: ba:06:e0:c0:58:33:fc:73:4a:2d:c4:64:e0:14:a6:9d:90:46: e3:df:5e:a0 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUM1jydHAaDqDrEw8bilUx7hexEOYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIwMzAzNDMzOVoX DTI3MDIwMjAzNDgzOVowMzExMC8GA1UEAxMoOUMzNzAxMTU3QUZDNTcyMkVCNjk5 RUIyQTk1Njk5MzMzQkIwMzM2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTiJHNBnPglibDROR2oSVXkRWHUhE1O+gfqVMdbQHUoMM9yPX+7nFHCYLxH AioMv74d2/ol9RrcvWggSLDEY5bYqI88VLxp1J3AcLNKvdKnxF1VKYhGMUcpuLd0 bcJQNyEu0LNhFZ5Cl4uPw56JhDfDd4uzlPXLdsaKr+EcfN2ORMILCkYi4By4Bn8r WH3Zqqp8Tl/sDo2OYrUaTM8RPHpNV7cYRKNFHUXHQ3tXWYoYGxM1UeyiZmyuE/Lo 7wNpaR5JaFG/Okj7/gEUKyUF+Tu68PTXi9j4l5JoElBb7Nmu82NovKu4fv8zY5UX pMBAyx2Iy0KR70i8f+Ez9pvzKc0CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBScNwEV evxXIutpnrKpVpkzO7AzZTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQHpUAwDQYJKoZIhvcNAQELBQADggEBACDwFSHGHftqOfYLRvTJ ltb4tz/l0pmfSwVc8bEGwaqJhquMcjIavK7Fr3jc4ppG2QOqGNFskBa+noWEQ7LL Xf8STbGGIY0AJnXt09IRQi3LQK8mq5HBw5j96dXQO/eeKP88Y6O9XLZo9ylfYIZS E95TKVTYnSeSJgrM5YPAyXIqRnIKmjfuujKCulzffL4tKnFkPn6lq95t0ndYajyB DIHYXSufYUSU6qzZ6GmN2RjtLTDREefR1IjuEnNep/KHl79HynJuGRVsQEA6Y5hg ol8i3KURhcCYMSe5vyDfhv4Hm0DkWiNFU0GTzLoG4MBYM/xzSi3EZOAUpp2QRuPf XqA= -----END CERTIFICATE-----Generated at Mon Mar 2 14:56:28 2026 by rpki-client